This policy sets out how The Ripple Effect Wellness Organization (TREWO) handles your personal information if you’re a user or visitor to our website at https://www.trewo.org/.
When we say ‘we’, ‘us’ or ‘The Ripple Effect Wellness Organization (TREWO)’ it’s because that’s who we are and we own and run this website.
We collect certain personal information about visitors and users of our site.
The most common types of information we collect include things like: user-names, member names, email addresses, IP addresses, other contact details, survey responses, blogs, photos, payment information such as payment agent details, transactional details, tax information, support queries, forum comments, content you direct us to make available on our site (such as donor wall comments) and web analytics data. We may also collect personal information associated with media from our fundraising events.
We collect personal information directly when you provide it to us and automatically as you navigate through the site.
We collect your personal information when you provide it to us when you , subscribe to a newsletter, email list, submit feedback or comments, make a donation, fill out a survey, or send us a communication.
We will use your personal information: To fulfill a contract, or take steps linked to a contract: in particular, in facilitating and processing transactions that take place on the site, like where you make a donation to The Ripple Effect Wellness Organization (TREWO).
Where this is necessary for purposes which are in our, or third parties, legitimate interests.
These interests include:
Where you give us consent
We will disclose personal information to the following recipients:
We are based in Canada so your data will be processed in Canada and the US. Some of the recipients we have described above, and to whom we disclose your personal information, are based outside Canada and the US. We do this on the basis of your consent to this policy. In order to protect your information, we take care where possible to work with subcontractors and service providers who we believe maintain an acceptable standard of data security compliance.
We store personal information on secure servers that are managed by us and our service providers, and occasionally hard copy files that are kept in a secure location in Canada. Personal information that we store or transmit is protected by security and access controls, including username and password authentication, two-factor authentication, and data encryption where appropriate.
Where we have your consent to do so (e.g., if you have subscribed to one of our e-mail lists or have indicated that you are interested in receiving information from us), we send you marketing communications by email about charities, fund-raising events and initiatives that we feel may be of interest to you. You can ‘opt-out’ of such communications if you would prefer not to receive them in the future by using the “unsubscribe” facility provided in the communication itself.
You also have choices about cookies, as described below. By modifying your browser preferences, you have the choice to accept all cookies, to be notified when a cookie is set, or to reject all cookies. If you choose to reject cookies some parts of our site may not work properly in your case.
If you are under 18 we ask that you do not give us your personal information. You can browse the site but you’ll need the supervision of a parent or guardian to become a registered user, to comment or to sign up for our emails. It’s the responsibility of parents or guardians to monitor their children’s use of our site.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
If you have any questions about our privacy practices or the way in which we have been managing your personal information, please contact our privacy champion in writing via the contact form at the bottom of this page.
If you’re a user or visitor in the European Economic Area these rights also apply to you:
For the purposes of applicable EU data protection law (including the General Data Protection Regulation 2016/679 (the “GDPR”), we are a ‘data controller’ of your personal information.
How you can access your personal information
You are also entitled to ask us to port your personal information (i.e. to transfer in a structured, commonly used and machine-readable format, to you), to erase it, or restrict its processing. You also have rights to object to some processing that is based on our legitimate interests, such as profiling that we perform for the purposes of direct marketing, and, where we have asked for your consent to process your data, to withdraw this consent as more fully described below.
These rights are limited in some situations – for example, we can demonstrate that we have a legal requirement to process your personal information. In some instances, this means that we may retain some data even if you withdraw your consent.
Where we require your personal information to comply with legal or contractual obligations, then provision of such data is mandatory: if such data is not provided, then we will not be able to manage our relationship with you, or to meet obligations placed on us. In all other cases, provision of requested personal information is optional.
If you have unresolved concerns you also have the right to complain to data protection authorities. The relevant data protection authority will be the data protection authority of the country: (i) of your habitual residence; (ii) of your place of work; or (iii) in which you consider the alleged infringement has occurred.