DATA PRIVACY POLICY

A new law is coming into force on May 25th, 2018, that requires us to inform you better about the type of data we collect about people and what we do with it.

---

General statement of policy

Stichting FairFight is a non-profit organisation whose sole income source is from donations made by private third parties either individual, corporate or non-profit. FairFight does not and never will monetize individuals’ data for revenue, either through advertising or other means. FairFight uses individual private data solely as a basis to stay in contact with its followers and subscribers, and to manage its members’ activities within the organisation. FairFight collects personal data from three categories of persons:

1. From the general public (i.e. persons who are not currently members of FairFight): data collection limited to names and email addresses on a strict opt-in only basis for our newsletter.
   
2. From its volunteers (i.e. persons who have obtained and signed a membership card and whose membership card has been validated for the current year): data collection limited to personal data necessary for participation in FairFight activities and evaluation of those activities
   
3. From the beneficiaries in India and Zimbabwe: data collection limited to personal data necessary for participation in FairFight activities and evaluation of those activities.​
   

This data protection policy applies to the first two categories as covered by the GDPR 2016/679 of the European Union. A separate policy is in force for our beneficiaries in India and Zimbabwe.

Responsibility for private data

Data audit

The Outreach Officer of Stichting FairFight holds the responsibility as Data Protection Officer for FairFight. He can be contacted to report a data breach at privacy@fairfight.nl
​

Types of data collected on an opt-in basis:

• General Public: names, email addresses, emails sent to our official address info@fairfight.nl .
  
• Volunteers: names, email addresses, phone numbers; physical addresses; years of active membership; record of activity at FairFight including impact visit participations; email correspondence via our official address info@fairfight.nl , any document submitted to us by volunteers for operational purposes (such as photocopies of identity documents, insurance certificates etc.), photographic and video recordings of volunteers participating in FairFight activities.
  

Disclosure

An individual can obtain access to all the data held by Stichting FairFight concerning him or her by emailing the Data Protection Officer at privacy@fairfight.nl and may expect a response within two weeks. The individual may request the full deletion of that data. Should the individual be a member of FairFight, this will automatically void his or her membership, as FairFight cannot operate without some basic data from its volunteers.

consent

FairFight obtains consent for holding and using this personal data by two means:

• General Public: through its opt-in option in the MailChimp subscription system.
  
• Volunteers: through an opt-in privacy agreement
  

Consent may be revoked at any time through the following means:

• General Public: by using the “unsubscribe” button in the newsletter.
  
• Volunteers: by emailing privacy@fairfight.nl and asking for all personal data to be removed. This will void the membership.
  

Data minimization

FairFight strives to minimize the amount of data it collects on individuals. FairFight has no automated data collection systems about individuals, and does not track individual behaviour or usage on its website. FairFight only uses basic aggregate analytics to monitor its website traffic. Furthermore, FairFight only requests the most basic information it requires to function. Should an individual either from the General Public or Volunteers pass data onto FairFight that is not required for its functioning, this data will be stored until the next review period then deleted.

Data accuracy

The Data Protection Officer will biannually check the FairFight data storage systems to ensure that the any documents containing individuals’ data are correctly labelled and stored. He will perform an annual check to delete the data of lapsed members and update the data of current members.

Storage Limitations

• General Public: data is kept until the individual hits the unsubscribe button.
  
• Volunteers: data is kept until the individuals lets his or her membership lapse or cancels his or her membership.
  

In the event that FairFight ceases to exist, all data on individuals will be deleted.

Integrity and Confidentiality

FairFight’s data storage systems are password protected. Only the board of FairFight has access to these systems. Once a member leaves the board, he or she loses access to the systems. FairFight’s storage provider reports suspicious activity to protect the integrity of the data. We will immediately report any breach of our data storage systems.

Last reviewed on May 24, 2018.