Last Updated: May 2018
This site (https://volt.agapebg.org) is one of the family of digital tools operated by various ministries related to Campus Crusade for Christ (Cru) and governed by this Privacy Statement. When we use the terms “we” “us” or “our,” we refer to Campus Crusade for Christ International and affiliated ministries (our Organization).
We are committed to protecting and appropriately handling the private and personal information and take your privacy very seriously. Our Organization processes the information of users of our digital tools. We are publishing this Privacy Statement to let you know how we collect, process, use and share your personal information. We may, from time-to-time, update this Privacy Statement, so we encourage you to periodically review this statement. We will notify you (by email or prominent notice on this site) about material changes in the way we treat personal information and how those changes are likely to impact you.
1. Using our digital tools.
Please read our Terms of Use to find out more about the requirements for using our digital tools.
If you have any questions about this policy or the way we use your personal information, you may contact:
Email: help@cru.org
Phone: +1 (407) 826 2948
Mailing Address: Campus Crusade for Christ (Cru)
100 Lake Hart Drive
Orlando, FL 32832, USA
2. How we use your personal information.
We will generally only collect and use your personal information when it is necessary to achieve our legitimate interests of fostering spiritual growth and providing you with tools and resources relevant to that end. We may also use your personal information when it’s needed to perform the services we provide or to comply with our legal obligations.
Data types 1
Identity Data
Contact Details
Marketing/Communication data
Requests and Preferences
Demographics
Purpose 1
To allow us to communicate with you, according to your communication preferences; to be able to identify you and manage our relationship with you; to register for an event; to provide promotional information.
Legitimate Interest 1
To manage participation in our ministry and contact management across the ministry; To show information that is more interesting to you.
Data types 2
Identification information
Security Credentials
Purpose 2
To allow you to login and access our digital tools.
Legitimate Interest 2
To ensure that your accounts on our digital tools are kept safe and private.
Data types 3
Delegate details
Travel Information
Dietary requirements
Room preferences
Purpose 3
To allow you to register for an event.
Legitimate Interest 3
To improve your conference experience and better serve your needs.
Data types 4
Application Form,
References
Purpose 4
To apply for short or long term mission opportunities with us; to apply as a volunteer.
Legitimate Interest 4
To better understand who you are and properly assess your application.
Data types 5
Information that you provide us about your beliefs and your circumstances; Requests and Preferences
Purpose 5
If you meet with us for discipleship or spiritual advice, we may take confidential notes to track your spiritual journey and provide you with resources and activities that will help you grow. If you prefer that we do not take notes, please let us know. The information you disclose is entirely at your discretion.
Legitimate Interest 5
To provide spiritual guidance and support; To allow us to pray for you.
Data types 6
Your posts in discussion threads
Purpose 6
To provide forums and digital communities.
Legitimate Interest 6
To provide a safe place for you to discuss spiritual and mission based topics.
Data types
Bank Details
Financial Transaction data
Contact Details
[tax status]
Purpose
To process your order or donation, (including managing payments and collecting money), for our statutory reporting and to confirm your tax status, where applicable; to process orders for goods and services.
Legitimate Interest
To safely receive your donation towards our charitable aims; to provide ministry resources and services.
Data types
Historical Transaction Data
Usage Data
Audit Logs
Location Data
Purpose
To allow us to improve the tools and deliver better services that meet your needs; to maintain an audit trail of access to data; troubleshooting; data analysis; system maintenance; Analytics & Business Intelligence.
Legitimate Interest
To manage and protect our organisation and this website; to ensure that our services run effectively and to track who is accessing your data.
We may use your personal information for purposes other than the ones listed above. Should this be the case, we will update this statement and promptly notify you of the change.
3. How we collect personal information.
We obtain personal information from you via:
direct interactions: when you enquire about our activities, engage in an activity with us, make a donation, register through one of our sites or at an event, or otherwise give us your personal information.
cookies and other automated technologies: when you interact with our site we may use cookies and similar technologies to keep track of website activities (for more information see “Cookies and Information Collected by Technology” below);
third parties [or other publicly available sources]: we may from time to time obtain personal information about you from third parties [and public sources] (e.g. US Census Data). We will only collect personal information from third-parties if that information has been obtained by the third-party in a legal and proper way.
