YMCA OF HONOLULU
EXTERNAL PRIVACY / DONOR PRIVACY
STANDARD OPERATING PROCEDURES
This privacy standard operating procedure (SOP) will advise you about our guidelines concerning the use of your personal information, including the reasonable efforts we make to protect your personal information in accordance with these guidelines, and about what choices you have concerning our use of such information. Please read this SOP carefully.
We keep your private information private by:
Not selling your information. You have entrusted the National Council of Young Men’s Christian Associations of the United States of America and its independent and autonomous member associations (collectively, the “YMCA”) with your personal information, and we are committed to using it wisely. The YMCA will not sell, share or otherwise transfer your personal information to anyone without your consent.
Restricting who has access to your information. The YMCA takes reasonable precautions to restrict access to your Internet account and personal information are accessible only by Professional Staff who are authorized to have access to your personal information for business purposes. If you have any questions or concerns about our privacy SOP, please contact us at: Info@ymcahonolulu.org, or 1441 Pali Highway Honolulu, HI 96813.
Please refer back to this SOP regularly. We may need to change this SOP from time to time to address new issues and reflect changes on our websites or within YMCA branches. We will post material changes on our websites or otherwise notify you and update the “last updated” field in the “Revision History” at the top of this page so that you will always know our policies regarding what information we gather, how we might use that information, and whether we will disclose that information to anyone.
SCOPE OF PRIVACY SOP
This SOP applies to the personal information that you provide to the YMCA, either through our websites and mobile applications, or in person at a YMCA branch or program site. This SOP does not apply to Personal Health Information (“PHI”) collected through the YMCA Diabetes Prevention Program or any other program offered by the YMCA that requires collection of PHI or other HIPPA protected information; or your use of unaffiliated sites to which this site links.
COLLECTION OF PERSONALLY IDENTIFIABLE INFORMATION
The YMCA collects personally identifiable information (“PII”) from you when you voluntarily submit such information to us. The collection of PII may occur in person or on a website or mobile application operated, provided, or controlled by the YMCA. This information may include your name, home address, email address, telephone number, date of birth, demographic information, sex-offender status, membership status, emergency contact information, and other information that we may need to collect in connection with certain events, including but not limited to:
- Registration for, or participation in, events, classes, camps, and other activities;
- Participation in the YMCA Nationwide Membership;
- Registration for surveys, forums, content submissions, chats, bulletin boards, discussion groups, requests for suggestions, or other services or activities offered on our websites;
- Answering your inquiries about our websites, organization, membership, or other services or activities; and/or
- Registration as a member of the YMCA.
COLLECTION OF PHOTOGRAPHS FOR IDENTIFYING MEMBERS, VOLUNTEERS, PARTICIPANTS
the YMCA may also collect your photograph, by capturing your image at a YMCA or scanning your personal identification card, for the purpose of identifying you as a member, volunteer, or program participant. When a photograph of your image is captured for the purpose of identifying you as a member, volunteer, or program participant, your photograph will not be used for any commercial purpose without your authorization.
USE AND DISCLOSURE OF PERSONALLY IDENTIFIABLE INFORMATION
If you do provide us with PII for an activity, event, or service, the YMCA may contact you based on the information you provide to communicate with you about YMCA activities that may be of interest to you and your family.
The YMCA will use its best efforts to never disclose any PII about you to any third-party for purposes unrelated to the YMCA without having received your permission except as provided for herein or otherwise permitted or required under applicable law.
The YMCA does not rent or sell PII, including information provided about children, to third-parties. The YMCA may share PII with trusted service providers, such as payment providers, technology partners or other providers that need access to your information to provide operational or other support services while you are a YMCA member or program participant. In certain circumstances, we may also share information with select similar non-profit organizations that may offer activities of interest to you.
We may also provide PII to regulatory authorities and law enforcement officials in accordance with applicable law or when we otherwise believe in good faith that the provision of such information is required or permitted by law, such as in connection with the investigation or assertion of legal defenses or for compliance matters.
COLLECTION OF PAYMENT TRANSACTION INFORMATION
When you make a payment or donation, we collect information to process the financial transaction and may use that information to contact you in the future about the YMCA and its programs. Your payment information is transmitted via tokenization to a certified payment processor using a secure Internet method that helps us maintain the privacy of this information. Your payment information does not reside on our computers and YMCA Professional staff can only access masked account numbers for information purposes only.
