Who we are

This website redflagonline.org is operated by Red Flag, a magazine registered at BCM 7750 London WC1N 3XX. You can contact us by email on [email protected]

What personal data we collect and why we collect it

We collect information about you:

1. When you give it to us directly

You may give us your personal data in order to subscribe to a newsletter or publication, when you contact us by phone, email or post, when you sign a petition / statement, and/or when you donate money to us.

2. When you give it to us indirectly

Your information will also be provided to us when you follow us or otherwise interact with on or via Twitter, when you like and/or join our page on Facebook or interact with us in other ways on or via Facebook.

3. When you give permission to other organisations to share it or it is publicly available

We may combine information you provide to us with information available from external publicly available sources. Depending on your privacy settings for social media services, we may also access information from those accounts or services. We use this information to gain a better understanding of you and to improve our communications and fundraising activities.

4. When you visit our website

We use cookies to identify you when you visit our website. Please refer to our Cookies Policy for details on the way our use of cookies affects your personal data.

What information do we collect?

We may collect, store and use the following kinds of personal data:

(1) We will typically hold your name and contact details, including telephone number, location, and e-mail address. However, we may request other information where it is appropriate and relevant, for example:

  • Your bank details or debit/credit card details (if making a donation).

(2) any communication preferences you give;

(3) information about your computer and about your visits to and use of this website including your IP address, geographical location, browser type, referral source, length of visit and number of page views; and/or

(4) any other information shared with us as per clause 1.

Children should not provide personal data without the consent of an adult.

How and why will we use your personal data?

Personal data, however provided to us, will be used for the purposes specified in this Policy or in relevant parts of the website.

We may use your personal information to:

(1) Enable you to subscribe to our hard copy publications;

(2) Send you information about our work, campaigns, organisations and any other information, products or services that we provide (this will not be done without your consent);

(3) Provide you with the services, products or information you have requested;

(4) If you request, put you in touch with other supporters in your area (who have also provided such consent);

(5) Handle the administration of any donation or other payment you make via credit/debit card, cheque, standing order or BACS transfer;

(6) Collect payments from you and send statements and/or receipts to you;

(7) Conduct research into the impact of our activity / campaigns;

(8) Deal with enquiries and complaints made by you relating to the website or us in general;

(9) Make petition submissions to third parties, where you have signed a petition and the third party is a target of the campaign to which the petition relates; and/or

(10) Audit and/or administer our accounts.

Cookies

We use cookies on this website for the purpose of collecting anonymous usage statistics through Google Analytics. This data does not include any personal data. You can opt out of Google Analytics here.

Communications, updates, fundraising

Where you have provided appropriate consent, we will contact you by telephone and e-mail, with targeted communications to let you know about our events and/or activities that we consider may be of particular interest; about the work of Red Flag; and to ask for donations or other support.

Donations and other payments

All financial transactions carried out on our website are handled through either:

  • PayPal (Europe) S.à r.l. (“PayPal”), a third party payment services provider. Read PayPal’s privacy policy here.

We will provide your personal data to PayPal only to the extent necessary for the purposes of processing payments for transactions you enter into with us. We do not store your financial details.

How long we retain your data

We retain mailing list data for as long as you remain a member of our mailing list. You can unsubscribe at any time using the link in the footer of the email.

Event attendee data will be deleted within one month of the relevant event unless you opt in to allow us to retain it.

Donation data will be retained for the purposes of compliance with electoral law, until we believe enough time has elapsed that the donation can be deemed legally compliant.

What rights you have over your data

If you have provided us with personal data, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you.

You have the right to request rectification of any mistake in your personal data, and the right to request a restriction on the processing of your personal data.

To exercise any of these rights, please email [email protected]

How we protect your data

We have taken standard security measures to protect the data we store, including strong passwords, and two-factor authentication where relevant. The data is only processed by our members of staff and directors.

Contact information

To contact us about your privacy, please email [email protected]

Complaints

You have the right to lodge a complaint about us with the supervisory authority, the UK’s Information Commissioner’s Office (ICO). The ICO can be contacted at www.ico.org.uk or by phone on 0303 123 1113.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

What personal data we collect and why we collect it

We collect personal data when you sign up to our email list through one of our ‘sign up to hear more’ forms, either on this website or on paper. This personal data consists of: email address, name, and optionally location.

We may also ask you to opt in to stay in touch when you provide data such as name and email address for the purpose of registering for a public event we hold. Providing such data is always optional. When you make a donation, you may decide to opt in to sharing your contact information with us as part of the donation process (see below).

The lawful basis on which we collect data under GDPR is for the legitimate interest of direct marketing. The term ‘direct marketing’ is interpreted broadly by the authorities to include our purposes as an organisation, namely political campaigning. You can opt out and unsubscribe at any time using the link in the footer of the email.

Children should not provide personal data without the consent of an adult.

The data collected is used for the purpose of informing you by email about our events and campaigns, soliciting donations, and involving you in decisions about the direction of Another Europe is Possible.

We will not process your data for any purpose other than the purposes stated in this privacy policy.

Cookies

We use cookies on this website for the purpose of collecting anonymous usage statistics through Google Analytics. This data does not include any personal data. You can opt out of Google Analytics here.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

We do not share your personal data with any third parties.

Our email list is stored in email service provider Mailchimp, and we use their software to send emails to our mailing list. Mailchimp’s data centres are US-based. It is certified with the EU-US Privacy Shield Framework and compliant with GDPR. We have entered into a data processing addendum agreement with Mailchimp.

When you register for an event we hold you will be asked to provide personal data to our events service provider Eventbrite, for the purpose of us administering the event. Eventbrite’s data centres are US-based. It is certified with the EU-US Privacy Shield Framework and compliant with GDPR.

If you make a donation then you may provide personal data, including payment card data, directly to our payment processor Paypal for the purpose of making that payment. This involves setting up a stand-alone Paypal account where Paypal is the data controller. We do not collect or store sensitive payment data. Paypal may share your contact details with us if you opt in when they ask.

How long we retain your data

We retain mailing list data for as long as you remain a member of our mailing list. You can unsubscribe at any time using the link in the footer of the email.

Event attendee data will be deleted within one month of the relevant event unless you opt in to allow us to retain it.

Donation data will be retained for the purposes of compliance with electoral law, until we believe enough time has elapsed that the donation can be deemed legally compliant.

What rights you have over your data

If you have provided us with personal data, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you.

You have the right to request rectification of any mistake in your personal data, and the right to request a restriction on the processing of your personal data.

To exercise any of these rights, please email [email protected]

How we protect your data

We have taken standard security measures to protect the data we store, including strong passwords, and two-factor authentication where relevant. The data is only processed by Another Europe is Possible’s members of staff and directors.

Contact information

To contact us about your privacy, please email [email protected]

Complaints

You have the right to lodge a complaint about us with the supervisory authority, the UK’s Information Commissioner’s Office (ICO). The ICO can be contacted at www.ico.org.uk or by phone on 0303 123 1113.

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

Who we share your data with

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

Additional information

How we protect your data

What data breach procedures we have in place

What third parties we receive data from

What automated decision making and/or profiling we do with user data

Industry regulatory disclosure requirements