4. Types of Personal Information that we collect.
identity data which may include name, date of birth, gender, marital status;
contact data including email address, postal address, email, telephone number and instant messaging
requests and preferences including communication preferences, your interests, prayer requests
security credentials including username, password,
historical transaction data including communication history, your past donations, purchases, applications and interactions with us.
location data – information about your physical location, including ip address, and lat/long coordinates, country of origin (where applicable).
usage data including information about how you use our digital tools ; and
marketing and communication data including your preferences in receiving marketing from us and communication preferences.
financial data including bank account and payment bank details;
financial transaction data including details about payments and donations from you and details of products and services you have purchased from us and activities you have participated in;
information about beliefs and circumstances including religious information; information you disclose about your personal circumstances.
5. How/when we disclose personal information.
Generally, we will not disclose or share your personal information (including your email address) with anyone outside our organization without your permission. However we may need to use or share your information with our partners and agents who provide goods and services to you on our behalf. Your information may be disclosed for one of the following reasons:
To share your information with other parts of our organization to service your requests or provide you with information or other ministry opportunities.
To disclose your information to the government as part of tax filing or other legal and regulatory requirements.
To Third Party Service Providers:
We take steps to safeguard your information and we have contractual provisions requiring all third-party service providers to respect the security of your personal data and to treat it in accordance with our data protection policies and all applicable laws. These providers include:
– Cloud Service Providers for the hosting of apps and sites
– Direct and email marketing service providers (e.g. MailChimp)
We will not allow third-party service providers to use your personal information for their own purposes and they will only be allowed to process your personal information in accordance with our instructions.
6. Your Rights.
If you wish to exercise any of these rights, please email help@cru.org. We will respond to your request within 30 days of receiving it.
a. Editing and updating personal information
If you find that your information needs to be edited or updated, you can change your information directly on the site. Our websites offer different options for you to access, change, and modify the information you previously provided, such as your donor or customer record (for registered users only), email address, postal address, or to stop a duplicate email.
If one of our websites does not give you the option to edit personal information yourself, you can ask us to update it by contacting us at help@cru.org. Please make sure to provide us with all the information we need to be able to address your request, including both the old and new information.
b. Accessing personal information.
You have the right to obtain details of your personal information we hold. We will confirm whether your personal information is being processed and provide additional information including what kind of information we have about you, where we collected it, how we use it (including the legal basis for our processing) and how long we expect to keep it.
If you ask us, we will provide you with a copy of your personal information free of charge. We may charge you a fee to cover our administrative costs if you request multiple copies of the same information.
c. Deletion of personal information.
You have the right to request for us to delete your personal information if there is no good reason for us to continue processing it or the legal basis for holding your information no longer applies. You can also ask us to delete your information if you have objected to processing (see below), if we have processed your information unlawfully, or if we are required to delete your information to comply with our legal obligations.
We will review on a case by case basis and we might not be able to comply with your request if we need to retain the information for legal reasons. If this is the case, we will notify you of the reasons why your request was rejected and we will remove your information from our active databases.
d. Restriction of processing of personal information.
You have the right to request us to limit the processing of your personal information if you feel our legitimate interests for using the information impact your rights and freedoms or if our processing was unlawful.
To the extent needed, we may still keep some of your data to ensure we comply with your request to limit processing, or for other legal purposes.
e. Objecting to processing of personal information.
You have the right to object to your personal information being processed for marketing (including profiling) or for research purposes. At any point, you have the right to object to marketing communication we send.
If we process your personal information for the exercise or defense of legal claims or if we can demonstrate compelling grounds that override your rights and freedoms, we may not be able to comply with your request. In that case, we will notify you of the reasons why your request was rejected.
f. Portability of personal information.
You can request us to send you your personal information in a structured, commonly used, machine-readable format so that it can easily be transferred and used by a third-party.
g. Withdrawing consent.
We primarily rely on legitimate business interests to process your data, but to the extent we use consent to process your data, you have the right to withdraw any consent you may have given us at any time. We will comply with your request promptly.
