Privacy Policy for jfkmosque.com

1. Introduction

At jfkmosque.com, we are fully committed to safeguarding the privacy and personal data of our users and visitors. Protecting your personal information is our top priority, and we approach the handling of data with transparency, accountability, and respect for individual rights. This Privacy Policy outlines how we collect, use, disclose, and protect your personal data in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws and regulations.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all users of the website located at jfkmosque.com and addresses the personal information we collect through our online services. For the purposes of the GDPR, the data controller responsible for your personal data is jfkmosque.com. If you have any questions or concerns regarding the processing of your data, please contact us at [email protected].

3. Categories of Data We Process

We collect and process a variety of personal data to ensure the effective operation of our website and services and improve the overall user experience. These categories include:

a. Usage Data
Information such as IP address, browser type and version, geographic location, time zone setting, language preferences, referring URLs, duration of visit, and interaction with website elements.

b. Account Data
Personal identifiers such as full name, mailing address, email address, and telephone number submitted when you register or create an account on our site.

c. Profile Data
Data related to your preferences, past purchases or donations, interaction with content or features, and behavioral insights derived from your activities on jfkmosque.com.

d. Communication Data
Information contained in emails, feedback, support requests, contact forms, and other messages you send to us, including timestamps and correspondence history.

e. Technical Data
Device specifications, operating system, device identifiers, software versions, and other configurations relevant to your experience on our digital platform.

f. Transaction Data
Details of financial transactions, such as payment method, billing and shipping addresses, donation amounts, transaction timestamps, and order information.

g. Preference Data
Your indicated interests in events, services, or content, as well as your marketing and communication preferences.

4. Legal Bases for Processing

Our lawful bases for processing personal data under GDPR and CCPA include:

– Consent: When you have given explicit permission for us to process your personal data for a specific purpose.
– Performance of a Contract: Where processing is necessary for fulfilling contractual obligations (e.g., membership, donations, event registration).
– Legal Obligation: Where we are legally required to process data to comply with applicable laws.
– Legitimate Interests: Where processing is reasonably necessary to pursue our legitimate interests in operating and improving our services, provided your fundamental rights do not override those interests.

5. Your Rights

Pursuant to applicable data protection laws, you have the following rights regarding your personal data:

– Right to Access: Obtain confirmation on whether we process your personal data and request a copy of such data.
– Right to Rectification: Request the correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your personal data where grounds exist under applicable law (“right to be forgotten”).
– Right to Restriction of Processing: Request to restrict processing under certain circumstances.
– Right to Data Portability: Receive your data in a structured, commonly used format and request transmission to another controller, where technically feasible.
– Right to Object: Object to our processing activities where we rely on legitimate interest or direct marketing.

To exercise any of these rights, please contact us at [email protected].

6. Security Measures

We apply reasonable and appropriate security measures to protect personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption in transit and at rest, firewalls, role-based access controls, secure data storage, regular system backups, and staff training on privacy and data security practices.

7. International Data Transfers

Your personal data may be transferred to, and maintained on, servers located outside your jurisdiction, including countries not offering the same level of data protection. Where such transfers occur, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or equivalent mechanisms approved by relevant authorities to protect your data in accordance with GDPR and other laws.

8. Data Retention

We retain personal data for no longer than is necessary for the purposes for which it is processed. Specific timeframes include:

– Account and Profile Data: Retained for as long as your account is active or necessary to provide services.
– Transaction Data: Retained for a minimum of seven (7) years to comply with legal and tax obligations.
– Communication Data: Retained for up to five (5) years for customer service and compliance reasons.
– Technical and Usage Data: Retained for a maximum of three (3) years for analytics and service optimization.

When data is no longer needed, it is securely deleted or anonymized.

9. Cookie Policy

Our website utilizes cookies and similar tracking technologies to enhance your experience. The types of cookies used include:

– Essential Cookies: Necessary for website functionality, such as secure login and page navigation.
– Functional Cookies: Enable personalization features, such as remembering your preferences or region.
– Analytics Cookies: Help us understand user interaction, site performance, and improve service delivery through aggregated data.
– Performance Cookies: Monitor website performance and system errors to ensure a smooth user experience.

10. Cookie Management and Compliance

Consent for cookie usage is obtained in accordance with GDPR and CCPA requirements. Upon first visit, a cookie banner will allow users to selectively enable or disable non-essential cookies. You may also manage cookies directly through your browser settings or by adjusting preferences via our cookie settings panel. Disabling certain cookies may affect the usability of some website features.

11. Children’s Privacy

Our website and services are not directed to children under the age of 13. We do not knowingly collect or process personally identifiable data from individuals under 13 without verified parental consent. If you believe we may have collected such data inadvertently, please contact us immediately at [email protected] so we can take appropriate action.

12. Policy Updates

We reserve the right to update or amend this Privacy Policy from time to time to reflect changes in our practices or applicable laws. Material updates will be communicated through our website or via direct communication when appropriate. We encourage users to review this Privacy Policy periodically.

13. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

Email: [email protected]
Website: https://jfkmosque.com

We are fully committed to upholding your data protection rights and operating jfkmosque.com in a manner fully compliant with GDPR, CCPA, and other applicable data privacy laws. Please feel free to reach out to us at the contact above for assistance or further clarification.