PRIVACY POLICY
Updated on 20.04.2026
This document establishes the rules for privacy protection and the processing of personal data applicable to the website https://liferomania.org/. The website https://liferomania.org belongs to MIA Christian Association (“Asociatia Crestina MIA”) that processes a range of personal data of users when they use the website https://liferomania.org and/or any service provided by the Association.
This Privacy Policy describes the types of personal data that are processed, how this data is used, the legal basis for the processing, your options regarding such processing, and how we ensure the protection of your rights as a data subject under personal data protection laws.
BEFORE USING THE WEBSITE OR ANY OF OUR SERVICES, WE RECOMMEND THAT YOU READ THIS POLICY CAREFULLY TO UNDERSTAND HOW YOUR PERSONAL DATA IS PROCESSED.
ATTENTION!
By checking the box “I have read and agree to the Privacy Policy,” you confirm that you consent to the processing of the personal data provided.
1. WHO IS RESPONSIBLE FOR PROCESSING YOUR DATA?
The MIA Christian Association, with its registered office in Romania, Bucharest, 6 th District, 8 Topolovat Street, Block TD20, 1 st entrance, 7 th floor, Apt. 48, is the data controller of the personal data, in accordance with personal data protection legislation, for the data collected and processed through the website https://liferomania.org and/ or in connection with the services offered via or in relation to the website.
For any matters related to the processing of personal data, the MIA Christian Association may be contacted via email at: [email protected], or by post at: 3 Amilcar C. Săndulescu Street, 6 th District, Bucharest, Romania.
2. WHAT DATA DO WE PROCESS?
The MIA Christian Association processes the personal data you provide when you use the website, register on our page, contract a service, enroll in our campaigns (and/or campaigns organized in collaboration with our partners), wish to receive commercial communications, participate in our surveys and questionnaires, or contact us via any means of communication.
If you contact the MIA Christian Association through the contact form available on the website https://liferomania.org, the data you provide (such as name, surname, address, phone number, email, and any other personal data shared) will be stored and processed only after you have checked the express consent box located at the bottom of the contact form.
We also use cookies and similar technologies to recognize you and your devices. In addition, we allow other parties to use cookies. How we use these technologies is described in our Cookies Policy.
| PURPOSE/ACTIVITY | CATEGORIES OF PROCESSED DATA | LEGAL BASIS |
|---|---|---|
| To register your request when you contact us, using the contact form from the website or by phone | name, surname, address, telephone number, email and any other personal data communicated by you. | Depending on the reason for which you are contacting us, the basis for processing may be the performance of a contract; or the legitimate interest of the Association; or your consent. |
| To process and complete your requested services | name, surname, gender, date of birth, address, city, state, phone number, email, church, background check, transaction data, bank account | Performance of a contract with you Necessary to comply with a legal obligation |
| Process your donation | name, surname, address, telephone, email, transaction data, bank account | Performance of a contract with you Necessary to comply with a legal obligation |
| Registration for newsletters, marketing communications, participation in our surveys and questionnaires | name, surname, address, telephone number, email and any other personal data voluntarily communicated by you. | The basis for the processing is your consent. |
| You register for one of the Association’s events (camp, MIA Caravan, Bible studies, etc.) | name, surname, address (state, country, city), phone number, email, church, image and voice, date of birth, background check as well as any other personal or medical data (different diets, allergies) communicated by you. | Performance of a contract with you or, as the case may be, your consent and the fulfillment of the Association’s legal obligations |
3. PURPOSE OF DATA PROCESSING
The personal information you provide may be collected, used, and disclosed for the following purposes:
a) To manage our relationship with you, including responding to inquiries, fulfilling your requests, and providing customer support;
b) To deliver services that you have requested from us or have agreed to receive from our Association;
c) To promote and communicate information about our events, programs, and campaigns, including outreach via email, mail, or digital platforms;
d) To organize and facilitate events in a manner that ensures the safety, security, and well-being of all participants;
e) To create promotional and educational materials, such as bookmarks, photo and video collages, and other media content that support awareness of our activities;
f) To conduct follow-up communications after your participation in one of our events, including feedback or future engagement opportunities;
g) To publish and distribute our newsletter, if you have subscribed or otherwise opted in to receive communications from us;
h) To analyze and evaluate our services, website usage, and outreach efforts, including internal metrics, statistics, and technical performance monitoring;
i) To comply with applicable legal and regulatory requirements, including but not limited to: Tax reporting and financial recordkeeping; archiving or retention obligations under the law;
j) To establish, exercise, or defend our legal rights in the context of any litigation, legal proceeding, investigation, or regulatory inquiry;
k) To publish photos or videos (including your likeness) on our Association’s official social media pages and communication channels (e.g., Facebook, Instagram, YouTube), where consent has been given or as otherwise permitted by law;
l) To raise awareness and encourage participation in charitable giving initiatives;
m) To process and maintain records of payments, including those made via third-party payment processors (e.g., https://worldinneed.givingfuel.com/life-romania), and ensure transaction security and integrity.
