Privacy Policy

Frontstream Global Fund Privacy Policy

1. Overview

Frontstream Global Fund has developed this Privacy Policy to inform you how we collect data and use the data we collect. Frontstream Global Fund provides donation processing, organization vetting and funds distribution (collectively, “Services”) specifically for fundraising activities by nonprofit and corporate customers.

In this Privacy Policy, “you” or “your” refers to a user of our Services who may use the Services directly through us or through one of our Platform customers (e.g., a nonprofit organization, fundraising platform or other corporate entity) (“Customer”). For example, a you may be an individual seeking information from a Customer or you may be providing a donation to a Customer, and you use the Services that we provide to the Customer. Please note that this Privacy Policy only covers the data we collect, and it does not apply to websites, 3rd party partners or services we do not control, including websites, platforms or services of our Customers.

Please review this Privacy Policy carefully. If you have questions, please contact us. Additional contact details are at the bottom of this Privacy Policy.

2. Data We Collect

We collect and process the following types of information as gathered and provided to Us by our Customers and Partners:

a. Information You Provide

You may register to use 3rd party fundraising Services provided by our Customers or Partners. In doing so you may set up an account, make a donation, or respond to communications (e.g., surveys, polls, requests for feedback), we will access information you provide via this process. This may include your IP address, first and last name(s), demographic information, mailing address, e-mail address, phone number, and credit card number. In the use of 3rd party Services, you may also choose to disclose or provide your communication preferences, your physical location, and your demographic information (e.g., your age, marital status, ethnicity/race, and gender). All of this is “Personal Information,” because it can be used to identify you.

b. Information We access about You

We access information about your use of our Customers’ and Partners’ Services, including but not limited to: your Internet connections, computer equipment, web browsers, websites visited before using or accessing the Services, websites visited after leaving the Services, and other similar information about traffic and usage, as you navigate to, through, and away from these 3rd party Services. This is “Non-Personal Information,” because it does not identify you, but provides insights regarding the uses of our Services. For example, we may use this information to generate statistical information, monitor and analyze traffic and usage patterns in connection with our Services, monitor and prevent fraud, investigate complaints and potential violations of our policies, and to improve the our content and the products, services, materials, and other content that we describe or make available through the Services.

In some jurisdictions, such as the United States, an IP address may be considered Non-Personal Information. In the European Economic Area an IP address is considered Personal Information under applicable data protection laws. If this is the case, we process Non-Personal Information for the same purposes as Personal Information under this Privacy Policy.

c. Geolocation Information

You may choose to allow our Customers and Partners to access your location by granting their platforms access to your location when prompted or through your device’s location services settings. You may change these settings on your device.

3. How We Use Data. Frontstream Global Fund uses Personal information and Non-Personal Information for the following purposes:

As necessary to perform the Services on your behalf or on behalf of our Customers with whom you may have an account and for other legitimate and lawful business purposes. This may include:

Establishing accounts to use the Services

Communicating with you in connection with Services or as a result of a request

Communicating promotional materials, such as surveys, event notifications, newsletters, and other information

Notifying you of changes made to the Services

Maintaining a record of the donations and related activities in connection with your use of the Services

Sharing with our corporate parents, subsidiaries, other affiliated entities, and associated entities for the purposes described in this Privacy Policy;

Sharing with the recipient non-profit organization if agreed to by you when making a donation;

Sharing with our service providers that perform certain business functions or services on our behalf and with whom are bound by contractual obligations consistent with this Privacy Policy;

Evaluating and improving the Services;

To comply with a legal obligation, a court order, or in order to exercise our legal claims, or to defend against legal claims;

To prevent or investigate fraud (or for risk management purposes);

To describe our Services to current and prospective business partners and to other third parties for other lawful purposes; and

To conduct aggregate analysis and develop business intelligence that helps us to enhance; operate, protect, make informed decisions, and report on the performance of our Services. Frontstream Global Fund may share this aggregate data with its customers, affiliates, agents and business partners. This aggregated data will not identify an end user as an individual. Frontstream Global Fund may also disclose aggregated statistics prepared using Collected Information in order to describe our Services to current and prospective business partners and to other third parties for other lawful purposes.

