Privacy Policy

Effective Date: 15.04.2024

Charitable Foundation WEBSPARK (EDRPOU code 44859414), registered in accordance with the applicable legislation of Ukraine (hereinafter referred to as the "Foundation"), values the privacy of every user and ensures the highest level of protection for confidential (personal) data (hereinafter referred to as "Confidential Data") of all visitors to its official website - https://webspark.charity/en (hereinafter referred to as the "Site").

The processing of personal data is carried out solely on the basis of Ukrainian legal norms, in particular the Law of Ukraine "On Personal Data Protection," as well as in accordance with Regulation (EC) 2016/679 of the European Parliament and of the Council of 27 April 2016 — the General Data Protection Regulation (GDPR), which establishes high standards of security and information protection.

In its operations, the Foundation adheres to the following basic principles regarding the handling of Confidential Data:

  • Legality and transparency of the purposes and methods of processing personal data of Site users;
  • Data processing is performed only within clearly defined and previously announced purposes, agreed upon with the data subject;
  • The scope and type of processed Confidential Data correspond to the declared purposes and methods of use, avoiding excessive collection or unjustified use of information.
  • The Foundation continually updates its technical and organizational measures to minimize the risks of unauthorized access, disclosure, alteration, or destruction of personal information, adhering to the best global practices and data protection standards.

We respect your right to control your own data and provide the opportunity at any time to obtain information about processing, as well as to request correction or deletion of personal data in accordance with applicable legislation.

The source of processing Confidential Data is information that a Site visitor provides directly and voluntarily, as well as technical data automatically received by the Foundation during the use of the Site.

1. DATA PROCESSING


1.1. The Foundation processes the personal data of Site visitors exclusively on the condition of their voluntary provision or explicit consent to the collection and use of such information. 1.2. Classification of processed data:

1.2.1. Identification information. If a visitor decides to establish contact with the Foundation, for example, by sending an email, the Foundation may receive data such as name, phone number, email address, and other similar details necessary for feedback.

1.2.2. Technical data. Certain technical information is automatically collected during the visit to the Site — for server administration, ensuring the stable operation of the Site, as well as for analytics and backups. This is, in particular, carried out through the use of cookies. Cookies are used to enhance the security, comfort, and functionality of the Site. The Site only uses analytical cookies from providers Facebook (for Instagram content playback) and Google Analytics (for collecting aggregated usage statistics). Please note that the operation of Google Analytics is governed by Google’s privacy policy. The Foundation is not responsible for the privacy policies of third parties and does not control the relationships between users and third-party service providers. Data obtained through Google Analytics is aggregated and does not contain information that enables identification of specific individuals; it includes, among other things, visited pages, number of views, user country, and referral channels to the Site.

1.2.3. Personal data of minors. The Foundation does not intend to collect or process personal information of children under 18 years old. In the event that lawful representatives of a child discover such data and wish to have it deleted, the Foundation will promptly carry out such deletion upon their request.


2. PURPOSE OF PROCESSING


2.1. All information received from users is used exclusively within the purposes for which it was provided, in accordance with this Privacy Policy and the applicable legislation of Ukraine, including but not limited to:

  • processing inquiries and requests submitted to the Foundation;
  • organizing and ensuring the provision of charitable assistance and acceptance of donations;
  • carrying out other statutory tasks of the Foundation in compliance with regulatory requirements.

2.2. The Foundation does not engage in targeted accumulation of personal data during normal visits and use of the Site.

2.3. For the purposes of transparency and accountability, the Foundation may publish aggregated, anonymized user statistics in a special section called “Report” on the Site, which contains no identifying information.

2.4. The Foundation does not process or store special categories of personal data concerning racial or ethnic origin, political, religious or philosophical beliefs, membership in political or trade union organizations, criminal records, as well as data related to health, sexual life, biometric or genetic data — except in cases explicitly provided for by law.


3. SECURITY MEASURES IMPLEMENTED BY THE FOUNDATION


3.1. To reliably protect Confidential Data, the Foundation implements a comprehensive set of administrative, organizational, and technical security measures. All these actions comply with international standards and best practices in the field of personal data protection, ensuring control over their processing and storage.

3.2. All Foundation employees are acquainted with the privacy policy and bear responsibility for adhering to established information security rules, regularly undergoing training on secure handling of personal data.

3.3. The Foundation encourages Site visitors to consciously and responsibly protect their personal data, use available information control tools, provide data cautiously, and update it regularly as necessary.

3.4. To prevent unauthorized or accidental access, loss, alteration, blocking, copying, or dissemination of Confidential Data, the Foundation implements effective technical solutions (such as encryption, password protection, access logging systems) and organizational-legal mechanisms (contractual obligations, internal instructions).

3.5. As a rule, the Foundation does not independently verify the accuracy of information provided by visitors, except in cases where such verification is necessary to fulfill legal obligations or agreements with the user.

3.6. The Foundation makes every effort to ensure the accuracy and completeness of personal data. Site visitors have the opportunity to timely inform the Foundation about changes to their information. If errors in the data are detected, the Foundation promptly corrects them whenever technically possible.

3.7. Confidential information of Site users is not sold, transferred to ownership or use by third parties, and is not disclosed without the user’s consent, except in cases provided by law.

3.8. The transfer of Confidential Data to third parties occurs exclusively on the basis of the visitor’s voluntary, explicit consent or in cases explicitly provided for by applicable law.

3.9. The Foundation implements additional measures for protecting confidential information, such as physical destruction of paper carriers, irreversible deletion of electronic copies, access restrictions based on roles, and others.

3.10. Confidential Data is stored by the Foundation for an unlimited period until the visitor submits a request for deletion or other actions prescribed by law, after which the Foundation immediately takes measures to cease processing and destroy the respective information.


4. RIGHTS AND OBLIGATIONS OF VISITORS


4.1. Site visitors have the right to:

  • Obtain free access to their personal data processed by the Foundation;
  • Receive detailed responses to inquiries regarding the processing of their personal data within the timeframes and procedures stipulated by applicable law;
  • Express a justified objection to the processing of personal data or request their modification or deletion if such data is processed unlawfully or is inaccurate;
  • Protect their personal data from unlawful processing, accidental loss, destruction, or damage, including actions aimed at concealment, untimely or failure to provide information; as well as protect themselves from the dissemination of false information that may harm their honor, dignity, or business reputation;
  • Withdraw their consent to the processing of personal data at any time, as well as exercise other rights defined by the current legislation in the field of personal data protection;
  • Learn the conditions of access to their personal data, including information about third parties to whom such data may be transferred.

4.2. Visitors are obligated to:

  • Responsibly protect their own personal data and handle information concerning their personnel with care;
  • Use the Site and interact with the Foundation in accordance with the applicable legal norms.

5. FINAL PROVISIONS


5.1. The Foundation reserves the right to make changes, additions, or delete certain provisions of this Privacy Policy at its sole discretion. The updated version of the Policy is always available on the Site at: https://webspark.charity.

5.2. Continued use of the Site after changes have been made is considered confirmation of acceptance and consent by the visitor to the updated Policy.

5.3. In case of any questions, clarifications, or receipt of unwanted electronic messages allegedly sent on behalf of the Foundation, please contact us directly at the email address: .