The global network for the International Panel of Parliamentarians for Freedom of Religion or Belief (IPPFoRB) is hosted and administered by the Norwegian Helsinki Committee (NHC). An important part of IPPFoRB secretarial functions are organized as a project by the NHC.
The NHC and IPPFoRB are committed to protecting any personal information we obtain about you and always process your data with greatest care in a lawful, fair and transparent manner for specified purposes described below.
1. WHO WE ARE
The NHC is a non-governmental organisation working to ensure that human rights are respected in practice. It does this through monitoring, reporting, teaching and democracy support. More information about NHC activities can be found here.
Our registered and effective address is:
3. INFORMATION WE COLLECT AND USE
We cannot develop meaningful connections and cooperation with you and thus promote freedom of religion or belief globally without gathering some information about you, such as basic profile details. We also collect information generated as you use our services, for example access logs, as well as information from third parties.
To ensure safety of your data, we register collected information in our GDPR-compliant database. Afterwards, we analyse and use this information to get in touch with you. We never share your personal details with others without obtaining prior permission from you.
In line with Article 5 of the GDPR, we only collect relevant, accurate and limited information about you and try to keep it up to date.
Information You Provide to Us:
When you contact the IPPFoRB, submit registration forms for events organized by us, participate in events, become a member, sign up for any of the IPPFoRB’s activities or online content, such as newsletters, call, email or write to the IPPFoRB, engage with the IPPFoRB verbally, via online media channels or business cards, open an email or a link sent by us we may receive and retain personal information about you. You may also provide us information when you respond to our surveys.
This data can consist of personal information such as your name, email address, postal address, IP address, date of birth, your passport information, bank account information, telephone or mobile number. We may also take photos/film of you when you attend any of our events or seminars upon your permission.
Beside the basic information as described above, all our members are free to choose whether they wish to share with us “special categories of personal data” (such as information relating to religious affiliation and/or political opinions). The special personal data is solely collected directly from you. The IPPFoRB does not accept or process any special personal data shared by third parties.
Information We Collect Automatically:
We collect some information automatically using cookies and other technologies described below:
Cookies are small pieces of data that websites store on a device. Cookies can improve our and your browsing experience because they help websites remember preferences and understand how people use different features.
You can disable Analytics and Performance cookies at any time. This is done in the user's browser.
The storage of information and processing of information from cookies is not permitted unless you have been informed and have consented to the cookie banner. You will always have the possibility to decide whether you permit us to use such cookies.
When you visit www.ippforb.com, we employ Google analytics to analyze your use of the website. The purpose of this is to develop statistics that are used to improve and further develop our information services on the site. Examples of what the statistics provide are how many people visit different pages, how long the visit lasts, which websites users come from, and which browsers they are using.
The information is processed in an unidentified and aggregated form. Unidentified means that we cannot trace the information we collect back to the individual user. In addition, IP addresses are processed at aggregated level, that is, all data is merged into a group and not processed individually.
Pixel tags and hyperlinks:
This is to analyse number of clicks on ours links sent you via our emails, track who has opened the email and who has clicked the link. For instance, when you receive emails from us sent via our database, they always contain hyper-link behind an image to record that the email was opened. If you accept the image, the image will disappear, and this writes back to us that this action was performed. If you click the hyperlink in the email, the system automatically reports back to us that the link was opened by you.
By conducting the following analysis, we collect personal information such as your name and email address.
You can anytime unsubscribe from our emails, by following the instructions in emails or by contacting us directly.
Information we receive from others:
In addition to the information you provide us directly, we may receive information about you from others, including:
Our members might suggest you as a prospective member of the IPPFoRB network. They might share information about you such as your name, email, telephone or mobile number and occupation. We never accept or process any sensitive personal data shared by third parties.
4. HOW WE USE YOUR PERSONAL INFORMATION?
The basic information described above is an essential source for the IPPFoRB to fulfil its goals and objectives.
The main goal of the IPPFoRB is to promote freedom of religion or belief worldwide by involving as many actors as possible.
In line with the main interest, the IPPFoRB aims to:
Promote freedom of religion or belief for all persons through their work and respective institutions;
Enhance global cooperation by endeavouring to work across geographical, political, and religious lines;
Undertake efforts to jointly promote freedom of religion or belief, share information, and mobilize effective responses.
We only process your information for specific purposes as required under Article 5 (b) of the GDPR. Namely, we process information to:
1. Develop capacity and meaningful connections:
Invite you to our events that might be of interest to you;
Invite you to become a member of IPPFoRB;
Invite you to events organized by partner institutions that might be of interest to you;
Invite you to participate in surveys or research about IPPFoRB work after our events (participation is always voluntary);
Answer your questions or comments;
Send you relevant advocacy letters.
2. Communicate with you:
Provide you with updates and news corresponding to your profile regarding status of freedom of religion or belief worldwide;
Send you IPPFoRB newsletters.
3. Improve our services:
Analyse and improve the activities and content offered by the site and to provide you with the most user-friendly navigation experience;
Monitor and analyse trends and better understand how users interact with our Services, which helps us improve our Services and make them easier to use.
4. Perform administrative tasks:
Arrange your travel and accommodation related to events or seminars organized by IPPFoRB;
Execute reimbursement when necessary.
