1. Introduction. This Privacy Policy explains how the N&F organization collects, uses, shares, and safeguards Personal Data and Non-Personal Data on its official websites, mobile applications, microsites, social media profiles, and other digital platforms operated or endorsed by the organization (“Sites”), as well as through offline methods, such as phone or paper correspondence. For Sites operated internationally, the privacy policy displayed on those specific Sites may take precedence over this policy for governing data collection, use, and sharing.

  2. Changes to the Privacy Policy. As the N&F organization evolves its mission, membership, services, and digital tools, this Privacy Policy is subject to change. We reserve the right to amend it at any time and for any reason. The date of the latest revision will be indicated by the "Effective Date" at the bottom of this document.

  3. Types of Data We CollectPersonal Data. We collect data that allows the N&F organization to identify or contact you (“Personal Data”) to support its nonprofit or foundation objectives. This data may be collected online, by phone, or by paper for purposes such as applying for membership, event registration, product or service purchases, or other interactions with the organization.

    The types of Personal Data we collect include, but are not limited to:

    • General Information: Name, address, email address, phone number, date of birth, and IP address.

    • Professional Information: Employment details, affiliations, and areas of expertise.

    • Financial Information: Payment data such as credit or debit card numbers for donations or product purchases.

    • Sensitive Information: Demographic details such as race, ethnicity, disability status, or other identifiers collected for diversity, accessibility, or compliance purposes.

    • Images: Photos shared or taken at events hosted by the N&F organization.

    We may also receive Personal Data from third parties for marketing or outreach, such as lists of potential members or supporters.

    • Non-Personal Data. Non-Personal Data includes information that does not directly identify you but is collected as you interact with the Sites. Examples include:

    • Site Usage: Browsing history, search activity, and interactions with content.

    • Technical Information: Device type, operating system, browser type, and service provider.

    • Demographic Information: Job title, industry, organization size, and geographic location.

  4. How We Use Your DataPersonal Data. We use your Personal Data, sometimes in combination with Non-Personal Data, for the following purposes:

    • Identifying you and managing your interactions with the N&F organization;

    • Sending transactional communications, such as receipts, confirmations, and reminders;

    • Providing requested services or responding to inquiries;

    • Administering surveys, research, or outreach programs;

    • Customizing content and marketing based on your interests and interactions;

    • Producing membership directories, event attendee lists, and similar resources (with your consent where applicable).

    Non-Personal Data. Non-Personal Data is used to analyze and improve the functionality of the Sites, as well as to provide tailored advertisements or outreach. The N&F organization may collaborate with third parties for advertising purposes but does not share Personal Data for unrelated third-party marketing.

  5. How We Share Your Data. The N&F organization may share your data in the following ways:

    1. Service Providers: Third-party vendors, such as event organizers, data hosting services, and mailing partners, to fulfill business functions.

    2. Compliance: Legal or regulatory bodies, as required to protect the organization or comply with laws.

    3. Transactions: During mergers, asset transfers, or other structural changes involving the N&F organization.

    4. Outreach and Marketing: With trusted third parties offering services relevant to your interests (e.g., event invitations, partner discounts), with your prior consent.

    5. Social Media Platforms: For targeted outreach or content delivery.

    Data will only be shared in unanticipated ways with your explicit prior consent.

  6. Sharing Email Addresses. Your email address may be used to communicate updates, event invitations, and relevant opportunities. The N&F organization does not sell or rent email addresses but may share them with select partners directly involved in N&F activities with your consent.

  7. Sharing Mobile Information. Informational text messages or SMS communications may be sent to facilitate organizational goals. Mobile data is not used for third-party marketing purposes.

  8. Managing Your Data

    You can manage your preferences by updating your profile on the Sites or contacting the organization. Users have the right to object to or restrict data processing, withdraw consent, or request deletion of their Personal Data. Requests will be processed in compliance with applicable laws.

  9. Children

    The N&F Sites are intended for use by professionals and those interested in supporting the organization’s mission. Personal Data is not knowingly collected from children under 13 years of age.

  10. Security

    The N&F organization employs reasonable safeguards to protect your data but cannot guarantee complete security due to the nature of online and offline transmission. If you have concerns about submitting sensitive information, contact the organization directly.

  11. Data Retention and Access

    Personal Data is retained for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. You may review or request changes to your data by contacting the organization.

