Last Updated: 12 April 2023
The First Web Foundation respects the protection and privacy of Personal Information. This policy (Privacy Policy) set out how the First Web Foundation will use and handle electronic information provided by or collected from individuals and what choices individuals have regarding the collection and use of the information. This Privacy Policy applies to all electronic collection and use of Personal Information, including via any mobile version of the websites, mobile applications, electronic mail, and other electronic services that link to this Privacy Policy (collectively, the Website). The term “User” or “you” refers to (i) individuals that provide their own Personal Information or Personal Information of others on behalf of such other persons to us and (ii) any organization where a person provides Personal Information of others on behalf of such organization.
By using the Website, you (including any entity or person on whose behalf you are acting) agree to the terms of this Privacy Policy, as updated. If you do not agree with the practices described in this Privacy Policy, please do not provide us with Personal Information or interact with the Website.
This Privacy Policy supplements, and does not supersede, any other privacy policy or statement from us relating to any of our unique programs.
If you have any questions about this Privacy Policy or our Processing of your Personal Information as the Data Controller, please feel free to contact us at privacy@firstwebfoundation.org.
This Privacy Policy covers the following key topics:
- Definitions
- Personal Information Collection
- Use of Personal Information
- Retention
- Sharing of Personal Information
- International Transfers
- Information Security and Integrity
- Do Not Track
- Exercise of Data Subject Rights
- Minors
- Revisions to our Privacy Policy
- Questions
- Definitions
“Cookies” are small text files placed on your computer while visiting certain sites on the Internet used to identify your computer.
“Data Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the Processing of Personal Information.
“Data Processor” means a natural or legal person, public authority, agency or any other body which Processes Personal Information on behalf of the Data Controller.
“Personal Information” means any information relating to an identified or identifiable natural person, as defined under applicable law, such as name, home address, telephone number, or email address.
“Non-Identifying Information” means information that may relate to an individual but does not by itself identify that individual. For example, Web Information is Non-Identifying Information, as is information such as gender, age, city, and physical location, when not linked with other Personal Information.
- Personal Information Collection
This Privacy Policy applies to the following types of electronic information about Users or use of the Website:
- Personal Information submitted to us: This may be personal contacts, identification, and location information, such as name, home or work address, personal or business email address, contact details such as your home, facsimile or mobile phone number, gender, age or date of birth, job title, country of residence, school, affiliation or organization, username, the domain name (if personally identifiable), User’s photo or image, government-issued identification numbers or passport details, or emergency contact details that Users may submit in connection with any of our services or programs, including, for example, public comment submissions, program or service applications, community surveys, email list subscription, general enquiries, event registration, or online meetings. This also includes information provided to us on the Website that would constitute personal data under applicable law.
- Personal Information received from a third party: This may include Personal Information such as name and address for identity verification or to Process a request or an application submitted to us.
- Financial information: This may include financial account information or financial transaction information when participating in any of our services or programs where such information is requested or generated.
- Automatically logged use information: The Website may automatically record information that is sent by the User’s browser or device when accessing and using the Website, which can be identifying or non-identifying. This information may include information such as IP address, browser type, internet service provider (ISP), date/time stamp, page viewed, operating system, mobile device information, click stream information, preference information, and other similar information.
- Cookies and other tracking technologies: Cookies and other user tracking technologies devices may be stored on the User’s computer when using the Website.
- Use of Personal Information
We will Process Personal Information only for fair, lawful, and legitimate reasons, including to:
- Improve our Website performance, content, and services;
- Perform information analysis, compliance audits, and data metrics, develop new services, and protect the Website and integrity of any of our services or programs;
- Create anonymized data sets to improve the Website performance or in connection with our services or programs;
- Respond to User questions, comments, inquiries, and feedback, including those concerning our services or programs or with respect to services provided by registry operators, accredited registrars, and data escrow agents;
- Assist in policy discussion, development activities, and performance of activities consistent with our functions;
- Administer participation or registration in any of our services, activities, programs, or Website, including sending electronic communications related to such participation or registration;
- Assist with travel support for participants related to our events;
- Maintain archival records of a User’s participation for historical and research purposes, subject to retention limits imposed by applicable laws;
- Process payments and fulfil a transaction between a User and us, if the User submits payment information in connection with any of our services or programs;
- To reimburse expenses related to any of our meetings or other events or programs;
- Perform relevant contractual obligations with the User and other third parties;
- Administer User’s application for any of our services or programs;
- To publish a User’s Personal Information such as his or her name and organization or affiliate on the Website;
- To publish a User’s comments or feedback along with a User’s name for the benefit of others and otherwise to comply with our accountability and transparency principles;
- To register and provide access to our meetings, which could involve the processing a User’s dietary restrictions or disability information for special accommodations;
- To expedite and obtain approval for a User’s visa application to attend our meetings;
- To share basic participant information (name, organization, affiliation) or other information the User voluntarily chooses to provide with other participants of the same meeting;
- To provide updates and other information regarding our programs and service delivery; and
- Provide information or a service requested by the User.
We will also process your Personal Information with your consent to provide you with marketing information concerning news, updates, and other information regarding our events.
Lastly, we will Process Personal Information to comply with applicable laws, rules, regulations, court orders, and law enforcement requests.
We will not use Personal Information for any other purpose other than as set forth in this Privacy Policy.
We will use Non-Identifying Information generally for the same purposes as Personal Information, and to improve User services, store User’s Website preferences, track Website use trends, improve the Website’s performance, help maintain personal and device identity verification, Website security, and measure the effectiveness of electronic communications.
- Retention
We will retain certain Personal Information stored on our servers in accordance with our general archival practices and as required or permitted by law.
