---

Privacy Policy

Last updated: 09 June 2026

This Privacy Policy explains how Remit Hope collects, uses, discloses, and safeguards your personal data when you access or use the Remit Hope platform, including its website (remithope.org), mobile applications, and all associated services (collectively, the "Platform"). The Platform is operated by Remit Hope, a company registered in the United Kingdom under company number 16414113, with its registered office at The Broadgate Tower, 20 Primrose Street, London, United Kingdom, EC2A 2EW, and with operational presence in Zimbabwe at Block 2, Arundel Business Park, Norfolk Road, Mt Pleasant, Harare.

Remit Hope serves beneficiary communities across Sub-Saharan Africa and receives donations from supporters globally, including in the United Kingdom, Canada, Australia, and the United States. We are committed to protecting the privacy of all individuals who interact with our Platform, regardless of where they are located. This policy has been drafted to reflect our obligations under all applicable data protection frameworks across the jurisdictions in which we operate and from which we collect data.

If you do not agree with the terms of this Privacy Policy, please discontinue your use of the Platform.

1. Definitions

• "Personal Data": Any information relating to an identified or identifiable natural person. This term is used interchangeably with "personal information" as defined under applicable data protection laws in the jurisdictions listed in this policy.
• "Processing": Any operation performed on Personal Data, including collection, recording, storage, use, disclosure, erasure, or destruction.
• "Data Controller": Remit Hope, which determines the purposes and means of processing your Personal Data. Under South African POPIA, Remit Hope acts as the "responsible party". Under the Kenya Data Protection Act, Uganda Data Protection and Privacy Act, and equivalent frameworks, Remit Hope acts as the "data controller".
• "Data Processor": Any third party that processes Personal Data on behalf of Remit Hope, also referred to as an "operator" under POPIA or equivalent terminology under other applicable frameworks.
• "Supervisory Authority": The relevant data protection or privacy authority in your jurisdiction. A full list of applicable Supervisory Authorities is set out in section 12 of this policy.

2. Applicable Legal Frameworks

2.1. Remit Hope is subject to, and committed to complying with, the following data protection frameworks across its operating and donor jurisdictions:

1. United Kingdom: UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, overseen by the Information Commissioner's Office (ICO).
2. Zimbabwe: Data Protection Act [Chapter 11:22] (2021), overseen by the Postal and Telecommunications Regulatory Authority of Zimbabwe (POTRAZ).
3. South Africa: Protection of Personal Information Act 4 of 2013 (POPIA), overseen by the Information Regulator.
4. Kenya: Data Protection Act 2019, overseen by the Office of the Data Protection Commissioner (ODPC).
5. Uganda: Data Protection and Privacy Act 2019, overseen by the Personal Data Protection Office (PDPO).
6. Tanzania: Personal Data Protection Act 2022, overseen by the Personal Data Protection Commission (PDPC).
7. Rwanda: Law No. 058/2021 on the Protection of Personal Data and Privacy, overseen by the Rwanda Information Society Authority (RISA).
8. Zambia: Data Protection Act 2021, overseen by the Zambia Information and Communications Technology Authority (ZICTA).
9. Botswana: Data Protection Act 2018, overseen by the Information and Data Protection Commission (IDPC).
10. Canada: Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial legislation, including Quebec's Act respecting the protection of personal information in the private sector (Law 25), overseen by the Office of the Privacy Commissioner of Canada (OPC).
11. Australia: Privacy Act 1988 and the Australian Privacy Principles (APPs), overseen by the Office of the Australian Information Commissioner (OAIC).
12. United States: We comply with applicable federal and state privacy laws, including the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) for California residents, and apply equivalent good-faith standards for residents of all other US states.

2.2. For the following jurisdictions in which we operate but which do not currently have comprehensive standalone data protection legislation in force, we apply the standards of UK GDPR as a baseline, which we consider to represent a high level of data protection: Malawi, Mozambique, Namibia, Lesotho, and Eswatini. We will update this policy promptly as legislation in these jurisdictions is enacted or comes into force.

2.3. For all other users globally, we apply the standards of UK GDPR as a minimum baseline while also seeking to comply with any stricter applicable local requirements.

