Last update: 25th March, 2021
Here you can find some general information about us and our website.
1.2 About the Website. The Website provides information about The Earth Foundation, an overview of our initiatives, and allows you to connect with us.
1.3 Data controller. The Website is owned and operated by The Earth Foundation having a registered address at 15 Rue de Rive, 1204 Genève, Switzerland, and the registration number CHE-439.560.973 (“we”, “us”, or “our”).
1.4 Minors. The Website is not intended for use by persons under the age of 16, unless we have a parental consent for such collection. In any case, we do not collect personal data from children under 13. If any minor between the age of 13 and 16 wishes to access the Website, that minor needs to get his/her parent or legal guardian to approve the access to the Website and reach out to us on the minor’s behalf. If you become aware that (i) a minor below the age of 13 provided us with personal data through the Website or (ii) a minor between 13 and 16 has provided us with personal data without prior parental consent, please contact us immediately and we will remove the child’s personal data from our systems.
Here we explain in detail what personal data we collect from you, for what purposes we use it, what technical data is collected automatically when you use the Website, and how we communicate with you.
2.2 Sensitive data. We do not collect or use any special categories of personal data (“sensitive data”) from you, unless you decide, at your own discretion, to provide such data to us. Sensitive data refers to your health, religious and political beliefs, racial origins, membership of a professional or trade association, or sexual orientation.
2.3 Refusal to provide personal data. If you refuse to provide us with your personal data when we ask for it, we may not be able to perform the requested operation and you may not be able to use the full functionality of the Website, receive the requested newsletter and information, or get our response. Please contact us immediately if you think that any personal data that we collect is excessive or not necessary for the intended purpose.
2.4 Collection of non-personal data. When you browse the Website, we may have access to certain technical non-personal data collected from you by our analytics service provider. Such data does not allow us to identify you in any manner. The non-personal data includes the following information:
2.5 Purposes of non-personal data. We use non-personal data to analyze what kind of users use the Website, improve our content and services, investigate and prevent security issues and abuse.
2.6 Your feedback. If you contact us, we may keep records of any questions, complaints, recommendations, or compliments made by you and the response. Where possible, we will de-identify your personal data (i.e., we will remove all personal data that is not necessary for keeping such records).
2.7 Aggregated and de-identified data. In case your non-personal data is combined with certain elements of your personal data in a way that allows us to identify you, we will handle such aggregated data as personal data. If your personal data is aggregated or de-identified in a way that it can no longer be associated with an identified or identifiable natural person, it will not be considered personal data and we may use it for any legitimate purpose.
2.8 Important service notices. If we have your email address and it is necessary to do so, we may send you important informational messages, such as technical or administrative emails. Please note that such messages are sent on an “if-needed” basis and they do not fall within the scope of commercial communication that may require your prior consent. You cannot opt-out from service-related notices.
Here we explain for how long we keep your data in our systems and how we delete it.
3.3 Storage as required by law. In seldom instances when we are obliged by law to store your personal data for a certain period of time, we will store your personal data for the time period stipulated by the applicable law and delete the personal data as soon as the required retention period expires.
Here you can find information about third parties that may have access to your personal data.
4.1 Disclosure to data processors. We keep your personal data in strict confidentiality. However, if necessary for the intended purpose of your personal data, we will disclose your personal data to entities that provide services on our behalf (our data processors). Your personal data may be shared with entities that provide technical support services to us, such as hosting and email distribution services. We do not sell your personal data to third parties and do not intend to do so in the future. The disclosure of your personal data is limited to the situations when it is required for the following purposes:
4.3 International transfers. We and some of our data processors may be based outside the country where you reside. For example, if you reside in a country belonging to the European Economic Area (EEA), we may need to transfer your personal data outside the EEA. In case it is necessary to make such a transfer, we will make sure that the country in which our data processor is located guarantees an adequate level of protection for your personal data or we conclude an agreement with it that ensures such protection (e.g. a data processing agreement based pre-approved standard contractual clauses).
4.4 Disclosure of non-personal data. Your non-personal data may be disclosed to third parties for any purpose as it does not identify you as a natural person. For example, we may share it with prospects or partners for business or research purposes, for improving the Website, responding to lawful requests from public authorities or developing new products and services.
4.5 Legal requests. If requested by a public authority, we will disclose information about the users of the Website to the extent necessary for pursuing a public interest objective, such as national security or law enforcement.
Here you can find information on how we protect your data against breaches.
5.1 Security measures. We implement technical and organizational information security measures that protect your personal data from loss, misuse, unauthorized access and disclosure. The security measures taken by us include secured networks, strong passwords, limited access to your personal data by our staff, anonymization of personal data (when possible), and carefully selected data processors.
5.2 Security breaches. Although we put our best efforts to protect your personal data, given the nature of communication and information processing technology and the Internet, we cannot be liable for any unlawful destruction, loss, use, copying, modification, leakage, and falsification of your personal data caused by circumstances that are beyond our reasonable control. In case a serious breach occurs, we will take reasonable measures to mitigate the breach, as required by the applicable law. Our liability for any security breach will be limited to the highest extent permitted by the applicable law.
Here you can find detailed information about the rights that you have with regard to your personal data and how to exercise those rights.
6.1 The list of your rights. You have the right to control how we process your personal data. Subject to any exemptions provided by law, you have the following rights:
6.3 Complaints. If you would like to launch a complaint about the way in which we handle your personal data, we kindly ask you to contact us first and express your concerns. After you contact us, we will investigate your complaint and provide you with our response as soon as possible (no later than 2 weeks). If you are not satisfied with the outcome of your complaint, you have the right to lodge a complaint with your local data protection authority.
The Earth Foundation
15 Rue de Rive