Dona

Privacy Policy

Your privacy is very important to us. We, Regium Consulting Limited, commit to only collecting information about you that is critical for offering and improving our products and services to you and to comply with all legal obligations.

This Privacy Policy applies to information we collect when you sign up for Dona, when you access or use any of our websites, software, when you speak to our staff, or when you otherwise interact with us (collectively, the “Services”). This policy also applies to information we collect if you have not signed up for our Services, but if you are making payment donations through our Services.

We may change this Privacy Policy from time to time by posting the updated version on our website. We advise you to review this page regularly to stay informed and to make sure that you are happy with any changes. If we make material changes to this Privacy Policy we will notify you by email or through posting a notification when you log into our website or when you open our mobile application.

In order to use our Services you must accept all terms of this Privacy Policy.

When you register for a Dona Account (“Account”) we collect personal information about you including your full name, address, email address and telephone number. We also collect information about your organisation including your company name, organisation address, organisation telephone number.

In order to charge you monthly fees we collect your bank account details.

For research surveys or marketing purposes we may from time to time collect other information when you register including your preferences and interests.

When you use our Services we collect information relating to your donations including time, location, donation amount, payment method and cardholder details.

When you access our website or use any of our software we may automatically collect information including, but without limitation, your IP address, operating system, browser type, identifiers for your computer or mobile device, your visit date and time and your visit behaviour.

We use information collected about you in order to provide our Services and to deliver all relevant information to you including receipts, reports and support messages.

We also use information collected about you in order to improve and personalise our Services. For instance, we may enable features in our software specific to your organisation.

We may use information collected about you to communicate with you about news and updates to our Services and to inform you about any promotions, incentives and rewards offered by us and/or our partners, our Dona partners, unless you choose to opt out of such communications.

You can choose to opt out of receiving such communications by emailing your request to revoke this consent to support@mydona.com. We can continue to offer you Dona without this additional service.

We may also use information collected about you through cookies and web beacons to track and analyse usage behaviour and any actions relevant for promotions, incentives and rewards in connection with our Services.

We may use information collected about you to protect our rights and to investigate and prevent fraud or other illegal activities and for any other purpose disclosed to you in connection with our Services.

We may share information collected about you with any member of our group of companies, including subsidiaries, our ultimate holding company and its subsidiaries. This data will be transferred in order to allow us to provide a full service to you, where other companies within our group perform components of the full service offering. These other services include customer support, anti money laundering, settlements and internal audit.

We may disclose information to the extent necessary with third parties who perform functions on our behalf in order to process payment donations for you including fraud prevention and verification service providers, financial institutions, processors, payment card associations and other entities that are part of the payment and collections process.

We may also share information collected about you with third parties who we partner with for advertising campaigns, contests, special offers or other events or activities in connection with our Services, unless you choose to opt out of such communications.

We may disclose information collected about you with third parties in connection with any merger, sale of company shares or assets, financing, acquisition, divestiture, or dissolution of all or a portion of our organisation.

We may also disclose information collected about you if (i) disclosure is necessary to comply with any applicable law or regulation; (ii) to enforce applicable terms and conditions or policies; (iii) to protect the security or integrity of our Services; and (iv) to protect our rights.

In any case, we will always ensure that your information will only be processed in connection with the Services and in accordance with this Privacy Policy and applicable data protection legislation.

We may transfer information collected about you to members of our group of companies and third parties acting on our behalf that may be located in countries outside of the European Economic Area (“EEA”) or countries deemed by the European Commission to have satisfactory data protection. These other countries may not offer the same level of protection for the information collected about you, although we will at all times continue to collect, store and use your information in accordance with this Privacy Policy and the General Data Protection Regulation (GDPR). Regium will ensure they share data only with those organisations that satisfy an adequate level of data protection in line with applicable data protection legislation and that satisfactory contractual agreements are in place with any such parties.

We are committed to ensuring that the information collected about you is secure. We take reasonable measures including administrative, technical and physical procedures to protect your information from loss, theft, misuse, unauthorised access, disclosure, alteration, and destruction. When you are logged into your account, all Internet communication is secured using Secure Socket Layer (“SSL”) technology with high security 128bit encryption.

This high level of security can only be effective if you follow certain security practices yourself including never sharing your Account or login details with anyone. If you believe that any of your Account login details have been exposed, you can change your password at any time through our website or mobile application, but you should always also immediately contact customer service.

Transmission of information via the Internet is not completely secure. Therefore, we cannot guarantee the security of the transmission of your information to us. Any transmission is at your own risk. Once we have received your information, we will use strict procedures and security structures to prevent unauthorised access.

