Privacy Policy
Privacy
Last Updated: 5/10/2021
OVERVIEW
GiveGrove, LLC and our affiliated companies and subsidiaries (collectively, “GiveGrove”, “us”, “we”, “our”) is dedicated to safeguarding your personal information.
This Privacy Policy (“Policy”), describes the users (collectively, “User”, “Donor”) privacy rights regarding any information collected by our websites (“Sites”), forms (“Forms”), applications (“Applications”), apis (“APIs”), emails (“Emails”), and services (“Services”), which are collectively known as the “Platform”.
In addition, by using our Platform, you consent to sharing your personal information with organizations (collectively, “Organizations”) which you interact with on the Platform.
GiveGrove only asks for personal information when GiveGrove truly needs it to provide a service to you. All information is collected by fair and lawful means, with your knowledge and consent. GiveGrove also lets you know why the Platform is collecting it and how it will be used. GiveGrove promises never to sell donor data.
By visiting the Platform, GiveGrove.com, or using any of our Applications or Services, you agree that your personal information will be handled as described in this Policy, which is also incorporated by reference into the GiveGrove Terms of Service, available at https://www.givegrove.com/policies/terms-and-conditions.
It is important to note that not all aspects of this Policy may apply to you, depending on the types of interactions you have with GiveGrove and the categories of personal information that is collected from you. Those activities will determine which of the following applies to you and your personal information.
GiveGrove only retains collected information for as long as necessary to provide Donors and Organizations with their requested Services. What data is stored, GiveGrove will protect within commercially acceptable means to prevent loss and theft, as well as unauthorized access, disclosure, copying, use or modification.
GiveGrove does not share any personally identifying information publicly or with third-parties, with the exceptions of:
Organizations on the Platform for which you have authorized to access your personal information by participating in one or more of their fundraising events. For example, when you donate to an Organization, GiveGrove shares your name and contact information with that Organization.
When required to by law.
Organization’s GiveGrove Sites might have links to external websites that are not operated by GiveGrove. Please be aware that GiveGrove has no control over the content and practices of these sites, and cannot accept responsibility or liability for their respective privacy policies. You should refer to the privacy policy and terms of service of any third party provider that might be linked from our Sites. Donors can tell if they are at a GiveGrove site if the URL starts with GiveGrove.com/
You are free to refuse GiveGrove’s request for your personal information, with the understanding that GiveGrove may be unable to provide you with some of your desired Services.
Your continued use of the GiveGrove Platform will be regarded as acceptance of our practices around privacy and personal information. If you have any questions about how GiveGrove handles Donor data, Organization Data, and personal information, feel free to contact Us.
Types of Information Collected
GiveGrove, LLC classifies your personal information into two categories:
Sensitive
Highly Sensitive
GiveGrove does not store or have the ability to access your Highly Sensitive information. For instance, in the case of credit card numbers and bank account numbers, this information is stored only in our partner service, Stripe. Stripe is the sole Payment processor for GiveGrove, LLC and GiveGrove relies on our partners, such as Stripe, to handle this highly sensitive information. GiveGrove has no control over the content and practices of these services, and cannot accept responsibility or liability for their respective privacy policies.
What Donor information is collected by the Platform?
Systems where data is stored
GiveGrove Core Platform
Google (Privacy Policy)
Algolia (Privacy Policy)
Stripe (Privacy Policy)
Twilio (Privacy Policy)
| Information Collected | Sensitivity | Who Is This Collected From? | Stored by GiveGrove | Stored by Third Party? |
|---|---|---|---|---|
| Name | Sensitive | Both | Yes | Yes, Stripe |
| Sensitive | Both | Yes | No | |
| Full Address | Sensitive | Both | Yes | Yes, Stripe |
| Zip Code | Sensitive | Both | Yes | Yes, Stripe |
| Cellphone | Sensitive | Donor | Yes | Yes, Twilio |
| Credit Card | Highly Sensitive | Donor | No | Yes, Stripe |
| Credit Card (Last 4 digits) | Sensitive | Donor | Yes | Yes, Stripe |
| Bank Account Information (Routing & Account Number) | Highly Sensitive | Organization | No | Yes, Stripe |
| Last Four Digits of SSN | Sensitive | Organization | No | Yes, Stripe |
| Purchase History | Sensitive | Donor | Yes | No |
Custom Field Questions
The GiveGrove Platform does not collect data outside of the fields listed above. Organization’s using the Platform may opt to collect additional information for themselves via Custom Fields in GiveGrove’s Ticketing module. The information collected in this manner is done so at the direction of Organization’s using GiveGrove and GiveGrove has no direct relationship or input to the custom fields that an Organization requests of a donor. Custom Fields are always optional and you assume all responsibility and liability to any information you disclose in custom fields.
