Privacy Policy
Last updated: June 1, 2026
KIDUNION Foundation (hereinafter, “the Foundation”) recognizes the importance of protecting the privacy and personal data of all individuals who interact with this website.
This Privacy Policy explains in a clear and transparent manner how we collect, use, protect, and manage the personal information provided by our users, donors, and visitors.
1. Data controller
KIDUNION Foundation
Contact email: kidunion.as@gmail.com
The Foundation acts as the data controller for the personal data collected through this website.
2. Information we collect
We may collect the following categories of personal data:
Data provided directly by the user
- First and last name.
- Email address.
- Information voluntarily included in contact forms.
- Information related to donations or voluntary contributions.
Technical and browsing data
If analytics tools are enabled, and always subject to user consent when required, the following may be collected:
- Anonymized IP address.
- Browser and device type.
- Pages visited.
- Browsing time and interaction metrics.
The Foundation applies the principle of data minimization and only requests information that is strictly necessary for each specific purpose.
3. Purpose of data processing
Personal data may be used for the following purposes:
Management of inquiries and communications
To respond to requests sent through contact forms or official communication channels.
Donation management
To manage contributions made by users, including operational validations and administrative follow-ups related to the donation.
Institutional communications
To send information about projects, initiatives, social impact, and activities of the Foundation, provided there is consent or a valid legal basis to do so.
Site security and operation
To ensure the proper technical operation of the website, prevent misuse, and maintain the platform’s security.
Analytics and experience improvement
To statistically analyze website usage only when the user has granted prior consent.
4. Legal basis for processing
The processing of personal data is carried out in accordance with one or more of the following lawful bases:
Express consent
When the user completes forms, accepts analytical cookies, or authorizes specific communications.
Performance of a relationship linked to a donation
When processing is necessary to manage a voluntary contribution or respond to related requests.
Legitimate interest
To securely and efficiently manage the Foundation’s digital activities, protect the website, and address reasonable user requests.
Compliance with legal obligations
When processing is necessary to comply with applicable administrative, tax, accounting, or legal obligations.
5. Donations and external platforms
The Foundation may manage donations through specialized third-party services, including the HelloAsso platform.
When a user makes a donation through said platform:
- payment processing is carried out under the provider’s own security measures and policies;
- the Foundation does not store bank details, passwords, or full security codes;
- certain data may be processed in accordance with European data protection regulations.
We recommend reviewing the privacy policies and terms of use of external platforms before completing a donation.
6. International data transfers
Due to the use of international technological services and platforms, certain data may be processed or stored outside the user’s country of residence.
In these cases, the Foundation will ensure that such transfers are carried out under appropriate protection mechanisms and in accordance with the guarantees required by applicable regulations.
7. Data retention
Personal data will be retained only for the time necessary to fulfill the purposes for which it was collected, and subsequently, for the periods required by legal obligations or to address potential liabilities.
8. Data sharing
The Foundation may share information only when necessary with:
- technology providers;
- donation processing platforms;
- financial institutions;
- hosting and technical support providers;
- competent authorities when there is a legal obligation.
Under no circumstances will personal data be sold to third parties.
9. User rights
Anyone may exercise their rights related to personal data protection, including:
Recognized rights
- Access to their data.
- Rectification of inaccurate information.
- Erasure or cancellation.
- Objection to processing.
- Restriction of processing.
- Data portability.
- Withdrawal of consent where applicable.
Likewise, rights recognized by applicable local regulations, including those commonly referred to as ARCO rights, may be exercised.
How to exercise your rights
Requests may be sent to:
Email: kidunion.as@gmail.com
The request must include:
- full name;
- contact method;
- the right you wish to exercise;
- sufficient information to identify the request.
10. Information security
The Foundation adopts reasonable technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or improper disclosure.
However, no technological system can guarantee absolute security.
11. Links to external sites
This site may contain links to third-party platforms or pages. The Foundation does not control nor assume responsibility for the privacy policies or content of such external sites.
12. Updates to this policy
This Privacy Policy may be modified to adapt to legal, technical, or functional changes to the website.
The current version will always be the one published on this page.