1: About Privacy Program of As Siraj Trust

1.1 As-Siraj Trust, with a three-year history, has been dedicated to combatting poverty since [2021]. In the span of these three years, we have actively implemented aid and development programs to bring about positive transformations in vulnerable communities across Asian countries, the United Kingdom, Jordan, Palestine, and Syria. Our initiatives focus on developing health and educational infrastructures, ensuring access to safe water sources, and creating livelihood opportunities.
Moreover, we are dedicated to offering emergency relief in times of disasters, with a particular emphasis on actively assisting orphans and Palestinian refugees.

1.2 As Siraj Trust Helping the Needy is a registered charity in the United Kingdom, with registration number 1194011. Our address is 9B Mill Bank, Wellington, Telford TF1 1RZ, United Kingdom.

1.3 We prioritize the protection of the privacy and personal data of individuals visiting our website, as well as our donors, sponsors, volunteers, and aid recipients. Our privacy program adheres to regulations such as the General Data Protection Regulation (GDPR) and the Data Protection Act of 2018. This privacy policy details our methods of collecting, managing, utilizing, and safeguarding your personal information.

1.4 The term “personal data” that we handle refers to any information pertaining to a living and identifiable individual. This includes, but is not limited to, names, physical and email addresses, internet identifiers, phone numbers, and other details associated with that person. Whether considered individually or in combination, this information can be utilized to identify the respective individual.

1.5 In the context of this policy, the terms “Process” or “Processing” refer to the activities conducted on personal data, encompassing collection, computation, storage, and disposal.

1.6 This policy becomes applicable when we assume the role of a data controller, as defined by the GDPR, regarding the personal data of our website visitors, donors, sponsors, volunteers, and aid recipients. Acting as a data controller means we determine the purpose and methods of processing personal data.

1.7 Our processing of personal data adheres to GDPR principles:

• We process personal data lawfully, transparently, and in a manner that aligns with reasonable expectations, openly communicating our processing practices.
• We collect and process only necessary personal data required for the functioning of our websites, apps, and services.
• Optional personal data, such as for marketing purposes, is collected only with your informed and freely given consent, facilitated by privacy controls on our platforms, you can withdraw consent at any time.
• Clear communication is maintained regarding the reasons and methods behind data processing, as well as the duration of data retention.
• Steps are taken to ensure the accuracy of personal data, providing mechanisms for correction.
• We implement appropriate, standardized technical and organizational controls to uphold the integrity and confidentiality of personal data.

2. How we use your personal data

Here’s how we utilize the information you entrust to us:

2.1. Direct Interactions: We process personal data obtained directly from you through our website, apps, and services. This includes information provided during donations, fundraising activities, correspondence, event participation, job applications, identity verification, and opt-in communications. We use this data to deliver requested services, maintain records, and for legitimate interests.

2.2. Usage Data

• Information includes IP address, geographical location, browser details, and usage patterns.
• Processed for monitoring, security, and improvement.
• Aligned with legitimate interests for a better online experience.

 2.3 Account and Profile Information: When you make a donation or establish a donor record, we gather and retain crucial details, including:

• Your Name
• Address
• Telephone Number
• Email Address

This information is employed for the functioning of our website, service provision, donation processing, and keeping you informed about our initiatives. Legitimate interests and contract performance constitute the lawful bases for this processing

2.4. Transaction Data: Details associated with transactions, encompassing

• Contact details
• Card or bank details
• UK taxpayer status

Are processed to record donations and maintain transaction records. Legal obligations are adhered to for Gift Aid claims, and we prioritize secure handling of sensitive information.

2.5. Special Category Data: Upon your consent, we may handle sensitive information, such as:

• Racial and ethnic background
• Passport details
• Date of birth
• Health information

This data is vital for delivering essential support and precautionary measures during particular activities and events.

2.6. Children’s Data: We do not actively collect information from children under 18, we seek parental or guardian consent when necessary. Data collection adheres to event-specific rules and safeguards.

3. How we share your personal data

3.1. Trusted Service Providers and Partner Organizations: We do not sell your details to any third parties. However, to effectively carry out our charitable activities, we may share your personal data with trusted service providers and partner organizations who work on our behalf.

 3.2. Third-Party Data Processors: We may engage contracted third-party data processors to handle certain aspects of data processing on our behalf. These processors act under our instructions and adhere to the same purposes and lawful bases outlined in this privacy policy. They play a pivotal role in providing services aimed at enhancing our offerings.

