Privacy Policy

Last Updated: January 1, 2024

At REST Foundation, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

1. Information We Collect

1.1 Personal Information

We may collect personal information that you voluntarily provide to us when you:

  • Apply for a loan or open a savings account
  • Register for our financial education programs
  • Contact us through our website or other communication channels
  • Subscribe to our newsletter or marketing communications
  • Participate in surveys or provide feedback

This information may include:

  • Name, address, phone number, and email address
  • Date of birth and government-issued identification numbers
  • Financial information (income, assets, credit history)
  • Business information (for business loan applicants)
  • Employment information

1.2 Automatically Collected Information

When you visit our website, we may automatically collect certain information about your device, including:

  • IP address and browser type
  • Operating system and device information
  • Pages visited and time spent on pages
  • Referring website addresses
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To process loan applications, manage accounts, and deliver our microfinance services
  • Communication: To respond to inquiries, send service updates, and provide customer support
  • Compliance: To comply with legal obligations, including anti-money laundering and know-your-customer requirements
  • Risk Assessment: To evaluate creditworthiness and manage financial risks
  • Improvement: To improve our services, website, and customer experience
  • Marketing: To send promotional materials and updates (with your consent)
  • Analytics: To understand user behavior and preferences

3. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We may share information with third-party service providers who perform services on our behalf, such as:

  • Credit bureaus and credit reference agencies
  • Payment processors and banking partners
  • IT service providers and data hosting companies
  • Marketing and communication service providers

3.2 Legal Requirements

We may disclose your information when required by law or to:

  • Comply with legal processes or government requests
  • Enforce our terms and conditions
  • Protect our rights, privacy, safety, or property
  • Prevent fraud or security issues

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of sensitive data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication procedures
  • Employee training on data protection
  • Secure data storage and backup systems

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

5. Your Rights and Choices

You have the following rights regarding your personal information:

5.1 Access and Correction

You have the right to access and update your personal information. You can do this by logging into your account or contacting us directly.

5.2 Deletion

You may request deletion of your personal information, subject to legal and contractual obligations that require us to retain certain data.

5.3 Opt-Out

You can opt out of receiving marketing communications by:

  • Clicking the "unsubscribe" link in our emails
  • Updating your communication preferences in your account
  • Contacting us directly at privacy@restfoundation.org

5.4 Cookie Management

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Retention periods vary depending on:

  • The nature of the information
  • Legal and regulatory requirements
  • Our legitimate business interests
  • The purpose for which the information was collected

7. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without parental consent, we will take steps to delete that information.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those of your country. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

9. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date
  • Sending you an email notification (for significant changes)

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

REST Foundation - Privacy Office

123 Finance Street, Suite 400
New York, NY 10001

Email: privacy@restfoundation.org
Phone: +1 (555) 123-4567

12. Regulatory Information

REST Foundation is committed to complying with all applicable data protection regulations, including:

  • General Data Protection Regulation (GDPR) for European clients
  • California Consumer Privacy Act (CCPA) for California residents
  • Other applicable state and federal privacy laws

Your trust is important to us. We are committed to maintaining the confidentiality and security of your personal information while providing you with the best possible service.