Email Marketing
If you choose to opt-in to our newsletter, we use Constant Contact to securely store your email address and send updates related to the Variety Catalog and World Coffee Research.
If at any time you wish to stop or change how we communicate with you, send us a message at info@worldcoffeeresearch.org. Additionally, you can remove yourself from our newsletter list by clicking unsubscribe at the bottom of our emails.
Analytics
We use Google Analytics to help us understand how users interact with and use our website. We have implemented the service in a privacy-conscious way that sends anonymized data, and does not rely on setting cookies in your browser. We do not use it to gather information that personally identifies you. This data is generated and stored by Google and therefore is subject to their privacy policies. To learn more about about how Google uses this information and how to control or opt out of this type of tracking, please read more here.
Essential Cookies
In order to keep our site and users safe, the application may set the following cookies on your browser. You can manage your cookie settings in your browser at any time. For more information visit your browser's help center or read more here.
- CRAFT_CSRF_TOKEN: Used to protect forms from automated and submissions. Valid only for your current session.
GDPR Policy
This General Data Protection Regulation (GDPR) Policy outlines how World Coffee Research collects, uses, stores, and protects the personal data of individuals ("data subjects") in accordance with the European Union's GDPR. We are committed to respecting the privacy of all stakeholders and ensuring their data is handled responsibly.
Scope: This Policy applies to all personal data collected through our website, file sharing platforms, and any communication channels (email, phone, text, etc.) we use to interact with data subjects located in the European Union (EU) or European Economic Area (EEA).
Data Collection and Use: We only collect personal data that is necessary for specific, legitimate purposes. These purposes may include:
- Processing contributions and managing member relationships
- Delivering our programs and services
- Sending newsletters and updates about our work
- Responding to inquiries and providing external support
- Employee PII needed for payroll processing and identity verification
Data Subject Rights: Under the GDPR, data subjects have various rights regarding their personal data. These include:
- The right to grant permission to collect and use their personal data
- The right to withdraw the permission to use their personal data
- The right to access and rectify their personal data
- The right to erasure (deletion) of their personal data
- The right to restrict the processing of their personal data
- The right to data portability (receiving their data in a machine-readable format)
- The right to object to automated decision-making
The technology that we use to store and manage member data is GDPR compliant.
Data Security: World Coffee Research has implemented appropriate technical and organizational measures to protect personal data from unauthorized access, disclosure, alteration, or destruction. These measures include:
- Secure data storage and access controls
- Regular security assessments and updates
- Employee training on data privacy practices
Data Transfers: We may transfer personal data to third-party service providers located outside the EU/EEA. We will only do so if adequate safeguards are in place to protect the data, such as standard data protection clauses approved by the European Commission.
Retention Period: We will retain personal data for no longer than necessary for the purpose it was collected.
Enforcement: We are committed to enforcing this Policy throughout our organization. This includes:
- The IT Committee oversees GDPR compliance
- Implementing data protection training for all staff
- Conducting regular reviews to ensure compliance with this Policy
Contact: If you have any questions about this Policy or your data subject rights, please contact the IT Committee. You also have the right to lodge a complaint with a supervisory authority in the EU/EEA.
Updates to this Policy: We may update this Policy from time to time to reflect changes in data privacy laws or regulations. We will post any updates on our website.