International Waqf Fund Privacy Statement

At International Waqf Fund we are committed to keeping your personal data secure and confidential.

We do not share personal data with another organisation for their own marketing purposes and we do not sell personal data.

We have written this privacy statement to inform you about why we collect and use your personal data, in what circumstances we may share your personal data with another organisation, and your individual rights with regard your personal data.

We are committed to being fully open and honest to you about why we collect and use your personal data. This is the right thing to do and it will also help you understand and exercise your rights over your personal data.

This privacy notice is categorised into the following sections for ease of reference.

  • Who we are
  • Your rights over your personal data
  • Privacy statement for our supporters
  • Privacy statement for our employees
  • Privacy statement for our beneficiaries
  • Use of cookies
  • How long we keep personal data
  • Changes to the privacy statement
  • How to make a complaint

If you have any questions about this privacy statement or information we hold about you, please contact our Data Protection Lead:

Who We Are?

We are an independent humanitarian and development organization striving to make the world a better and fairer place.

Our registered address is:
22-23 Sampson Road North

Birmingham

B11 1BL

Your rights over your personal data

If we ask for your consent to use your personal data, you always have the right to withdraw your consent at any time.

You can expect that any direct marketing materials that you receive from us will include clear and easy instructions on how to withdraw your consent.  For example, any marketing emails we send you will include an ‘unsubscribe’ link at the end.

If you want to stop the processing of your personal data for any marketing purpose (including post), please contact our supporter relations team:

Telephone: 0800 520 0000
Email: [email protected]

Post: Supporter Relations Team, International Waqf Fund, Birmingham, B11 1BL

You have the right to ask what personal data we hold about you and to request a copy of that information.

You have the right to know why your personal data is being collected and used and to request that this is restricted or stopped.

You have the right to request that a copy of your personal data that we hold is transferred directly to another organisation.

You have the right to request that your personal data that we hold is erased.

If you believe your personal data that we hold is inaccurate, you have the right to request that it is corrected or updated.

If you want to exercise any of these rights or want to find out more information please contact our Data Protection Lead.   You have the right to expect a confidential and professional service and to receive a full response.

Telephone: 0121 622 0616
Email: [email protected]
Post: Data Protection Lead, International Waqf Fund, 22-24 Sampson Road North, Birmingham, B11 1BL

Privacy statement for our supporters

If you are a volunteer, please see our ‘Privacy statement for our employees’ section.

  • When you make a donation to us.
  • When you sign up to a campaign with us.
  • When you register for, or attend one of our events, or enter one of our prize draws.
  • When you contact us by email, telephone, letter or through our website.
  • When you visit and use our website (See ‘Use of cookies’ section).
  • When you interact with us on our social media platforms.
  • To process your donations and gift aid declarations.
  • To keep you informed about our activities and ways to support us. Please note:
    – We will only send you marketing materials by email, phone or SMT text if you have provided your consent. You can withdraw your consent at any time (See ‘Your rights over your personal data’ section).
    – We will not send you marketing materials by the post if you have asked us to stop (See ‘Your rights over your personal data’ section).
  • To deal with your queries, requests and responses to our projects and campaigns.
  • To send you a confirmation of your donation and event registration.
  • To personalise our services, for example, we may use personal data you have given us and your interactions with our services to help us predict your interests and to send you marketing materials that we think might be of most interest to you.
  • To improve our services, for example, if we are allowed, we may send you a survey to seek your feedback on our services.
  • When you agree to support us through a third party fundraising site such as Just Giving or Facebook Giving.
  • If we are allowed to send you marketing materials, we may use sources in the public domain to check that your marketing preferences and contact details are accurate and up-to-date. Examples of such sources include royal mail databases and the fundraising preference system.
  • When we receive significant donations or support we may run a background check using public sources and a third party screening and due diligence service provided by Thomson Reuters. We carry out background checks in accordance with our due diligence policies and procedures in order to protect our charitable interests.
  • We may undertake research for high value fundraising using publicly available sources such as national and local press, charities commission, companies’ house and from social media sites like Facebook and LinkedIn. We will only use these sources where the data has been deliberately made public.
  • If we receive gift aid from you, we may be required to share your personal data with Her Majesty’s Revenues & Customs (HMRC) to receive the tax rebate.
  • With law enforcement agencies if we receive a valid legal instruction.
  • If you register for one of our events or challenges, we may be required to share your personal data with event organisers for health and safety purposes.
  • If you use a debit or credit card to make a donation or purchase, we will share your personal data with a payment processing partner.
  • If we are allowed to send you marketing materials, we may share your personal data with a marketing company (such as a mailing house) to help us prepare and send out marketing materials on our behalf.
  • If we receive a significant donation or support we may run a background check using a third party screening and due diligence service provided by Thomson Reuters. We carry out background checks in accordance with our due diligence policies and procedures in order to protect our charitable interests.
  • We contract a limited amount of third parties to store data on our behalf. This may include your personal data. Types of third parties we use include cloud storage, website hosting and software providers.
  • If we are required by law, we may share your personal data with data cleaning companies to ensure that the data we hold about you is accurate and up-to-date.