3. Data We Collect

3.1. Data You Provide Directly: We may collect the following categories of Personal Data that you voluntarily provide to us:

1. Identity data: full name, date of birth, and nationality.
2. Contact data: email address, postal address, and telephone number.
3. Account data: username, password (stored in encrypted form), and account preferences.
4. Financial data: payment details processed by third-party payment processors (we do not store full card numbers), transaction history, and bank account details where required for disbursements.
5. Verification data: government-issued identification documents and related information collected as part of our Know Your Customer (KYC) and Anti-Money Laundering (AML) obligations.
6. Campaign Data: Information submitted by Campaign Creators and Beneficiary Organisations relating to projects, programmes, organisational activities, governance information, funding needs, impact stories, photographs, videos, and supporting documentation.

   Remit Hope primarily supports registered organisations, community-based organisations, charities, social enterprises, and similar entities. Beneficiary information displayed on the Platform generally relates to organisations rather than individual recipients of assistance.

   Where photographs, videos, testimonials, or stories featuring identifiable individuals, including children, are used in campaigns or impact reporting, Remit Hope requires the Campaign Creator or Beneficiary Organisation to confirm that appropriate consent, parental consent, guardian consent, assent, or other lawful authorisation has been obtained in accordance with applicable laws and ethical safeguarding standards.

7. Communications: records of correspondence with us, including emails and support requests.

3.2. Data We Collect Automatically: When you use the Platform, we may automatically collect:

1. Usage data: pages visited, features used, time spent on the Platform, and search queries.
2. Technical data: IP address, browser type and version, operating system, device identifiers, and referring URLs.
3. Transaction data: details of donations and disbursements processed through the Platform.
4. Location data: general geographic location inferred from your IP address, used to determine which legal framework applies to you and to tailor your experience of the Platform.
5. Cookies and tracking data: as described in our Cookies Policy below.

3.3. Data We Receive from Third Parties: We may receive Personal Data from:

1. Payment Processors and Financial Service Providers: transaction confirmation data, payment verification information, fraud prevention information, and donation records received from payment service providers including PayPal, Stripe, EcoCash, Visa, Mastercard, and any other authorised payment processing partners used by Remit Hope from time to time.
2. Partner Money Transfer Operators (MTOs): transaction references and donor identification for integrated donation flows.
3. Identity verification providers: results of KYC and AML screening checks.
4. Publicly available sources: information used to verify the legitimacy of Campaign Creators or Beneficiaries.

4. Legal Bases for Processing

4.1. The legal basis on which we process your Personal Data depends on your jurisdiction. In all cases, we process your data lawfully, fairly, and transparently.

4.2. United Kingdom (UK GDPR): We rely on contractual necessity (Article 6(1)(b)), legal obligation (Article 6(1)(c)), legitimate interests (Article 6(1)(f)), and consent (Article 6(1)(a)) as applicable.

4.3. South Africa (POPIA): We process personal information on the grounds of contractual necessity, compliance with a legal obligation, legitimate interests of Remit Hope where not overridden by your rights, and consent where required.

4.4. Kenya, Uganda, Tanzania, Rwanda, Zambia, and Botswana: We process Personal Data on the basis of consent, contractual necessity, compliance with a legal obligation, and legitimate interests as recognised under each applicable national framework.

4.5. Zimbabwe: We process Personal Data on the basis of consent, contractual necessity, or legal obligation as applicable under the Data Protection Act [Chapter 11:22], and are registered or will register as a data controller with POTRAZ as required.

4.6. Canada (PIPEDA and provincial legislation): We collect, use, and disclose personal information only with your knowledge and consent, except where applicable law permits otherwise. Quebec residents have additional rights under Law 25.

4.7. Australia (Privacy Act 1988): We handle personal information in accordance with the Australian Privacy Principles. Where required, we will seek your consent before collecting sensitive information.

4.8. United States: We process personal data on the basis of consent, contractual necessity, or legitimate interests as applicable. California residents have specific rights under the CCPA/CPRA, as set out in section 8 of this policy.

4.9. Malawi, Mozambique, Namibia, Lesotho, and Eswatini: In the absence of comprehensive local legislation, we apply UK GDPR standards as our baseline lawful basis for processing.

5. How We Use Your Personal Data

5.1. We use your Personal Data for the following purposes:

1. To create and manage your account on the Platform.
2. To process donations and facilitate disbursements to Beneficiaries.
3. To conduct identity verification and compliance checks as required by applicable law.
4. To communicate with you about your account, transactions, and campaigns.
5. To send impact reports and updates from Beneficiaries to Donors.
6. To send you marketing communications where you have consented or where we have a legitimate interest to do so and such communications are permitted under applicable law.
7. To detect, prevent, and investigate fraud, money laundering, terrorist financing, and other illegal activity in accordance with our AML/CFT/PF Compliance Policy.
8. To improve and optimise the Platform and user experience through analytics.
9. To comply with legal and regulatory obligations across all jurisdictions in which we operate.
10. To respond to legal claims and enforce our Terms and Conditions.
11. To determine which data protection framework applies to you based on your location, so that we can fulfil our jurisdiction-specific obligations accordingly.

