The Community Foundation of Anne Arundel County, Inc. (“CFAAC,” “we,” “our,” or “us”) is committed to protecting the privacy of our donors, fundholders, partners, and website visitors. This Privacy Policy explains how personal information is collected, used, and safeguarded when you visit www.cfaac.org, register for events, make donations, participate in surveys, or otherwise interact with CFAAC.
If you have questions or concerns regarding this policy or our data practices, please contact:
Community Foundation of Anne Arundel County
900 Bestgate Road, Suite 400
Annapolis, MD 21401
HRdept@cfaac.org | 410-280-1102
For purposes of the General Data Protection Regulation (GDPR), the Community Foundation of Anne Arundel County, Inc. is the data controller responsible for personal information collected under this Privacy Policy.
CFAAC collects personal information that you voluntarily provide, such as your name, contact details, donation or payment information, event registration details, and survey responses. We may also collect information automatically when you visit our website, including Internet Protocol (IP) address, browser type, device information, pages visited, and general website usage data through cookies and similar technologies.
Personal information is used to process donations and event registrations, send acknowledgements and receipts, communicate about programs and activities, provide newsletters and updates, respond to inquiries, improve website functionality, and meet legal, tax, and regulatory obligations. CFAAC does not sell or share personal information.
For individuals located in the European Economic Area or the United Kingdom, CFAAC processes personal data in accordance with the GDPR. Personal data is processed based on consent, contractual necessity, legal obligations, and CFAAC’s legitimate interests, such as nonprofit operations, donor stewardship, and community engagement.
Email addresses may be used to share information related to CFAAC programs, events, funding opportunities, and organizational updates. Individuals may opt out of non-essential email communications at any time by using the unsubscribe link included in CFAAC emails or by contacting CFAAC directly.
Transactional communications, such as donation receipts and event confirmations, will continue to be sent when required.
CFAAC uses cookies to support website functionality, understand how visitors use our website, and improve overall user experience. You may adjust your browser settings to limit or block cookies; however, some features of the website may not function properly without them.
When donations are made or events are registered for online, payment information is processed through secure third-party service providers. CFAAC does not store full credit card numbers on its servers.
Service providers are authorized to use personal information only as necessary to complete transactions and are required to maintain appropriate confidentiality and security protections.
From time to time, CFAAC may invite individuals to participate in surveys to better understand community needs and improve programs. Participation is voluntary, and information collected through surveys is used solely for organizational and planning purposes.
Personal information may be shared only with trusted service providers that support CFAAC operations, such as donation platforms, email systems, and event management tools; when required by law; or when necessary to protect the rights, safety, or property of CFAAC and its stakeholders.
All service providers are required to protect personal information and use it only for authorized purposes.
CFAAC retains personal information only for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy and to meet applicable legal, tax, accounting, and regulatory requirements. When information is no longer needed, it is securely deleted or anonymized.
Depending on your location, you may have the right to request access to your personal information, request corrections, request deletion, restrict or object to certain data processing, or withdraw consent.
Individuals located in the European Economic Area or the United Kingdom have the right to request access to their personal data, request correction of inaccurate information, request deletion of personal data, restrict or object to processing, request data portability, and withdraw consent at any time. Individuals also have the right to lodge a complaint with their local data protection authority.
Personal information may be transferred to and processed in the United States, where data protection laws may differ from those in other jurisdictions. CFAAC takes reasonable steps to ensure appropriate safeguards are in place for such transfers.
Residents of California may exercise rights provided under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know what personal information is collected and the right to request deletion. CFAAC does not sell or share personal information as those terms are defined under California law. CFAAC does not use or disclose sensitive personal information except as permitted under applicable law.
Requests related to privacy rights may be submitted by contacting HRdept@cfaac.org.
CFAAC will not discriminate against any individual for exercising their privacy rights.
CFAAC does not knowingly collect personal information from children under the age of 13. If such information is identified, it will be removed promptly.
The CFAAC website may contain links to external websites not operated by CFAAC. CFAAC is not responsible for the privacy practices or content of those websites. Users are encouraged to review the privacy policies of any external sites they visit.
CFAAC maintains reasonable administrative, technical, and physical safeguards designed to protect personal information from loss, misuse, unauthorized access, disclosure, or alteration. While no system can be guaranteed to be completely secure, CFAAC takes data protection seriously.
This Privacy Policy may be updated periodically. Any changes will be posted on this page with a revised effective date.
Effective Date: January 2026