Privacy Policy
Last updated: May 2026
1. Introduction
Heart of Juniper Foundation is a 501(c)(3) nonprofit organization dedicated to cultivating leaders among youth ages 13–23. This Privacy Policy governs the collection, use, and protection of personal information on heartofjuniper.org and through our programs.
This policy applies to youth participants (ages 13–23), parents and guardians of minor participants, donors, volunteers, and mentors who interact with our organization.
2. Information We Collect
We may collect the following categories of personal information:
- Name, email address, and phone number (optional)
- Age or date of birth (for COPPA compliance and program eligibility)
- Parent or guardian name and contact information (for minor participants)
- Donation history and payment method details (processed via Stripe or Zeffy)
- Program participation records and application materials
- Form submissions including consent forms and program agreements
- Device and browser information collected automatically when you visit our site
- Cookies and similar tracking technologies (see our Cookie Policy)
3. COPPA Compliance
We comply with the Children's Online Privacy Protection Act (COPPA).
- For participants under 13 years of age, we collect only information with verified parental or guardian consent.
- For participants ages 13–17, we obtain parental or guardian consent prior to enrollment in any program.
- We do not share personal information about minors with third parties except as required by law or as necessary for program operation under appropriate data protection agreements.
4. How We Use Your Information
We use personal information for the following purposes:
- Program enrollment and participant management
- Donor stewardship, gift acknowledgment, and tax receipting
- Communications regarding programs, events, and Foundation news
- Human-in-the-loop review processes for major gift decisions
- Legal compliance and record-keeping
- IRS Form 990 reporting and annual filing obligations
- Grant reporting as required by funders
5. Information Sharing
We do not sell personal information. We may share information in the following limited circumstances:
- With service providers (including Supabase, Stripe, Resend, and Vercel) under data processing agreements that restrict their use of your information
- With law enforcement or government agencies when legally required
- With grant funders as required by the terms of specific grants, limited to the information necessary to satisfy reporting requirements
6. Data Retention
Participant and donor records are retained in accordance with Florida nonprofit record-keeping requirements, including a minimum of 7 years for financial records.
Records of parental or guardian consent obtained for minor participants under COPPA are retained for the duration of the minor's active participation plus 3 years after participation ends.
7. Your Rights
Florida residents have the right to access, correct, or request deletion of personal information we hold about them. To exercise any of these rights, please contact us at [TODO: INSERT contact email].
We will respond to verified requests within a reasonable timeframe and in accordance with applicable law.
8. Security
We use industry-standard security practices to protect your personal information, including:
- Encrypted connections (HTTPS) for all data transmitted to and from our site
- Row Level Security on our database to enforce access controls at the data layer
- Role-based access controls limiting staff access to personal information
9. Cookies
We use cookies and similar technologies on our site. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.
10. Contact
For questions about this Privacy Policy or to exercise your rights, please contact us:
- [TODO: INSERT Florida mailing address]
- [TODO: INSERT contact email]