5.2. Fundraising and Impact Communications: Where permitted by applicable law and subject to your communication preferences, Remit Hope may send you fundraising appeals, campaign updates, newsletters, impact reports, event invitations, and other information about our activities through email, SMS, and other communication channels.

Subscribers may opt out of marketing communications at any time by following the unsubscribe instructions included in the communication or by contacting us at information@remithope.org.

For users located in Zimbabwe, fundraising SMS communications may be delivered through service providers where consent has been obtained or where otherwise permitted by law.

6. Cross-Border Data Transfers

6.1(a). The nature of Remit Hope's Platform means that Personal Data flows across international borders, including from Sub-Saharan Africa to the United Kingdom, between African jurisdictions, and from donor countries to our operational infrastructure. We take the following steps to ensure such transfers are lawful and adequately protected.

6.1(b). Primary Data Hosting Location: Remit Hope's primary information systems and hosting infrastructure are located within Zimbabwe. Data hosting and related infrastructure services are provided through facilities located within Zimbabwe, including infrastructure operated in partnership with EcoCash and its associated data centre facilities. Backup systems are also maintained within Zimbabwe.

Where Personal Data is accessed, processed, or transferred outside Zimbabwe, including by authorised staff, service providers, payment processors, or users located in other jurisdictions, Remit Hope implements appropriate contractual, organisational, and technical safeguards to ensure the continued protection of Personal Data.

6.2. Transfers from the United Kingdom: We ensure appropriate safeguards are in place in accordance with UK GDPR, including UK-approved Standard Contractual Clauses or adequacy regulations.

6.3. Transfers from Zimbabwe: We comply with the cross-border transfer provisions of the Zimbabwe Data Protection Act [Chapter 11:22] and any conditions or authorisations required by POTRAZ.

6.4. Transfers from South Africa: We comply with Section 72 of POPIA, ensuring recipients provide a level of protection substantially equivalent to POPIA's conditions for lawful processing.

6.5. Transfers from Kenya: We comply with Section 49 of the Kenya Data Protection Act 2019, ensuring appropriate safeguards are in place.

6.6. Transfers from Uganda, Tanzania, Rwanda, Zambia, and Botswana: We comply with the cross-border transfer provisions of each applicable national framework and implement equivalent contractual safeguards with data recipients.

6.7. Transfers from Canada: Where Personal Data of Canadian residents is transferred outside Canada, we ensure equivalent protection is provided as required under PIPEDA and applicable provincial law.

6.8. Transfers from Australia: Where Personal Data of Australian residents is transferred outside Australia, we comply with Australian Privacy Principle 8 and ensure recipients are bound by equivalent privacy obligations.

6.9. Transfers involving Malawi, Mozambique, Namibia, Lesotho, and Eswatini: In the absence of specific transfer frameworks, we apply UK GDPR Standard Contractual Clauses as contractual safeguards for all transfers involving residents of these countries.

6.10. In all cases, we take reasonable steps to ensure that recipients of Personal Data are bound by obligations of confidentiality and data protection at least equivalent to those described in this policy.

7. Sharing Your Personal Data

7.1. We do not sell your Personal Data to third parties. We may share your data with the following categories of recipients, where necessary and in accordance with applicable law:

1. Payment processors and financial institutions: to process transactions securely.
2. Partner MTOs: to facilitate integrated donation flows where applicable.
3. Identity verification and compliance service providers: to fulfil our AML and KYC obligations.
4. Cloud infrastructure and IT service providers: to host and maintain the Platform.
5. Analytics providers: to help us understand how the Platform is used.
6. Legal and professional advisors: where necessary for legal advice or regulatory compliance.
7. Regulatory and supervisory authorities and law enforcement agencies: where required by applicable law, court order, or to protect the rights and safety of Remit Hope, its users, or the public. This includes disclosure to authorities listed in section 12 of this policy.
8. Beneficiary organisations: limited data (such as donor name and message) may be shared with Beneficiaries to facilitate impact reporting, subject to your consent preferences.

7.2. All third-party service providers are contractually required to handle your Personal Data in compliance with applicable data protection law and to implement appropriate technical and organisational security measures.

