Marin Community Foundation Privacy Policy

Last Updated: January 22, 2026


This Privacy Policy (the “Privacy Policy”) describes the practices and policies of the Marin Community Foundation, a 501(c)(3) public charity (hereinafter, "MCF," "we," "us," or "our") relating to our collection of data online through the below websites and portals (together, our “Platform”), over the phone, and/or via written correspondence. 
 

By visiting our Platform, you are agreeing to this Privacy Policy.
 

Our Platform includes the following:
•    https://www.marincf.org – Main Website
•    https://givingcenter.marincf.org – Giving Center
•    https://grantcenter.marincf.org - Grant Center
•    https://donationcenter.marincf.org – Donation Center
 

This Privacy Policy includes the following sections:

  1. Data We Collect
    1. Personal vs. Non-Personal Data
    2. Personal Data You Provide to Us & How We Manage (Use, Share, and Protect & Store) It
      1. Main Website
      2. Donation Center
      3. Giving Center
      4. Grant Center
      5. Generally
    3. Data We Collect Automatically, How We Collect It, & How We Manage  (Use, Share, and Protect & Store) It
  2. Reviewing and Changing Your Personal Data
  3. Links to Other Websites
  4. Special Concerns Regarding Children and Privacy
  5. Special Concerns Regarding International Use and Transfer
  6. Changes to Our Privacy Policy
  7. How To Contact Us

 

  1. Data We Collect

    Personal vs. Non-Personal Data

    When we use the term "personal data", we are referring to information that can be used, individually or together with any other data we collect, to identify an individual person.  Non-personal data is all other information we collect, which cannot be traced to an identifiable individual. 

    Personal Data You Provide to Us & How We Manage (Use, Share, & Protect & Store) It

    The personal data that you provide directly to us, and how we use, share, and protect and store it, will vary depending on the part of the Platform you are utilizing, as described below.  

    Main Website

    Email Subscription

    You may sign up to receive emails from us with our newsletters and other information, whether via our Community Newsletter Subscription, Donor Communication Subscription, or both.

    In order to subscribe to emails, you must provide us with your name and email address. We use this information to send you emails. 

    We collect your name and email address using Salesforce, and store that information using a service provided by Campaign Monitor. We do not control the terms of Campaign Monitor’s privacy policy, and we encourage you to review it prior to providing us with your personal data for the purpose of receiving emails from us.

    “Contact Us” Form

    You may submit an inquiry to us via the "Contact Us" form, through which you will provide your name and email address. You may also choose to include additional personal data in your message.

    The personal data you provide via the Contact Us form is used to enable us to respond to your inquiry. 

    As with email subscriptions, our "Contact Us" functionality is powered by Salesforce, which collects your name and email address, and shares it with us. When you use this service, we keep your correspondence in Campaign Monitor so that we have a history of past correspondence to reference if you reach out in the future. We do not control the terms of Campaign Monitor’s privacy policy, and  we encourage you to review it prior to providing us with personal data for the purpose of submitting the Contact Us form.

    Donation Center

    MCF offers individuals the opportunity to make donations to specific funds administered by MCF, through the Donation Center.  When you choose to donate through the Donation Center, you must provide the following: 

  • your name
  • email address
  • other contact information
  • donation amounts, and 

  • payment information

    This information is used to enable you to make donations to the fund(s) of your choosing.

    With the exception of payment information, your personal data is shared with, and stored within, Microsoft’s SQL Server. We do not control the terms of Microsoft’s Privacy Statement, and we encourage you to review it prior to providing us with personal data for the purpose of making a donation via the Donation Center.

    Your payment information is shared with PayPal using a secure connection. If you choose to make a donation through the Donation Center, your payment information will be collected, encrypted, stored, and shared by PayPal in accordance with PayPal's privacy policy. Because we do not control the terms of Paypal’s privacy policy, we encourage you to review it prior to providing us with payment information via the Donation Center. MCF does not have access to view or store your payment information.

    Giving Center

    Through our Giving Center, MCF also allows individuals (“DAF Representatives”) to open and contribute to DAFs administered by us. If you are a DAF Representative, you will be required to provide your name and contact information in order to create a Profile. 

    Once you’ve logged in, in order to make contributions to your DAF, you must also provide payment information. Your payment information is shared with PayPal using a secure connection. If you choose to make a donation through the Giving Center, your payment information will be collected, encrypted, stored, and shared by PayPal in accordance with PayPal's privacy policy. Because we do not control the terms of Paypal’s privacy policy, we encourage you to review it prior to providing us with payment information via the Giving Center. MCF does not have access to view or store your payment information. 

