X


Privacy Policy

Privacy Policy

www.areeda.org

Effective date: December25 2024

 

Areeda.org (including all its translated versions) operated by 7amleh - The Arab Center for the Advancement of Social Media (the “Organization”, “us”, “we”, or “our”) respects your privacy and takes your personal data seriously. Please read the following to learn about our practices in processing personal data we receive through our Website including any subdomains at https://www.areeda.org (the "Website") and through additional sources and occasions, such as our social media accounts, on-line and offline events (collectively the “SM Accounts and Events”). 

 

  1. What Personal Data We Collect, How, and How is it Being Processed

  1. The following table describes the personal data we collect through the Website, SM Accounts and Events, and for what purposes it may be processed:

Instance in which data is collected

Categories of personal data that are processed

Purposes of processing 

Legal basis for processing under GDPR

When you contact us through “Contact Us” Form .

Your name, email address, and telephone number.

To respond to any query or question you submit through our Website.

Consent (Article 6(1)(a))

When you create a user account 

email address; social media account and consented shared data via provider (including but not limited to Facebook), first name, and last name; password; phone number (optional); address, state, province, ZIP/Postal code, city, country; cookies and usage data; profile picture (optional); information inferred by causes you interact with to enhance our communication efforts for causes you potentially are interested to sign, share and promote.

Verifying your account to manage your User-Generated Content on  (as defined in the Terms) our Website and be able to create. Sign and share petitions; and create, send and share email storms. In addition, submit posts, comments, articles  among other services. This to connect all of your activities on our Website complying with our Terms of Use (the “Terms”). 

Consent (Article 6(1)(a))

When you use our Mobilising Activity and any website features.

User-Generated Content Activities including: petitions created, signed, shared and promoted; email storms created, sent, share and promoted; targeted decision makers by users (this may include but not limited to name, email address, title and organization, pictures, and other material - all shall be public to obtain and will be protected under this privacy policy);(this may include but not limited to information inferred about your causes whether by posts, articles, pictures, videos, emails, and donations)

  

Consent (Article 6(1)(a))

When you endorse an existing Mobilising Activity.

Email Address

To allow you to endorse petitions

  

When you register to an event published on our website and SM accounts 

First and last name, email address, phone number, gender and country/geographic location

  • To contact you and send further details about the specific event

  • To be added to our mailing list subject to your consent, for as long as you have not opted out (excluding transactional emails related to the event)

  • To send SMS messages about the event 

  • If the training/event is offline to know if you need accommodation

  

Information we obtain from you when you participate in our on-ground events

First and last name, Email, signature and organization/party he/she represents.

  • To provide you with the materials from the event as only shown in the petitions page ( signatures)

  

Data that you provide passively (by using the Website, by navigating the screens, clicking on buttons etc.). This data is collected using third party services by means of placing cookies, pixels or web beacons. For more information, please look at the 



 

Cookies section. 

Your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Website that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data. 

  • To improve, modify and update services and content offered on the Website. 

  • To monitor and ensure the orderly and proper operation and development of the Website and associated services.

  • To improve and customize the user experience and the content that is presented on the Website.

  • To support our marketing efforts and to allow us to provide you with customized content.

Our legitimate business interest (Article 6)1) (f))

 

  1. Our services are directed for those who are at the age of 18 and above, and we don’t collect information for anyone below the age of 18 unless provided in violation by you of the Terms. 

  2. You are not obliged under any applicable law to provide us any of the above information and you may be able to opt not to disclose your personal data to the Organization. However, not providing the Organization with certain data may mean that we cannot provide you with certain functionalities, process any requests or allow you to use our services. 

  3. In addition to the above uses of your personal data, we will also process your personal data for the following purposes: 

    1. We use all the above personal data to operate, maintain, and provide to you the website features and functionality and to provide you with the mobilising activities, including creating, signing, and sharing petitions, and creating, sending and sharing email storms (each, a “Mobilising Activity”).

    2. To prevent, detect and fight fraud or other illegal or unauthorized activities.

    3. To ensure legal compliance – from our side (to legal requirements that apply to us) and from your side (compliance with legal requirements applicable to you). Learn more about legal aspects in the Terms.

    4. To develop and improve your experiences with our services in order to advance your mobilization causes through advocacy and campaigning to achieve your goals, and for us to fulfil our mission.

