Privacy Policy

We are committed to maintaining he trust and confidence of all of our supporters, partners, and most importantly, the people of Rwanyana. We will only collect your personal data when necessary, and are committed to maintaining the privacy of any personal information that we collect.

What data do we collect?

Contacting us

We will collect personally identifiable information, including your name and email address, when you contact us via the form on our website. This information will be collected and stored using Gmail and GSuite services, please refer to their privacy and security policies for further information on how they help us to store and protect your data. This information will be used for the sole purposes of responding to your enquiry and sending you relevant information about the charity, if you agree.

Making a donation

If you would like to make a donation directly to the charity, you are able to contact us via the form available on the website and we will provide the details necessary for you to make a direct transfer. The only personal data that we will collect during this process, is the date we collect via the contact form; please refer to the section above for more information on this.

If you would like to make a donation via JustGiving, as many of our supporters do. The links provided on our website will take you directly to the donation processing system provided by JustGiving. Please refer to their privacy and security policy for more information.

Lawful basis for processing

In line with GDPR rules, introduced in 2018, we may occasionally contact you with relevant information about the charity and the support that you provide with us, with your consent. The potential nuisance factor of unwanted newsletters is limited by a clear unsubscribe link on every message (though we truly hope they are never a nuisance).

Data breach

In the event of a breach where we find your personally identifiable information may have been compromised we will inform both you and the Information Commissioner’s Office within 72 hours of detecting the breach.

Control over your personal information

Under the GDPR rules, your rights are as follows. You can read more about your rights in detail here;

The right to be informed – to be in the know.

The right of access – to know what we know.

The right to rectification – to correct what we have.

The right to erasure – to remove your data.

The right to restrict processing – to stop anything being done with your data.

The right to data portability – to move your data elsewhere.

The right to object.

The right not to be subject to automated decision-making including profiling – we don’t automate decision-making.

f you have a request with regards to your personal information, please contact us.

You also have the right to complain to the ICO if you feel there is a problem with the way we are handling your data

Conclusion

To sum all of this up, we care about your data and making sure we are only handling what we need, when we need, responsibly. It’s yours after all, not ours, and we should all treat others’ stuff with respect. As with anything else, we’re always happy to have a chat about any of this, or any concerns/suggestions you may have. If you have any questions, please contact us via the form provided on the website, and one of the team will get back to you.