We only share personal data with another organisation if we have a legal basis to do so.

In all the above situations, we will ensure that we have a written contract (or valid legal instruction) in place with the organisation that includes data protection clauses to ensure that they do not use personal data for their own marketing purposes, and have security requirements in place to protect your personal data.

Where we have your consent. For example, we will only send you emails, make telephone calls or send you SMS text messages with your consent.  You can withdraw this consent at any time (See ‘Your rights over your personal data’ section).

Where the processing is necessary to enter into or fulfil the terms and conditions of a contract.  For example, processing your donation made to us.

Where the processing is required under the law.  For example, disclosing your personal data to a law enforcement agency if we receive a valid legal instruction.

Where the processing is in our legitimate interests. For example, we will send you communications and marketing materials via post unless you tell us to stop. (See ‘Your rights over your personal data’ section).  We will only rely on this legal basis if your interests and fundamental rights do not override our interest.

Privacy statement for our employees

This section includes our privacy statement to staff, volunteers, interns, apprentices and contractors (including prospective employees).

  • You apply for a position with us or contact us in relation to volunteering for us, or fundraising on our behalf.
  • As part of the everyday administration and management of your contract with us. For example:
    – You let us know if there is a change to your personal data.
    – You apply for or notify us of leave.
    – You complete your appraisal.
    – You make a formal complaint or raise a concern about your work with us.
  • As part of the everyday administration of work-related activities. For example:
    – You use an ICT approved or ICT provided system or technology.
    – You are present (CCTV) at one of our sites or sign in at one of our buildings.
    – You register to become involved in work-related activities such as a first aider, fire warden, surge roster staff or registered driver.
    – You attend or complete one of our training courses.
    – You make a formal complaint or raise a concern.
  • To recruit and select employees.
  • To enable payment of salary, tax, pension contributions and expenses.
  • To manage your contract with us. For example, processing leave requests and maintaining appropriate levels of conduct and performance etc.
  • To meet legal obligations. For example, we may process your personal data (including sensitive data such as physical or mental health) to protect your health and safety and to fulfil our equal opportunities obligations etc.
  • To take appropriate action in the event that a formal complaint or concern is raised, including safeguarding.
  • To run background checks in accordance with our due diligence policies and procedures.
  • To plan staffing levels and necessary cover.
  • To keep you informed of, and to improve our strategy, plans, activities and services. For example, we welcome and encourage your feedback, and in some cases might actively seek this.

Other employees might access your personal data where this is required for work purposes.  Where this is the case, the organisation relies on all employees to access and use personal data in accordance with their obligations under our data protection policy.

We run a background check on all employees using a third party screening and due diligence service provided by Thomson Reuters.  We might also use sources in the public domain such as Google or the Driver and Vehicle Licensing (DVLA) database for this purpose. We carry out background checks in accordance with our due diligence policies and procedures in order to protect our charitable interests such as the risk of fraud, corruption, bribery, terrorism and money laundering.

