This policy’s current as of December 4, 2022. When we change it, we’ll do it solely on this page.
Preface
Our privacy policy is full of legal requirements, but since we’re not lawyers we’ll start with a simple statement:
We take the privacy of our supporters and website users seriously, and work diligently to make sure their personal data is private and secure.
At this time, December 2022, our collection of personal data is restricted to: 1) the email list for our newsletter; 2) the information needed to process donations (monetary donations). We expect to add other data collection to this and will inform everyone via this page.
Privacy in this context means we don’t share this information with any third party except when it’s required to do something useful, like communicate about donations, material or financial, or to communicate via our email list and newsletter. The third parties we share with are trusted service providers like Mailchimp, Square or Stripe. Their privacy and security policies are more rigorous than ours. We also pay them for their services, so we and our supporters are customers, not products. That means they don’t mine our supporters’ data and sell it to others or use it themselves for marketing or sales.
We’ll share personal data when required to by law, such as when we’re presented with a subpeona by a law enforcement agency.
Security in this context means the methods we use to prevent third parties from accessing supporters’ personal data. These are hardware, software and procedural systems.
At any time, a supporter who’s provided us with personal data can request a copy of that data, and can request we delete all of their personal data we have The only exception is keeping an email address when a customer has opted out of email communication. We need this so we can put them on a Do Not Mail list.
Who we are
This website is owned and operated by Buffalo ReUse, Inc., chartered in the State of New York, USA as a a not-for-profit corporation under IRS section 501c-3, and based in Buffalo, New York. Our physical address is 279 Northampton Street, Buffalo NY 14208. Our phone number is 716-894-3366, our email address is info@buffaloreuse.org. Our website address is https://www.buffaloreuse.org. Our preferred communication method about matters discussed on this page is email, followed by postal mail. Information on our Board of Directors can be found here.
What personal data we collect and why we collect it
Website Accounts
At this time, only Buffalo ReUse directors are website users with accounts at this website. Account registration by anyone else is not available.
Comments
At this time, we don’t accept comments to pages or posts. We’re much happier to communicate with our supporters via email or at our Facebook page or other social media.
Media
At this time, only website users with accounts are permitted to upload images to the website.
Contact forms
GDPR
[in process, more to come]
Cookies
We’re not using website cookies at this time. When and if we do, we’ll provide notice as required by law.
Donation Information
[in process, more to come]
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Analytics
We’re not currently using analytic software on this site. When and if we do, we’ll use a service that has a strict privacy and security policy that fully protects personally identifiable user information.
Who we share your data with
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you’ve provided to us. You can also ask us to erase any personal data we hold about you. This doesn’t include any data we’re obliged to keep for administrative, legal, or security purposes. If you wish to do this, please contact us at the email or postal addresses in the paragraph entitled “Who We Are”, above. Please use email or postal mail for this purpose, not a telephone call.
Additional information
How we protect your data
We protect your data in a number of ways. We only allow a small number of trusted employees to access customer data. We enforce high-quality login, password and physical security. In the rare case where we would print or write out any customer data, we dispose if it when we’re done using it using a secure shredder. Our website uses the current industry standard SSL encryption, that’s the “https://” you see when you visit our site. This protects all data leaving or entering the website.
What data breach procedures we have in place
We use a full suite of antivirus, antimalware and antiintrusion software. Our server is protected by similar software and hardware. When and if we detect a data breach, we would immediately lock down the website, allowing no data except the pages themselves to flow in or out. We’d inform any website users about the breach and what we’re doing about it. We have a consultant on call who would help us recover from any breach.