  4. We might use your personal data to enhance outreach and communication through automated decision making regarding you based on User-Generated Content you provide for us publicly with consent. 

  5. We limit access by our employees to your information only to those who were specifically authorized by the Organization to access your information, as part of their role. 

  6. We use anonymized, aggregate data, in order to gain insight on how you and other users use the Website, our social media accounts, participate in our events and try and improve it, as well as to plan our marketing and advertisements. 

  7. All of the above processing is based on our legitimate business interest (GDPR Article 6(1)(f)).

  1. How We Share Your Personal Data

  1. No Sale to Third Parties: We do not, and will not, sell any of your personal data to any third party for advertising, marketing or any other purpose. 

  2. Mobilisers: Your first name, last name, email address and the time and location of your signature in petitions or email in email storms will be shared with the mobiliser who initiated the petition or email storm, who may share the information with key decision makers that are relevant for the cause. If you don’t agree on sharing the addressed information with the initiator/mobiliser and potential key decision makers, please do not sign the petition or send an email storm. 

  3. Connected social media platforms: part of engagement in petitions and email storms can be through sharing such causes on social media platforms through your connected account. This will allow social media platforms owners to access data such as your name, last name, email address, IP address, time and location and other cookies collected data used by their websites. We recommend that you review the Privacy Policy of such platforms to learn how your personal information is being used.  

  4. Service Providers: we employ other companies and people to perform tasks on our behalf and need to share your information with them in order to provide the services to us. The categories of third-party recipients of the personal data from us are as follows: Cloud hosting services, email campaign automation, communication automation, social media advertisement, web page building tools and payment gateway services, analytics service providers. Our service providers do not have any right to use your personal information collected from our Website and/or SM Accounts and Events beyond what is necessary for the purpose of facilitating our provision of the Website and/or various events.

  5. Compliance with the Law: We may disclose your information only to the extent  we believe it is necessary under applicable law in order to comply with the law, such as to comply with a subpoena, regulation or legal request, respond to a government request, to address fraud or security issues, to protect the safety of any person, to enforce our agreements with you; to investigate, prevent, or take other action regarding illegal activity, suspected fraud or other wrongdoing or to protect our own rights or property. This includes sharing such information with our legal counsels. If you are located in the EU, we may only do so based on legal requirements specified above by EU authorities. 

  6. Business Transfers: Subject to your consent, where such consent is required, if we are in a bankruptcy, merger, acquisition, reorganization or sale of assets, your information may be transferred as part of that transaction to a successor in interest and to the applicable legal authorities as well as legal counsels and other professional counsels involved such as accountants, and other officers of the government or of the applicable judiciary instance.

  7. Anonymized Information: We may provide third parties with aggregated but anonymized information and analytics about our users however, before we do so, we will make sure that it does not identify you.

  8. Almost all of User-Generated Content on our Website as publicly available and provided in detail in the Terms. This allows us, our partners and other users, to reuse, share, modify and other actions that seem fit with achieving your causes goals and our mission. 

 

  1. Data Transfers and Global Processing

    1. The Website and/or SM Accounts and Events may be operated in countries other than your own location, and your personal data may be accessed and/or processed from and/or transferred to countries other than your own location. We may do this where data is accessed/processed:

      1. By the Organization and its affiliates for operational, administrative, compliance purposes or users support teams in our various locations; 

      2. By our service providers, for the purposes we specified under the Sub-section 2.5 “Service Providers”.

      3. The safeguards we deploy for performing such transfers across boundaries:

        1. Adequacy. If you are located outside of Israel and Palestine, and choose to provide information to us, please note that we transfer the data, including personal data, to the Organization offices located in Israel and Palestine[ and process it there. Any transfers to Israel are made on the basis of an adequacy decision made by the European Commission.

        2. Model Clauses. We may use standard contractual clauses approved by the European Commission and/or by the United Kingdom (UK) that are binding standards of processing of personal data committed contractually by third parties processing information for us and on our behalf.

        3. Consent. In the absence of an adequacy decision or Model Clauses, and in the absence of any other right to transfer your data, your consent shall serve as the basis for such transfer. By accessing and using the Website and/or SM Accounts and Events, you agree and understand that your information may be transferred from the European Economic Areas (EEA), UK or other countries in which you may be using or accessing the Website, to other jurisdictions outside your own location. The transfer will be to such third parties as described under Section 2 (How we share your personal data).

