Privacy Policy
At oic-iofs.org, we are committed to upholding the highest standards of privacy and personal data protection. Safeguarding your information is a responsibility we take seriously, and we strive to ensure your personal data is handled in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy describes how we collect, use, share, and protect your personal information when you interact with our website and services.
1. Commitment to Privacy and Data Protection
We value your privacy and are dedicated to ensuring the confidentiality and security of your personal data. Our privacy practices are designed to protect your rights and give you control over your personal information. We strive to collect only the data necessary to provide you with the best experience on oic-iofs.org.
2. Scope of This Policy and Controller Role
This Privacy Policy applies to all data collected through your use of the website oic-iofs.org, including any associated services. For the purposes of applicable data protection laws, the Islamic Organisation for Food Security (IOFS), accessible via oic-iofs.org, operates as the “data controller” with respect to your personal information and determines the purposes and means of its processing.
3. Categories of Data We Collect and Process
Depending on your interaction with the website, we may collect the following categories of personal data:
– Usage Data: Includes information about how you interact with our website, such as IP address, browser type, pages visited, session metadata, date and time stamps, and referral sources.
– Account Data: Information you provide when creating or managing an account (if applicable), such as your full name, email address, postal address, and telephone number.
– Profile Data: Preferences, purchase history, activity logs, behavioral analytics, and other data used to tailor your experience and recommendations.
– Communication Data: Includes records of correspondence with us through email, support forms, or other channels, including message content and support history.
– Technical Data: Information about your device type, operating system, browser settings, language preference, and other system configurations that help optimize website performance and functionality.
– Transaction Data: Includes payment details (excluding stored credit card numbers), order history, delivery information, invoices, and receipts, where financial transactions are involved.
– Preference Data: Marketing preferences, user consents, opted-in communication methods, product interest categories, and subscription choices.
4. Legal Bases for Processing
We process your personal data under the following legal bases, in accordance with the GDPR:
– Consent: Where required by law, we request your consent before collecting or processing your personal data for specific purposes such as marketing or cookie tracking.
– Contractual Necessity: To perform contractual obligations or to take steps at your request prior to entering into a contract—such as delivering requested services or processing transactions.
– Legitimate Interests: We may process your personal data to pursue our legitimate interests such as improving services, ensuring network security, preventing fraud, or communicating with users, provided such interests do not override your fundamental rights and freedoms.
– Legal Obligation: Where we are required to comply with legal or regulatory requirements.
5. Your Privacy Rights
You have the following rights under the GDPR and, where applicable, the CCPA:
– Right of Access: You have the right to request access to the personal data we hold about you.
– Right to Rectification: You may request that we amend or correct any inaccurate or incomplete information.
– Right to Erasure (Right to be Forgotten): Under certain conditions, you have the right to request the deletion of your personal data.
– Right to Restriction of Processing: You may ask us to suspend or limit the processing of your personal data.
– Right to Data Portability: You have the right to request a structured, commonly used, and machine-readable copy of your data or to have it transferred to another controller.
– Right to Object: You may object to the processing of your data for direct marketing or based on our legitimate interests.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request in accordance with relevant data protection laws.
6. Security Measures
We implement appropriate technical and organizational measures to safeguard personal data, including:
– Encryption of data in transit and at rest;
– Role-based access controls to ensure data is only accessible to authorized personnel;
– Regular system backups and secure storage;
– Employee training on data protection and information security best practices.
While we strive to protect your data, no system is 100% secure. We encourage you to exercise caution when sharing personal information online.
7. International Data Transfers
If your personal data is transferred to or accessed from jurisdictions outside the European Economic Area (EEA), such transfers are conducted in compliance with the GDPR, including through the use of Standard Contractual Clauses and other lawful mechanisms. We take steps to ensure that your data receives an adequate level of protection, regardless of location.
8. Data Retention
We retain personal data only for as long as necessary for the purposes for which it was collected, or as required under applicable laws. Specifically:
– Usage Data: Retained up to 12 months for analytics and troubleshooting.
– Account and Profile Data: Retained until account deletion plus a short archival period.
– Communication Data: Retained for a period of 2 years unless required longer for legal purposes.
– Transaction Data: Retained for up to 7 years to comply with financial and auditing regulations.
– Preference Data: Stored until the user withdraws consent or updates preferences.
9. Cookie Policy
oic-iofs.org uses cookies and similar tracking technologies to enhance user experience and site functionality. Types of cookies used include:
– Essential Cookies: Required for basic site functions (e.g., authentication, secure navigation).
– Functional Cookies: Enable site personalization based on user settings.
– Analytics Cookies: Help us understand how visitors interact with our site to improve performance.
– Performance Cookies: Optimize load times, improve responsiveness, and track technical performance.
10. Cookie Management and Legal Compliance
In accordance with the GDPR and the CCPA, users are provided with a clear and accessible cookie consent banner upon their first visit to oic-iofs.org. You can manage your cookie preferences at any time through your browser settings or our cookie management tool. California residents may opt out of the sale of personal information through the relevant settings or contacting us directly.
11. Protection of Children
oic-iofs.org is not intended for use by children under the age of 13. We do not knowingly collect personal data from minors without verified parental consent. If you believe we have collected personal data from a child under 13, please contact us immediately at [email protected] so that we may take appropriate action.
12. Policy Updates
We reserve the right to revise this Privacy Policy periodically to reflect changes in our practices or legal obligations. Any material changes to our privacy practices will be posted on this page, and we encourage users to review the policy regularly to stay informed.
13. Contact Us
If you have questions, concerns, or would like to exercise your rights regarding your personal data, you may contact our privacy team at:
Email: [email protected]
Website: https://www.oic-iofs.org
We are committed to compliance with all applicable data protection laws and safeguarding your personal information. If you need additional information or assistance related to this Privacy Policy, do not hesitate to reach out.