Welcome to the African Wildlife Initiative (AWI). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit our website (www.awlife.site), engage with our programs, donate to our mission, or communicate with our team. By accessing or using our services, you agree to the terms outlined in this policy. We comply with all applicable data protection laws, including the U.S. Children’s Online Privacy Protection Act (COPPA), the General Data Protection Regulation (GDPR) for users in the European Economic Area, and other relevant privacy regulations. We treat your information with the utmost respect and confidentiality, just as we do the wildlife and ecosystems we strive to protect.

1. Information We Collect

We collect personal information only to fulfill our mission: to conserve African wildlife through early education and community engagement. The types of data we collect depend on your interaction with us:

• Personal Information Provided by You:
  • When you donate, we collect your name, email address, mailing address, phone number, and payment details (processed securely through third-party processors like Stripe and PayPal).
  • When you register for a program (e.g., teacher training, family workshop, virtual safari), we collect your name, email, organization (if applicable), role (teacher, parent, student, etc.), and any preferences or dietary needs (for in-person events).
  • When you subscribe to our newsletter, we collect your email address and, optionally, your first name and country.
  • When you volunteer, we collect your name, contact information, skills, availability, emergency contact, and, if required, background check information.
  • When you submit a form (e.g., contact us, curriculum request, event booking), we collect the data you choose to include in your message.
  • When you participate in a fundraiser, we collect your name, email, fundraising goal, and campaign details.
• Automatically Collected Information:
  • When you visit our website, our servers automatically log your IP address, browser type, device information, pages viewed, time spent on site, referral URLs, and operating system. This data is collected via cookies and similar technologies (see Section 3) and is used to improve user experience, analyze website traffic, and personalize content.
  • We use Google Analytics and Meta Pixel for analytics and advertising, which may set cookies and collect data across devices. You can opt out via their official opt-out tools.
• Children’s Information (Under 13):
  • We do not collect personal information directly from children under 13 without verifiable parental consent, in full compliance with COPPA.
  • If a child participates in our program (e.g., signs up for an event, submits a drawing, or appears in a photo), we collect the child’s first name, age, and optional school name only with prior, explicit permission from a parent or legal guardian.
  • We never collect children’s Social Security numbers, addresses, phone numbers, or financial information.
  • Parents may access, modify, or request deletion of their child’s data at any time (see Section 7).
• Photo & Video Consent:
  • When we capture photos or videos at events, workshops, or field programs, we obtain written consent from parents/guardians (for minors) or individuals (for adults) before capturing or sharing identifiable images. Consent forms include opt-in/opt-out options for social media, marketing, and fundraising use.

2. How We Use Your Information

Your data is used exclusively to:

• Deliver the programs, services, and resources you request (e.g., send curriculum, confirm event registration, process donations).
• Communicate with you about updates, newsletters, conservation stories, and upcoming events.
• Improve our website, curriculum, and user experience through analytics.
• Process and acknowledge donations, including issuing tax receipts (for U.S. donors).
• Administer volunteer programs, including background checks and onboarding.
• Fulfill fundraising and partnership commitments.
• Comply with legal, financial, and safety obligations (e.g., tax reporting, insurance, child protection).
• Share success stories, impact reports, and educational content with our global community.

We never sell, rent, or trade your personal information to third parties for commercial or marketing purposes.

3. Cookies and Tracking Technologies

Our website uses cookies—small text files stored on your device—to enhance your experience. We use:

• Essential Cookies: Required for site functionality (e.g., login, shopping cart).
• Performance Cookies: Collected by Google Analytics to analyze traffic (can be disabled via browser settings).
• Marketing Cookies: Used by Meta, Twitter, and YouTube for ad targeting (can be disabled via their opt-out tools or your browser).

You can manage or disable cookies in your browser settings. Note: disabling cookies may limit website functionality (e.g., donation form submission, event registration).

4. Data Sharing and Third Parties

We share your data only when strictly necessary and with trusted partners who adhere to equivalent privacy standards:

• Payment Processors: Stripe and PayPal securely process all donations. We never see or store your full credit card details.
• Email & CRM Providers: Mailchimp (newsletters), Salesforce (donor and volunteer management), and Google Workspace (internal communication).
• Web Hosting & IT Services: AWS (Amazon Web Services) hosts our website and database.
• Field Partners: When you sign up for a field project or training, your name and contact information may be shared with local partners (e.g., African conservation NGOs, schools) to coordinate logistics.
• Legal & Safety Requirements: We may disclose information if required by law (e.g., court order, subpoena) or to protect our rights, users, or the public (e.g., in cases of fraud or child safety concerns).

All third parties are contractually required to use your data only for specified purposes and to delete it upon request.

5. Data Retention

We retain your personal information only as long as needed for the purposes outlined in this policy, unless required by law:

• Donor Records: 7 years (for tax compliance).
• Volunteer Data: 5 years after final activity (unless you re-engage).
• Event Registration: 3 years.
• Children’s Records: Parents may request deletion at any time; otherwise, data is anonymized or deleted after 3 years of inactivity.
• Website Analytics: Anonymized after 24 months.

6. Data Security

We employ industry-standard security measures to protect your information:

• Encryption: All data transmitted between you and our site is encrypted (SSL/TLS).
• Firewalls & Intrusion Detection: Enterprise-grade security for our servers.
• Access Controls: Staff are trained in data privacy; access to personal data is limited to authorized personnel only.
• Regular Audits: We conduct quarterly security reviews and vulnerability assessments.
• Employee Training: All team members sign confidentiality agreements and complete annual data protection training.

Despite these measures, no transmission or storage method is 100% secure. We encourage you to use strong passwords and monitor your accounts.

7. Your Rights and Choices

You have full control over your personal information:

• Access & Update: Request to see or correct your data by emailing info@awlife.site.
• Withdraw Consent: Unsubscribe from emails at any time (every message includes an unsubscribe link).
• Data Deletion: Request that we delete your data (we will do so unless legal requirements prevent it).
• Export Data: Request a copy of your data in a machine-readable format (e.g., for GDPR compliance).
• Parental Control: Parents of children under 13 may review, modify, or delete their child’s information by submitting a signed request to privacy@awlife.site.
• Complaints: If you believe we’ve violated your privacy rights, contact us at privacy@awlife.site. For GDPR-related concerns, you may also lodge a complaint with your national data protection authority.

8. International Data Transfers

AWI operates globally. Data from users outside the U.S. may be transferred to, and processed in, the United States or Kenya. We ensure that:

• Data transfers from the EU/EEA comply with GDPR (Standard Contractual Clauses in place).
• Kenyan users’ data is protected under Kenya’s Data Protection Act, 2019.
• Users in other regions are informed that their data may be subject to U.S. or Kenyan laws.

9. Children’s Privacy (COPPA Compliance)

We are a child-safe organization. We:

• Do not market to children under 13.
• Never sell children’s data.
• Require parental consent for any online program involving children (e.g., virtual safaris, classroom activities).
• Offer parents a “Right to Review” process: email info@awlife.site to see all data collected from your child and request changes.

10. Changes to This Policy

We may update this Privacy Policy to reflect new programs, laws, or technologies. Any changes will be posted on this page with a revised “Last Updated” date. We will notify users via email for material changes (e.g., new data types, expanded third-party sharing). Continued use of our services after changes constitutes acceptance.