If you are a customer of one of GiveGrove’s Organizations, you should refer to that Organization’s privacy policy for information on how your personal information is collected, used, and protected. Any inquiries related to your data, how it is processed, and data access, deletion and modification requests should be directed to that Organization.
How is Donor information used by Organizations?
GiveGrove shares some of your personal information that Organizations need in order to process your donations, send receipts, deliver items won, and communicate with you about future fundraising activities. Organizations do not have access to your highly sensitive data, such as credit card numbers.
When you purchase an item or donate to an Organization through GiveGrove, you agree to share the following information with the Organization:
Your Name
Your Email Address
Your Phone Number
Donations, bid history, and purchases you have made
If you covered the credit card or transaction fees
At the conclusion of an event, An Organization has the ability to download an event report with your Personal Information. If you wish to limit how an Organization uses your information, please reach out to the Organization directly.
How is Highly Sensitive Information used?
Donor Accounts
Credit Card information is provided directly to Stripe to process payments on the Platform.
Organization Admin Accounts
Bank Account information is provided directly to Stripe and is used to transfer donations from the Platform to the connected Organization’s bank account with the information provided.
Why does Stripe collect the last four digits of your SSN when you are creating an Organization in GiveGrove?
“This information is required as part of Stripe’s mandatory identity verification requirement: Stripe must collect, verify, and maintain information on the individuals associated with every US Stripe account, as required by our regulators and financial partners. This is intended to promote transparency and prevent individuals from using complex company structures to hide terrorist financing, money laundering, tax evasion, and other financial crimes.” - Stripe support document (2/23/2021)
HIPPA
Some Organizations on the Platform include hospitals or other healthcare providers. GiveGrove does not permit any protected health information to be stored or displayed on the Platform.
Since GiveGrove does not hold protected health information information, GiveGrove does not need to adhere to HIPPA requirements to protect patient information and rights. Any questions can be directed to info@GiveGrove.com.
Third Party Analytics and Web-based Services:
GiveGrove uses third party analytics and web-based services to provide a secure environment for the use of the services, to pre-populate forms and calculate aggregate statistical information about the customers using our services. GiveGrove uses this information to better protect you and to provide a better Donor experience.
GiveGrove also allows certain third-party analytics and web-based service providers to include cookies and web beacons within the pages of the Sites on GiveGrove’s behalf and to retain and use the information received from such cookies and web beacons themselves. Some of these services collect certain additional information, including IP address, browser, connection speed, domain, referring URL and other environment-related information.
Third-party service providers that collect this data on GiveGrove’s behalf may offer information about their data collection practices, and in some cases, an opt out on their respective websites which you can access here: http://www.google.com/analytics/.
Privacy Rights
GiveGrove may retain your information for a period of time consistent with the original purpose of collection. For instance, GiveGrove may retain your information during the time in which you have an account to use our Sites or Services and for a reasonable period of time afterward. GiveGrove also may retain your information during the period of time needed for GiveGrove to pursue its legitimate business interests, conduct audits, comply with its legal obligations, resolve disputes and enforce its agreements.
Donor Rights
All donors have the right to request that their personal information be removed from the GiveGrove Platform. Be aware that by revoking consent to track your personal information, you may lose access to services you previously opted to use. GiveGrove will remove or de-identify information stored in its Platform to the best of its ability. Some information may need to be retained for GiveGrove to pursue our legitimate business interests, conduct audits, comply with our legal obligations, resolve disputes and enforce our agreements.
GiveGrove is not responsible for deleting any information that has been shared with Organizations you have interacted with. You are responsible for requesting that your information is deleted from any Organizations for which you have previously authorized to access your data when you consented to use the GiveGrove Platform.
You may request to review, correct, delete, or otherwise modify any of the personal information that you have previously provided to GiveGrove through the Platform. You can do the following at any time by contacting GiveGrove via the email address or phone number provided on our Sites:
See what data we have about you, if any
Change/correct any data we have about you
Have GiveGrove delete any data we have about you
Express any concern you have about our use of your data
California Residents’ Privacy Rights
Pursuant to Section 1798.83 of the California Civil Code, residents of California have the right to request from a business, with whom the California resident has an established business relationship, certain information with respect to the types of personal information the business shares with third parties for direct marketing purposes by such third party and the identities of the third parties with whom the business has shared such information during the immediately preceding calendar year.
To request a copy of such information or to request to be deleted please contact GiveGrove at info@givegrove.com and GiveGrove will respond within 30 days as required by law.