 3.3. Financial Transactions: For financial transactions related to our services, we collaborate with reputable payment services providers. We share transaction data with these providers only to the extent necessary for processing your donations, addressing queries, and safeguarding against fraudulent transactions. Your financial information is handled securely and in compliance with industry standards.

 3.4. Legal Compliance and Vital Interests: In certain circumstances, we may need to disclose your personal data to comply with legal obligations, such as government bodies for tax purposes or law enforcement agencies for crime prevention. We may also disclose your data to protect your vital interests or the vital interests of another natural person. Additionally, disclosure may occur when necessary for the establishment, exercise, or defense of legal claims.

4. How do we protect visitor information?

We employ multiple security measures to ensure the protection of your personal information. Your data is securely stored behind protected networks, accessible only to a restricted number of individuals with special access rights. These authorized personnel are obligated to maintain the confidentiality of the information. Whether you are placing orders or accessing your personal details, we provide a secure server for these transactions.

 5. Retaining, Updating, and Deleting Your Personal Data

5.1. Retention of Personal Data

We are committed to retaining your personal data only for the duration necessary to fulfill the purposes outlined in this privacy policy or as required by applicable laws. The specific retention periods may vary depending on the nature of the data and the purposes for which it was collected.

5.2. Updating Your Personal Data

We strive to ensure the accuracy of the personal data we hold about you. If there are changes to your personal information, please inform us promptly to ensure our records are up-to-date. You can update your information by contacting us at [Admin@as-siraj.org].

5.3. Deleting Your Personal Data

You have the right to request the removal of your personal data from our records. If you wish to exercise this right, please contact us at [Admin@as-siraj.org]. We commit to responding to your request promptly, and once we have verified your identity, we will proceed with the deletion of your personal data. However, it’s important to note that certain legal obligations or legitimate interests may require us to retain your data.

We make it a priority to delete your personal data either at the end of the specified retention period or sooner if feasible. For instance, if you request the removal of your data and opt-out of marketing communications, we will fulfill this request before the scheduled retention period. Nevertheless, if you request the removal of Gift Aid data before the conclusion of our legal obligation to HMRC, regrettably, we may not be able to comply.

6. Your Rights under the GDPR

Your principal rights under the General Data Protection Regulation (GDPR) include:

6.1. Right to Access

You have the right to know what information we have about you. If you want to see your records, you can ask us in writing. We’ll do our best to provide the information as quickly as possible, usually within a month. There will be no charge for this service unless there are exceptional circumstances.

 To ensure the security of your personal data, you will be required to provide proof of identity since the individual handling your request may not be the same staff member you have interacted with previously. This measure is in place to guarantee that your personal data is released only to you.

6.2. Right to Rectification

If you believe the information we have is incorrect, you have the right to ask for corrections. To update your records, please exercise your rights by reaching out to us through the details provided in the ‘Exercising Your Rights’ section below.Top of Form

6.3. Right to Erasure

Under certain circumstances, you have the right to the erasure of your personal data without undue delay. Circumstances include when the personal data are no longer necessary, consent is withdrawn, or the data have been unlawfully processed.

6.5. Right to Restrict Processing

You have the right to restrict the processing of your personal data in specific circumstances, such as contesting accuracy, opposing erasure, or pending verification of an objection.

6.6. Right to Object

You have the right to object to processing based on specific grounds related to your situation. We will cease processing unless there are compelling legitimate grounds that override your interests or for legal claims.

6.7. Right to Data Portability

If we are using your personal data because you’ve given us permission to do so, you have the right to ask for the data to be moved from one service provider to another.

6.8. Right to Withdraw Consent

If the legal basis for processing is consent, you have the right to withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

6.9. Right to Withhold Information

We may withhold personal information to the extent permitted by law.

6.10. Opt-Out of Marketing

You may instruct us not to process your personal information for marketing purposes.

6.11. Exercising Your Rights

If you want to exercise any of your rights, please send a written notice to our support team at As-Siraj, 9B Mill Bank, Wellington, Telford TF1 1RZ, United Kingdom, or you can email us at [Admin@as-siraj.org] or Call [+441952984442]

7. Changes to this Policy

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. Please review this page regularly for any updates.