Privacy Statement

On 25th May, 2018, new legislation, commonly known as the General Data Protection Regulations (‘GDPR’), became effective, placing significant responsibilities on organisations with respect to the handling and processing of personal data. Because the Israel Philharmonic Orchestra Foundation UK [IPOFUK] holds a limited amount of personal data about its valued supporters, IPOFUK is registered with the Information Commissioner’s Office (‘ICO’) under Registration Reference ZA316157. This registration is renewed annually.

What information does IPOFUK handle and store?

IPOFUK collects and holds ONLY data that is necessary to carry out its charitable function in raising funds for the Israel Philharmonic Orchestra and this is limited to the following information:
First Name and Surname
Address
Email Address and Telephone Number
Details of your donations to IPOFUK
Details of payments made for programme entries, adverts and auction
Any personal information in email correspondence between you and IPOFUK

This data qualifies as ‘personally available information’ under the terms of GDPR and, therefore, in order to comply with the new regulation, it is necessary for IPOFUK to receive your permission to store and use this data.
In some cases, data may be stored on a Legitimate Interest basis or Legal Obligation basis, but in this case, we will not use it to send newsletters. We hold Consent-based data and Legitimate Interest based data for a maximum of thirty years. We hold Legal Obligation basis data for a maximum of 15 years.

What is your information used for?

The above information may be used by IPOFUK in one or more of the following ways:
To send to you periodic emails and/or correspondence in relation to concerts and other special events or news;
To send to you periodic emails and/or correspondence in relation to fundraising initiatives, such as membership;
To send to you emails and/or correspondence regarding any outstanding payments;
To maintain a record of your support.

Under the GDPR regulations, it is necessary for you to give IPOFUK permission to use your personal information, even though the amount of data that we hold is limited and notwithstanding that IPOFUK only uses this information in the context of its role in fundraising for the Israel Philharmonic Orchestra. In the event that we do not receive your permission, and your information is not needed on a Legitimate Interest basis or Legal Obligation basis, we will delete your data and stop all forms of communication.

How does IPOFUK protect your information?

Your personal information is held in a secure, password protected database called Magbit and a secure, password protected accountancy database called Sage, both accessed by IPOFUK staff only. The IPOFUK uses a variety of standard security measures to maintain its safety. The IPOFUK

occasionally uses third party email software such as ActiveTrail that are based outside the EU but meet the GDPR requirements because they carry Privacy Shield certification. The IPOFUK only uses third party software that is strictly GDPR compliant. The IPOFUK occasionally needs to share your information with a limited number of IPO Foundation staff in Israel, for administrative support and in such instances, your information will always be shared with password protection.

How can you find out what information the IPOFUK holds on you?

Should you send us a Subject Access Request, IPOFUK is obliged to provide you with what personally identifiable information we hold on you. For the purposes of GDPR, we have a month, after receiving your request, to provide this information to you.

What about potential data breaches?

The GDPR places a duty on all organisations to report specific types of data breach to the ICO, and in some cases, to individuals. We have to notify the ICO of a data breach, where it is likely to result in a risk to the rights and freedoms of individuals.

Does IPOFUK disclose any information to outside parties?

We do not sell, trade, or otherwise transfer your information to outside parties. We may release your information when we believe release is necessary to comply with the law, or protect our or others rights, property, or safety.

What happens if IPOFUK changes its Privacy Policy?

You will be advised of any change to the policy

How can you contact IPOFUK to ask about GDPR or to opt-out of receiving any further information?

Should you have any questions about our Privacy Policy, please contact the IPOFUK by emailing: admin@ipofoundationuk.com

You are free to opt-out of receiving further information from us at any time, by emailing the address above.

Cookie	Duration	Description
__cf_bm	1 hour	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
__stripe_mid	1 year	Stripe sets this cookie to process payments.
__stripe_sid	1 hour	Stripe sets this cookie to process payments.
_GRECAPTCHA	5 months 27 days	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Advertisement" category.
cookielawinfo-checkbox-analytics	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Analytics" category.
cookielawinfo-checkbox-functional	1 year	The GDPR Cookie Consent plugin sets the cookie to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Necessary" category.
cookielawinfo-checkbox-others	1 year	Set by the GDPR Cookie Consent plugin, this cookie stores user consent for cookies in the category "Others".
m	1 year 1 month 4 days	Stripe sets this cookie for fraud prevention purposes. It identifies the device used to access the website, allowing the website to be formatted accordingly.
rc::a	never	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
rc::c	session	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
wpEmojiSettingsSupports	session	WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user's browser can display emojis properly.

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies store information about how the user uses the website to present them with relevant ads according to the user profile.
test_cookie	15 minutes	doubleclick.net sets this cookie to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
VISITOR_PRIVACY_METADATA	6 months	YouTube sets this cookie to store the user's cookie consent state for the current domain.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.

Cookie	Duration	Description
yt-player-headers-readable	never	The yt-player-headers-readable cookie is used by YouTube to store user preferences related to video playback and interface, enhancing the user's viewing experience.
yt-remote-cast-available	session	The yt-remote-cast-available cookie is used to store the user's preferences regarding whether casting is available on their YouTube video player.
yt-remote-cast-installed	session	The yt-remote-cast-installed cookie is used to store the user's video player preferences using embedded YouTube video.
yt-remote-fast-check-period	session	The yt-remote-fast-check-period cookie is used by YouTube to store the user's video player preferences for embedded YouTube videos.
yt-remote-session-app	session	The yt-remote-session-app cookie is used by YouTube to store user preferences and information about the interface of the embedded YouTube video player.
yt-remote-session-name	session	The yt-remote-session-name cookie is used by YouTube to store the user's video player preferences using embedded YouTube video.
ytidb::LAST_RESULT_ENTRY_KEY	never	The cookie ytidb::LAST_RESULT_ENTRY_KEY is used by YouTube to store the last search result entry that was clicked by the user. This information is used to improve the user experience by providing more relevant search results in the future.