Privacy Policy
Last updated: July 28th, 2025
At CAAD (“we,” “our,” or “us”), we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable privacy laws.
By accessing or using our website and services, you consent to the data practices described in this Privacy Policy.
Our contact email is:
1. Information We Collect
We collect personal data that you provide to us, as well as data we collect automatically through your use of our website and services. This may include:
- Personal Identification Information: Name, email address.
- Professional Information: Organisation.
- Technical Data: website usage data (cookies).
2. How We Use Your Data
We use your personal data for the following purposes:
- Contact form: Your email address, name and the message you send are collected to answer the requests and questions that you have made through our contact form.
- This processing is based on your consent.
We will store those data for the duration of six months following the resolution of your query.
- Newsletters: Your name, email address and organisation are collected to send you the newsletters you have registered for.
- This processing is based on your consent.
Those data are kept as long as you do not oppose it.
- Open letters: Your name and – if entered – the organisation on whose behalf you are signing the open letter are collected to register you as signatory of the open letter.
- This processing is based on your consent.
Those data are kept for twelve (12) months after the open letter is submitted, after which only organisation names will be kept and all your personal information will be securely deleted.
- Event organisation: your name, email and organisation are all collected to support the logistics of organisation of our event that you have registered to. Optional: you may also provide us with your location of departure if CAAD participates in covering your travel cost. Your location is only used in this case to estimate the said costs.
- In your registration form, you can choose whether you want to be contacted following the event for similar future events or not. Note that you can choose the option you want. Not accepting to be contacted following the event does not prevent you from registering.
- This processing is based on your consent.
- In your registration form, you can choose whether you want to be contacted following the event for similar future events or not. Note that you can choose the option you want. Not accepting to be contacted following the event does not prevent you from registering.
Those data are kept for twelve (12) months following the event after which it is securely deleted.
- Cookies: Please see our cookie policy for more details. This data is collected – if you have consented to it – to understand visitor behaviour patterns.
- This processing is based on your consent.
Please see our Cookie Policy to know for how long this data is kept.
- Data Subject Requests: Your name, address, proof of identity and the message you send are collected when you send us a data subject request to address your request.
- This processing is for compliance with legal obligations to which we are subject.
We will store those data for the duration of six months following the resolution of your request.
3. Legal Basis for Processing
Under GDPR, we rely on the following legal bases to process your personal data:
- Consent: Where you have given us explicit consent (e.g., registering to the newsletters or events, signing an open letter, accepting cookies).
- Legal Obligation: Where processing is necessary for compliance with a legal obligation such as the enforcement of your privacy rights.
4. Sharing Your Data
We may share your personal data with third parties in the following situations:
- Service Providers: Third-party companies that help us provide services (e.g., typeform, ActiveCampaign, Zoom).
- Partner Organisations: CAAD is a global coalition of over 50 prominent climate and anti-disinformation organisations. Several organisations therefore cooperate to organise events and may therefore process your personal information.
We ensure that any third-party service providers and partner organisations who access your information are GDPR-compliant and provide adequate safeguards for your data. We have contracts in place with our service providers, they cannot do anything with your personal information unless we have instructed them to do so. They will not share your personal information with any organisation apart from us. They will hold it securely and retain it for the period we instruct.
We do not transfer any of your personal data collected, as mentioned above, to any third party for commercial purposes.
5. Data Retention
We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy, or as required by law. Once your data is no longer needed, we will securely delete or anonymize it.
If you have not consented to being contacted by us for future editions of the event, your personal data will be deleted 6 months following the event. If you have consented to being contacted by us for future editions of the event or follow ups, we will keep your data as long as you do not oppose to it.
6. Links to other sites
Our website may contain links to other websites. If you click on a third-party link, you will be directed to that site. These external sites are not operated by us, therefore, we strongly advise you to review the privacy policies of those websites, too, as we have no control over, and assume no responsibility for, the content, privacy policies or practices of any third-party sites or services.
7. Your Rights Under GDPR
As a data subject, you have the following rights under the GDPR:
- Right to Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You can ask us to correct any inaccurate or incomplete data we hold about you.
- Right to Erasure: You can request the deletion of your personal data, subject to certain conditions.
- Right to Restrict Processing: You can request the restriction of processing of your personal data in certain circumstances.
- Right to Object: You can object – on grounds relating to your particular situation – at any time to the processing of your personal data that is based on our legitimate interests.
- Right to Data Portability: You can request your personal data in a structured, commonly used, and machine-readable format.
- Right to Withdraw Consent: If we process your data based on consent, you can withdraw it at any time. Withdrawing your consent means that we will not make use of your data any longer. However, use made of your data in the past remains valid.
To exercise any of these rights, please contact us at [email protected].
Please note that you always have the right to lodge a complaint with the Data Protection Authority of the European country of your choice.
8. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your user experience, analyze site usage, and provide tailored content. You can control cookies through your browser settings.
For more information on how we use cookies, please refer to our cookie policy.
9. Security
We take reasonable precautions to protect your personal data from unauthorized access, disclosure, alteration, or destruction. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
10. International Data Transfers
If you are located in the European Economic Area (EEA) or another jurisdiction with data protection laws, please be aware that your data may be transferred to, and processed in, countries outside the EEA, which may not have the same level of data protection. We will ensure that appropriate safeguards are in place, such as Standard Contractual Clauses, to protect your personal data in accordance with GDPR.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page, and the “Last Updated” date at the top will reflect the date of the latest revisions.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
- Email: [email protected]