Updated June 1, 2018
What Information We Collect
“Personal Information” is information that identifies you as an individual or relates to an identifiable person. When you visit Jhpiego Sites, Jhpiego and its service providers may collect Personal Information that you provide, such as your name, address, email address, and payment information.
“Other Information” is any information that does not reveal your specific identity or does not directly relate to an individual. Jhpiego and its service providers use a variety of techniques to gather Other Information about your use of our Sites, including, among other things, your IP address, browser type, mobile device type, content visited while on our Sites, and the duration of your visit to our Sites.
How We Collect Information
Jhpiego and its service providers collect Personal Information that you provide while using our Sites. For instance, Jhpiego gathers information when you fill out forms on our Sites, including, for example, e-newsletter sign-up forms, donation forms, surveys, and advocacy action alerts. We may supplement the information we collect from you with information we collect from and about you from other online and offline sources, such as public databases, social media platforms, and from people with whom you are connected on social media platforms. For example, if you choose to connect your social media account to your Site account, certain Personal Information from your social media account will be shared with us. This may include Personal Information that is part of your profile or the profile of your connections on social media.
Jhpiego and its service providers may collect Other Information in the following ways:
- We use “cookies” to help us monitor traffic and collect information about use of our Sites. Cookies are pieces of data placed on your device when you visit our Sites that help us recognize you when you come back to our Sites, allowing us, for instance, to remember the email address and password you use when you log in on a specific computer. Jhpiego uses the aggregated information collected from cookies to measure the number of visits to our Sites, the average time spent on our Sites, and the identity and number of pages viewed, and to gather other traffic data and information that allows us to improve the user experience of our Sites. We also use the information for security purposes, to facilitate navigation, to display information more effectively, and to personalize your experience while using our Sites. Cookies further allow us to select which of our content is most likely to appeal to you and display it while you are on our Sites.
- Jhpiego also uses a variety of third-party Web and mobile app analytics and optimization services to improve our Sites and enhance the visitor experience. For examples, our Sites use Web analytics services that may record mouse clicks, mouse movements, scrolling activity, text you type in on our Sites, and similar activity. Our Sites do not use these services to collect any personally identifiable information not otherwise provided by you in using our Sites, and they do not track your browsing habits across other third-party websites on our behalf.
- We may use pixel tags and other similar technologies to, among other things, track the actions of users of our Sites, measure the success of our marketing campaigns, and compile statistics about use of our Sites and response rates.
- Certain information is collected by most browsers or automatically through your device, such as your media access control address, computer type (Windows or Macintosh), screen resolution, operating system name and version, device manufacturer and model, language, and Internet browser type and version.
- We may collect your IP address, which is a number that is automatically assigned to the computer that you are using by your Internet service provider. An IP address may be identified and logged automatically in our server log files whenever a user accesses our Sites, along with the time of the visit and the page(s) that was/were visited. Collecting IP addresses is a common practice and is done automatically by many websites, applications, and other services. We use IP addresses for purposes such as calculating usage levels, helping diagnose server problems, and administering our Sites.
- When you download and use our mobile applications (each, an “App”), we may track and collect App usage data, such as the date and time the App on your device accesses our servers, and what information and files have been downloaded to the App based on your device number.
- We may collect the physical location of your device by, for example, using satellite, cellphone tower, or Wi-Fi signals. We may use your device’s physical location to provide you with personalized, location-based services and content.
- Information that you provide, such as your preferred means of communication, does not personally identify you unless it is combined with your Personal Information.
- We may aggregate Personal Information. Aggregated information does not personally identify you or any other user of our Sites (for example, we may aggregate Personal Information to calculate the percentage of our users who have a particular telephone area code).
How We Use Collected Information
Jhpiego may use your Personal Information to:
- Send you information about Jhpiego or Jhpiego affiliates.
- Personalize your interactions with Jhpiego, such as to customize your Web and email content based on your interests, send you requests to participate in events, and otherwise target content and communications to you.
- Respond to inquiries and fulfill your requests, such as to process donations or send you information about a project, and to provide technical resources of interest to the user.
- Send administrative information to you, such as information regarding our Sites and changes to tour terms, conditions, and policies.