    2. The Organization will take steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your personal data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

    3. Currently we process data in Israel, Palestine and also in the US through our service providers operating in the US.

 

  1. Data Subject Rights

  1. It is your responsibility to ensure that all personal data submitted to Organization is correct. Organization would like to make sure you are fully aware of all of your data protection rights. Depending on your location and on the laws that are applicable to you, you may be entitled to some or all of the following rights:

    1. The right to access – You have the right to request from Organization copies of your personal data, which includes the right to obtain confirmation as to whether or not personal data concerning you are being processed and, where that is the case, access to the personal data and the purposes of the processing; categories of personal data concerned; recipients or categories of recipient to whom the personal data have been or will be disclosed; where possible, the envisaged period for which the personal data will be stored; the existence of the right to request rectification or erasure of personal data or restriction of processing of personal data or to object to such processing; the right to lodge a complaint with a supervisory authority; where the personal data are not collected from the data subject, any available information as to their source; the existence of automated decision-making, including profiling; the appropriate safeguards relating to the transfer of your personal data outside the EEA. We may charge you a small fee for this service under certain conditions.

    2. The right to rectification – You have the right to request that Organization correct or modifies any information you believe is inaccurate. You also have the right to request Organization to complete the information you believe is incomplete. If we approve to correct or modify or complete such information, we shall update our database and let users know of such update, otherwise, we shall notify you of our refusal as applicable in law. 

    3. The right to erasure – You have the right to request that Organization erase your personal data, under certain conditions.

    4. The right to restrict processing – You have the right to request that the Organization restrict the processing of your personal data, when: 

(a) You contest the accuracy of your personal data, for a period allowing the Organization to verify the accuracy of said data; 

(b) if you believe personal data has been unlawfully processed and you wish to restrict processing rather than delete it; 

(c) Organization no longer needs the personal data but you require to keep it in order to establish, exercise or defend a legal claim; or 

(d) You have exercised your right to object the processing (below) for a period allowing Organization to consider whether your legitimate grounds override those of the Organization.

  1. The right to object to processing – You have the right to object to the processing of your personal data at any time – this means you have the right to stop or prevent the Organization from processing your personal data (it could be in relation to part or all of your personal data, and for part or all of the processing purposes). When relating to processing for promotion purposes, you have an absolute right to object; while for other purposes, the existence of the right depends on what lawful basis the processing relies on.

  2. The right to data portability – You have the right to request that Organization transfer the data that we have collected to another organization, or directly to you, under certain conditions.

  1. If allowed by applicable laws, you have the right to withdraw your consent at any time when the Organization processes your personal data based on your consent on any of these rights. However, withdrawal does not affect the legitimacy and effectiveness of how we process your personal data based on your consent before the withdrawal is made; nor does it affect any data processing based on another lawful bases other than your consent.

  2. You may exercise these rights to the extent these rights apply to you by emailing the Organization to: info@7amleh.org. We will undertake to respond to your request within the applicable time frame prescribed by applicable law. Although we will make reasonable efforts to accommodate your requests, in some circumstances we may deem your request unfounded or not eligible under applicable law. In such instances we reserve the right to refuse your request. We shall require, as a prerequisite to fulfilling any request, to verify your identity which we may do by asking you to provide certain information or identification to ensure that all data subjects’ privacy is protected. 

  3. If you think that the way we process your personal information does not comply with applicable data protection laws, you are of course invited to contact us and we will consider your request, but in any event, you may contact the relevant competent data protection authority. You can obtain the contact information for all of the EEA data protection authorities at https://edpb.europa.eu/about-edpb/board/members_en

 

  1. Cookies & Similar Technologies

    1. A cookie is a small text file that is stored in your web browser that allows the Organization or a third party (such as third-party service providers) to recognize you. Cookies can either be session cookies or persistent cookies. A session cookie expires automatically when you close your browser. A persistent cookie will remain until it expires, or you delete your cookies.

    2. Cookies that we may use can generally be categorized as follows:

      1. Necessary Cookies: These cookies are necessary to load the Website or to allow users to use Website’s certain features.

      2. Analytics Cookies: These cookies track information about how the Website is being used so that we can make improvements and report on our performance. 