We will store the User’s Personal Information only for as long as is required to fulfil the purposes set out above. However, where we are required by law to retain a User’s Personal Information longer or where a User’s Personal Information is required for us to assert or defend against legal claims, we will retain the User’s Personal Information until the end of the relevant retention period or until the claims in question have been resolved.
- Sharing of Personal Information
We may share certain Personal Information with contractors and other agents for the purpose of processing this information on our behalf and providing other services to us or to the User on our behalf. These third parties include providers that provide services such as data analysis, email transmission, customer relationship management (CRM), IT security, cloud service providers, database management, hotel and other travel services, asset management solutions, consultants, and financial or legal advisors. We require that these parties agree to handle this information in compliance with appropriate confidentiality obligations and security measures. We also may publish some Personal Information on the Website in a manner that is viewable by our community members, as described in the relevant program description.
We will provide Personal Information to such third parties, government authorities and agencies to:
- comply with applicable laws, regulations, legal processes or enforceable governmental requests;
- if permitted or required by law or in response to a law enforcement or other legal request;
- protect our or a third party’s legal rights, including the enforcement of terms with Users;
- receive contracted services or use licensed products from third-party providers;
- comply with any court order or legal proceeding;
- comply with our accountability and transparency principles and disclosure policies;
- identify the User to anyone that the User sends a communication through the Website;
- effectuate a reorganization or organizational change resulting in the divestiture or transfer of any of our operation, unit, function, or asset to such third party;
- detect, prevent or otherwise address fraud or other criminal activity or errors, security or technical issues; or
- protect against imminent harm to our rights, property, or the safety of our users or the public as required or permitted by law.
We will not sell or otherwise share any Personal Information with third parties for marketing purposes.
- International Transfers
By using our Website or providing us with your Personal Information electronically, the User is directly transferring Personal Information and Non-Identifiable Information to us in Botswana, South Africa and Malawi. The User’s Personal Information also may be transferred and Processed in other countries where our staff or third-party service providers are located. Such other countries may not have the same level of information protection as the User’s jurisdiction.
The User is solely responsible for compliance with any information protection or privacy obligations in the User’s jurisdiction when using the Website or providing us with Personal Information. By submitting Personal Information, the User agrees to such Processing.
- Information Security and Integrity
We will use reasonable industry-standard safeguards (which may include physical, procedural and technical measures) to protect against the unauthorized disclosure of Personal Information it collects and holds. We will take reasonable steps to ensure that Personal Information collected is complete and relevant to its intended use.
The Website contains links to other third-party websites, which are subject to the respective privacy policies of those third parties. We are not responsible for the privacy practices of such linked third-party sites, and their owners and operators.
The Website may contain social media widgets including Twitter, Facebook and LinkedIn, and other features that may collect a User’s Personal Information and Non-Identifying Information and may set Cookies on the User’s devices unless the device or browser settings prevent such Cookies from being stored. Such social media widgets and features may be hosted by a third party. We are not responsible for the operation of such widgets and features, and any information collected will be subject to the privacy policy of the provider of such widgets and features, and not this Privacy Policy.
Due to the open communication nature of the Internet, we cannot represent, warrant or guarantee that communications stored on our servers will be free from unauthorized access by third parties, loss, misuse, or alterations. While we will take reasonable and appropriate security measures to protect against unauthorized access, disclosure, alteration or destruction of Personal Information received, WE DISCLAIM ANY AND ALL LIABILITY FOR UNAUTHORIZED ACCESS OR USE OR COMPROMISE OF YOUR PERSONAL INFORMATION TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW. USERS ARE ADVISED THAT THEY SUBMIT SUCH PERSONAL INFORMATION AT THEIR OWN RISK.
- Do Not Track
Users’ browsers may allow users to set a “Do Not Track” preference. Unless otherwise stated, the Website does not honour “Do Not Track” requests.
- Exercise of Data Subject Rights
Users may be entitled to obtain access to information on the Processing of Personal Information, to object to certain Processing, request information portability, and have their Personal Information rectified, deleted, or otherwise restricted in terms of Processing, in each case as permitted under applicable law. Users also may be entitled to withdraw any consent given with prospective effect with respect to the Processing of their Personal Information. Users can exercise these rights or learn more about the Processing of Personal Information by us, by sending a request to privacy@firstwebfoundation.org. Any request is subject to identity verification. All privacy-related access requests are taken seriously, and we will respond to request(s) as soon as reasonably practicable, but in any case, within the legally required period of time. Please note that certain Personal Information may be exempt from such access, correction, objection, or deletion rights pursuant to local laws.
If you are not satisfied with our response or believe that your Personal Data is not being Processed in accordance with the law, you also may contact or lodge a complaint with the competent supervisory authority or seek other remedies under applicable law.
If a User no longer wishes to receive certain electronic communications from us, the User may opt out from such communication by following the unsubscribe instructions at the bottom of such communication or by accessing any available preference setting functionality in the Website.
- Minors
We do not knowingly collect or require Personal Information from children under the age of 13. If you believe your child has provided us with Personal Information, please notify us by email at privacy@firstwebfoundation.org.
- Revisions to our Privacy Policy
We reserve the right to change this Privacy Policy at any time. Any changes we make will be posted on this page. If we make material changes to how we treat your Personal Information, we will notify you. The date this Privacy Policy was last revised is identified at the top of the page. You are responsible for ensuring we have a deliverable email address for you, and for periodically monitoring and reviewing any updates to this Privacy Policy. Your continued use of our Website after such amendments will be deemed your acknowledgement of these changes to this Privacy Policy.
- Questions
Should you have any questions or concerns about this Privacy Policy and our privacy practices, you may contact us at privacy@firstwebfoundation.org.