- Allow you to participate in contests and similar promotions and to administer these activities. Some of these activities have additional rules, which could contain additional information about how we use and disclose your Personal Information.
- Facilitate social sharing functionality.
- Carry out data analysis, audits, fraud monitoring, and prevention to enhance, improve, or modify our Sites; identify usage trends; determine the effectiveness of our promotional campaigns; and operate and expand our activities.
Your Personal Information may be disclosed:
- To our partners, our approved vendors, and their service providers
- To our third-party service providers, which provide services such as website hosting, data analysis, payment processing, information technology and related infrastructure provision, customer service, email delivery, auditing, and other similar services
- To third-party sponsors of surveys, contests, and similar promotions
- By you, on message boards, chat, profile pages, blogs, and other services to which you are able to post information and materials: Please note that any information you post or disclose through these services will become public and may be available to users of our Sites and to the general public. We urge you to be very careful when deciding to disclose your Personal Information, or any Other Information, on our Sites.
We may also use and disclose your Personal Information as we believe to be necessary or appropriate: (a) under applicable law, including laws outside your country of residence; (b) to comply with legal process; (c) to respond to requests from public and government authorities, including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of our affiliates; (f) to protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain.
Jhpiego uses and discloses information that falls into the category of Other Information, unless applicable laws disallow such disclosures or sharing of information.
The Site and SEO platform are not meant for the processing of sensitive Personal Information. Please do not send us and do not disclose any sensitive Personal Information (such as information related to racial or ethnic origin, religion or other beliefs, health records, identification card or social security number, criminal background, trade union membership, or information related to credit score, personal banking accounts, and similar personal identifiers) on or through the Site or otherwise, as Jhpiego has no intentions of processing such sensitive Personal Information.
How Can You Control Collection of Your Information?
- Set your Web browser to inform you of when cookies are being set before a cookie is stored, refuse any request to set cookies, and do not accept cookies from Jhpiego. Erase all Jhpiego cookies from your hard drive.
- Do not provide your information when prompted by our Sites.
Please note, however, that if you choose to reject or erase cookies, your ability to navigate our Sites may be limited. Further, in the event you choose not to share information, Jhpiego will be unable to respond to your request for Jhpiego information, enter you in any survey or contest, facilitate your action via Jhpiego’s Global Circle, or send information about our yearly fundraising initiatives.
Finally, if you would like to modify Personal Information you have previously provided us, please manage your profile by visiting https://secure2.convio.net/jhp/admin/UserLogin.
Pursuant to the EU General Data Protection Regulation and other applicable privacy laws, you have the right to:
- Know what Personal Information Jhpiego has about you.
- Ensure your Personal Information is accurate and relevant for the purposes for which Jhpiego collected it.
- Make your Personal Information portable to another data controller.
- Withdraw your consent to Jhpiego processing your Personal Information.
- Have your Personal Information erased.
If you would like to review, correct, receive a copy of, or erase the Personal Information we have about you or withdraw your processing consent, please send us your request using the “Contact Information” below. Unless a legal exemption applies, we will respond to all such requests within 30 days. If we refuse your request, we will notify you of our reasons for the refusal to the extent required and how you may complain about the refusal.
We ask individual users to identify themselves and specify the information requested to be accessed, corrected, or erased before processing such requests, and we may decline to process requests that are unreasonably repetitive and vexatious, require disproportionate technical effort (for instance, requests concerning information residing on backup tapes), jeopardize the privacy of others, would be extremely impractical, or for which access is not otherwise required. In any case, where we provide information access and correction, we perform this service free of charge, except if doing so would require a disproportionate effort. However, we will not charge you for the making of the request or to correct, update, or erase your Personal Information.
Data Retention, Storage, and Security
The security of your Personal Information is important to us. We use physical, electronic, and procedural safeguards to protect your Personal Information. We have implemented information security best practices throughout our organization, and we are secure sockets layer (SSL) secured. When you enter confidential information (such as your password), we may encrypt that information using SSL technology (SSL encryption). To learn more about such technology, go to http://en.wikipedia.org/wiki/Secure_Sockets_Layer. However, no method of transmission over the Internet, method of electronic storage, or other data security methods are 100 percent secure, and we cannot guarantee the security of the information you provide.
