Privacy Policy

Who we are

The International Solidarity Movement (ISM) is a Palestinian-led movement committed to resisting the long-entrenched and systematic oppression and dispossession of the Palestinian population, using non-violent, direct-action methods and principles. Learn more here.

Our website address is: https://palsolidarity.org (ISM Website).

What personal data we collect and why we collect it

We collect a variety of information from visitors to our site depending on their activity.

Basic analytical information collected includes: approximate location (city), information about the users browser and operating system, time and duration of visit, and the pages viewed. This information is anonymized and stored with third-party services for the purpose of developing the website to better serve its users.

If a donation or purchase is made, information collected will also include standard financial data such as names, email address, mailing and billing addresses, phone number, credit card or bank information. This data is stored with third-party services in accordance with applicable banking laws.

If a user signs up for our email newsletter, we will collect names and email addresses. The newsletter emails will include a web beacon (typically a small transparent image file) that allows our system to track the opening of emails, click on included links, and other actions available to users through that communication channel.

Activity Log

We track user activity on the site including: Login attempts/actions, post and page update and publish actions, comment/pingback submission and management actions, plugin and theme management actions, widget updates, user management actions, and the modification of other various site settings and options.

Contact forms

IP address, user agent, name, email address, website, and message is submitted to a third party service for the sole purpose of spam checking. The actual submission data is stored in the ISM Website database and is emailed directly to ISM volunteers. This email will include the submitter’s IP address, timestamp, name, email address, website, and message.

Post and post meta data associated with a user’s contact form submission are synced with third-party support services. The IP address and user agent originally submitted with the comment are synced, as well, as they are stored in post meta.

Cookies

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Login Protection

In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.

Failed login attempts (these include IP address and user agent) are tracked. We also set a cookie for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human.

Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information are synced with third-party support services.

Search

Any of the visitor-chosen search filters and query data are used in order to process a search request on third-party support services.

Sharing

When sharing content via email, the following information is used: sharing party’s name and email address (if the user is logged in, this information will be pulled directly from their account), IP address (for spam checking), user agent (for spam checking), and email body/content. This content will be sent to a third-party support service so that a spam check can be performed. Additionally, the sharing party’s IP address will be shared with Google via the reCAPTCHA service. You can find Google’s privacy policy here.

Other Stats

IP address, third-party user ID (if logged in), third-party username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code. Important: ISM does not have access to any of this information via this feature. For example, a site owner can see that a specific post has 285 views, but they cannot see which specific users/accounts viewed that post. Stats logs — containing visitor IP addresses and third-party usernames (if available) — are retained by the third-party for 28 days and are used for the sole purpose of powering this feature. Post and page views, video plays, outbound link clicks, referring URLs and search engine terms, and country are tracked by third-party support services.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments and email messages may be checked through an automated spam detection service.