PRIVACY POLICY.

Who are we?

In this policy, all references to TreeSisters, the Charity, or to ‘we’, ‘us’ or ‘our’ are to TreeSisters, which is a registered charity and company in England and Wales under registered charity number 1149961 and company number 07369954, with registered office at 5th Floor, Mariners House, 62 Prince St, Bristol. 

& more.

​

What data do we collect, and how do we use it

Personal data

TreeSisters acts as the ‘controller’ of the personal data you provide to us. If you donate to us, we will usually collect basic personal data about you like your name, postal address, telephone number, email address and your bank details. We need this information to process your donation, GiftAid claims (if applicable), and to contact you about your donation.

 

When you join our mailing list, you provide permission for us to collect your name, country and email address. We use this personal data to contact you with newsletters, information and emails from TreeSisters. You may opt out of receiving any or all of these communications from us by clicking the ‘Unsubscribe’ link within the email or contacting our team at support@treesisters.org. If you choose to withhold the requested information, we may not be able to provide you with certain services.

 

Sometimes we will request other information about you, such as your date of birth and gender. We will be very clear about why we are asking for such information; providing this data would be optional, and we would only do so with your specific consent and permission.

 

If you contact us through support@treesisters.org or communicate directly with a member of our team, we may store information about our interactions and relationship in our Customer Relationship Management tool, Salesforce. This is to support our team to help you quickly and efficiently. 

 

We may collect personal data from you in different circumstances, e.g. employment applications. Whenever we collect your personal data, we will provide the details of what we are collecting and storing, why, and for how long we will retain the information. 

​

Usage Data

We may also collect information on how our services are accessed and used. This Usage Data may include information such as your computer's Internet Protocol address (IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data. Data will be aggregated and the purpose of collecting and reviewing this data to allow us to improve our services and to detect, prevent and address technical issues.
 

Legitimate interests

Under data protection laws, there are a number of lawful reasons where we can use (or 'process') your personal information, including 'legitimate interests'. This means that we can process your personal information if we have a genuine and legitimate reason and we are not harming any of your rights and interests.

 

Some typical examples of when we might use the approach are for preventing fraud, maintaining the security of our system, data analytics, enhancing, modifying or improving our services, identifying usage trends and determining the effectiveness of our campaigns and fundraising.

 

Sharing or Transferring your information

We will never sell or rent your personal information to other organisations. We only disclose information to third parties or individuals when you have agreed that we may do so and in the following situations:

 

• When we use other companies to support our operations or to provide services on our behalf, e.g. sending mail and emails, customer analysis, assessment and profiling, when using auditors/advisors or processing credit/debit card payments.

• To enforce or apply our Terms and Conditions or if we believe that we need to do so to protect and defend the rights, property or personal safety of TreeSisters, our staff/volunteers/partners, our websites, and for other lawful purposes.

• We may disclose aggregate statistics about our site visitors, supporters, and donors to describe our services and operations to prospective partners and other reputable third parties and for other lawful purposes, but these statistics won’t include any personally identifying information.

• Your details may need to be shared if we run an event in partnership with other named organisations. We will be very clear about what will happen to your data when you register.

• Under certain circumstances, TreeSisters may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency). 

Transfer of Data

The personal data we collect is processed by our team in the UK, supported by consultants in the US and France. Therefore, your information, including personal data, may be transferred to and maintained on computers located outside of your country, state, province, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. TreeSisters will always remain the ‘data controller’ and therefore UK data protection legislation and requirements will preside. 

 

Third-party systems

In order to provide you with the best possible experience when you donate to us or visit our website or social media, we adopt the use of several third-party services. These third parties have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. TreeSisters will take all reasonable steps necessary to ensure that your data is treated securely and in accordance with this Privacy Policy, and no transfer of your personal data will take place to an organisation or a country unless there are adequate controls in place, including the security of your data and other personal information. These services are listed below, including the purpose and their individual privacy policies. 

​

Google Suite - Virtual document creation and file storage - https://policies.google.com/privacy 

Zoom - Meeting and event hosting - https://explore.zoom.us/en/privacy/ 

Wix - Website hosting - https://www.wix.com/about/privacy 

Hotjar - Improving user journey - https://www.hotjar.com/legal/policies/privacy/ 

Google Analytics - Audience insight-  https://policies.google.com/privacy 

Google Adwords - Promotion -  https://policies.google.com/technologies/ads 

Campaign Monitor - e-Marketing platform - https://www.campaignmonitor.com/policies/#privacy-policy

Beaufort12 -  Platform Integrator - https://www.beaufort12.com/privacy-policy

Salesforce - Customer Relationship Management (CRM) platform - https://www.salesforce.com/uk/company/privacy/ 

MoveData - Automated data entry to Salesforce from Payment processors - https://www.movedata.io/privacy/ 

FinDock - Integration of data from Payment processors into Salesforce - https://findock.com/privacy/ 

Stripe - Payment processor - https://stripe.com/en-gb/privacy

GoCardless - Payment processor - https://gocardless.com/privacy/ 

Paypal - Payment processor - https://www.paypal.com/us/legalhub/privacy-full 

HMRC - GiftAid claims and processing - https://www.gov.uk/government/publications/data-protection-act-dpa-information-hm-revenue-and-customs-hold-about-you/data-protection-act-dpa-information-hm-revenue-and-customs-hold-about-you 

Ave Design Studio - Brand and Animation agency - https://avedesign.studio/
Firecrest IT - IT support - https://firecrestit.com/

​

Retaining your information

We will retain your data only for as long as is necessary for the purposes set out in this Privacy Policy. This period will normally be seven years after your last financial contribution or other activity unless there is a good reason to keep your information for a longer period based on any legal, regulatory or business reasons.

