Privacy Policy for JFK Mosque Website

1. Introduction

At JFK Mosque, accessible at jfkmosque.com, your privacy is of paramount importance. We are committed to maintaining the highest standards of data protection and privacy in compliance with applicable global data protection frameworks, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant laws. This Privacy Policy outlines the types of personal data we collect, how it is used, and the rights you have with respect to that data. By accessing or using our website, you acknowledge that you have read and understood the terms of this Privacy Policy.

2. Scope and Data Controller

This Privacy Policy governs the processing of personal data collected through the website jfkmosque.com and related services. For the purposes of applicable data protection law, JFK Mosque is the data controller responsible for determining how and why your personal data is processed. All inquiries or requests regarding data protection may be directed to [email protected].

3. Categories of Personal Data We Process

We may collect, store, and process the following categories of personal data based on your interaction with our website or services:

a. Usage Data
Information about how you use our website, including IP address, browser type and version, time zone setting, operating system, referral source, session duration, and site navigation paths.

b. Account Data
Personal identifiers you provide when registering or contacting us, such as your full name, email address, mailing address, and phone number.

c. Profile Data
Details relating to your preferences, purchases, browsing behavior, and engagement with products or services offered via jfkmosque.com.

d. Communication Data
Includes the content of your communications with us, such as inquiries, support requests, feedback, and contact history.

e. Technical Data
Device attributes and configurations, including hardware model, operating system, browser settings, and diagnostics data used for troubleshooting and enhancement.

f. Transaction Data
Information relating to your financial interactions with us, such as payment records, donation details, billing details, and delivery data where applicable.

g. Preference Data
Your marketing and communications preferences, opt-in/opt-out choices, interests, and consent records.

4. Legal Bases for Processing

We process your personal data in accordance with the legal bases established under relevant data protection laws, including:

– Consent: Where you have provided clear and informed consent to the processing of your data.
– Contractual Necessity: Where processing is necessary for the performance of a contract with you or to take pre-contractual steps.
– Legal Obligation: Where processing is required to meet statutory or regulatory requirements.
– Legitimate Interests: Where processing is necessary for our legitimate interests in a way that does not override your data protection rights, such as website maintenance, communication, and service improvement.

5. Your Data Protection Rights

Subject to applicable law, you have the following rights regarding your personal data:

– Right of Access: To request a copy of the personal data we hold about you.
– Right of Rectification: To correct any inaccurate or incomplete data.
– Right of Erasure: To request deletion of your data under certain conditions.
– Right to Restrict Processing: To limit how we use your data in specific situations.
– Right to Data Portability: To request a copy of your data in a structured, machine-readable format.
– Right to Object: To object to data processing where permitted by law, particularly data processed on the ground of legitimate interest or direct marketing.

To exercise any of these rights, please contact us at [email protected].

6. Security Measures

We employ a range of organizational, physical, and technical security measures to ensure the confidentiality, integrity, and availability of your personal data, including:

– Secure encryption protocols for transmission and storage of sensitive data
– Access controls and authentication mechanisms to restrict unauthorized access
– Regular data backups to ensure recoverability
– Staff training and awareness on information security and data protection policies

7. International Data Transfers

If we transfer your personal data outside of your country of residence, such transfers will be conducted in compliance with applicable data protection laws. We utilize Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs), and recognized adequacy frameworks to ensure that your data receives an adequate level of protection consistent with EU or CCPA standards.

8. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including for the satisfaction of legal, regulatory, tax, accounting, or reporting requirements. Specific retention periods include:

– Usage and Technical Data: up to 12 months
– Account and Communication Data: up to 24 months after last interaction
– Transaction Data: up to 7 years for compliance with financial and tax reporting obligations
– Marketing Preference Data: until withdrawal of consent or account closure

9. Cookie Policy

jfkmosque.com uses cookies and similar tracking technologies to enhance your user experience. These may include:

– Essential Cookies: Necessary for basic website functionality
– Functional Cookies: Allow customization and personalization
– Analytical Cookies: Help us understand website usage via services like Google Analytics
– Performance Cookies: Improve website load times and responsiveness

10. Cookie Management and Compliance

We provide users with the ability to manage cookie preferences in compliance with GDPR and CCPA requirements. Upon visiting jfkmosque.com, you are presented with a cookie consent banner. You may accept or reject non-essential cookies and can modify your preferences at any time via your browser settings or our cookie management interface.

Under the CCPA, California residents have the right to opt out of the sale of their personal information. We do not sell your personal data but honor Do Not Track and similar user preferences in accordance with CCPA guidelines.

11. Children’s Privacy

Our website and services are intended for individuals aged 13 and over. We do not knowingly collect personal data from children under 13. If you are a parent or guardian and believe that your child has provided personal data to us without your consent, please contact us at [email protected] so that we may promptly remove the information from our records.

12. Policy Changes and User Notifications

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal obligations, or for other operational reasons. Any material changes will be communicated through appropriate channels, such as notices on jfkmosque.com or direct communication when applicable. Continued use of our services after changes are posted constitutes your acceptance of those updates.

13. Contact Information

If you have questions, concerns, or requests regarding how we handle your personal data, or if you wish to exercise any of your rights, please contact us at:

JFK Mosque
Email: [email protected]
Website: jfkmosque.com

We are committed to maintaining full compliance with applicable data protection laws and to operating transparently in the collection and use of your personal data. Please do not hesitate to reach out to us with any privacy concerns.