Orpe Human Rights Advocates (“ORPE,” “the Organization,” “we,” “our,” or “us”) is a nonprofit, mission-driven organization dedicated to restoring human dignity through human rights advocacy, crisis intervention, and coordinated social services.

​

This Policy is adopted in alignment with:

• U.S. Internal Revenue Service (IRS) compliance standards for tax-exempt organizations

• Applicable federal and state privacy and consumer protection laws

• International data protection frameworks, including the EU General Data Protection Regulation (GDPR), where applicable

• Donor transparency and accountability best practices

​

ORPE affirms that personal information is collected solely to advance its charitable, educational, and humanitarian mission and is never used for private benefit or commercial exploitation.

This Policy applies to personal information collected from:

• Donors and financial contributors

• Program beneficiaries and service recipients

• Volunteers, staff, and applicants

• Website visitors and digital platform users

• Partners, contractors, and international collaborators

​

This includes information collected through ORPE’s websites, donor portals, online platforms, mobile services, communications, events, and field-based programs.

A. Personal Identifiable Information (PII)

​

May include:

• Name, address, email, and telephone number

• Date of birth (where legally required)

• Donation and transaction history

• Program participation records

• Employment or volunteer application data

• Communications with ORPE

• Government-issued identifiers only when legally required

​

B. Sensitive Program & Beneficiary Data

For program beneficiaries, this may include:

• Case management records

• Service needs and referrals

• Health, legal, or psychosocial indicators (only with informed consent or lawful authority)

• Demographic data used for program accountability and reporting

​

ORPE applies heightened confidentiality protections to beneficiary data in accordance with humanitarian, ethical, and safeguarding standards.

A. Personal Identifiable Information (PII)

​

May include:

• Name, address, email, and telephone number

• Date of birth (where legally required)

• Donation and transaction history

• Program participation records

• Employment or volunteer application data

• Communications with ORPE

• Government-issued identifiers only when legally required

​

B. Sensitive Program & Beneficiary Data

For program beneficiaries, this may include:

• Case management records

• Service needs and referrals

• Health, legal, or psychosocial indicators (only with informed consent or lawful authority)

• Demographic data used for program accountability and reporting

​

ORPE applies heightened confidentiality protections to beneficiary data in accordance with humanitarian, ethical, and safeguarding standards.

ORPE uses information solely to:

• Deliver charitable programs and services

• Maintain donor records and issue tax acknowledgments

• Conduct monitoring, evaluation, and reporting required by funders

• Communicate program updates and organizational information

• Ensure safeguarding, accountability, and compliance

• Fulfill legal and regulatory obligations

​

ORPE does not use personal information for political campaigning, private benefit, or unrelated business activities.

ORPE may disclose information only:

• To authorized staff, contractors, or partners under confidentiality obligations

• To service providers necessary for program or operational delivery

• To regulators or authorities as required by law

• With informed consent of the individual, where applicable

​

Program beneficiary data is never shared externally without consent or legal mandate, except in life-threatening or safeguarding situations.

Aggregated or anonymized data may be used for reporting, research, and advocacy purposes.

ORPE is committed to Do No Harm and dignity-centered data practices. For beneficiaries:

• Participation is voluntary

• Informed consent is obtained where required

• Services are not conditioned on consent to unnecessary data use

• Beneficiaries may request access, correction, or deletion of their data where feasible

​

ORPE implements safeguards consistent with humanitarian protection standards and trauma-informed practice.

ORPE operates domestically and internationally. Information may be processed or stored in the United States or other countries.

Where applicable, ORPE complies with:

• GDPR principles (lawfulness, fairness, transparency, data minimization)

• Cross-border data protection safeguards

• Contractual and partner data protection requirements

​

Transfers occur only with appropriate protections in place.

Individuals may request to:

• Access their personal information

• Correct inaccuracies

• Request deletion (subject to legal and audit requirements)

• Withdraw consent where applicable

• Opt out of non-essential communications

​

Requests may be submitted to: Email: team@orpe.org

ORPE verifies identity before fulfilling requests and does not retaliate against individuals exercising privacy rights.

Information is retained only as long as necessary to:

• Fulfill charitable and operational purposes

• Meet IRS, grant, audit, and legal requirements

• Protect organizational and beneficiary interests

​

Records are securely destroyed when no longer required.

ORPE does not knowingly collect information from:

• Children under 13 without verified parental consent

• Minors under 18 without verified guardian consent

​

Safeguarding protocols apply to all programs involving minors or vulnerable populations.

European Economic Area, UK, or Switzerland

​

If you are a resident of the European Economic Area (“EEA”), the UK, or Switzerland, you have certain rights relating to your PII under the applicable data privacy laws, including to: (i) access personal data we hold about you and to ask that your personal data be corrected, erased, or transferred; (ii) object to the processing of your personal data; and (iii) make a complaint to a supervisory authority in your country of residence.

​

We will only process your data in the following situations:

• We need to use your Information to perform our responsibilities under our contract with you.

• We have a legitimate interest in processing your Information.

• We have your consent to do so.

• We have a legal obligation to process your personal data.

This Policy is:

• Approved by ORPE leadership and subject to Board oversight

• Reviewed periodically for legal and regulatory compliance

• Binding on all staff, volunteers, and contractors

​

Violations may result in disciplinary or contractual action.

The Organization may update this Policy from time to time and will alert you that changes have been made by indicating on the Policy the date of its last update. This date is located at the top of the Policy. Your continued use of the Sites indicates your acceptance of the current version of the Policy.

​ORPE may update this Policy to reflect legal, operational, or regulatory changes. Updates will be posted with a revised “Last Updated” date.

Orpe Human Rights Advocates Privacy & Compliance Office  team@orpe.org