Until we hear from Stripe, we'll cover processing fees to ensure 100% of your donation goes to charity.
Hate those long privacy policies full of legal jargon? Us too, that's why we've provided this handy little summary for you.
We don’t sell your data.
When you pay to view the list, you submit your name, location, and email address:
•your name and location will be publicly viewable to all paying customers, but you can anonymise this if you wish by submitting fake information;
•your email address will never be publicly revealed, sold, or shared.
If you nominate a charity, this information is not associated with you on the list. Donations are stored in a separate database where we keep track of only two things: the charity and the amount raised in its name.
We'll email you once with a receipt of your purchase and a personal link to view the list, and that's it.
Stripe handle your payment details; they never touch our server.
If you prefer lawyer speak, continue reading, but remember that you only submit to us a maximum of three pieces of personal data, all of which you can anonymise if you choose.
Last reviewed 26th January, '21
Who Paid? (“Who Paid,” “us,” “we,” or “our”) is committed to protecting and respecting your privacy in connection with your use of our website, whopaid.app (the “Website” or the “Product”).
Please read the following carefully to understand our practices regarding your personal data, and how we will collect, use, and disclose your personal data.
When you submit it to us, we collect and process your name, location, and e-mail address.
You can anonymise your name and are under no obligation to provide your location.
We do not collect, process, or store credit or debit card data, this is handled by Stripe. You enter your payment information into an element provided directly by Stripe, and such information will never be captured by us or seen by our server.
Your email address is transmitted to Stripe (our payment handler) in order to provide you with a copy of your receipt. Outside of this, we do not provide your personal data to any third party.
We follow generally accepted standards to protect yhe personal data submitted to us, both during transmission and once it is received. If you have any questions about the security of your personal data, you can contact us at firstname.lastname@example.org.
You will receive no electronic communication from us except a receipt of your contribution.
All data you provide to us through the Website is stored on our secure servers located in the United Kingdom.
All payment transactions are encrypted using SSL technology. All payment data is stored with our payment processor and never our personal servers.
The transmission of data via the Internet is never completely secure. While we do our best to protect your personal data, there can be no absolute guarantee to the security of your data transmitted to the Website; transmission is at your own risk. Once your data is received, we use strict procedures and security features in an attempt to prohibit unauthorised access.
The European Union’s General Data Protection Regulation (“GDPR”) give certain rights to applicable individuals in relation to their personal data. We have implemented transparency and assistance to help such individuals exercise those rights.
Bearing in mind you are under no obligation to provide true-to-identity information during your interaction with us, the rights afforded to you are:
Remember you have the option to anonymise your data prior to submitting it.
To exercise one or more of these rights, you can email email@example.com. We will respond to your request in a reasonable timeframe in accordance with applicable law.
We use the data you submit to us to:
In accordance with GDPR, we provide the following information regarding its Article 6 legal bases for personal data processing:
We may disclose your personal data to third parties if:
The retention periods applied by us comply with applicable legislation in effect on the date hereof, namely, for data:
Other data will be kept as long as necessary for the purposes pursued and in compliance with our legal obligations, including the applicable statute of limitations.
To the extent that you have provided appropriate consent under applicable law to certain processing activities, such consent can be withdrawn at any time by emailing firstname.lastname@example.org.
The service providers or other third parties listed above to whom we may disclose your personal data may be domiciled abroad. In such case, we require them to take, in accordance with applicable legislation, all organisational and technical measures that permit a sufficient level of protection of your personal data.
We are responsible for the processing of personal data received, and subsequent transfers to a third party acting as an agent on its behalf.