4. DURATION OF DATA PROCESSING
The personal data provided by you will be processed by the Association only for a period necessary to fulfill the purposes for which they were collected and in accordance with applicable legal regulations.
The duration of data processing varies depending on each purpose specified below:
a) Managing your relationship with us: Personal data provided in order to respond to your inquiries and provide you with the necessary information will be retained for no longer than the duration of the initial interaction and, if applicable, for up to 1 year to accommodate any potential follow-up communication.
b) Delivery of requested services: Data provided for the provision of services will be retained for the duration of the service and for an additional period of up to 5 years, in order to comply with legal obligations related to archiving and tax reporting.
c) Promotion of events and campaigns: Personal data used for promoting the Association’s events and campaigns will be retained until the moment you withdraw your consent, however for no more than 5 years.
d) Organization of events: Personal data collected for the organization and conduct of MIA events will be retained for the duration of the event and for a period of up to 3 years following its conclusion.
e) Creation of promotional materials (bookmarks, photo and video collages): Images and videos taken during events may be stored indefinitely or until you withdraw your consent. These will only be used for the promotional purposes of the Association, including future activities.
f) Post-event follow-up: Data collected for post-event follow-up actions will be retained until the moment you withdraw your consent.
g) Newsletter distribution: Data used for newsletter communications will be retained for the duration of your subscription and for up to 6 months following your unsubscription or withdrawal of consent.
h) Analytics and statistics: Data collected for analysis and statistical purposes will be retained for up to 2 years for internal use to improve our services and the functionality of the website.
i) Fulfillment of legal obligations: Data required for tax reporting and archiving in accordance with applicable laws will be retained for up to 5 years, as required by fiscal regulations and accounting document retention rules.
j) Exercise of legal rights: Data necessary for establishing, exercising, or defending a legal right will be retained for the duration of the legal proceedings and for up to 3 years following their conclusion.
k) Publication of your image on social media: Your image may be published on the Association’s social media accounts for an indefinite period, unless you request its removal. The right to erasure may only be exercised to the extent that the data in question has not already been retrieved, reposted or stored by independent third parties. The Association will make reasonable efforts to resolve any request for erasure and will contact, where possible, third party platforms to support the data subjec’s request.
l) Payment records: Data related to payments made via the Life Romania platform will be retained for a period up to 5 years, in accordance with fiscal legislation and for the purpose of maintaining accurate transaction records.
5. TO WHOM WE DISCLOSE YOUR DATA
Personal data may be disclosed to the following categories of recipients:
1. Service Providers and Subcontractors. We may share your personal data with subcontractors and service providers that support our operations, including: website hosting, development, and maintenance services; data center and cloud storage providers; technical maintenance and cybersecurity providers; software platforms used for communication and administration (e.g., email systems).
2. Marketing Partners and Social Media Platforms. We may disclose personal information to partners that assist us with outreach and communications, including: marketing collaborators; operators of third-party websites and platforms, including YouTube, Instagram, Facebook, and Google.
3. Other Essential Service Providers. We may also share data with: Payment processors (when donations or fees are made via partners such as World in Need); Delivery services, including postal, courier, or transport companies (where applicable); Professional service providers, including legal and accounting firms.
4. Data Storage Tools and Communication Platforms. We may store or process personal data using tools such as: Copper (CRM), Brevo, Mailchimp (email newsletters), Google Drive (cloud file storage), SMS, telephone, and WhatsApp for limited communication purposes. These tools are used solely to support our mission and communications in line with consent and legal obligations.