    The information you share to create your profile is used for the purpose of (1) providing you with access to the Giving Center, (2) pre-populating form data to generate recommendations, (3) sending you email notifications, and (4) SMS Multi-Factor Authentication (optional). 

    Your profile information is shared with, and stored within, Microsoft’s SQL Server. We do not control the terms of Microsoft’s Privacy Statement, and we encourage you to review it prior to providing us with personal data for the purpose of making a donation via the Giving Center.

    Grant Center

    Representatives of MCF’s grantee organizations must create a Profile containing their name and contact information, so that they can view and update their organization’s information via the Grant Center.

    The information you share to create your profile is used for the purpose of providing you with access to the Grant Center so that you can make updates about your organization for the purpose of its receipt of grants from MCF.

    Your profile information is shared with, and stored within, Microsoft’s SQL Server. We do not control the terms of Microsoft’s Privacy Statement, and we encourage you to review it prior to providing us with personal data for the purpose of making a donation via the Grant Center.

    Generally

    Specific variations above aside, the following principles regarding how we use, share, and protect & store your personal data are generally applicable across our Platform.

    How We Use Personal Data You Provide to Us

    We collect and process personal data from you only for lawful reasons, such as our legitimate business interests or to fulfill our legal or contractual obligations.  We do not sell, rent, or trade your personal data to third parties. 

    We restrict access to personal data collected about you to our employees, our affiliates' employees, those who are otherwise specified in this Privacy Policy, or others who need to know that information in the course of conducting our business operations or activities. Please note, however, that no website can guarantee 100% security.

    How We Share Personal Data You Provide to Us

    We may share personal data with other third parties as follows: (1) to third-party applications as you may specifically consent in the course of using the Platform; (2) to our affiliates, service providers, and agents for our internal operations (like storage and data backup) and to provide, improve, and market our Services to you; (3) to perform data analytics (as described above); (4) in connection with a sale of all or substantially all of the assets of MCF or the merger of MCF into another entity or any consolidation, share exchange, combination, reorganization, or like transaction in which MCF is not the survivor; (5) for any or all of the following reasons: (i) to comply with a subpoena, to comply with a legal process, to comply with what we reasonably believe in good faith is a valid and enforceable warrant or subpoena, or to comply with any other legal obligation, (ii) to prevent, investigate, detect, or prosecute criminal offenses or attacks on the technical integrity of our services, (iii) when we reasonably believe in good faith that disclosure is necessary to protect the rights, privacy, property, business, or safety of MCF, their partners and employees, you, or the public, and/or (iv) to investigate fraud.

    How We Protect & Store Personal Data You Provide to Us

    We maintain reasonable administrative, technical, and organizational safeguards designed to protect against loss, misuse, unauthorized access, disclosure, alteration, or destruction of the personal data that we collect from you.

    We store your personal data for as long as required to provide services to you. We may retain personal data after we cease providing services to you to the extent necessary to comply with our legal and regulatory obligations, including for tax, accounting, and financial reporting, and for the purpose of fraud monitoring, detection, and prevention . Where we retain data, we do so in accordance with any limitation periods and records retention obligations that are imposed by applicable law.

    Data We Collect Automatically, How We Collect It, & How We Manage (Use, Share, and Protect & Store) It

    We collect certain data by automated means when you visit any part of the Platform, some of which may be personal data. This data is aggregated and is not used to identify or track individual activity.  

    What We Collect Automatically, How We Collect It, and How We Use It

    We use third-party analytics, cookies, and web beacons to automatically collect certain data.

    Third-Party Analytics

    We use Google Analytics to track user behavior, including through the use of cookies (described below). Google Analytics may collect:

     

  • Device and browser information (device type, OS, browser, screen resolution)
  • Technical identifiers (IP address, session identifiers, cookies)
  • Geographic information (approximate location based on IP)
  • On-site behavior (pages visited, time spent, navigation paths, clicks, scroll depth)
  • Traffic sources (how you arrived at the site)
  • Event data (form submissions, file downloads, video plays, outbound link clicks)
  • Device and browser information (device type, OS, browser, screen resolution)
  • Technical identifiers (IP address, session identifiers, cookies)
  • Geographic information (approximate location based on IP)

  • Behavior (how long you watched for)

     

  • We also use Vimeo Analytics to track user interaction with our embedded video-player, including through the use of cookies. Vimeo Analytics may collect:

    We use automatically collected data for our business purposes, such as data analysis, audits, fraud monitoring and prevention, improving or modifying our Platform, identifying usage trends, determining the effectiveness of promotional campaigns, and operating and expanding business activities.