      3. Preference Cookies: These first party cookies store your Website preferences.

      4. Marketing Cookies: These are usually third-party cookies by advertising platforms or networks in order to: (i) deliver ads and tracks ad performance, and (ii) enable advertising networks to deliver ads that may be relevant based upon your activities.

    3. We may use additional tracking technologies to help understand user activities and preferences. For example, we use web beacons (also known as clear gifs, pixel tags or web bugs) to track user activities and communicate with cookies. You cannot opt out of web beacons used in web pages, but you can limit their use by opting out of the cookies they interact with. You can opt out of web beacons used in emails by setting your email client to render emails in text mode only. 

    4. We use the following cookies and other tracking technologies. We will update this list from time to time depending on the cookies we will be using

 

Name of cookie

Purpose  - what this cookie is doing

Expiration (lifetime of cookie)

Type (e.g., http, html, pixel

Analytics

Google analytics

All Website Data 

for analysis of performance on our webpage (e.g. most visited page

Continuous

https 

Marketing

Facebook 

-View Count 

-Page View

review the performance of 7amleh’s minisite (digital security minisite and privacy minisite) 

Continuous

pixel

Functionality

YouTube embed

To embed in our web page only 

Continuous

HTML 

 

  1. We may set cookies that monitor links to our Website that we send to you (if you have consented to receiving emails from us). These cookies are used to track visitors to our Website sourced from these emails. To avoid these types of cookies, please follow the explanation below on how to change your browser cookies settings.

  2. In addition, we may use tracking technology (pixels) in emails to understand how often our emails are opened and clicked on by our users. If you do not wish this tracking to be affected, please change your email software or service (such as outlook, Gmail etc.) settings to not automatically download images (to the extent it is not already your default). In some instances, depending on your email or browser settings, cookies in an email may be automatically accepted (for example, when you have added an email address to your address book or safe senders list). Please refer to your email browser or device instructions for more information on this. 

  3. You can change your browser's settings to delete cookies that have already been set and to not accept new cookies. To learn more about how to do this, visit the help pages of your browser. Some useful information can also be found here: https://www.allaboutcookies.org/. Please note, however, that if you delete cookies or do not accept them, you might not be able to use all of the features we offer, you may not be able to store your preferences, and some of our pages might not display properly.
     

  1. Security of Processing

We use appropriate physical, management, and technical measures to protect your data from unauthorized access, disclosure, use, modification, damage, or loss. We also provide training on security and privacy protection for employees to raise their awareness of personal data protection. However, please note that no security measure is perfect, therefore, you should take special care in deciding what information you disclose.

 

  1. Data Retention

  1. We will retain your personal data for no longer than is necessary for the purposes stated in this Privacy Policy, unless otherwise extending the retention period is required or permitted by law or subject to our retention policies as may be in place from time to time. The data storage period may vary with scenario, product, and service. 

  2. The standards Organization uses to determine the retention period are as follows: the time required to retain personal data to fulfill business purposes, including providing products and services; maintaining corresponding transaction and business records; controlling and improving the performance and quality of the Website; handling possible user queries or complaints and locating problems; whether the user agrees to a longer retention period; and whether the laws, contracts, and other equivalencies have special requirements for data retention.

 

  1. Changes to This Privacy Policy

  1. We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. We may notify you through different channels, for example, posting a notice on our Website or sending you direct notification.

  2. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. 
     

  1. California and Delaware “do not track” Disclosures

We do not monitor or respond to Do Not Track browser requests. Hence please ensure to change any settings of your browser and/or our services, whenever you wish cookies to cease.
 

  1. General

    1. If you have any questions or suggestions, to exercise any of your rights, or if you have any other questions or complaints about our use of your personal data and your privacy, please contact us at info@7amleh.org.

    2. Where your personal data is processed by Areeda.org, operated by 7amle - The Arab Center for Social Media Advancement, the Organization in accordance with this Privacy Policy, 7amleh - The Arab Center for the Advancement of Social Media of 12 Allenby Rd., Haifa 330950, is the controller of the related personal data. The contact details are as follows: [Please note that this is required under the amendment of the Privacy Law in Israel which will become effective in August 2025, please advise whether  you’d prefer to include this information as of this draft, or to add it once the amendment enters into force]

Email: _______________

Phone number: ____________

Online form for contacting: __________