Privacy Policy

Ya Enough! respects your privacy. This Privacy Policy explains what we collect, how we use it, and the choices you have when you interact with our website and programs.

1) Information We Collect

Information you provide directly. When you contact us, donate, subscribe, apply for programs, or complete forms, we may collect your name, email, phone, address, donation amount (not full payment card details), and any messages you submit.

Information collected automatically. When you visit our site, we and our service providers (including Google Analytics) automatically collect certain information through cookies and similar technologies, such as:

  • IP address and approximate location

  • Device and browser type

  • Pages viewed, links clicked, and time on site

  • Referring/exit pages

Donation/payment processing. Donations are processed by third-party processors. We do not receive or store full payment card numbers. Please review the processor’s privacy policy for details.

2) How We Use Information

We use your information to:

  • Provide, secure, and improve our website and services

  • Communicate with you (e.g., program updates, receipts, newsletters)

  • Process and acknowledge donations

  • Analyze site usage and measure campaign effectiveness

  • Comply with legal obligations and enforce our terms

3) Cookies & Google Analytics

We use cookies to operate the site and to understand usage. We also use Google Analytics (GA4) to help analyze how visitors use the site. GA may set cookies and collect data described above. Where available, we enable privacy-forward configurations (e.g., IP anonymization in GA). Google’s use of data is described in its policies.

Your choices:

  • Control or delete cookies in your browser settings.

  • Opt out of Google Analytics with the Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout

  • Manage Google ad settings: https://adssettings.google.com

Cookie lifetimes vary; GA4 typically retains event data for 2–14 months depending on our settings.

4) When We Share Information

We do not sell your personal information. We may share information with:

  • Service providers/partners who help us operate the site, process donations, send email, analyze performance, or provide support (bound by contractual confidentiality and data-use limits).

  • Legal and safety: to comply with law, protect rights, or address security/abuse.

  • Organizational changes: in connection with a restructuring related to our nonprofit operations, consistent with this Policy.

5) Your Choices & Rights

  • Email preferences: Use “unsubscribe” links in our emails or use our contact form as described below.

  • Access, update, or delete: You may request access to, correction of, or deletion of your information, subject to legal and record-keeping requirements.

  • Do Not Track: Browsers may send DNT signals; we currently do not respond to DNT due to industry inconsistency.

To exercise any of these rights, use the Contact form on our website and include the words “Data question” or “Data request” in your subject or first line.

California Privacy (CPRA)

If you are a California resident, you may have rights to know, access, correct, and delete certain personal information, and to limit the use of sensitive personal information. We do not “sell” personal information as defined by California law. To exercise your rights, use the Contact form on our website and include “Data question” or “Data request.”

International Visitors (GDPR)

Our programs primarily serve the U.S. If you are in the EEA/UK, our legal bases may include consent, contractual necessity, legitimate interests, and legal compliance. You may have rights to access, correct, delete, or object to processing, and to data portability. You can also lodge a complaint with your local supervisory authority. To reach us, use the Contact form on our website and include “Data question” or “Data request.”

6) Children’s Privacy

Our website is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child provided personal information, please contact us via the Contact form with “Data request” in your message, and we will delete it.

7) Data Security & Retention

We use reasonable administrative, technical, and physical safeguards designed to protect your information. No method is 100% secure. We retain information only as long as needed for the purposes described here (e.g., donor records for tax/record-keeping) unless a longer period is required by law.

8) Third-Party Links

Our website may link to third-party sites or services. Their privacy practices are their own; please review their policies.

9) Contact Us

For questions about this Policy or your data, use the Contact form on our website and include the words “Data question” or “Data request.”

10) Changes to This Policy

We may update this Policy from time to time. The “Effective date” above reflects the latest version. Material changes will be noted on this page (and, when appropriate, via email or site notice).