    Cookies

    A cookie is a piece of information that a web server may place on your computer when you visit a website. Cookies are commonly used by websites to improve the user experience. Many cookies last only through a single website session, or visit. Others may have an expiration date, or may remain on your computer until you delete them. Most browsers will tell you how to stop accepting new cookies, how to be notified when you receive a new cookie, and how to disable existing cookies. Please note, however, that without cookies you may not be able to take full advantage of all the features on our Platform. For more information on cookies and similar technologies and how to disable them, please see allaboutcookies.org/cookies.

    We use cookies to enhance the user experience, for example, by maintaining continuity during a user session.  We also use cookies to research and gather data about the usage of our Platform, to assess our performance and reach and to inform and implement our overall business strategy, including marketing purposes. 

    Cookies we use, and what use them for, include:

  • Cloudflare Bot Management (via Vimeo) – bot detection and traffic management

  • Amazon Web Services Load Balancer (via Secure Privacy) – load balancing and session management

    Web Beacons

    Our Platform contains "web beacons" (also known as internet tags, pixel tags, and clear GIFs). These web beacons allow third parties to obtain information such as the IP address of the computer that downloaded the page on which the beacon appears, the URL of the page on which the beacon appears, the time the page containing the beacon was viewed, the type of browser used to view the page, and the information in cookies set by the third party. Web beacons also may be used to track whether you have opened an HTML email. When the email is opened, a part of the code that makes up the HTML page calls a web server to load the web beacon that then generates a record showing that the email has been viewed. Web beacons may also recognize when the email was opened, how many times it was forwarded and which URLs (links within the email) were clicked.

    As with cookies, we use web beacons to track Platform visitor movement in the aggregate, and to gather broad demographic information for aggregate use. Our goal in gathering this information is to learn how you are using our services. We may use this information to enhance our Platform or for other lawful purposes, including marketing.

    How We Share and Protect & Store Automatically Collected Data

    We share your automatically collected data with the third-party web-based tools, cookies, and web beacons through which your data is automatically collected. Your automatically-collected data is securely stored in the web-based tool through which it was collected. 

    Reviewing and Changing Your Personal Data

    Upon request, MCF will provide you with information about whether we hold any of your personal data.   You may access, correct, object to the processing of, or request deletion of your personal data, or request that we stop any processing of your personal data.   If you would like to inquire about any personal data of yours that MCF may hold, or to correct or request the deletion of such data, please email helpdesk@marincf.org.  We will respond to your request within a reasonable timeframe.  

    Links to Other Websites

    Special Concerns Regarding Children and Privacy

    Special Concerns Regarding International Use and Transfer

    Changes to Our Privacy Policy

    We provide links through our Platform to third-party websites hosted by our partners. Please be aware we disclaim responsibility for the information collection, use, and disclosure practices of third-party sites; we encourage you to review and understand their privacy practices and policies, if any, before providing any personal data to them or using any of their services. We are not responsible for the content or information of these sites, any products or services that may be offered through them, or any other use of the sites.

    The Platform is not intended for use by children, and we do not knowingly or intentionally solicit data from or market to children under the age of 16. Additionally, as specified in the Terms of Use those individuals who are less than 16 years of age are only permitted to use the Platform and services with parental/guardian consent and supervision. If you are a parent or guardian and become aware that your child has provided us information without your consent, please contact us at helpdesk@marincf.orgto request that we delete such information from our files within a reasonable amount of time from your request.

    The Platform is intended for users in the United States only.  MCF and its servers are located in the United States, and we necessarily transfer any data that is collected on the Platform to the United States for processing and storage.  The laws governing data collection, storage and use may differ under United States law from the law of other regions.

    Pursuant to the GDPR, you have the right to file a complaint with the European Data Protection Board in the event that you believe that your rights pursuant to the GDPR have been violated.

    We may change this Privacy Policy from time to time. The "Last Updated" legend at the top of this Privacy Policy indicates when this policy was last revised. Any changes will become effective when we post the revised Privacy Policy on the Site. Your use of the Site following these changes means that you accept the revised Privacy Policy.

    How to Contact Us

    If you have any questions, comments, or concerns regarding this Privacy Policy, or our practices please submit an inquiry via the contact form and someone will respond to you.

    Alternatively, you may, on your own initiative, reach out to MCF by electronic mail, regular hard-copy mail or by telephone. We collect any information you share with us through such communications, such as your name and contact information and information you volunteer in your communication, and may use and share such information consistent with this Privacy Policy.