1. Introduction

Tower Cancer Research Foundation ("Tower Cancer Research Foundation," "we," "us," or "our") is a California 501(c)(3) nonprofit organization dedicated to funding cancer research, providing patient support, and offering community education. We respect your privacy and are committed to protecting the personal information you share with us through our website located at www.towercancer.org and any related pages, donation forms, and online services we operate (collectively, the "Site").

This Privacy Policy explains what information we collect, how we use and share it, and the choices and rights you have. By using the Site, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the Site.

2. Scope and Our Status as a Nonprofit

The California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the "CCPA/CPRA"), generally applies to for-profit businesses that meet certain thresholds and does not apply to most nonprofit organizations. As a nonprofit, we are generally exempt from the CCPA/CPRA. Nevertheless, we voluntarily strive to follow privacy best practices and to comply with other California laws that apply to website operators, including the California Online Privacy Protection Act ("CalOPPA") and California’s "Shine the Light" law. Where this Policy describes "rights," we honor them as a matter of good practice except where the law requires otherwise.

3. Information We Collect

We collect information in three ways: information you provide directly, information collected automatically, and information from third parties.

3.1 Information You Provide Directly

Depending on how you interact with the Site, we may collect:

• Donation information: your name, billing and mailing address, email address, telephone number, donation amount, whether the gift is one-time or recurring, tribute or dedication details (for example, “in honor of” or “in memory of”), and employer information for matching gifts. Payment card and bank account details are collected and processed by our third-party payment processor; we do not store full payment card numbers on our systems.
• Newsletter and email sign-up: your name and email address, and any preferences you provide.
• Event registration: your name, contact information, number of attendees or guests, ticket or sponsorship selections, dietary or accessibility requests, and payment information processed by our payment processor.
• Communications and forms: information you provide when you contact us, request patient-support services (such as Magnolia House programs), volunteer, apply for a grant, or otherwise correspond with us.

3.2 Information Collected Automatically

When you visit the Site, we and our service providers may automatically collect certain information through cookies and similar technologies, including your IP address, device and browser type, operating system, referring and exit pages, pages viewed, links clicked, and the dates and times of your visits. See Section 5 (Cookies and Tracking Technologies).

3.3 Information From Third Parties

We may receive information from third parties such as payment processors, donor-management and fundraising platforms, event-registration providers, social media platforms (if you interact with us there), and analytics providers, consistent with their own privacy policies.

4. How We Use Your Information

We use the information we collect to:

• Process and acknowledge donations, including issuing tax receipts and processing recurring gifts;
• Register you for events and communicate event-related information;
• Send newsletters, updates, appeals, and other communications you have requested or that relate to our mission (you may opt out at any time);
• Provide and administer patient-support and community-education programs;
• Respond to your inquiries and provide donor and customer support;
• Operate, maintain, secure, analyze, and improve the Site and our programs;
• Detect, prevent, and address fraud, security issues, and prohibited activity; and
• Comply with legal obligations, including tax, accounting, and charitable-solicitation requirements.

5. Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar technologies to operate the Site, remember your preferences, understand how the Site is used, and measure the effectiveness of our outreach. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain until deleted).

Analytics. We use third-party analytics services, such as Google Analytics, to help us understand Site traffic and usage. These providers may set their own cookies and collect information about your online activities over time and across third-party websites. You can learn more about how Google uses data at https://policies.google.com/technologies/partner-sites, and you may opt out of Google Analytics using the Google Analytics Opt-out Browser Add-on.

Most web browsers let you refuse or delete cookies through their settings. If you disable cookies, some features of the Site may not function properly.

6. “Do Not Track” Disclosure

Some browsers offer a “Do Not Track” (“DNT”) signal. There is no industry or legal standard for recognizing or honoring DNT signals. At this time, our Site does not respond to DNT signals. Third parties, such as analytics providers, may collect information about your online activities over time and across different websites when you use our Site, as described in Section 5.

7. How We Share Information

We do not sell your personal information, and we do not share it for cross-context behavioral advertising in exchange for money or other valuable consideration. We share personal information only as described below:

• Service providers: with vendors who perform services on our behalf, such as payment processing, donor and event management, email delivery, website hosting, and analytics, who are permitted to use the information only to provide services to us.
• Legal and safety: when we believe disclosure is necessary to comply with the law, a legal process, or a governmental request; to enforce our Terms; or to protect the rights, property, or safety of the Foundation, our users, or others.
• Business transfers: in connection with a merger, affiliation, dissolution, or transfer of assets, consistent with this Policy.
• With your consent: when you direct or permit us to share your information (for example, recognition in donor listings).

8. Donor Privacy and Recognition

We respect the privacy of our donors. We may recognize donors publicly (for example, in donor listings or event materials). If you prefer to remain anonymous, please contact us at info@towercancer.org and we will honor your request. You may also opt out of receiving fundraising communications at any time.

9. Email Communications and Your Choices

If you receive marketing or fundraising emails from us, you may opt out by following the “unsubscribe” instructions in those emails or by contacting us using the information in Section 16. We comply with the federal CAN-SPAM Act. Please note that we may still send you transactional or relationship messages, such as donation receipts and event confirmations, even if you opt out of marketing emails.

10. Your California Privacy Rights

10.1 “Shine the Light” Law

California Civil Code Section 1798.83 (the “Shine the Light” law) permits California residents to request information about how a business has shared their personal information with third parties for those third parties’ direct-marketing purposes. We do not share your personal information with third parties for their own direct-marketing purposes. If you have questions, you may contact us using the information in Section 16.

10.2 CCPA/CPRA

As explained in Section 2, the CCPA/CPRA generally does not apply to nonprofit organizations such as the Foundation. As a matter of good practice, however, you may contact us to ask about the personal information we hold about you, to request corrections, or to request deletion, and we will respond consistent with applicable law and our recordkeeping and legal obligations.

10.3 Minors’ “Eraser” Right

California Business and Professions Code Section 22581 allows California residents under the age of 18 who are registered users of the Site to request removal of content or information they have publicly posted. To make such a request, please contact us using the information in Section 16. Removal may not be complete or comprehensive in all circumstances, as permitted by law.

11. Children’s Privacy

The Site is intended for a general audience and is not directed to children under 13. We do not knowingly collect personal information from children under 13 in violation of the federal Children’s Online Privacy Protection Act (“COPPA”). If you believe a child under 13 has provided us personal information, please contact us and we will take appropriate steps to delete it.

12. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Policy, including to maintain donation and tax records, administer programs, and comply with our legal, accounting, and reporting obligations. When information is no longer needed, we take reasonable steps to delete or de-identify it.

13. Data Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, use, or disclosure. No method of transmission over the Internet or electronic storage is completely secure, however, and we cannot guarantee absolute security.

14. Third-Party Links and Services

The Site may contain links to third-party websites and services, including payment processors, social media platforms, and event-registration tools, that we do not control. This Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party site you visit.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last Updated” date above and post the updated Policy on the Site. Material changes may be communicated through additional notice, such as a notice on the Site or by email. Your continued use of the Site after changes become effective constitutes acceptance of the revised Policy.

16. Contact Us

If you have questions or requests regarding this Privacy Policy or your personal information, please contact us:

Tower Cancer Research Foundation
8767 Whilshire Blvd, Suite 401, Beverly Hills, CA 90211

info@towercancer.org

310.299.8470