  • With Her Majesty’s Revenues & Customs (HMRC) for taxation purposes.
  • With law enforcement agencies if we receive a valid legal instruction.
  • With third parties that we contract to administer HR activities on our behalf including payroll, pension and health/insurance cover providers.
  • If you are involved in an insurance claim, we might share your personal data with insurance companies / brokers.
  • As part of our recruitment and selection processes, we might run a background check on you. This may include sharing your personal data with employment agencies, previous employers, the Disclosure & Barring Service (DBS), the Driver and Vehicle Licensing Authority (DVLA) and our third party screening and due diligence service provided by Thomson Reuters.
  • We contract a limited amount of third parties to store data on our behalf. This may include your personal data. Types of third parties we use include cloud storage, website hosting and software providers.

We only share personal data with another organisation if we have a legal basis to do so.

In all the above situations, we will ensure that we have a written contract (or valid legal instruction) in place with the organisation that includes data protection clauses to ensure that they do not use personal data for their own marketing purposes, and have security requirements in place to protect your personal data.

Where the processing is necessary to enter into or fulfil the terms and conditions of a contract.  For example, to enable payment of your salary, tax, pension contributions and expenses.

Where the processing is required under the law.  For example, collecting your medical information to protect your health & safety.

Where the processing is in our legitimate interests.  For example, using your leave details to plan staffing levels and necessary cover. We will only rely on this legal basis if your interests and fundamental rights do not override our interest.

Where the processing is in your vital life interest.  For example, sharing your personal data with emergency services in the event of a medical emergency.

Privacy statement for our beneficiaries

This section is pending approval.

Like most websites, we use cookies. Cookies are small text files that are stored on your device when you visit certain websites. Internet browsers normally accept cookies by default.

We use cookies to provide you with a smooth and efficient experience while using our services.  For example, we use cookies to enable the donation process, to statistically analyse site usage, and to customise our site’s content, layout, and services.

By using our website, you consent to our use of cookies.  If you do not accept our use of cookies, please set your internet browser to reject cookies (this may impair your ability to use our website so that some features may not work) or opt-out using the National Advertising Initiative.

There are several types of cookie that me may use on our website:

Session Cookies. We use these cookies to keep track of your online donations in the shopping cart. We do not store credit card details in the cookies we create.  You need to have cookies enabled to make donations to us using our website.

Google Analytics. We may use this common cookie to collect anonymous information about how you use our website. This helps us improve your experience, for example, by helping us identify and resolve errors, and to determine relevant information to show you when you’re browsing.

Youtube. We may use this common cookie to collect anonymous information about how you use our website. This helps us improve your experience, for example, by helping us identify and resolve errors, and to determine relevant information to show you when you’re browsing.

Advertising. We sometimes advertise on third party websites.  Cookies are used to help us and our advertisers see which advertisements you interact with.  Each advertiser will uses their own tracking cookies.

addthis.com. This is a common social sharing tool that is owned and operated by Clearspring Technologies.

We keep personal data in line with our data retention policy.  The length of time we keep each category of personal data will depend on the reason it was collected and our statutory and contractural requirements, for example, we are required to keep a record of donations subject to gift aid for at least seven years to comply with HMRC rules.

For more information about our data retention policy including how long we keep your personal data, please contact the Data Protection Lead.

Telephone: 0121622 0616
Email: [email protected]
Post: Data Protection Lead, International Waqf Fund, 22-24 Sampson Road North, Birmingham, B11 1BL

We keep our privacy statement under regular review and we will place any updates on this web page. If material changes are made we will place a prominent notice on our website.

This privacy statement was last updated on 25 May 2018.

If you are unhappy about how we have processed your personal data or have a privacy concern, we want to know about it.  To make a complaint or raise a concern please contact our Data Protection Lead.

Telephone: 0121622 0616
Email: [email protected]
Post: Data Protection Lead, International Waqf Fund, 22-24 Sampson Road North, Birmingham, B11 1BL

If you are unhappy with how we deal with your complaint or concern you should contact the UK data protection authority, the Information Commissioner’s Office (ICO).  The ICO can be contacted at: ico.org.uk/global/contact-us/

You also have the right to make your compliant to the ICO direct. However, they may advise you to contact us to see if the matter can be resolved in the first instance.