 

TreeSisters will also retain usage data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our services, or we are legally obligated to retain this data for longer periods.

 

You have the right to ask us to remove your personal information from our records. We will inform you in writing when we have actioned your request, and if for any reason we need to refuse your request, we will give you the reasons why.

Data Protection Rights and Requests

If you are a resident of the European Economic Area (EEA), you have certain data protection rights under the General Data Protection Regulation (GDPR):

 

• The right to access, update or delete the information we have about you. 

• The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.

• The right to object. You have the right to object to our processing of your Personal Data.

• The right of restriction. You have the right to request that we restrict the processing of your personal information.

• The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.

• The right to withdraw consent. You also have the right to withdraw your consent at any time where TreeSisters relied on your consent to process your personal information.

 

Please note that we may ask you to verify your identity before responding to such requests.

 

You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

Other 

Links to Other Sites

From time to time, articles or posts on our website or social media may contain links to other sites that are not operated by us. If you click a third-party link, you will be directed to that third-party's site. We strongly advise you to review the Privacy Policy of every site you visit.

 

We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

 

Children's Privacy

We will not knowingly collect personally identifiable information or accept donations from anyone under the age of 18. If you are a parent or guardian and you are aware that your Child has provided us with personal data, please contact us. If we become aware that we have collected personal data from children, we will take steps to remove that information from our servers.

 

Volunteering

When you volunteer with TreeSisters, we may keep you up to date with the work that we are doing and the events we are involved with. Details will be included in your Volunteer Agreement.

 

Contact Us

If you have any questions about anything in our Privacy Policy, or would like to exercise any of your rights under GDPR, please contact us on support@treesisters.org

 

If you wish to raise a complaint about how we have handled your personal data, you can contact us at support@treesisters.org, and we will swiftly investigate the matter in line with our Complaints Policy. If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law, you can complain to the Fundraising Regulator or the Information Commissioner’s Office (ICO).

​

Our use of cookies

By using our website,social media pages (including but not limited to Facebook, Twitter, Youtube and Instagram) subscribing to our services or donating to us online, you agree that, unless you have set your computer's browser to reject them, we can place the types of cookies set out below on your device and use that data in accordance with this policy.

 

Our website may also link to other websites owned and operated by certain trusted third parties. These websites may also use cookies or similar technologies in accordance with their own separate cookie policies. For privacy information about these websites, please consult their cookie policies as appropriate.

 

What are cookies

Cookies are small text files stored on your device's browser. They allow information about your visit to be recorded and enable websites to recognise a user (anonymously) based on the information stored in the cookie.

 

We use cookies, which are issued by third party service providers that we continuously assess to make sure the data is secure. We collect these cookies in order to ensure that anything we do in our online advertising and campaigns are cost effective and relevant. We may track how well our adverts perform and then analyse this data to make sure we can continue to make improvements. 

 

Our cookies help us:

• Make our website work as you'd expect

• Remember your settings during and between visits

• Improve the speed/security of the site

• Allow you to share pages with social networks like Facebook

• Continuously improve our website for you

 

We do NOT use cookies to:

• Collect any personally identifiable information (without your express permission)

• Collect any sensitive information (without your express permission)

• Pass personally identifiable data to third parties

• Pay sales commissions

 

For further information on cookies generally visit the AboutCookies or All About Cookies websites.

 

Which cookies do we use?

The list below outlines the purpose of each of the cookies we use on our websites and gives links to the privacy policies of any third parties involved.

 

Cookie type: Essential/ Functional

Cookie author: Wix and various others

Cookie purpose: these cookies are used to ensure our website is usable. They enable basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

Policy location: Wix privacy policy

 

Cookie type: 1st party advertising/analytics

Cookie author: Facebook

Cookie purpose: this allows conversion tracking, optimisation and remarketing.

Policy location: Facebook

 

Cookie type: 1st party advertising/analytics

Cookie author: Google Adwords, Analytics and Google Marketing Platform 360

Cookie purpose: this is a web analytics service provided by Google which uses cookies to show us how visitors found and explored our website, and how we can enhance their experience. It provides us with information about the behaviour of our visitors (for example, how long they stayed on the site, the average number of pages viewed) and also tells us how many visitors we have had.

Policy location: Google

 

Cookie type: 3rd party advertising/analytics

Cookie author: Hotjar

Cookie purpose: Hotjar is an all-in-one analysis and feedback tool which reveals the online behaviour and feedback of our website visitors.

Policy location: Hotjar

 

Cookie type: 3rd party advertising/analytics

Cookie author: Twitter

Cookie purpose: this allows Twitter integration and sharing capabilities for social media. It also tracks conversions from Twitter advertisements.

Policy location: Twitter

 

Cookie type: 3rd party advertising/analytics

Cookie author: YouTube

Cookie purpose: uses a unique identifier to retain statistics of videos you've seen on YouTube. It also estimates your bandwidth on pages with integrated YouTube videos.

Policy location: YouTube

 

Cookie type: 3rd party cookie

Cookie author: Facebook 

Cookie purpose: Conversion tracking for TreeSisters social campaign

Policy location: Facebook

 

If you don't want us to process your data anymore, please get in touch with us at support@treesisters.org.

 

Privacy policy updates

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.

​