  12. Contact Information

    For questions, concerns, or requests regarding this Privacy Policy or the handling of your Personal Data, please contact:

    [Organization Name]

    [Address Placeholder]

    [Phone Placeholder]

    [Email Placeholder]

13. Cookies and Tracking Technologies

The N&F Sites use cookies and similar tracking technologies to enhance your browsing experience and improve usability. Cookies are small text files placed on your device that enable the Sites to recognize your preferences and interactions. These technologies help us:

  • Understand how users engage with the Sites;

  • Deliver personalized content and advertising;

  • Store your settings for a more seamless browsing experience.

You can manage your cookie preferences through browser settings or site-specific options. Disabling cookies may impact your ability to fully use certain features of the Sites.

14. International Data Transfers

If you access the N&F Sites from outside the United States, your Personal Data may be transferred to, processed, and stored in the United States. U.S. privacy laws may not provide the same level of protection as those in your country of residence. By using the Sites, you consent to the transfer and storage of your data in the United States in accordance with this Privacy Policy.

15. Rights Under California Privacy Laws

California residents have additional rights under the California Consumer Privacy Act (CCPA) and “Shine the Light” law. These include:

  • Right to Know:Information about the personal data collected, shared, and its purposes over the past 12 months.

  • Right to Delete:Requesting the deletion of personal information, subject to exceptions.

  • Right to Opt-Out:Preventing the sale or sharing of personal information with third parties for marketing purposes.

California residents can exercise these rights by contacting the N&F organization using the details in the “Contact Information” section.

16. Compliance with Canadian Privacy Laws

The N&F organization complies with the Canada Anti-Spam Law (CASL). Canadian residents will only receive Commercial Electronic Messages (CEMs) if they have opted in. You may unsubscribe at any time by following instructions in the message or contacting the organization directly.

17. U.S. Privacy Law Compliance

While there is no single federal privacy law in the U.S., the N&F organization adheres to state-specific regulations and other applicable laws, including those related to:

  • Data breach notifications;

  • Opt-in consent for certain data uses;

  • Data security standards.

We strive to maintain compliance with evolving privacy requirements across jurisdictions.

18. International Privacy Compliance

The N&F organization complies with international privacy laws, including the General Data Protection Regulation (GDPR) in the European Union. These protections include:

  • Clear opt-in consent for data processing;

  • Providing mechanisms for data access, correction, and deletion;

  • Ensuring appropriate safeguards for international data transfers.

Residents of the EU and other jurisdictions with robust privacy laws may contact the N&F organization to exercise their rights.

19. Data Breach Notifications

In the event of a data breach that affects your Personal Data, the N&F organization will notify you promptly in accordance with applicable laws. Notifications may be sent via email, telephone, or other legally permissible methods.

20. User Authentication and Password Security

Certain areas of the N&F Sites require user authentication via email, user ID, or password. To protect your Personal Data, we recommend:

  • Using strong and unique passwords;

  • Changing passwords periodically;

  • Logging out of accounts on shared devices.

The organization cannot guarantee the security of your credentials if proper precautions are not taken on your end.

21. External Links

The N&F Sites may include links to third-party websites or resources for convenience. These external platforms operate independently and have their own privacy policies. The N&F organization is not responsible for the practices or content of these external sites. We encourage users to review the privacy policies of any third-party platforms they interact with.

22. Your Rights to Access, Update, and Delete Data

You have the right to access, correct, or delete your Personal Data stored by the N&F organization. Requests for updates or deletion can be made by contacting us directly through the “Contact Information” section. Requests will be processed in compliance with applicable laws, and data may be anonymized or retained in certain circumstances to meet legal or organizational obligations.

23. Retention of Data

Personal Data is retained only as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. When retention is no longer necessary, data will be securely deleted or anonymized.

24. Children's Privacy

The N&F Sites are intended for adults and professionals interested in supporting the organization’s mission. The organization does not knowingly collect or store Personal Data from children under 13. If such data is discovered, it will be promptly deleted.

25. Transmission of Data to Other Countries

Your Personal Data may be processed in the United States or other countries with different privacy laws than your jurisdiction. By using the Sites, you consent to this data processing and transfer.

26. Right to Complain to Supervisory Authorities

If you believe your rights under this Privacy Policy or applicable data protection laws have been violated, you have the right to file a complaint with a supervisory authority in your jurisdiction. For example, EU residents may contact the data protection authority in their country of residence.

27. Updates to This Policy

The N&F organization may periodically update this Privacy Policy to reflect changes in practices or applicable laws. Users are encouraged to review the policy regularly for the latest updates. The "Effective Date" below indicates the most recent revision.

28. Contact Information

For questions, concerns, or requests related to this Privacy Policy or your Personal Data, please contact: [email protected]

© 2025 - All Rights Reserved, Copyrighted Material. Nonprofits & Foundations c/o Estate Law Training Center - A 501c3 Nonprofit Organization.