COLLECTION OF NON-PERSONALLY IDENTIFIABLE INFORMATION
We collect non-personally identifiable information without limitation, through the use of the following types of methodology:
“Cookie” technology: A cookie is an element of data that a website can send to your browser, which may then store it on your system to help enhance your experience in using the websites and to provide us with technical information about your website usage.
IP address tracking: An IP address is a number that is assigned to your computer when you are on the Internet. When you request pages from our websites, our servers log your IP address.
Web beacons: A Web beacon, or “clear gif,” is a small graphic image on a webpage or web-based document that a website can use to determine information about a user.
Non-personally identifiable information might include the browser you use, the type of computer, technical information about your means of connection to our websites (such as the operating systems and the Internet service providers utilized), and other similar information. Our systems may also automatically gather information about the areas you visit and search terms you utilize on our websites and about the links you may select from within our websites to other areas of the World Wide Web or elsewhere online.
Although an industry-standard do-not-track (DNT) protocol has not yet been established, YMCA’s information collection and disclosure practices and the choices it offers to consumers will continue to operate as described in this SOP.
USE OF YOUR NON-PERSONALLY IDENTIFIABLE INFORMATION
We use non-personally identifiable information for our purposes related to running the YMCA and its programs, and, in particular, to administering websites, and, in the aggregate, to determine what technologies are being used. We may also share aggregate, non-personally identifiable information with third-parties.
COLLECTION OF SENSITIVE INFORMATION
Where necessary, the YMCA may collect certain sensitive information from you, including:
- Payment card or bank account information to process fees or donations; and
- Health information in connection with various fitness programs, programs in which we are responsible for supervising children, health screenings, or other health service events that we may provide from time to time.
Access to sensitive information is restricted to those individuals who have a legitimate need for access. We will not use or disclose your information to third-parties unless such disclosure is necessary to accomplish the purpose for which the information is collected.
PRIVACY OF CHILDREN
We are mindful that young people need special safeguards and privacy protection. We realize that they may not understand all the provisions of our SOP or be able to make thoughtful decisions about the choices that are made available to our adult users. We strongly urge all parents or legal guardians to participate in their children’s exploration of the Internet and any online services, and to teach their children about protecting their personal information while online.
If we ask for PII from children under 13, we will take additional steps to protect the privacy of such information, including:
- Obtaining consent from the parent or legal guardian of the child before collecting or using the child’s PII;
- Notifying parents about what PII is being requested and how that PII will be used and/or shared, such as through this SOP;
- Limiting the collection of PII from children to no more than is reasonably necessary to accomplish the purpose of the collection; and
- Giving parents access to the PII we have collected from their children and offering them the opportunity to request that such PII be changed or deleted.
LINKS TO OTHER SITES
Users may find other content on our websites that link to the sites and services of other third-parties. We do not control the content or links appearing on these sites. Third-party sites or services, including their content and links, may be constantly changing and may have their own privacy policies and customer service policies. We encourage you to review the privacy policies of any third-party sites or services before providing any of them with your personal information.
If you “opt-in” to receive information from us, you can change your mind later. If at any time you would like to stop receiving such information or opt out of a feature, you may change your options by contacting Info@ymcahonolulu.org. You should be aware, however, that it is not always possible to completely remove or modify information in our databases and servers, although we will make reasonable efforts to do so upon your request, and we are unable to have your information removed from the records of any third-party who has been provided with your information in accordance with this SOP.
PERSONAL DATA SUBJECT ACCESS AND ACCURACY
You may contact the YMCA with inquiries or complaints regarding the use of information about you. We will use reasonable efforts to grant reasonable requests to access data about the requester. We will also make reasonable requests to correct any incorrect or misleading data about the requester.
The YMCA takes appropriate administrative, technical and physical measures to safeguard against unauthorized processing of personal information, and against the accidental loss of, or damage to, personal data. However, the YMCA cannot provide an absolute guarantee of the security of any of our websites or any other site on the Internet
CONSENT TO TRANSFER
The YMCA websites are operated in the United States. If you are located outside of the United States, please be aware that any information you provide to us will be transferred to the United States. By using the YMCA websites, participating in any YMCA services, and/or providing us with your information, you consent to this transfer.
Certain states have laws that permit their residents to annually request and obtain information free of charge about what personal information is disclosed to third-parties for direct-marketing purposes in the preceding calendar year. The YMCA does not distribute your personal information to outside parties for their direct marketing without your consent.
UPDATING YOUR PERSONAL INFORMATION
You can update your personal information by emailing us at Info@ymcahonolulu.org or via a written request mailed to:
YMCA of Honolulu
Please do not send Social Security Numbers or other sensitive information to us via unencrypted email.
Policy Revision History