If Jhpiego learns of a security breach that may affect your data, we will notify you electronically so that you can take appropriate protective steps. We may communicate with you electronically regarding security, privacy, and administrative issues related to your use of the Site. Depending on where you live, you may have a legal right to receive notice of a security breach in writing. If you are an EU resident, you will receive, within 72 hours of our recognition of a breach, a Personal Information breach notification if such breach is likely to result in a high risk to the rights and freedoms of natural persons, or as otherwise required under the EU General Data Protection Regulation. To receive free written notice of a security breach or to withdraw your consent from receiving electronic notice, please email firstname.lastname@example.org.
How Can You Stop Receiving Communications from Jhpiego?
If you would like to opt out of receiving content from Jhpiego, you can:
- Take the opportunity to opt out in links on the bottom of emails Jhpiego sends to you.
- Go to the Supporter Center (https://secure2.convio.net/jhp/admin/UserLogin) and click “update my email preferences.”
- Call Jhpiego at (410) 537-1827 to tell us you do not want to receive communications from Jhpiego.
Does Jhpiego Collect Information from Children?
Jhpiego does not knowingly collect Personal Information from anyone under the age of 13. Our Sites are not directed at children under the age of 13. In the event that Jhpiego learns that it has collected Personal Information from a child under age 13 without parental consent, we will delete that information as quickly as possible. If you believe that we might have collected any Personal Information from a child under 13, email us at email@example.com.
Other Limits to Disclosure and Dissemination of Personal Information
California and Delaware “Do Not Track” Disclosures
California and Delaware law require us to indicate whether we honor Do Not Track settings in your Web browser concerning targeted advertising. At this time, there is no worldwide uniform or consistent industry standard or definition for responding to, processing, or communicating Do Not Track signals. Thus, like many other websites and online services, we do not currently respond to any Do Not Track browser requests.
California Privacy Rights
Under California law, California residents have the right to request in writing from businesses with whom they have an established business relationship: (a) a list of the categories of personally identifiable information—such as name, email, and mailing address, and the type of services provided to the customer—that a business has disclosed to third parties (including affiliates that are separate legal entities) during the immediately preceding calendar year for the third parties’ direct marketing purposes; and (b) the name and address of all such third parties. To request the above information, please email us at firstname.lastname@example.org with a reference to California disclosure information. Please note that we are only required to respond to each customer once per calendar year.
If you are a California resident, California Civil Code Section 1798.83 permits you to request information about our disclosure of your Personal Information to third parties for those parties’ own direct marketing purposes. To make such a request, please send a letter to:
Global Engagement and Communications Office
1615 Thames Street
Baltimore, MD 21231-3492
European Union Privacy Rights
Citizens of the European Union are protected through the General Data Protection Regulation, which provides guidance to corporations on collecting and disclosing personal data of EU citizens within the EU and cross-border data flows. Jhpiego’s guidelines as stated above are consistent with EU protections and the EU-US Privacy Shield guidelines on protecting usage, storage, and further transfer of the personal data. One key element of EU protection is your right to correct your data and to request removal of your data from databases if you decide that your data are no longer needed or you simply wish to disengage from further activity or communications.
We seek to use reasonable organizational, technical, and administrative measures to protect Personal Information within our organization. Unfortunately, no data transmission or storage system can be guaranteed to be 100 percent secure. If you have reason to believe that your interaction with us is no longer secure, please immediately notify us in accordance with the “Questions/Contact Information” section below.
Our Sites are controlled and operated by us from the United States and are not intended to subject us to the laws or jurisdiction of any state, country, or territory other than that of the United States. Your Personal Information may be stored and processed in any country where we have facilities or in which we engage service providers, and, by using our Sites, you consent to the transfer of information to countries outside of your country of residence, including the United States, which may have different data protection rules than those of your country.
Attn: Development Coordinator, Global Engagement and Communications
Global Engagement and Communications Office
1615 Thames Street
Baltimore, MD 21231-3492
June 1, 2018 – Modified or added language to comply with the EU General Data Protection Regulation.