Who we are
Our website address is: https://mecfsalliance.org.uk.
What personal data we collect and why we collect it
When you visit our website, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
If/when you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Our website also uses temporary cookies for CleanTalk – Used to prevent spam on our comments and forms and acts as a complete anti-spam solution and firewall for this site.
Our website uses Stripe to process secure payments. Stripe uses the following session cookies..
- _stripe_mid – Learn more https://stripe.com/gb/privacy
- _stripe_sid – Learn more https://stripe.com/gb/privacy
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
We Use Google Analytics, a web analysis service provided by Google LLC (“Google”). Google utilises the Data collected to track and examine the use of this Web Site, to prepare reports on its activities and share them with other Google services.
Google may use the Data collected to contextualise and personalise the ads of its own advertising network.
Secure Online Payments
We use the third party company Stripe to process secure payments on this website. Some of your data will be passed to Stripe during the payment process, including information required to process or support the payment, such as the purchase total and your billing information.
We collect information about you during the checkout process on our store.
While you visit our site, we’ll track:
- Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
- Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
- Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order.
Who we share your data with
If you request a password reset, your IP address will be included in the reset email.
If you make a donation on our website or provide any personal information, we will not share this information with any third parties, other than Stripe for the purpose of payment processing.
How long we retain your data
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have made a donation, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you, please just email us at at firstname.lastname@example.org. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Any information entered on the website, is checked by CleanTalk, an automated spam protection service.
Our contact information
You may email us at at email@example.com
Emails received through firstname.lastname@example.org are reviewed by one staff member, sent onwards when necessary to other staff members, and deleted as quickly as possible. We do not disclose the names of senders to others outside of ME/CFS Alliance, i.e. third parties, without your permission.
We use email service providers in the UK. As a result our emails are susceptible to lawful access in the UK, and possibly through unlawful means by the UK Government and by other governments and entities. We select our service providers on the basis of their privacy awareness, and work with most of our service providers to advise them on privacy protection. Our current service provider is Krystal Hosting Ltd.
How we protect your data
Personal data shall be subject to additional safeguards to ensure this data is processed securely. For example, we work hard to ensure data is encrypted when in transit and storage, and access to this data will be strictly limited to a minimum number of individuals and subject to confidentiality commitments.
We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Policy. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to any of our websites; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. When possible, encryption is used, both in transit and storage. Access controls within the organisation limit who may access information.