GilgulDonate

Privacy Policy

Last Updated: June 22, 2026

This Privacy Policy explains how Gilgul Corporation ("Gilgul," "we," "us," or "our") collects, uses, and protects your personal information when you visit our website, donate to our charitable mission, register for a workshop, download an open-access report, or purchase a book (collectively, the "Service"). Gilgul is an IRS-approved 501(c)(3) public charity (EIN 39-2673169) headquartered at 400 North Wood Ave, 2nd Floor, Linden, NJ 07036. By using the Service you agree to the terms outlined below.

1. Information We Collect

a) Automatically Collected Data

When you visit our site we use privacy-respecting analytics to collect anonymized information about your interaction with the Service, which may include:

  • Anonymized IP address
  • Browser type and version
  • Pages visited, time on page, and referral sources
  • Device type (mobile, desktop)
  • Cookies and usage data (see Section 5)

b) Donor and Account Data

When you donate, register for a workshop, or contact us, we collect information such as your name, email address, mailing address (for tax-receipt purposes), phone number, and any message you choose to send.

c) Payment Data

Donations and book purchases are processed by Stripe. We store the Stripe customer ID, donation or order amount, date, and receipt metadata. We do not store full card numbers on our servers.

d) Research and Publication Data

If you submit feedback on a report, participate in a workshop, or correspond with our scholars, we process the content of those communications to operate the Service.

e) Security-Related Data

We use security tooling (including a web application firewall) to protect the Service. This automatically collects technical data such as IP addresses, user-agent details, request timestamps, and patterns indicative of bots or malicious activity. This data is used solely for security purposes.

2. How We Use Your Information

  • Process donations and issue IRS-compliant tax-deductible receipts.
  • Fulfill book orders and deliver requested publications.
  • Register and communicate with workshop attendees.
  • Operate, maintain, and improve the Service.
  • Send periodic updates about expeditions, publications, and events (with the ability to unsubscribe).
  • Comply with charitable-reporting, tax, and other legal obligations.
  • Detect, investigate, and block malicious activity.

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

3. Sharing Your Information

  • Service providers (hosting, database, email delivery, analytics, payments) who are contractually obligated to protect your data.
  • Legal compliance: when required by law, court order, government request, or to comply with IRS reporting for charitable organizations.
  • Cybersecurity providers: blocked IP addresses and threat indicators may be shared with WAF and threat-intelligence services.
  • Aggregated, de-identified data may be published in annual reports or scholarly publications.

4. Data Retention

  • Analytics data: up to 26 months.
  • Donor and contact records: retained as needed to acknowledge your gift and maintain our relationship; you may request deletion subject to legal requirements.
  • Donation and order records: retained as required by tax and accounting law (typically 7 years).
  • Security logs: retained as needed to investigate threats and maintain blocklists (typically up to 10 years).

5. Cookies and Tracking Technologies

We use cookies and similar technologies to remember preferences and measure Service usage. We use Google Analytics 4 (Measurement ID G-WY6Y1WKFM8) to understand how visitors engage with the site. Analytics cookies collect anonymized information such as pages visited, time on page, device type, browser type, and approximate location. By default, advertising-related features such as ad storage, ad user data, and ad personalization are disabled. You can manage cookies through your browser settings or opt out of analytics tracking by contacting us. Disabling cookies may prevent parts of the Service from functioning.

6. Your Rights

Depending on your location (for example under GDPR or CCPA), you may request access to, correction of, or deletion of your personal data, withdraw consent for processing, or opt out of analytics tracking. To exercise these rights, please .

7. Security

We use industry-standard measures (encryption in transit via TLS, row-level security in our database, scoped API keys, and a web application firewall) to protect your data. No online service is 100% secure, but we continuously monitor and improve our defenses.

8. Accessibility

Gilgul is committed to digital accessibility. This site is designed to align with the Web Content Accessibility Guidelines (WCAG) 2.1 Level AA and the principles of the Americans with Disabilities Act (ADA). If you encounter an accessibility barrier, please .

9. International Transfers

Gilgul is operated from the United States. By using the Service you consent to transfer and processing of your data in the United States, which may have different data-protection laws than your own jurisdiction.

10. Children

The Service is not directed to children under the age of 13. We do not knowingly collect personal data from children. Workshops intended for minors are coordinated through schools or guardians.

11. Policy Updates

We may update this policy periodically. Material changes will be posted here with a revised "Last Updated" date.

12. Contact Us

For questions, requests, or concerns about this Privacy Policy, please or write to us at Gilgul Corporation, 400 North Wood Ave, 2nd Floor, Linden, NJ 07036.

See also: Terms of Service.