If you withdraw your consent, we might not be able to provide some of our products and services to you.
h. Filing a complaint with the supervisory authority.If you wish to lodge a complaint or seek advice from a supervisory authority, please contact your local regulator.
7. International transfer of your personal information.
We are an international organisation and we might need to transfer your personal information to other countries. If you are in the EEA, please be aware that we may need to transfer your data to countries outside the European Economic Area (EEA) to process it. We will only transfer your personal information outside the EEA with adequate safeguards in place and in full compliance with applicable laws. For example, we will only transfer your personal information to countries that have been deemed to provide an adequate level of protection. We have established standard contractual clauses with our service providers to ensure they protect your information and to enforce legal transfers of data internationally.
8. Security.
We have put in place appropriate security measures to protect your personal information from being accidentally lost, misused or accessed in an unauthorised way, altered or disclosed. These include technical, administrative and physical security measures to ensure that any information we collect is stored and processed securely.
For example, for digital tools that require personal or sensitive data to be collected or displayed, a Secured Socket Layer (SSL) connection is required, to ensure that the data is encrypted as it is transferred to the browser. All credit card payments are processed using PCI compliant technology, to ensure that your credit card number is securely passed to the merchant/service provider.
We have procedures to deal with any suspected personal data breach and we will promptly notify you and any applicable regulator of a breach in accordance with our legal obligations.
We cannot guarantee that the security measures we implement in connection with the operation of the site will absolutely prevent others from accessing or acquiring any information that you provide while using the site. You can help us protect your personal information by properly protecting your password and remembering to sign out of your account and close your browser window when you finish visiting our site, especially if you are on a shared or public computer.
9. Cookies and information collected by technology.
The digital tool may use cookies to keep track of web site activities, save your password or deliver content specific to your interests. A cookie is a small data file that certain websites write to your hard drive when you visit them. A cookie file can contain information such as a user ID that the site uses to track the pages you’ve visited. The only personal information a cookie can contain is information you supply yourself. You can find out more about cookies at www.allaboutcookies.org. Most Web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to fully experience certain interactive features of the site or access all of the services provided through the site.
10. How long we keep your personal information.
We keep your information as long as it is needed to achieve our purposes listed above, as well as for the amount of time necessary to meet any legal, tax, or reporting requirements.
We are working to ensure that your data is not kept longer than is necessary. In general we keep your data for 7 years after your last interaction with us (e.g. making a donation, registering for an event, or using one of our digital tools). We may keep your data for longer than 7 years if we cannot delete it for legal or technical reasons. We may also keep it for statistical purposes. However, if we do, we will ensure that your privacy continues to be protected and only use it for these purposes.
11. Third-party sites and information.
The site may contain links to websites that are run by third parties such as other organizations, sponsors, content providers and advertisers. Once you’ve clicked on a link or button activator for an outside website, you will leave the site and be taken to sites that we do not control, and our privacy policy no longer applies on those sites.
You must read the privacy policy of the third-party website concerning how personal information will be used. We also provide content created by third-parties on some of our websites. We are not responsible for the privacy practices or the content of such content providers or third-party sites.
12. Special rules for children.
We do not collect personal information from children under the age of 16 beyond what is necessary for them to participate in our online or other activities, such as registering for a conference or downloading materials. If we discover that we have accidentally collected personal information from a child below the age of 16, we will remove that child’s personal information from our records as soon as reasonably possible.
In situations where a child under the age of 16 attempts to register with one of our sites, purchase products or materials, or participate in an activity requiring the submittal of personally identifiable information, a parent or guardian must give permission and consent for that child to provide information and register. The only personal information we collect from a child is information that is necessary for the child to participate in activities, such as an address for making a purchase. Parents have the right to request at any time that the information collected about their child is removed from our database.
If you would like to review the information your children have provided to us as registered users, please send your request to Campus Crusade for Christ International, 100 Lake Hart Drive, Orlando, FL 32832 or send us your request here: help@cru.org. We will need your child’s log-in name and proof of your identity in relationship to the child in order to process your request.
On some of our digital tools, we occasionally host or offer access to chat rooms, or other forums, where no personal information is collected or posted. Children can visit these forums without having to first provide any personal information.