If you are in Europe:
- for the purposes of the EU General Data Protection Regulation 2016/679 (the “GDPR”), the data controller of information you submit, or we otherwise collect when you use our Services, is SolaSites, and we can be reached at the address under the section “How to Contact Us” below; and
- “information” covers all personal data processed by us which means information that (either in isolation or in combination with other information) enables you to be identified directly or indirectly.
Please note however that SolaSites shall not be the controller of the third-party data you may submit to our Service, e.g., the personal data you process within your CRMs, email communication, etc. which may be integrated with our Service upon your decision and subject to the Terms of Service. We process such information within the Service solely in the processor’s role and, depending on the scope of your activity, you may be the data controller.
Data Ownership and Rights For Congregants
Our customers, e.g., your church, retain all the rights to the data they store in our Services. We are considered a “Service Provider” as defined by the California Consumer Privacy Act (CCPA), or a “Subprocessor” as defined by the Global Data Protection Regulation (GDPR).
The data stored in our databases by users of our Services is entrusted to us for safekeeping, but it is not our data. We are legally and contractually obligated to hold certain standards to the data we process. Some of these obligations include:
- to never retain, disclose, or use your church’s data for any purpose other than for providing our Services,
- to provide appropriate levels of technical and organizational measures to ensure the security of the data we process,
- and to assist our customers in fulfilling their legal obligations in regard to the data that we process on their behalf.
You may have legal rights in regard to how your church uses your personal information. These rights will vary depending on where you live, but generally, you have the right to:
- access, correct, or request deletion of your personal data,
- object to the processing of your personal data,
- file a complaint with an applicable data protection authority,
- where the processing of personal data is based on your consent, you have a right to withdraw consent at any time for future processing
To exercise these rights, contact your church. We will take all steps necessary to assist your church in satisfying your requests.
III. Information we Collect
You may also provide us with special categories of personal data under the GDPR (also known as sensitive data) about yourself and/or third parties, such as health information. When you provide such information, we will seek your explicit consent unless it is being published in relation to your church’s website or fundraising campaign.
a. Personal Information and Business Information
The Personal Information you provide will vary based upon the context, and we will not collect your Personal Information unless you make it available. You are not required to provide Personal Information at any time while visiting the Website; however, you may be required to provide Personal Information to use certain Services. You may provide us with Personal Information by participating in online surveys, subscribing to newsletters and other recurring offerings through the Website, and in connection with other products, services, features, or requests made available through the Website or your church’s website.
If you provide “personal data” to the Services, you acknowledge and agree that such personal data may be transferred from your current location to the offices and servers of SolaSites and the authorized third parties referred to herein located in the United States and/or Canada.
SolaSites collects the Business Information (as defined below) necessary to enable us to respond to your requests for our Services and to send you information regarding our Services from time to time. We have defined “Business Information” as any information that identifies or may identify a company or an individual contact at a company or that allows others to contact a company or an individual contact at a company. When you visit our Website, you may be asked to submit information such as email address, company name, address, and phone number. In addition, we collect credit card and related payment information when you order Services online. Our information collection and use practices are described in more detail below.
b. Information that is Automatically Collected
When you interact with us through the Services, we automatically receive and store certain information from devices that you use to access the Services. This information is collected passively using various technologies and may include the type of internet browser or mobile device you use, any website from which you have come to the Services, your operating system, and may also include location data through an IP address that identifies the city and state where you logged into the Services or your precise geo-location if you have permitted your device to provide that information to us. SolaSites may store such information itself or such information may be included in databases owned and maintained by SolaSites affiliates, agents or service providers.
c. Aggregated Data
In an ongoing effort to better understand and serve the users of the Services, SolaSites often conducts research on its customer demographics, interests and behavior based on information we collect. We may de-identify and/or aggregate the information collected through the Services for research purposes or any other purposes, and we may share this data with our affiliates, agents, or business partners.
d. Registration Information
To access information on the Website and use our Services, a user may be required to register with SolaSites. During registration a user is required to give certain information (such as name and email address). This information is used to contact you about the Services in which you have expressed interest, and provide a way for a user to log in to utilize other protected areas of our Services.
e. Cookies and Other Electronic Technologies
When you interact with the Services, we try to make that experience simple and meaningful. When you visit our Website, our web server sends a cookie to your computer or mobile device. Cookies are small pieces of information that are issued to your computer or mobile device when you visit a website or access or use a mobile application, and that store and sometimes track information about your use of the Website and Services. A number of cookies we use last only for the duration of your web or application session and expire when you close your browser or exit the application. Other cookies are used to remember you when you return to the Website and will last longer.
Some of the cookies used by the Website are set by us, and some are set by third parties who are delivering services on our behalf.
Most web and mobile device browsers automatically accept cookies but, if you prefer, you can change your browser to prevent that or to notify you each time a cookie is set. You may consult the “Help” section of your browser for more information (e.g., Internet Explorer; Google Chrome; Mozilla Firefox; or Apple Safari). You can also manage the use of Flash technologies, including cookies and local storage objects with the Flash management tools available at Adobe’s website. Please note that by blocking any or all cookies, you may lose access to certain features or offerings of the Services.
If you are accessing our Services through a mobile device, you can also update your privacy settings on your device by setting the “Limit Ad Tracking” and Diagnostics and Usage setting property located in the settings screen of your Apple iPhone or iPad, or by resetting your Android ID through apps that are available in the Play Store. You can also limit information collection by uninstalling the App on your device and you can use the standard uninstall process available as part of your device for this purpose.
f. Social Media Data
g. Third-Party Analytics
We may also allow certain third-party analytics service providers to include cookies within the pages of the Website on our behalf and to retain and use the information received from such cookies. Third-party service providers that collect this data on our behalf may offer information about their data collection practices.
