+27 81 582 2116
+27 68 701 6168
Privacy Policy
Healing Hands Community Project Privacy
Effective Date: 10 Dec 2025
1. Introduction and Scope
Healing Hands Community Project (“we,” “us,” or “our”) is a nonprofit organization dedicated to [briefly state your mission]. We are committed to protecting the privacy and security of the personal information we collect from our donors, beneficiaries, volunteers, and website visitors worldwide.
This Privacy Policy explains how we collect, use, and protect your personal information. It also outlines your rights regarding your data. Given our global mission and reach, we comply with the strictest applicable data protection laws, including:
The Protection of Personal Information Act (POPIA) of South Africa.
The European Union General Data Protection Regulation (EU GDPR).
Relevant United States federal and state data protection laws (e.g., California Consumer Privacy Act/CPRA, etc.).
By accessing our website or making a donation, you agree to the terms of this Privacy Policy.
2. Information We Collect
We collect information directly from you and automatically through your use of our website.
| Category of Data | Examples of Information Collected | Purpose of Collection | Legal Basis (GDPR/POPIA) |
| Identity/Contact Data | Name, address, email address, phone number. | To process donations, issue receipts, send newsletters (with consent), and respond to inquiries. | Consent, Necessary for a contract, Legitimate Interest. |
| Financial/Donation Data | Donation amount, payment method details (collected securely by a third-party processor), transaction history. | To process and confirm donations and for mandatory financial record-keeping. | Necessary for a contract, Legal obligation. |
| Technical Data | IP address, browser type, operating system, pages visited, time of visit, and referrer website. | For website security, statistical analysis, and to improve our website experience. | Legitimate Interest. |
| Special Personal Information (POPIA) / Special Category Data (GDPR) | Health information or religious/philosophical beliefs (e.g., if relevant to a specific beneficiary program or a donor’s designation). | Only collected with explicit, informed consent for the specific purpose of administering a program or adhering to a donation restriction. | Explicit Consent, Necessary for substantial public interest (nonprofit aims). |
3. How We Use Your Information
We use the information we collect for the following specific, explicit, and legitimate purposes:
To process and acknowledge donations.
To manage our charitable projects and operations.
To comply with all statutory and regulatory requirements, including tax laws.
To send you updates, news, and project reports, where you have opted in.
To manage our volunteer and beneficiary programs.
To prevent fraud and enhance the security of our website.
4. Sharing and Disclosure of Information
We do not sell, rent, or trade your personal information. We only share data with third parties necessary to operate our charity or as required by law. These include:
Payment Processors: To securely handle donations (e.g., Stripe, PayPal). They process your data under their own privacy policies.
Service Providers: Providers who support our email, IT, and website hosting. These “Operators” (POPIA) or “Processors” (GDPR) are bound by contract to protect your data.
Legal Authorities: When required by law, court order, or governmental regulation, especially in the context of international financial compliance (e.g., anti-money laundering).
5. International Data Transfers
As a global organization, your personal data may be transferred to, and processed in, countries outside of the jurisdiction where you reside.
We ensure all cross-border transfers comply with international standards.
For EU/UK residents, transfers outside the EEA/UK are protected by Standard Contractual Clauses (SCCs) or other legally recognized safeguards.
For data subject to POPIA, we ensure the receiving party is subject to a law or binding agreement that upholds substantially similar privacy protection principles.
6. Your Data Protection Rights
Depending on your location, you have rights over your personal data. We commit to honoring all applicable rights globally.
| Jurisdiction | Right | Description |
| GDPR/POPIA/US Laws | Right to Access | You can request a copy of the personal information we hold about you. |
| GDPR/POPIA/US Laws | Right to Rectification | You can ask us to correct incomplete or inaccurate data. |
| GDPR/POPIA | Right to Erasure (Right to be Forgotten) | You can ask us to delete your personal information, subject to legal retention obligations (e.g., tax records). |
| GDPR/POPIA | Right to Object to Processing | You can object to us processing your data where we rely on a legitimate interest or for direct marketing. |
| US Laws (CCPA/CPRA) | Right to Opt-Out of Sale/Sharing | We do not sell or share your data for targeted advertising. You have the right to confirm this. |
| POPIA | Right to Object to Processing | You can object to processing on reasonable grounds, unless processing is required by law. |
To exercise any of these rights, please contact our Information Officer/Data Protection Officer (DPO) using the contact details below.
7. Data Security and Retention
We implement appropriate technical and organizational measures to safeguard your personal data against loss, unauthorized access, destruction, or compromise.
We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by law (e.g., financial/tax records are often retained for [State the relevant retention period, e.g., 5-7 years]).
8. Changes to this Policy
We may update this policy periodically. Any changes will be posted on this page with a revised “Last Updated” date.
9. Contact Information and Information Officer
If you have questions about this policy or wish to exercise your rights, please contact:
Information Officer / Data Protection Officer (DPO)
Name: AB Nkomo
Email: devteam@healinghandscp.co.za
Address: 12 Whitlock St, Gqeberha Central, Gqeberha, 6001
