Privacy Policy
The Elizabeth Glaser Pediatric AIDS Foundation (“EGPAF”) maintains this website (pedaids.org) in order to provide you with information about our work, programs, and events, as well as an online forum to interact with us. This Privacy and Cookies Notice describes EGPAF’s treatment of information that you provide through our website; it explains what information we collect, how it is protected, and how we use it.
Your use of this website constitutes your agreement to the terms and conditions of this policy.
Changes to the Privacy Policy
We reserve the right to change the terms of this Privacy Policy at any time and without notice. Any and all changes will be posted on this page. We encourage you to check this page regularly. Your continued use of the website following any changes to this Privacy Policy will constitute your acceptance of such changes.
Cookies
The EGPAF website uses “cookies” – small text files that are stored in your computer’s browser to aid and simplify your use of our website. You may change your browser settings to not accept cookies or to periodically delete cookies from your browser. The cookie cannot capture your e-mail address, retrieve any data from your hard drive, or pass on a computer virus; it simply collects information you have entered into our website to simplify future visits.
Third-party cookies
Third-party analytics services
We use third-party analytics services, including Google Analytics and others, to collect information about your use of our sites and enable us to improve how our sites. You can learn about Google’s practices by going to https://policies.google.com/privacy/partners. Google Analytics and other third-party analytics services use cookies and similar technologies to collect information about use of our sites and to report website trends to us, without identifying individuals to us. We use this information to see the overall patterns of usage on our sites, help us record any difficulties you have with our sites, and tell us whether our communication efforts are effective.
Social media and video sites
If you choose to share our digital content with friends through social networks, such as Facebook and Twitter, or to watch a video posted to a third-party media site (such as YouTube), you may be sent cookies from these third-party websites. We do not control the setting of these cookies, so please check the third-party websites for more information about their cookies and how to manage them.
Information We Collect
We collect only the personal information you voluntarily provide to us, or that is given to us by entities or third parties that have your permission to share your personal information, such as when affiliated entities provide us with their email lists that they are authorized to share. Personal information includes (but is not limited to) your name, mailing address, telephone number, e-mail address, and credit or debit card number.
In correspondence, we use clear GIFs (image files) in our HTML-based e-mails to let us know which e-mails have been opened and use bounce-back technologies for undeliverable e-mails. These assist us in managing correct e-mail addresses, as well as in determining what information is important to you as a reader.
Each time you visit our website, our server will record your server address, your domain name, your browser type, your platform, the date and time of your visit, and the titles of the pages you view. This information is collected to help us diagnose problems, evaluate traffic patterns, and enhance the site’s usability. For instance, the most commonly-used pages should be refreshed with information more often, and the most popular browsers should be included in our test procedures before deployment.
How We Use Your Information
EGPAF may use your personal information to do the following:
- Process your donation to EGPAF
- Send you newsletters and informational emails
- Contact you about our events
- Improve our website
- Gain your input through reader surveys
- Assist in your advocacy for pediatric AIDS issues
- Create additional communications and activities that further EGPAF’s mission
- Manage our relationship with you as our donor
We may receive information from other websites in order to process your donation or to contact you regarding a request you have made. For example, we may receive information from other websites such as those that host auctions and/or process payments in connection with your request regarding event registration details, event tickets, purchases from an auction, or general EGPAF information.
By making a donation and/or purchase, you consent to us providing your financial information to our service providers and other third parties as we determine necessary to process the transaction, such as Internet payment processing services and/or credit card processing services.
When you make a donation and/or purchase, you have the option to provide consent to enroll your email address into our digital mailing list. Through this list you may receive information about the work of EGPAF, the impact of your donation, event invitations, and other organization updates. If you do not wish to receive these mailings, you do not have to provide consent. You also consent to having your contact information data stored within our donor database. We will not store your credit card information. You can also follow the instructions below in the “How to Unsubscribe and/or Remove Your Data” section.
EGPAF does not share your personal information for use by other companies except in the case where those companies are performing a service for us or where you have agreed to allow such sharing of your personal information. For instance, a direct mailing for an event would require us to share your address with our direct mail supplier. Similarly, a credit or debit card number would be shared with a credit card processing company. These companies may only use the shared information to provide the requested service unless you consent otherwise, and EGPAF will always ensure that these companies commit to complying with all data protection regulations.
In order to increase our base of support and keep our costs low, EGPAF occasionally shares our donor names with other carefully selected organizations or data providers. Donors who wish to have their names removed from the exchange list can contact us at donate@pedaids.org.
How to Unsubscribe and/or Remove Your Data
You can opt out at any time from receiving e-mail communications, mailers, or telephone contacts from EGPAF. To do so, please contact donate@pedaids.org. E-mail messages also will provide you with an opportunity to opt-out of receiving e-mail messages, via the “unsubscribe” link in the email footer.
To request that your data be completely removed from our records, please contact donate@pedaids.org. Please note that this action will be GDPR compliant. Should you reach out to donate@pedaids.org, please identify your email request with the subject line “Data Removal Request.” EGPAF will consequently unsubscribe you from communications and anonymize your constituent information in our databases.
You can also make either of these requests by contacting us via phone at 202-296-9165. Please request to speak with the Development Donor Services Coordinator. Please note that changes to your preferences may take up to a week to be effective.
Security
Protecting your information is of paramount importance to us and we have taken all appropriate measures to protect the personal information we process from any breaches. However, be advised that no data transmission over the Internet can be guaranteed to be 100% secure. Our website uses industry-standard SSL encryption on pages where you submit donor or payment information. Information that you submit is protected through data access security, and only authorized users can access data that you submit. Further, financial information is retained only for transaction processing [and then erased]. We do not store your credit card information on our systems; all transactions are completed on secure partner sites [located in the EU].
