Privacy Policy

Who we are

Our website address is: https://hmimissions.org/. Health Missions International, Inc. (HMI) is a registered 501(c) (3) nonprofit.

Privacy Policy

This Privacy Policy explains how Health Missions International, (“we”, “us” or “HMI”) collects, uses, shares and protects personal information. We respect the privacy of every individual who visits our website (“Website”). This Privacy Policy is our commitment to transparency in communicating how we collect, use, and disclose your personal information as well as the choices you have with respect to such information.

BY VISITING OUR SITE, YOU AGREE TO BE BOUND BY THIS PRIVACY POLICY. IF YOU DO NOT AGREE WITH ANY OF THE TERMS OF THIS POLICY, PLEASE DO NOT USE OUR WEBSITE OR OTHERWISE PROVIDE US WITH YOUR INFORMATION.

Information we collect:

WORDPRESS: By default WordPress does not collect any personal data about visitors, and only collects the data shown on the User Profile screen from registered users.

DONORS: Donations made via our external links to Paypal and or Venmo are processed securely through those respective sites/apps and subject to their own privacy policies. Donations made through our secure online donation form, created with GiveWP are processed using Paypal’s payment gateway. We ask for your information, which may include your name, email address, physical address, phone number and credit card information, to enable us to create a donor account for you. By voluntarily providing us with this information, you represent that you own and consent to our secure use of such personal data. GiveWP uses cookies, specifically to manage sessions and ensure secure display of donation data, even for non-logged-in users, with a default session duration of one week. 

CONTACT FORM: If you use our Contact Form (created with Contact Form 7), we may collect your name, email address, physical address, and phone number if you provide it to us when visiting our Website, including in connection with a contact request. Contact Form 7 does not store submissions made via our contact form.

ANALYTICS: We use the WP Statistics plugin in for user analytics. This enables us to count unique visitors to the site, without cookies, browser cache or local storage. This approach aligns with strict privacy regulations like GDPR, which consider device-persistent identifiers as personal data. We anonymize all IP addresses so no user’s full IP address is stored and we also have a DNT policy enabled, which respects the visitor’s browser setting to not track their web activity. Privacy laws like GDPR do not mandate this feature, but activating it demonstrates our commitment to user privacy.

COMMENTS: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

SUCURI SECURITY: We utilize Sucuri Security to protect our website and its users from malware, scan for suspicious activity, identify security vulnerabilities and protect against other online threats. Sucuri may also process data, including IP addresses and website traffic data, as necessary to provide these security services. For more information about Sucuri’s data processing practices, please see their Data Processing Addendum.

RECAPTCHA: We use Google reCAPTCHA in order to securely process information through our Contact Form and to protect it from misuse, bots and spam. reCAPTCHA collects personal user data to determine whether the actions on our website are made by people. Thus, IP addresses and other data Google needs for its reCAPTCHA service, may be sent to Google. Within member states of the European Economic Area, IP addresses are almost always compressed before the data makes its way to a server in the USA.

Moreover, your IP address will not be combined with any other of Google’s data, unless you are logged into your Google account while using reCAPTCHA. Firstly, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube, Gmail, etc.) have already been placed in your browser. Then reCAPTCHA sets an additional cookie in your browser and takes a snapshot of your browser window.

If you want to prevent any data about you and your behaviour to be transmitted to Google, you must fully log out of Google and delete all Google cookies before visiting our website or use the reCAPTCHA software. Generally, the data is automatically sent to Google as soon as you visit our website. To delete this data, you must contact Google Support at https://support.google.com/?hl=en-GB&tid=111401120.

If you use our website, you agree that Google LLC and its representatives automatically collect, edit and use data. You can find out more about reCAPTCHA at https://developers.google.com/recaptcha/. While Google do give more detail on the technical development of reCAPTCHA there, they have not disclosed precise information about data retention and data protection. A good, basic overview of the use of data however, can be found in the company’s internal privacy policy at https://policies.google.com/privacy?hl=en-GB.

Cookies

Like any other website, we use ‘cookies’ in certain instances and where such use is permitted to optimize your experience of using our website. These cookies are used to store information including visitors’ preferences, and the pages on the website that the visitor accessed or visited. The information is used to customize our web page content based on visitors’ browser type and/or other information.

You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with regard to specific web browsers, it can be found at the browsers’ respective websites.

How we use your information

We use the information we collect about you in the following ways:

• To respond to any requests from you, including those regarding donations and support.
• To contact you regarding your request or your donation.
• To collect payment for your Donations through GiveWP via Paypal.
• To find and prevent fraud.
• To provide, operate, and maintain our website
• To improve, personalize, and expand our website
• To understand and analyze how you use our website
• To develop new features, and functionality
• To communicate with you, either directly or through one of our partners, including for customer service, to provide you with updates and other information relating to the website, and for marketing purposes
• To carry out other purposes as disclosed to you through the Website, or found in terms or an agreement between us and you.
• Process for other purposes for which we obtain your consent.

Who we share your data with

We share the information we collect about you in the following ways:

Third Party Providers – We may share your information with third party providers that provide services on our behalf. These companies may assist with marketing support, website security, fraud prevention or processing credit card payments. Third party providers may only process personal information pursuant to our instructions, and in compliance with this Privacy Policy and other applicable regulations.

To Create Aggregated or De-identified Data – We may aggregate or otherwise de-identify your personal information so that it is no longer able to be associated with you. We own such aggregate or de-identified information and may use and share this information with third parties.

As Required by Law or Similar Investigations – To comply with legal obligations (e.g. subpoena) or investigate potential legal violations. We may be required to share personal data in response to lawful requests from public authorities including to meet national security and/or law enforcement requirements.

Safety – We may disclose your information to protect and defend our safety and those of other users in connection with investigating and preventing fraud or security issues.

Consent – We may share your information with your consent.

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, or used our contact form, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

CCPA Privacy Rights

Under the CCPA, among other rights, California consumers have the right to:

Request that a business that collects a consumer’s personal data disclose the categories and specific pieces of personal data that a business has collected about consumers.

Request that a business delete any personal data about the consumer that a business has collected.

Request that a business that sells a consumer’s personal data, not sell the consumer’s personal data.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

GDPR Data Protection Rights

We would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request copies of your personal data.

The right to rectification – You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.

The right to erasure – You have the right to request that we erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

Children’s Information

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

We do not knowingly collect any Personal Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

How we protect your data

We use SSL/TLS encryption to protect your data. SSL/TLS encryption works by establishing an encrypted connection between a website/server and a browser, ensuring that any data transmitted between them is scrambled and unreadable to anyone who might intercept it. SSL/TLS encryption is essential for protecting sensitive information like credit card numbers, personal details, and other confidential data transmitted online. 

We also use Sucuri Security to protect our website from malware, scan for suspicious activity, identify security vulnerabilities and protect against other online threats.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website. We only embed content from websites that we use to provide a great experience while you are visiting HMI.

Changes to Privacy Policy

We reserve the right to modify this Privacy Policy at any time, however, should we change the Privacy Policy in a material way, a notice will be posted on our Website along with the updated Privacy Policy. If you disagree with the changes, you may stop using our Website.

Contact Us

If you have any questions or concerns over this Privacy Policy, or wish to exercise any of your statutory rights, please contact us at [email protected].