Privacy Policy

Effective Date: 31/01/2025

1. Data Collection & Storage
What Personal Information Do We Collect?
We collect only necessary personal information to enhance donor relations and maintain engagement. The data collected includes:
● Name
● Email Address
● Phone Number
● Donation Information (amount and purpose, but not payment details)

How Do We Collect This Data?
We collect data through user-submitted forms on our website, where individuals voluntarily provide their information for donations, volunteering, or subscribing to updates.
Where Is the Collected Data Stored, and How Is It Protected?

All user data is securely stored on our servers with industry-standard encryption and access control mechanisms. We implement:
● Data Encryption: All stored data is encrypted using AES-256 encryption standards.
● Access Control: Only authorized personnel can access donor data.
● Regular Security Audits: We conduct periodic security reviews to prevent unauthorized access or leaks.

How Long Do We Retain User Data?
We retain personal data for one year, after which it is renewed annually. If a user does not engage within this period, their data is securely deleted.

2. Purpose of Data Collection
Why Do We Collect Personal Data?
We collect data for purposes that help the NGO maintain donor retention and engagement, including:
● Sending thank-you notes for donations.
● Providing updates on how donations are used.
● Keeping donors informed about upcoming fundraising events and NGO initiatives.
● Volunteer coordination and event invitations.

Are There Secondary Uses for This Data?
Yes. We may use the data for:
● Marketing and awareness campaigns (via email and messages).
● Fundraising analytics to improve donor engagement strategies.

Do We Share User Data With Third Parties?
No. We strictly do not share, sell, or rent user data to third parties.

3. User Consent & Rights
How Do We Obtain User Consent?
By submitting their information via our website, users explicitly consent to data collection and processing as outlined in this policy.
Can Users Opt-Out of Data Collection?
Yes. Users who wish to opt-out can:
1. Call us at 7558459911.
2. Email us at info@shikshangram.com with a request to remove their data.
How Can Users Access, Update, or Delete Their Data?
Users can request access, updates, or deletion of their personal data by contacting our Donor Relations Manager via email or phone.

4. Third-Party Services & Sharing
Do We Use Third-Party Services?
Yes, we use third-party tools to enhance user experience and manage data, such as:
● Email Service Providers (for sending newsletters).
● Analytics Tools (for website visitor tracking).
● CRM Software (to manage donor engagement).

How Do We Ensure Third-Party Services Comply With Our Privacy Standards?
We only partner with service providers that follow industry best practices for data security and privacy compliance. Each service provider signs a Data Protection Agreement (DPA) with us.
Under What Legal Circumstances Might We Be Required to Share Data?
We will only disclose user data if required by law, such as:
● Complying with legal obligations or law enforcement requests (e.g., court orders).
● Preventing fraud or unauthorized transactions.

5. Security & Protection
How Do We Protect User Data?
We have implemented the following security measures:
● Secure Server Storage: All data is stored on encrypted and access-controlled servers.
● Firewall Protection: Our servers have firewalls that prevent unauthorized intrusions.
● Regular Data Audits: We conduct periodic security reviews to identify vulnerabilities.
● Multi-Factor Authentication (MFA): Authorized personnel accessing donor data use MFA for added security.
Do We Encrypt Sensitive Data?
Yes. Any sensitive user information is encrypted both in transit and at rest.
How Do We Handle Data Breach Incidents?
In case of a data breach, we will:
1. Immediately investigate and contain the breach.
2. Notify affected users via email within 72 hours.
3. Work with cybersecurity experts to resolve vulnerabilities.
4. Report the breach to relevant authorities if required by law.

6. Cookies & Tracking
Do We Use Cookies?
No. We do not use cookies or tracking technologies on our website.
Can Users Control or Disable Cookies?
Since we do not use cookies, there is no need for users to disable them.

7. Policy Updates & Legal Compliance
How Will Users Be Notified of Policy Updates?
Users will be notified of any Privacy Policy changes via email.
What Legal Frameworks Do We Comply With?
Our Privacy Policy aligns with the following legal frameworks:
● Indian IT Act, 2000 (including IT Rules, 2011) – Regulating electronic data protection in India.
● General Data Protection Regulation (GDPR) (for European donors) – Protecting user data privacy and rights.
● California Consumer Privacy Act (CCPA) (for donors from California, USA) – Ensuring transparency in data handling.

8. Contact Information
For any questions about this Privacy Policy, or to request changes to your data, please contact us at:
📍 NGO Name: Shikshangram Shelter for Children
📞 Phone: 9689453329
📧 Email: info@shikshangram.com
🌍 Website: shikshangram.com