Other Disclosures
EGPAF may also disclose your information in response to court orders or subpoenas, or if we determine that it is necessary to do so to comply with applicable laws or to protect the interests or safety of EGPAF or other visitors to the Web site. If EGPAF is sold to or merges with another company, or declares bankruptcy, some or all of the information collected from you may be transferred to a third party as part of the transfer of assets. [Should such situation occur, we would of course inform you on the modalities of such transfer.]
Links
The website may contain links to other sites including, among others, those of advertisers and other third parties whose trademarks may appear on the website. We are not responsible for the privacy practices or the content of the sites to which we provide links. You should carefully review the privacy policies of any linked sites you access via the EGPAF website.
Minors
This website is not intended for use by children.
Contacting Us
If you have further questions regarding this Privacy Policy, or regarding the use of changes, additions, or deletions to your personal information collected through this website, please contact us and include your name, telephone number, e-mail address, and home address so that we may contact you. You may also use this contact information to opt-out of receiving future commercial e-mail, telephone and mail communications from EGPAF. We can be reached in the following ways:
- Via e-mail: donate@pedaids.org
- Via telephone (Washington, D.C. headquarters): 202-296-9165
- Via postal mail: Elizabeth Glaser Pediatric AIDS Foundation, 1350 Eye Street NW, Suite 400, Washington, D.C. 20005
Effective Date
This Privacy Policy is effective as of August 5, 2020.
Applicant & Candidate Privacy Policy General Data Protection Regulation (GDPR)
Purpose
The purpose of this policy is to outline how EGPAF will manage, protect and use the personal data provided by job applicants (“personal data” or “information” refers to any information that relates to an identified or identifiable individual in the meaning of applicable data protection laws).
At EGPAF, we’re committed to protecting and respecting your privacy. You will be asked for information to complete forms on our careers site. The purpose of this notification is to inform you how we may use the information that you share with us. Any questions regarding this notification and our privacy practices in general should be sent by email to info@pedaids.org, by writing to EGPAF, 1350 Eye St NW, Suite 400, Washington, DC 20005, or by phone at 202-296-9165.
The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy and to reshape the way organizations approach data privacy.
Scope
This policy applies globally to all Foundation applicants and candidates.
Statement of Policy
How is your information used?
We will only use your information in the processing of a job application and to fulfill information requirements at the time of a successful hire. If you are offered and accept employment with EGPAF, the information collected during the application and recruitment process will become part of your employment file.
What has access to your information?
The EGPAF HR Department, senior management and other operational departments pertinent to the position for which you have applied will have access to your job application.
We will not sell or rent your information to third parties for marketing or other purposes. However, we may pass your information on to one or more third parties for the purpose of performing reasonable and standard due diligence in evaluating your candidacy.
We review our retention periods for personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory obligations. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us.
What personal data do we process?
- Your name, address, email address, telephone number, and other contact information;
- Your resume or CV, cover letter, previous and/or relevant work experience or other experience, education, or other information you provide to us in support of an application and/or the application and recruitment process;
- Information from interviews and phone-screenings you may have;
- Details of the type of employment you are seeking, current and/or desired salary and other terms relating to compensation and benefits packages, or other job preferences;
- Details of how you heard about the position you are applying for;
- Any sensitive and/or demographic information processed during the application or recruitment process such as gender, citizenship and/or nationality, race and/or ethnicity, disability status, and veteran status;
- Reference information and/or information received from background checks (where applicable), including information provided by third parties, as and to the extent authorized under applicable laws;
- Information relating to any previous applications you may have made to EGPAF and/or any previous employment history with EGPAF;
- Your information from publicly available sources, including online, that we believe is relevant to your application or a potential future application, such as LinkedIn;
- Information related to any assessment you may take as part of the interview screening process (where applicable).
How you can access and update your information
In certain countries, you may have certain rights under data protection law. This may include the right to request access or to update or review your information, request that it be deleted or anonymized, or object to or restrict EGPAF using it for certain purposes.
- Candidate Portal: View all profile and applications you’ve created
- Right to rectification: Modify your profile
- Right to be forgotten: Withdraw and delete your profile
The accuracy of your information is important to us. If you change your email address or any of the other personal information we hold about you is inaccurate, you may self-manage your personal data. To update your information, please visit our candidate portal. Please note, however, that we may retain some information where legally permitted and/or required.
Security precautions in place to protect the loss, misuse or alteration of your information
When you give us personal information, we take steps to ensure that it’s treated securely.
Non-sensitive details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems. Where we have given (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.
We take appropriate technical and organizational measures in order to avoid accidental or unlawful loss, deletion, destruction or modification or unauthorized disclosure or access to personal data and to protect their confidentiality, integrity, availability and traceability, such as by means of internal regulations, training, IT and network security solutions, physical and logical access controls and restrictions, encryption of data carriers and transmissions and pseudonymisation.
Profiling
We may analyze your personal information to create a profile of your interests and preferences so that we can contact you with information about positions at EGPAF that might be of interest to you. We may make use of additional information about you when it is available from external sources to help us do this effectively.
Transferring your information outside of the European Union
If you have accessed SmartRecruiters while within the European Union (“EU”), you should be aware that the information which you provide to us may be transferred to countries outside the EU. By way of example, this may happen if any of our servers are from time to time located in a country outside of the EU. These countries may not have similar data protection laws to the EU. By submitting your personal data, you’re agreeing to this transfer, storing or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this notification.
Exceptions
Exceptions to this policy may only be granted in writing by the Chief Human Resources Officer. Any such approval shall be filed with relevant documentation.
Definitions
Personal Data or Information The information that relates to an identified or identifiable individual in the meaning of applicable data protection laws
Contact
For questions or suggestions about this Policy please contact the Human Resources department.