Privacy Policy

Last updated: April 14, 2026

1. Who We Are

GiveRadar is operated by Timmermans Media OÜ, registered in Estonia. This privacy policy explains how we collect, use, and protect your personal data when you use giveradar.com.

2. What Data We Collect

Account data: When you create an account, we collect your name, email address, and password (hashed). This is required to provide access to detailed charity data.

Charity claim data: When claiming a charity profile, we collect your name, job title, work email, and phone number to verify your identity.

Review data: When submitting a review, we collect your name, email (for verification), and review content.

Usage data: We use Google Analytics to collect anonymous usage statistics such as page views, session duration, and referral sources. No personally identifiable information is shared with Google.

Research pilot data: If you opt in to a research pilot study (such as a donor behavior study), we collect the data you voluntarily provide as part of the study, including survey responses, diary entries, or self-reported engagement with charity profiles. Pilot data is handled under separate informed consent forms, analyzed only in aggregate, and never linked to personally identifiable information in any public report.

3. How We Use Your Data

  • To provide access to your GiveRadar account and saved preferences.
  • To verify charity claim requests via email verification.
  • To display your reviews on charity profiles (name shown publicly, email never displayed).
  • To send transactional emails (welcome email, verification codes).
  • To improve the platform based on anonymous usage patterns.

4. What We Do Not Do

  • We do not sell your personal data to third parties.
  • We do not send marketing emails without your consent.
  • We do not share your email address with charities or other users.
  • We do not use your data for advertising or profiling purposes.
  • We do not use your personal data to train AI models.

5. Cookies and Tracking

GiveRadar uses essential cookies for session management and CSRF protection. We use Google Analytics for anonymous usage statistics. No third-party advertising cookies are used.

6. Data Retention

Account data is retained as long as your account is active. You can request deletion of your account and associated data at any time by contacting us. Charity data (public registry information) is retained independently of user accounts.

7. Data Security

We use HTTPS encryption for all connections, bcrypt password hashing, CSRF protection on all forms, and restrict database access to localhost only. Our servers are hosted on Hetzner (EU) with regular security updates.

8. Your Rights (GDPR)

If you are in the EU/EEA, you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data ("right to be forgotten").
  • Object to processing of your data.
  • Request a copy of your data in a portable format.

To exercise these rights, contact [email protected].

9. Third-Party Services

  • Google Analytics - anonymous usage statistics.
  • Google reCAPTCHA - spam protection on registration and login.
  • Resend - transactional email delivery.
  • Hetzner - server hosting (EU, Germany).

10. Contact

For privacy-related questions, contact us at [email protected].

Timmermans Media OÜ