Data Policy

1. Purpose

This Data Privacy and Data Protection Policy outlines YODET’s commitment to safeguarding the personal data of its beneficiaries, visitors, trainees, and donors. The policy ensures that YODET collects, stores, and processes data in a transparent, secure, and responsible manner.

2. Scope

This policy applies to all personal data collected, stored, processed, or transmitted by YODET. It covers:

• Employees
• Contractors
• Board members
• Trainees
• Other stakeholders

The policy includes data collected through YODET’s website, programs, training sessions, and other forms of interaction.

3. Principles of Data Privacy and Protection

YODET is guided by the following principles:

• Transparency: We inform individuals about the data we collect, the reasons for collection, and how it will be used.
• Data Minimization: We collect only the minimum data necessary for the intended purpose.
• Security: We implement strong security measures to protect personal data from unauthorized access, loss, or misuse.
• Confidentiality: Personal data is kept confidential and is accessible only to authorized personnel.
• Right to Access and Control: Individuals have the right to access, correct, delete, or restrict the use of their personal data in accordance with YODET’s policies and procedures.

4. Types of Data Collected

YODET collects only essential information necessary to fulfill its mission, including:

• Identification Information: Name, address, email, phone number, and age.
• Professional and Educational Information: Employment status, educational background, and specialization (particularly for program participants).
• Financial Information: Credit card details and other payment information (applicable to donors and some services).
• Technical Data: Information for technical support, including device details, system configuration, and location data.

5. Collection and Use of Personal Data

Data is collected when individuals:

• Visit our website or sign up for newsletters.
• Participate in YODET's programs, training, or assistance services.
• Interact with YODET's social media platforms or digital services.

YODET uses this data for:

• Program Improvement: To enhance the effectiveness and reach of YODET’s initiatives.
• Communication: To share information, updates, and marketing materials related to YODET’s programs.
• Technical Support: To provide tailored support and assistance to individuals requiring technical help.

6. Data Storage and Security Measures

• Data Security: YODET employs security protocols to protect data from unauthorized access, loss, or misuse. These include secure storage, encrypted data transmission, and access control.
• Data Storage: Personal data is stored securely within YODET’s controlled environments.
• Access Control: Access is limited to authorized personnel who require it to perform their duties.

7. Data Sharing and Third-Party Access

YODET does not sell or lease personal data to third parties. Data sharing is limited to:

• Trusted Partners: Where necessary for program implementation, data may be shared with trusted advisors and consultants under strict confidentiality agreements.
• Lawful Requests: Data will be shared with regulatory or governmental bodies only as legally required and only after exhausting alternatives to safeguard user privacy.

8. Social Media and External Platforms

YODET uses third-party platforms (such as social media) to advance its mission. While YODET seeks to protect data shared on these platforms, users are encouraged to review the privacy policies of these external services.

9. Rights of Data Subjects

Individuals whose data is collected by YODET have the following rights:

• Access: The right to view what data YODET has collected about them.
• Correction: The right to correct inaccurate or incomplete data.

9. Rights of Data Subjects

Individuals whose data is collected by YODET have the following rights:

• Access: The right to view what data YODET has collected about them.
• Correction: The right to correct inaccurate or incomplete data.
• Deletion: The right to request the deletion of personal data, where legally permissible.
• Limitation: The right to limit the use or sharing of their data.

To exercise these rights, individuals can contact YODET at contact@yodet.org.

10. Data Retention and Disposal

• YODET retains personal data only as long as necessary for the purpose it was collected, or as legally required.
• Secure disposal methods are used to delete data when it is no longer needed, ensuring the data cannot be reconstructed or accessed after deletion.

11. Data Breach Response

In the event of a data breach, YODET will:

• Inform affected individuals promptly if their data has been compromised.
• Take immediate measures to contain and mitigate the impact of the breach.
• Conduct a post-incident review to address any gaps in data protection and strengthen security measures.

12. Policy Updates and Reviews

This policy is subject to annual review and updates to ensure continued alignment with best practices, legal standards, and YODET’s operational needs. All amendments will be communicated to staff and stakeholders as appropriate.

13. Responsibilities

• Data Protection Officer: YODET will assign a Data Protection Officer responsible for policy compliance, addressing data privacy queries, and overseeing security measures.
• Employees and Contractors: All personnel with access to personal data are responsible for adhering to YODET’s data protection guidelines and ensuring the confidentiality of data.