The Privacy Policy is a legal document that explains how the Trust handles the personal information of its website visitors. This is often legally required.
1. Introduction
Purpose: State the policy’s purpose—to inform users about the collection, use, and protection of their personal data.
Effective Date: State when the policy was last updated and when it is effective.
Contact Information: Provide contact details for the person or department responsible for privacy inquiries (e.g., a Data Protection Officer or Privacy Team).
2. Information We Collect
Types of Data: Detail exactly what personal information is collected, including:
Direct Identifiers: Name, email address, physical address, phone number (collected via contact forms, sign-ups, or donations).
Usage Data: IP address, browser type, operating system, pages viewed, time spent on site (collected via analytics/cookies).
Financial Data (If applicable): If donations or payments are processed, state what data is collected (and whether a third-party processor handles it).
Methods of Collection: Explain how the data is collected (e.g., directly from user forms, automatically via cookies and tracking technologies).
3. How We Use Your Information (Purpose of Processing)
For each type of data collected, explain the specific purpose, such as:
To provide information about the Trust’s work.
To process donations or transactions.
To send newsletters or updates (requires specific consent).
To improve the website and user experience.
To comply with legal obligations.
4. Legal Basis for Processing 
If you deal with users in the india you must state the legal basis for processing data
5. Sharing Your Information
Third Parties: Disclose whether you share personal data and with whom
Data Sale: Explicitly state if you do not sell personal data (if applicable) or detail the process for opting out if you do.
6. Cookies and Tracking Technologies
Disclosure: State that the website uses cookies and/or other tracking technologies.
Purpose: Explain the purpose of the cookies
User Controls: Direct users on how they can manage or refuse cookies
7. Data Security and Retention
Security Measures: Briefly describe the measures taken to protect user data from unauthorized access or breaches
Data Retention: Explain how long you keep personal data and the criteria used to determine retention periods.
8. Your Data Protection Rights
User Rights: Outline the rights users have over their data, which vary by jurisdiction but often include the right to:
Access their personal data.
Request correction or deletion of their data (Right to Erasure/Right to be Forgotten).
Object to processing.
Withdraw consent.
How to Exercise Rights: Explain the process for submitting a request to exercise these rights.