Privacy Policy

1. Roles

Depending on the activity, the Platform Operator and Mission Entity may act as separate controllers, joint controllers, or processor/service-provider relationships. The applicable role depends on whether the processing relates to marketplace operations, donations, educational program funding, receipt issuance, or compliance.

2. Categories of Data We May Process

We may process:

• account and identity data,
• order and transaction data,
• seller onboarding and compliance data,
• donor and contribution data,
• receipts and acknowledgment records,
• payout and settlement data,
• communications and support records,
• optional religious-expression data such as DIR content,
• public metrics and aggregated analytics,
• device, cookie, and security log data.

3. Sensitive / Special-Category Data

Certain content, including optional religious-expression data and some profile data, may be treated as sensitive or special-category data under applicable law. Where required, we rely on explicit consent or another lawful basis.

4. Purposes of Processing

We process data to:

• operate the marketplace,
• process orders and customer support,
• administer donations and mission allocations,
• issue lawful acknowledgments or receipts,
• fund and administer educational programs,
• comply with law, fraud controls, and audits,
• improve security and site reliability.

5. Lawful Bases

Depending on the jurisdiction and context, we may process data on the basis of:

• contract,
• legitimate interests,
• legal obligation,
• consent,
• public interest / charitable mission where applicable.

6. Cookies and Tracking

We use cookies and similar technologies for necessary functionality and, where enabled, analytics or marketing. Non-essential tracking is subject to applicable consent requirements. For more details, see our Cookie and Tracking Policy.

7. Data Residency and Cross-Border Transfers

We use a jurisdiction-aware data governance framework. Data may be anchored in or transferred among the EEA, Switzerland, Israel, the United States, Australia, or other lawful regions, subject to applicable transfer mechanisms and internal controls.

8. Sharing

We may share data with:

• payment providers,
• hosting and infrastructure providers,
• compliance and fraud vendors,
• professional advisors,
• affiliated mission entities where necessary,
• authorities where legally required.

9. Retention

We retain data according to legal, tax, accounting, security, and operational needs. Different categories may have different retention periods.

10. Rights

Subject to local law, users may have rights to access, correction, deletion, objection, portability, restriction, or complaint.

11. Security

We use administrative, technical, and organizational measures intended to protect personal data, but no system can guarantee absolute security.

12. Children

The Platform is not intended for children below the age permitted by applicable law without required parental/guardian consent.

13. Contact

For privacy-related inquiries, please use the contact information provided on the Platform’s Contact page.