Privacy Policy

For the purposes of applicable data protection laws, the data controller of this website is Dusty Dreams Foundation, a charity registered in South Africa under number … (“we” or / “us”).

We are committed to ensuring that your privacy is protected and respected.

This Privacy Policy, together with our Website Terms of Use explains the collection, use and disclosure of Personal Information through our website: dustydreamsfoundation.org (“Website”) and sets out the basis on which any Personal Information we collect from you, or that you provide to us, will be processed by us.

Please read this Privacy Policy carefully to understand the ways in which we use, share and protect your Personal Information.

What Personal information we collect about you

Personal Information is information from which you can be identified as an individual, whether directly or indirectly, such as your name, address, email address, company name, phone number, or other information that is specific to you (“Personal Information”). It does not include data where the identity has been removed (anonymous data).

We may collect the following Personal Information about you:

Your personal details, including: name, address, email address, company name and phone number (work and home) and any other information you provide on registration forms used for registering for any function of our Website; records of any correspondence between you and us; results of any surveys carried out for research purposes; details of any transactions carried out through our Website, including: your bank and card payment details, invoice details, details of order fulfilment; information about your computer, including: domain name, browser type and version, operating system, IP address, cookie information and time stamp.

We do not collect any special categories of Personal Information about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

We also collect some information about your internet visits, which are not directly connected to any personally identifiable information about you. This includes: traffic data, location data, weblogs, history of resources accessed on our Website and information on what Websites you visited before accessing our Website.

How we collect information about you

We use different methods to collect Personal Information from and about you including through:

Direct interactions. You may give us your Personal Information by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes Personal Information you provide when you:

  • register for an account on our Website;
  • request marketing to be sent to you;
  • register or purchase tickets for events that we organise, whether directly through us or through our service third party providers; or
  • give us feedback.

Automated technologies or interactions. As you interact with our Website, we may automatically collect Technical Data about your equipment, browsing actions and patterns. We collect this Personal Information by using cookies.

Third parties or publicly available sources. We may receive Personal Information about you from various third parties and public sources, including analytics providers such as Google.

What we do with the Personal Information we collect

We will only use your Personal Information when the law allows us to. Most commonly, we will use your Personal Information in the following circumstances:

  • where we need to perform the contract we are about to enter into or have entered into with you; or
  • where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests; or
  • where we need to comply with a legal or regulatory obligation.

Generally we do not rely on consent as a legal basis for processing your Personal Information other than in relation to sending direct marketing communications to you via email or text message.

Examples of what we do with your Personal Information include:

  • To process your charitable donations;
  • To facilitate the purchase of tickets for events that we host, and to deliver those events successfully;
  • For internal record keeping;
  • To administer contests and competitions;
  • To administer and manage campaigns or petitions you may have signed up with us and/or our partner organisations;
  • We may periodically send promotional emails about new campaigns or other information which we think you may find interesting using the email address which you have provided, where you have consented to being contacted for such purposes;
  • To provide you with feedback on the project you have chosen to donate to; and
  • To analyse and improve our Website

From time to time we may post customer testimonials, comments or reviews on our Website which may contain personal information such as the individual’s name. We will obtain each customer’s consent via email prior to posting the testimonial.

International transfers of your Personal Information

The Personal Information we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”), including the United States. This may as a result of a transfer of a third party located outside of the EEA, for the purposes of enabling us to deliver our services to you, or to one of our group companies based outside of the EEA in order to enable staff operating outside of the EEA. It may also be processed by staff operating outside the EEA who work for us. Such staff may be engaged in, among other things, provision of support services. We will take all steps reasonably necessary to ensure that your Personal Information is treated securely and in accordance with this Privacy Policy.

Whenever we transfer your Personal Information out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • We may use specific contracts approved by the European Commission which give Personal Information the same protection it has in Europe; or
  • Where we use providers or based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to Personal Information shared between the Europe and the US; or
  • Where countries have been deemed to provide an adequate level of protection for Personal Information by the European Commission, we may transfer your Personal Information to third parties based in those countries.

If you want further information on the specific mechanism used by us when transferring your Personal Information out of the EEA, then please contact us using the details provided at the end of this Privacy Policy.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your Personal Information, we cannot guarantee the security of your data transmitted to our Website; any transmission is at your own risk. Once we have received your Personal Information, we will use strict procedures and security features to try to prevent unauthorised access.

How long will information be held for

We will only retain your Personal Information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for Personal Information, we consider the amount, nature, and sensitivity of the Personal Information, the potential risk of harm from unauthorised use or disclosure of your Personal Information, the purposes for which we process your Personal Information and whether we can achieve those purposes through other means, and the applicable legal requirements.

For further information on retention periods, please contact us using the details provided at the end of this Privacy Policy.

Disclosure of your personal information
  • We will not share Personal Information collected through our Website with unrelated third parties, except as provided in this Privacy Policy. We may share Personal Information in the following situations:
  • where it is necessary to provide Personal Information to our trusted third party service providers to perform functions and provide services to us, such as event ticket sales services, hosting and maintaining our servers and the Website, database storage and management, e-mail and other social media marketing and donation processing, to the extent necessary to supply the services to you;
  • where it is necessary to provide selected third parties, including analytics and search engine providers that assist us in the improvement and optimisation of the Website;
  • where it is necessary to comply with the law or enforce any legal rights. For example, we may disclose information about you as we, in our sole discretion, believe necessary or appropriate to respond to claims, legal process, to protect our rights and interests or those of a third party, the safety of the public or any person, to prevent or stop any illegal, unethical, or legally actionable activity, or to otherwise comply with applicable court orders, laws, rules and regulations; or
  • where we believe that we are under a duty to disclose or share your Personal Information in order to comply with any legal obligation; or to protect the rights, property, or safety of us or others.

We may occasionally wish to share your Personal Information, including your email address, with our partner organisations as part of specific initiatives. Where this is the case, we will ask you for your consent in advance to share your Personal Information in this way. We ask you for your consent in advance to share your Personal Information in this way. We will not share any of your Personal Information with our partner organisations unless you consent by opting-in.

Security

We are committed to ensuring that your Personal Information is secure. In order to prevent unauthorised access or disclosure, we have put in place appropriate physical, technical and organisational measures to safeguard and secure the Personal Information we collect online.

We ensure that any information sent to us is encrypted (scrambled) using Secure Socket Layer (SSL) technology. This is industry standard encryption technology that prevents your Personal Information being intercepted and misused by third parties.

Our security professionals periodically monitor and test our web interface touch-points and implement technology updates in an effort to block attempts from unauthorised intrusions.

Please keep in mind that no Internet transmission is 100% secure. Some email sent to or from our Website may not be secure. Please consider this when sending information to us by email.

Changes to this privacy policy

We may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes.

This policy was last updated on 10 May 2024.