Page 277 - Washington Nonprofit Handbook 2018 Edition
P. 277
identifiers. An individual nonprofit organization’s website collecting such
information may or may not be regarded a commercial website. Some important
factors may be whether the organization’s website promotes any unrelated
business activities, includes any paid advertising, or solicits new members who may
receive in return for their dues some commercial benefit not related to the
organization’s exempt purpose.
Accordingly, an organization should carefully consider whether it would be
advantageous to comply with the Online Privacy Protection Act’s requirements.
Under the Online Privacy Protection Act, the privacy policy must do the
following:
• Identify the categories of (a) personally identifiable information
collected through the website or online service about individual
consumer visitors, and (b) third-party persons or entities with whom
the operator may share such information;
• Provide a description of the process for an individual consumer to
review and request changes to his or her personally identifiable
information collected through the website or online service, if the
operator maintains such a process;
• Describe the process by which the operator notifies consumers who
use or visit its website or online service of material changes to the
operator’s privacy policy; and
• Identify its effective date.
(ii) Preliminary Considerations in Drafting Your Privacy Policy
All organizations should consider developing a privacy policy for conspicuous
posting on their website.
A privacy policy:
• Explains to individuals how your organization will collect, use, and
secure any information you obtain about them;
• Demonstrates a level of responsibility to your members and donors,
forming a bond of trust that will increase their confidence in you and
willingness to do business with you;
WASHINGTON NONPROFIT HANDBOOK -266- 2018