5. LEGAL BASIS OF PROCESSING
The GDPR requires us to have a legal justification to process your personal information.
A. GENERAL PERSONAL DATA
We process your personal information depending on the type of data and the type of processing for the purposes set above when:
We have a Legitimate Interest:
Our legitimate interest in processing your personal information is to promote freedom of religion or belief globally and thus fulfil our goals and objectives (Please see the description in section 4 above).
We have a legitimate interest to develop capacity and meaningful connections with you. For instance, we send advocacy letters, invite relevant actors to join the IPPFoRB network and participate in events tailored to promote freedom of religion or belief and enhance global cooperation. After the events organized by us, we send surveys to participants to ensure evaluation and meaningful connection.
To analyse and improve the safety and security of our work – we do this as it is necessary to pursue our legitimate interests in ensuring safety by implementing and enhancing security measures and protections and protecting against fraud, spam and abuse.
We have your Consent:
This means that you have consented to the use of your personal information by us in a particular way. For instance, if you are a member of the IPPFoRB or a non-member who has consented to receive our electronic communications such as newsletters, we will use your personal information for this purpose. After having consented, you can change your mind at any time and withdraw your consent.
We also need your consent to record or collect raw data (such as for instance: photographs, films, interviews, tapes, quotes and other reproductions of audio/video recordings) during events organized by the IPPFoRB.
You can also allow us to view if you have opened the email and the link sent by us.
Moreover, it’s only you who decides whether certain cookies can be placed on your device, which creates information that can be accessed and analysed by us.
We have Legal Obligations:
We might be required to use your information to comply with applicable laws and other government regulations or to comply with a court order or binding law enforcement request.
Performance of a contract:
We need your personal information to provide you with services requested by you, or to respond to your inquiries. We might need your passport details or bank account information to perform our contractual obligations with you.
Protecting you and others:
To protect your vital interests, or those of others.
Perform a task in Public interest:
The processing can be necessary for us to perform a task in the public interest, and the task has a clear basis in law.
B. SPECIAL CATEGORIES OF PERSONAL DATA
Some information you share with us directly may constitute “special categories of personal data” (such as information relating to religious affiliation and/or political opinions). The IPPFoRB does not request sharing of such category of data (It is always voluntary) and we will only process such data when:
We have your explicit consent; or
The processing relates to personal data which is manifestly made public by you; or
The processing is carried out during our legitimate activities and only relates to members (or former members) or others with whom we are in regular contact in connection with our purposes; or
The processing is necessary to protect your vital interests, or those of others; or
The processing is necessary for the establishment, exercise or defence of legal claims; or
The processing is necessary to comply with legal obligations we are subject to; or
The processing is necessary for reasons of substantial public interest.
We take appropriate security measures to ensure that we keep your information secure, accurate and up to date.
We use SSL encryption to secure transfers of your data and our email communications. Most webmail services support this, and your e-mail communication with us will be secured. However, we ask that you do not send sensitive personal information or confidential information by email.
6. HOW WE TREAT YOUR PERSONAL INFORMATION
We will only use your information for the purposes for which it has been obtained. Only those employees of the NHC who need your information to perform their working tasks will have the access to your personal data. We will not, under any circumstances, share or sell your personal data with any third party.
Your data will only be shared with external parties – “data processors” such as our service providers, associated organisations and agents who help us to prepare and send the materials relating to our projects and fundraising activities. These “data processors” will only act under our instruction and we will not allow these organisations to use your data for their own purposes and will take care to ensure that they keep your data secure.
7. YOUR RIGHTS UNDER GENERAL DATA PROTECTION REGULATION
We always follow the law and ensure that you are given the possibility of exercising rights you are granted by the GDPR. Accordingly, you always have the right to:
Access a copy of your personal data that we process about you as well as other additional information (e.g. the sources from which we acquired the information, the purposes for processing the information and the persons/entities with whom we are sharing the information);
The right to ask that we update your personal data free of charge, if it is inaccurate or incomplete;
The right to ask that we erase your information in certain circumstances;
The right to withdraw your consent to the use of your information where we are relying on that consent (for example, you can opt out of receiving newsletters from us). Please note that we may still be entitled to process your information if we have another legitimate reason (other than consent) for doing so;
The right to ask that we limit processing of your information in certain circumstances;
In some situations, you may have the right to transfer your personal information to another controller;
The right to object the processing of your personal data in certain circumstances;
The right to make a complaint with the Information Commissioner if, after raising your concern with us and making a privacy complaint, you think that any of your rights have been infringed by us. You can also object to our processing of your personal information by filing a complaint to The Norwegian Data Protection Authority (DPA). The complaint will be forwarded to the Ministry of Local Government and Modernization, which will establish a supervisory authority to deal with the matter.
8. RETENTION OF INFORMATION
We will keep your personal information for as long as it is necessary for the relevant project, activity or partnership to fulfil its purposes, or as long as it is set out in any agreement you may have with the NHC. In addition, the information may be retained for as long as it is necessary to fulfil our reporting and transparency obligations.
We hope you will inform us if you believe we are not in compliance with the rules of the GDPR. Please contact our Ombudsman first.
This policy is subject to change from time to time. Changes may be made when our practices change or when data privacy laws are updated. You should therefore check this policy regularly to ensure that you are aware of any changes.
10. CONTACT US