7.3. Third-Party Payment Services:

1. Donations and other financial transactions conducted through the Platform may be processed by independent third-party payment providers, including PayPal, Stripe, EcoCash, Visa, Mastercard, and associated banking institutions.
2. Remit Hope does not store complete payment card information. Payment processing is governed by the privacy policies, security standards, and contractual obligations of the respective payment providers. Users are encouraged to review the privacy policies of such providers before submitting payment information.

8. Your Rights

8.1. Depending on your jurisdiction, you may have some or all of the rights set out below. We will honour these rights in accordance with the law applicable to you and will respond within the timeframe required by your applicable law, and in no event later than one calendar month unless an extension is permitted by law.

8.2. United Kingdom (UK GDPR): Right of access, right to rectification, right to erasure, right to restriction of processing, right to data portability, right to object, right to withdraw consent, and rights in relation to automated decision-making and profiling.

8.3. South Africa (POPIA): Right of access to personal information, right to correction or deletion, right to object to processing, and right to complain to the Information Regulator.

8.4. Kenya (Data Protection Act 2019): Right of access, right to rectification, right to erasure, right to object, right to data portability, and right to complain to the ODPC.

8.5. Uganda (Data Protection and Privacy Act 2019): Right of access, right to rectification, right to erasure, right to object to processing, and right to complain to the PDPO.

8.6. Tanzania (Personal Data Protection Act 2022): Right of access, right to correction, right to erasure, right to object, and right to complain to the PDPC.

8.7. Rwanda (Law No. 058/2021): Right of access, right to rectification, right to erasure, right to object, and right to complain to RISA.

8.8. Zambia (Data Protection Act 2021): Right of access, right to correction, right to erasure, right to object, and right to complain to ZICTA.

8.9. Botswana (Data Protection Act 2018): Right of access, right to correction, right to erasure, right to object, and right to complain to the IDPC.

8.10. Zimbabwe (Data Protection Act [Chapter 11:22]): Right of access, right to correction, and right to complain to POTRAZ.

8.11. Canada (PIPEDA and provincial legislation): Right of access, right to correction, right to withdraw consent, and right to complain to the Office of the Privacy Commissioner of Canada (OPC). Quebec residents have additional rights under Law 25, including the right to data portability and the right to be forgotten.

8.12. Australia (Privacy Act 1988): Right of access, right to correction, and right to complain to the Office of the Australian Information Commissioner (OAIC).

8.13. United States — California (CCPA/CPRA): Right to know what personal information is collected, right to delete personal information, right to opt out of sale or sharing of personal information (we do not sell personal information), right to correct inaccurate personal information, right to limit use of sensitive personal information, and right to non-discrimination for exercising these rights.

8.14. United States — all other states: We apply equivalent good-faith standards and will honour access, correction, and deletion requests to the extent required by applicable state law.

8.15. Malawi, Mozambique, Namibia, Lesotho, and Eswatini: We will, to the best of our ability, honour rights of access, correction, and deletion in line with UK GDPR standards.

8.16. To exercise any of your rights, please contact us at information@remithope.org. We may require verification of your identity before processing your request.

8.17. Automated Decision-Making: Remit Hope does not currently make decisions that produce legal or similarly significant effects solely through automated processing. While certain security, fraud prevention, analytics, or monitoring tools may assist in identifying suspicious activity or unusual behaviour, final decisions relating to accounts, campaigns, donations, or platform participation are subject to human review and oversight.

9. Data Retention

9.1. We retain your Personal Data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, regulatory, accounting, or reporting requirements across all jurisdictions in which we operate. In particular:

1. Account and transaction data: retained for a minimum of six years following the end of your relationship with us, in accordance with UK financial record-keeping requirements and equivalent obligations under applicable law in our operating jurisdictions.
2. KYC and AML verification data: retained for at least five years following the end of the business relationship, as required under the UK Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017, the Zimbabwe Money Laundering and Proceeds of Crime Act, and equivalent legislation in other applicable jurisdictions.
3. Marketing data: retained until you withdraw consent or opt out.
4. Cookie and analytics data: retained in accordance with our Cookies Policy below.

9.2. Where the retention requirements of different applicable laws conflict, we will apply the longer retention period unless doing so would violate a stricter legal obligation in a specific jurisdiction.