5. Transfers to U.S. Partners. Certain content and information (e.g., event photos, bookmarks, newsletters, video and photo collages) may be shared with our partners and collaborators based in the United States for promotional and reporting purposes.
Such sharing is limited to what is necessary for outreach, donor engagement, and documentation of our nonprofit activities.
We take reasonable measures to ensure that any international transfers comply with applicable U.S. standards and are aligned with your expectations and consent.
6. PAYMENT PROCESSING
All donations and payments are processed exclusively through World in Need, using the GivingFuel-powered donation platform (https://worldinneed.givingfuel.com/life-romania). MIA Christian Association does not collect or store any payment card data. World in Need acts as the data controller for all payment-related data and may share relevant donation details (e.g., name, donation amount) with MIA Christian Association, which will use such data only for acknowledgment or event sponsorship purposes.
For more information, please review World in Need’s privacy policy at: https://worldinneed.org.uk/privacy-policy/
7. PROFILING AND AUTOMATED DECISIONS
MIA Christian Association does not perform profiling or make automated decisions that have a significant impact on data subjects, in accordance with the legislation on the protection of personal data. Thus, personal data will not be used to make automated decisions, such as
profiling for marketing or other purposes.
8. WHAT RIGHTS DO YOU HAVE AS A DATA SUBJECT
Depending on where you reside, you may have the following rights regarding your personal data:
a) Right of Access. You have the right to request confirmation as to whether we process your personal data, and, if so, to obtain access to that data and information about the nature and purposes of the processing.
b) Right to Rectification. You may request that we correct any inaccurate personal data about you or complete any data that is incomplete.
c) Right to Erasure (“Right to Be Forgotten”). You may request that we delete your personal data in any of the following situations:
(i) The data is no longer necessary for the purposes for which it was collected;
(ii) You withdraw your consent and there is no other legal basis for the processing;
(iii) The data is being processed unlawfully;
(iv) The data must be erased to comply with applicable legal obligations.
d) Right to Withdraw Consent and to Object. You may withdraw your consent for processing at any time where processing is based on your consent. You also have the right to object at any time to the use of your data for marketing purposes or where processing is based on our legitimate interests, based on reasons related to your particular situation.
e) Right to Restrict Processing. Under certain circumstances, you may request that we restrict the processing of your personal data (e.g., while a correction request is being reviewed).
f) Right to Data Portability. Where data is processed by automated means, you may request, in accordance with applicable law, that your personal data be provided to you in a structured, commonly used, and machine-readable format. If technically feasible, you may also request that we transfer this data to another controller.
g) Right to File a Complaint with a Supervisory Authority. If you believe that your data protection rights have been violated, you have the right to file a complaint with a supervisory authority. In Romania, you may contact: The National Supervisory Authority for Personal Data Processing. Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Postal Code 010336, Bucharest, Romania, Email: [email protected]; Website: www.dataprotection.ro
If you believe your privacy rights have been violated, and you are located in the United States, contact the relevant data protection authority in your state of residence, which is responsible for overseeing unfair or deceptive practices related to personal data.
TO EXERCISE THE RIGHTS MENTIONED ABOVE, YOU CAN CONTACT US USING THE E-MAIL ADDRESS: [email protected]
9. DATA SECURITY
We make every effort to keep your personal data safe. We use secure protocols for communication and data transfer (such as HTTPS), and we monitor our systems for potential vulnerabilities and attacks. Our security measures include restricting access to authorized personnel only and protecting databases against unauthorized access. Logical access is limited through the use of passwords for IT applications and by assigning user rights that align with the responsibilities of employees and collaborators.
Although we do our utmost, we cannot guarantee complete information security. However, we are committed to notifying the competent authorities in the event of a data protection breach. We will also inform you if there is a threat to your rights or interests. We will take all reasonable steps to prevent security breaches and to assist the authorities should any breaches occur.
10. PRIVACY POLICY CHANGES
We may occasionally update this document. In such cases, we will inform you by updating the date at the top of this document and, in certain instances, by issuing additional notifications (for example, by adding a notice on the homepage of our website or by sending you an email). We encourage you to review the Privacy and Cookie Policy whenever you interact with us to stay informed about our personal data protection practices and the methods you can use to control
how your personal data is used and how your privacy is protected.