Regium is responsible for the security of supporters data which is processed, transmitted and stored within our systems. Regium applies best industry practice to safeguard this sensitive data and to ensure that it operates in line with these requirements.

We reserve the right to delete and destroy all of the information collected about you upon termination of your Account unless you request otherwise. If agreed we shall continue to store your information, for example your donation history, which you may require for accounting purposes.

Notwithstanding the above, you have the right to request the deletion of your data. Depending on the services that have been undertaken by Regium to enable the relationship to proceed, we may be required to hold certain data for five years from the date of request of deletion of data, for legal purposes. We cannot continue to provide the Regium service to you if you request the deletion of your data.

You can request the deletion of your data emailing this request to support@mydona.com.

We use a number of cookies and web beacons within our website and applications. Cookies are small data files which are placed on your computer, mobile device or any other device as you browse our website or use any of our applications or web-based software. Web beacons are small graphic images or other web programming code which may be included in the website and any of our email messages.

We may use cookies and web beacons for the following purposes: (i) To personalise our Services to you as an individual and to tailor our Services to you based on the preferences you may choose; (ii) to facilitate the effective operation of our websites and applications; (iii) to track website traffic or application usage for statistical purposes and to monitor which pages or features users find useful or not; (iv) to identify you upon Account login and to assist you when resetting your password; (v) to assist in meeting our regulatory obligations, such as anti-money laundering and anti-fraud obligations, and prevent your Account from being hijacked; or (vi) to enable us to link to our group companies’ websites.

Some cookies may not be related to Regium. When you visit a page on our website with content embedded from, for example, YouTube or Facebook, cookies may be stored on your computer from these websites. We do not control the dissemination of such third party cookies and you should check these third party websites for more information about these cookies and their privacy policy.

The cookies or web beacons will never enable us to access any other information about you on your computer, mobile device or any other device other than the information you choose to share with us.

Most web browsers automatically accept cookies but you may modify your browser settings to decline cookies. Rejecting cookies used by our website, mobile application or web-based software may prevent you from taking full advantage of them and may stop them from operating properly when you use them.

If you do not consent to our use of the cookies, you must disable the cookies by deleting them or changing your cookie settings on your computer, mobile device or other device or you must stop using the Services. Information on deleting or controlling cookies is available at www.aboutcookies.org.

If you access links on our website to third party websites which are not owned by Regium please be aware that these websites have their own privacy policies. We do not accept any responsibility or liability for these privacy policies. You should check and review these privacy policies before you submit any information about you to these websites.

You have the right to request access to the personal data that we hold about you and you may always direct us not to perform any of the procedures of collecting, storing or sharing the information about you as described in this Privacy Policy. If you request that we no longer process your data, we will no longer be able to provide the Regium service to you. You have the right to obtain from us: – Right to Access Your Data: You can ask us for a copy of your personal data and can ask for a copy of personal data you provided in machine readable format. – Object to, or Limit or Restrict, Use of Data: You can ask us to stop using all or some of your personal data or to limit our use of it. – Amend Data: You can request the correction or update of personal data that we hold about you. – Delete Data: You can ask us to erase or delete all or some of your personal data. – Data Portability: You have the right to transmit the data to another controller without hindrance from Regium.

If you would like to request a copy of your personal data, or to amend, delete or update certain personal data or withdraw your consent to the processing of data from us, you can do so on the dashboard or alternatively contact us at support@mydona.com with your request.

If you are not satisfied, you have the right to lodge a complaint with the relevant data protection authority. Regium will cooperate fully with any such investigation and endeavor to satisfy all queries as fully as possible. 

Regium may provide you with Additional Services. If you choose to use any or all of these Additional Services, our relationship under Data Protection laws may change from and between Data Processor and Data Controller. 

You undertake at all times to comply with applicable data protection laws and you agree that you shall not use any personal data processed and/or gained by, or from access to and/or use of, these Additional Services, in any way that is incompatible with the purpose for which such data was originally collected. If you choose to avail of these Additional Services, you agree that Regium may process your customers information as Data Processor under GDPR. In this situation our Data Processing Agreement will apply.”

If you choose to withdraw your consent to our further processing as described in this Privacy Policy, please note that we may no longer be able to provide you with the services you have requested and may therefore terminate relevant agreements with you. In addition, we may be required to continue to hold your personal data to fulfill legal and regulatory obligations.

This Privacy Policy shall be governed by and construed under and in accordance with English Law.

This Privacy Policy (including, if applicable, our Terms and Conditions) specify the entire agreement between you and us and supersede any and all prior agreements, terms, warranties and/or representations to the fullest extent permitted by the Law.

Feedback or questions regarding this Privacy Policy are welcomed and can be addressed to:

Email: support@mydona.com