10. Security

10.1. We implement appropriate technical and organisational measures to protect Personal Data against unauthorised access, disclosure, alteration, loss, misuse, or destruction. These measures include encryption of data in transit and at rest, role-based access controls, secure hosting infrastructure, regular security assessments, audit logging, staff training, and data protection governance processes designed in accordance with the principles of privacy by design and privacy by default.

10.2. No system is entirely secure. While we take all reasonable steps to protect your data, we cannot guarantee the absolute security of information transmitted to or stored on the Platform.

10.3. In the event of a Personal Data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant Supervisory Authority and, where required by applicable law, affected individuals, within the timeframes prescribed by law in each relevant jurisdiction.

11. Children

11.1. The Platform is intended for use by individuals aged 18 years and above when creating accounts, making donations, submitting campaigns, or interacting with services requiring personal information.

11.2. Remit Hope may, through Campaign Creators and Beneficiary Organisations, publish photographs, stories, testimonials, videos, or impact reports that feature children or vulnerable individuals. Such content will only be used where appropriate consent, parental consent, guardian consent, assent, or other lawful authorisation has been obtained in accordance with applicable legal and safeguarding requirements.

11.3. Remit Hope does not knowingly collect personal information directly from children through the Platform for account registration or donation purposes. If we become aware that personal information has been collected unlawfully from a child, we will take reasonable steps to delete or anonymise that information.

12. Supervisory Authorities

12.1. You have the right to lodge a complaint with the Supervisory Authority in your jurisdiction. Relevant authorities include:

• United Kingdom: Information Commissioner's Office (ICO) — www.ico.org.uk
• Zimbabwe: POTRAZ — www.potraz.gov.zw
• South Africa: Information Regulator — www.inforegulator.org.za
• Kenya: Office of the Data Protection Commissioner (ODPC) — www.odpc.go.ke
• Uganda: Personal Data Protection Office (PDPO) — www.pdpo.go.ug
• Tanzania: Personal Data Protection Commission (PDPC) — www.pdpc.go.tz
• Rwanda: Rwanda Information Society Authority (RISA) — www.risa.rw
• Zambia: Zambia Information and Communications Technology Authority (ZICTA) — www.zicta.zm
• Botswana: Information and Data Protection Commission (IDPC) — www.idpc.org.bw
• Canada: Office of the Privacy Commissioner of Canada (OPC) — www.priv.gc.ca
• Australia: Office of the Australian Information Commissioner (OAIC) — www.oaic.gov.au
• United States (California): California Privacy Protection Agency — www.cppa.ca.gov

12.2. For jurisdictions without a dedicated supervisory authority (Malawi, Mozambique, Namibia, Lesotho, and Eswatini), you are welcome to raise any concerns directly with us at information@remithope.org.

13. Changes to This Privacy Policy

13.1. Remit Hope reserves the right to update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or the jurisdictions in which we operate. Where a revision is material, we will provide at least 30 days' notice prior to any new terms taking effect by posting a notice on the Platform or contacting you by email.

13.2. Your continued use of the Platform after any revisions become effective constitutes your acceptance of the updated policy.

---

Cookies Policy

Last updated: 09 June 2026

This Cookies Policy explains what cookies are, how Remit Hope ("we", "us", "our") uses them on the Platform (remithope.org), and the choices available to you. This policy should be read alongside our Privacy Policy above and our General Terms and Conditions. It applies to all users of the Platform regardless of their location.

1. Definitions

• "Cookies": Small text files placed on your device when you visit a website, used to store information about your visit and preferences.
• "First-Party Cookies": Cookies set directly by Remit Hope.
• "Third-Party Cookies": Cookies set by external parties whose content or services appear on the Platform.
• "Similar Technologies": Web beacons, pixels, local storage, and session storage, which operate in a comparable manner to cookies and are equally covered by this policy.

2. How We Use Cookies

2.1. Strictly Necessary Cookies: These cookies are essential for the Platform to function and cannot be switched off in our systems. They do not require your consent under any applicable framework. They are typically set in response to actions you take, such as logging in, making a donation, or setting your privacy preferences. Examples include:

1. Session management cookies: to keep you logged in during your visit.
2. Security tokens: to protect against cross-site request forgery (CSRF) attacks.
3. Load balancing cookies: to distribute traffic across our servers efficiently.
4. Cookie consent cookies: to record your consent preferences for future visits.

2.2. Functional Cookies: These cookies enable enhanced functionality and personalisation, such as remembering your language preference, currency selection, or previously viewed campaigns. They are not strictly necessary but improve your experience of the Platform. We will seek your prior consent before placing these cookies.