4. How We Disclose Data. We do not sell or rent Personal Information to marketers or unaffiliated third parties. We do have trusted third parties and we may share your Personal and Non-Personal Information (“Collected Information”) with the following entities:

Corporate Affiliates, including corporate parents, subsidiaries, other affiliated entities, and associated entities for the purposes described in this Policy;

Service Providers that perform certain functions or services on our behalf, such as to host or assist with the Services, manage databases, process payments or donations, host a store or other e-commerce platform, perform analyses, or send communications for us. We require these service providers to comply with all applicable data privacy laws and regulations;

Business Partners that assist in the delivery of the Services (e.g., merchant service providers, organizations holding fundraising events, vendors who have provided bidding items);

Customers, as necessary to provide the Services;

Authorized third parties, who are parties directly authorized by you to receive the applicable Collected Information, such as when you authorizes a third-party application provider to access your account. The use of your Collected Information by an authorized third party is subject to the third party’s privacy policy; and

Third parties, in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in connection with any bankruptcy or similar proceedings).

We may use and disclose Collected Information as we believe necessary: (i) under applicable law; (ii) to enforce applicable terms and conditions; (iii) to protect our rights, privacy, safety or property, and/or that of our affiliates, you, or others; and (iv) to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, which may include authorities outside your country of residence.

5. Other Services and Platforms. We work with third parties with whom we have a contractual relationship. For example, we use other third parties for technical, payment, and delivery services, analytics, and search information. For example, when you submit credit card or debit card information, that Personal Information is provided directly to our third-party payment processor. In some instances, you may have a choice as to which third-party credit card processor you would like to use. Please refer to the privacy policy on any third party website.

As part of our fundraising platform, you may choose to link our Services to a third party account or platform. For purposes of this Privacy Policy, if you authorize or otherwise enable an account or platform operated by a third party, then you will control that connection (“Connection”). For example, you may create a Connection to a social media account, in which case, we will receive Personal Information from the social media provider through the Connection. All information we receive through a Connection will be subject to this Privacy Policy.

Please review the Privacy Policy of any and all third parties. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third party websites or services.

6. Security. Although we use security measures designed to protect your Personal Information, no data security measures are guaranteed to be completely effective. Transmission of information via the internet is not wholly secure, and we cannot guarantee the security of your Personal Information transmitted to or through the website or any of our Services. For example, please do not include credit card or other sensitive data (e.g., racial or ethnic origin, health, etc.) in your e-mails to us. Any transmission of such Personal Information is at your own risk. By using the Services, you acknowledge and accept these risks.

Please notify us immediately if you become aware of any unauthorized use of your password or account or any other breach of Service security or of this Policy. If our security system is breached, we will notify you of the breach as required by applicable law.

7. Advertising. We use other third-party services to obtain, track, and store user information. For example, we use a customer relations management (CRM) software to manage data and information. We also use a third-party software to collect information from your browser and computer device in order to capture and analyze user behavior on our website. From time to time, we will use additional content or applications in the Services that is served by third-parties, including advertisers, ad networks and servers, social media websites, content providers, and application providers. These third parties may use cookies alone or in conjunction with other Internet tracking technologies to collect information about you when you use our Services. We do not control these third parties’ tracking technologies or how they may be used.

8. Access and Options. You have choices regarding our use and disclosure of Your Personal Data:

If you change your mind after opting to receive electronic communications, you may opt out of receiving such communications from us by communicating your preferences to, or by following the unsubscribe link contained in the applicable e-mail. We will comply with your request as soon as reasonably practicable. Please note that if you opt-out of receiving marketing-related emails from us, we may still send you important administrative messages that are required to provide you with our Services.

In certain circumstances, you may also request that we delete your Personal Information, for example if our retention of your Personal Information is no longer necessary as part of the Services.

If you would like to review, correct, or update Personal Information that you have previously disclosed, you may do so by signing in to your account or by contacting us. For your protection, we may only implement requests with respect to the Personal Information associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable. Unless otherwise prohibited by law, we may charge you a fee for providing you with a copy of your data.