IV. How We Use the Information We Collect
a. Email Communication
Each marketing or promotional email we send will contain instructions on how to unsubscribe from that particular email list, should you decide not to receive future promotional emails. If you choose to opt-out of receiving promotional email communications from any SolaSites business unit, we may still periodically communicate with you via mail, telephone, or social media. Please allow up to 10 business days to be removed from our promotional email list.
We send notification and transactional emails about the Website and Services from time to time. Generally, you may not opt-out of these communications, which are not promotional in nature. If you do not wish to receive them, you may have the option to control some but not all of these notification preferences via your SolaSites account view of your account settings, or you have the option to deactivate and delete your account.
b. Information Collected through the Services
We may also use data collected through the Services to send communications relating to the Services, in accordance with applicable laws. Also, if you use any feature of the Services permitting you to communicate with third parties (such as to refer a third party to the Services or to communicate with them regarding a campaign or a donation), you acknowledge and agree that you have the authority of the relevant third party for us to access and use the relevant third-party data and that you have notified these third parties and informed them how their information is collected and used by SolaSites to provide the Services. We reserve the right to identify you as the person who has made the referral in any messages that are sent to them. In addition to sending the foregoing communications, we may also send reminders or related messages to you and to third parties on your behalf from time to time where permitted by applicable law. In each case, any such communications sent to third parties using third-party data will provide a means to “opt-out” of receiving further communication of the same nature.
V. How We Share Data
Unless you give us your permission, we do not share data we collect from you with third parties, except as described below:
a. Third-Party Service Providers or Consultants
We may share data collected from you on the SolaSites Website with third-party service providers or consultants who need access to the data to perform their work on SolaSites’s behalf, such as a website analytics company or our third-party advertising partners. These third-party service providers are limited to only accessing or using this data to provide services to us and must provide reasonable assurances that they will appropriately safeguard the data.
b. Compliance with Laws
We may share data collected from you from the Services with our affiliates. We will only use the data as described in this policy.
d. Business Transfers
As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution, similar event, or steps taken in anticipation of such events (e.g., due diligence in a transaction), user information may be part of the transferred assets.
e. Aggregated or De-Identified Information
We do not share your data (including, but not limited to, the personal data of your end users) with third parties for their direct marketing purposes, unless you give us your consent to do so.
VI. Unsolicited Information
Our Services are not designed for use by individuals under the age of 16. If you are under the age of 16, please do not use the Services or submit any information through the Services. If you have reason to believe that a child under the age of 16 has provided personal information to SolaSites through the Services, please contact us at [email protected], and we will delete that information from our databases to the extent required by law.
VIII. Links to Other Websites
IX. Your Privacy Rights and Retention of Your Information
We may retain your information for a period of time consistent with the original purpose of collection. For instance, we may retain your information during the time in which you have an account to use our Website or Services and for a reasonable period of time afterward. We also may retain your information while it is needed for us to pursue our legitimate business interests, conduct audits, comply with our legal obligations, resolve disputes and enforce our agreements.
You may opt out of any future contacts from us at any time. Additionally, if the collection of your personal data was based on your consent, you have the right to revoke that consent at any time. Be aware that by revoking consent, you may lose access to the Services you previously opted to use.
You may request to review, correct, delete, or otherwise modify any of the personal information that you have previously provided to us through the Website and/or Services.
You may access and correct certain information about you by visiting the “Control Center” or “Dashboard” portion of our Services.
X. California Residents’ Privacy Rights
Pursuant to Section 1798.83 of the California Civil Code, residents of California have the right to request from a business, with whom the California resident has an established business relationship, certain information with respect to the types of personal information the business shares with third parties for direct marketing purposes by such third party and the identities of the third parties with whom the business has shared such information during the immediately preceding calendar year. To request a copy of such information, please contact us as described in the “How to Contact Us” section below, and we will respond within 30 days as required by law.
XI. Additional GDPR Matters for Users in Europe
- Access – You have the right to request a copy of the information we are processing about you.
- Rectification – You have the right to have incomplete or inaccurate information that we process about you rectified.
- Deletion – You have the right to request that we delete information that we process about you, except we are not obliged to do so if we need to retain such data in order to comply with a legal obligation or to establish, exercise or defend legal claims.
- Restriction – You have the right to restrict our processing of your information where you believe such data to be inaccurate; our processing is unlawful; or that we no longer need to process such data for a particular purpose unless we are not able to delete the data due to a legal or other obligation or because you do not wish for us to delete it.
- Portability – You have the right to obtain information we hold about you in a structured, electronic format, and to transmit such data to another data controller, where this is (a) information that you have provided to us, and (b) if we are processing that data solely on the basis of your consent or to perform a contract with you.
- Objection – Where the legal basis for processing your information is our legitimate interest, you have the right to object to such processing on grounds relating to your situation. We will abide by your request unless we have compelling legitimate grounds for the processing which override your interests, or if we need to continue to process the data for the establishment, exercise or defense of a legal claim.
- Withdrawing consent – If you have consented to our processing of your information, you have the right to withdraw your consent at any time, free of charge. This includes opting out from marketing messages.
You can make a request to exercise any of these rights in relation to your information by sending the request to us at the email address or mailing address set forth under “How to Contact Us” below. For your own privacy and security, at our discretion, we may require you to provide your identity before providing the requested information. Please note that SolaSites may take up to 30 days to fulfill such requests.
You also have the right to lodge a complaint with the local data protection authority if you believe that we have not complied with applicable data protection laws. A list of local data protection authorities in European countries is available at https://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm.
XII. How to Contact Us
SolaSites commits to resolve complaints about our collection or use of your personal information. SolaSites takes its users’ privacy concerns seriously.
7467 Mission Gorge Rd. Space 45
Santee CA 92071