2.3. Analytics and Performance Cookies: These cookies collect information about how visitors use the Platform, such as which pages are most frequently visited and how users navigate between pages. The data collected is aggregated and used in anonymised form to help us improve the Platform. We will seek your prior consent before placing these cookies. We use Google Analytics and may use other analytics providers from time to time to understand visitor behaviour, improve platform performance, and enhance user experience. Information collected by these tools is subject to the privacy policies of the respective providers.

2.4. Marketing and Targeting Cookies: These cookies are used to deliver content and advertisements relevant to your interests and to measure the effectiveness of our marketing campaigns. They may be set by us or by third-party advertising partners. We will seek your prior consent before placing these cookies.

3. Cookies We Use

3.1. The following table summarises the principal cookies currently in use on our Platform. This list may be updated as our Platform and services evolve.

Cookie	Type	Purpose	Duration
_session	Strictly Necessary	Maintains your login session	Session
_csrf	Strictly Necessary	Protects against CSRF attacks	Session
cookie_consent	Strictly Necessary	Records your cookie consent preferences	12 months
rh_prefs	Functional	Stores your language and currency preferences	12 months
_ga / _gid	Analytics	Google Analytics — tracks usage statistics and user behaviour	2 years / 24 hours
_fbp	Marketing	Facebook Pixel — supports advertising targeting and measurement	3 months

3.2. The cookie inventory is reviewed periodically and may change as new features, integrations, fundraising tools, analytics technologies, or third-party services are introduced. Users can access the most current list of active cookies through the Cookie Settings tool available on the Platform.

4. Your Choices and How to Manage Cookies

4.1. Cookie Consent Banner: When you first visit the Platform, you will be presented with a cookie consent banner. You may accept all cookies, reject non-essential cookies, or customise your preferences by category. Your choices are saved for 12 months and can be updated at any time via the "Cookie Settings" link in the website footer.

4.2. Browser Settings: Most web browsers allow you to control cookies through their settings. You can typically view, block, or delete cookies stored on your device. Please refer to your browser's help documentation for instructions. Note that restricting cookies may affect the functionality of the Platform, and blocking strictly necessary cookies may prevent you from accessing certain features.

4.3. Third-Party Opt-Outs: For analytics and marketing cookies placed by third parties, you may also opt out directly with those providers:

1. Google Analytics: tools.google.com/dlpage/gaoptout
2. Facebook/Meta Pixel: facebook.com/settings?tab=ads
3. General advertising opt-out: www.youronlinechoices.com

5. Legal Basis for Using Cookies

5.1. Our use of cookies is governed by the following frameworks depending on your jurisdiction:

1. United Kingdom: the Privacy and Electronic Communications Regulations 2003 (PECR) and UK GDPR. Strictly necessary cookies are placed without consent. All other cookies require your prior informed consent.
2. South Africa: POPIA requires that we process personal information lawfully and with your consent where applicable. Non-essential cookies are placed only with your consent.
3. Kenya, Uganda, Tanzania, Rwanda, Zambia, and Botswana: applicable national data protection laws require consent for non-essential tracking technologies. We apply this standard consistently across all these jurisdictions.
4. Zimbabwe: the Data Protection Act [Chapter 11:22] requires lawful processing and consent for non-essential data collection via tracking technologies.
5. Canada: PIPEDA and provincial legislation require meaningful consent for the use of cookies that collect personal information. Quebec residents have additional rights under Law 25.
6. Australia: the Privacy Act 1988 and Australian Privacy Principles apply to the collection of personal information via cookies. We seek consent for non-essential cookies.
7. United States: for California residents, the CCPA/CPRA applies to the extent cookies involve the collection or sharing of personal information. We do not sell personal information collected via cookies. We apply equivalent standards for all other US users.
8. Malawi, Mozambique, Namibia, Lesotho, and Eswatini: in the absence of specific legislation, we apply UK GDPR and PECR standards as our baseline.

6. Children

6.1. We do not knowingly use marketing or tracking cookies in connection with individuals under the age of 18. If you believe a child has been subjected to non-essential cookies via our Platform, please contact us immediately at information@remithope.org.

7. Changes to This Cookies Policy

7.1. We may update this Cookies Policy periodically to reflect changes in our practices, technology, or legal requirements across any of the jurisdictions in which we operate. We will notify you of material changes through the Platform or by email. What constitutes a material change will be determined at our sole discretion.

7.2. Your continued use of the Platform after any revisions become effective constitutes your acceptance of the updated policy.