9. Retention. We will retain Personal Data for the period necessary to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law.

10. Use of Services and Privacy of Minors. We do not provide the Services to anyone under the age of 13. In accordance with the Children’s Online Privacy Protection Act (COPPA), we will never knowingly request or solicit Personal Information from anyone under the age of 13. Please notify us if we receive such Personal Information of anyone under the age of 13, and we will delete that information from our database as soon as is reasonably practical.

11. Access from Outside the United States. If you are visiting the Services from outside the United States, please be aware that Collected Information may be transferred to, stored in, and processed in the United States, which is where our suppliers’ servers and databases are located and operated.

12. Frontstream Global Fund as a Data Processor. We may collect, use, and disclose certain Personal Information about you when acting as service provider to a Customer. Customers are responsible for ensuring that your privacy rights are respected, and should include information to help you understand how third parties collect and use your data. To the extent that we are acting as a Customer’s data processor, we will process your Personal Information according to the terms of our agreement with our Customer and its lawful instructions.

13. Filing a Complaint. If you are not satisfied with how we manage your Personal Information, you have the right to make a complaint to a data protection regulator.

14. Updates to Privacy Policy. We may change this Privacy Policy from time to time. Any changes are effective when we post the revised Privacy Policy on or through the Services. Disclosures and notices in relation to this Privacy Policy or your Personal Information shall be considered to be received by you within twenty-four (24) hours after the time they are posted to our website or otherwise through the Services.

15. Your California Privacy Rights. California Civil Code Section 1798.83 permits users of the Services who are California residents to request and obtain a list of what Personal Information (if any) we disclosed to third parties for direct marketing purposes in the preceding calendar year and the names and addresses of those third parties. Requests may be made only once a year and are free of charge. Under Section 1798.83, California residents are entitled to request and obtain such information, by e-mailing a request to

16. Australian Compliance

a. Access and Collection. Collected Information may be transferred to, stored in, and processed in the United States, and Frontstream Global Fund will comply with the requirements of the Privacy Act that apply to cross-border disclosures of Collected Information.

b. Corporate Parents, Affiliates, and Subsidiaries, or Associated Entities. We may share Collected Information with our corporate parents, subsidiaries, other affiliated entities, and associated entities (as that term is defined under Australian law) for the purposes described in this Policy.

c. Privacy Complaints for Australian Users. If you have a complaint about how we collected or handled Collected Information, please contact us. We will endeavor in the first instance to deal with your complaint and take action to resolve the matter. If your complaint cannot be resolved at the first instance, we will ask you to lodge a formal complaint in writing, explaining the circumstances of the matter that you are complaining about, how you believe your privacy has been interfered with and how you believe your complaint should be resolved. We will acknowledge receipt of your formal complaint and indicate the timeframe that you can expect a response. We will endeavor to resolve the complaint as quickly as possible, but if the matter is complex and our investigation may take longer, we will let you know when we expect to provide our response.

If you are unhappy with our response, you may refer your complaint to the Office of the Australian Information Commissioner or, in some instances, other regulatory bodies, such as the Victorian Health Services Commissioner or the Australian Communications and Media Authority.

17. E.U.-U.S. Privacy Shield. In addition to compliance with the General Data Protection Regulation 2016/679, Frontstream Global Fund comply with the EU-US Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union (“EU”) to the United States. Frontstream Global Fund has certified that it adheres to the Privacy Shield Principles. If there is any conflict between the policies in this Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit

Frontstream Global Fund is responsible for the processing of personal data it receives under the Privacy Shield Framework and subsequently transfers to a third party acting as an agent on its behalf. Frontstream Global Fund complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.

With respect to Collected Information received or transferred pursuant to the Privacy Shield Framework, Frontstream Global Fund is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Frontstream Global Fund may be required to disclose Collected Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

In compliance with the Privacy Shield Principles, Frontstream Global Fund commits to resolve complaints about Frontstream Global Fund’s collection or use of your Collected Information (personal information). EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Frontstream Global Fund at: