Version 3.0 – January 13, 2023
The Consumer Federation of America supports privacy rights. We also support robust privacy policies and practices. This CFA policy reflects our commitment to privacy and to Fair Information Practices. We do what we advocate.
- We do not sell, rent, share, or disclose our user lists or donor lists. Like other websites, we use Google Analytics to help us evaluate website usage, and we share limited personal information (e.g., IP addresses and website activities) about users with Google as a result.
- If you receive any communications from us and do not want more, let us know, and we will do our best to comply with your request.
Version 3.0 – January 13, 2023
Fair Information Practices
Usage Data is collected automatically when using the Website.
Usage Data may include information such as your Device’s Internet Protocol address (e.g., IP address), browser type, browser version, the pages of our Website that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
When you access the Website by or through a mobile device, we may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.
We may also collect information that your browser sends whenever You visit our Website or when you access the Website by or through a mobile device.
Tracking Technologies and Cookies
- Web Beacons. Certain sections of our Website and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit CFA, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).
Cookies can be “persistent” or “session” cookies. Persistent cookies remain on your personal computer or mobile device when you go offline, while session cookies are deleted as soon as you close your web browser. Your browser may offer the ability to delete persistent cookies. Deleting persistent cookies protects your privacy, but you will have to sign in again at websites that you visit regularly.
We use both session, and persistent cookies for the purposes set out below:
- Necessary / Essential Cookies
Type: Session CookiesAdministered by: Us
Purpose: These cookies are essential to provide you with services available through the Website and to enable you to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these cookies, the Website may not be able to provide the services that you asked for. We only use these cookies to provide you with those services.
- Cookies Policy / Notice Acceptance Cookies
Type: Persistent CookiesAdministered by: Us
- Functionality Cookies
Type: Persistent CookiesAdministered by: Us
Purpose: These cookies allow us to remember choices you make when you use the Website, such as your login details or language preference. These cookies provide you with a more personal experience and avoid the need for you to re-enter your preferences every time you use the Website.
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Website. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network. Google Analytics can be blocked by browsers, browser extensions, firewalls, and other means.
For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy.
We seek to maintain all personal information with an appropriate degree of relevance, accuracy, necessity, completeness, and currency. Since any personal information we have comes from you, we generally rely on you to tell us if we have the wrong email address or other outdated or incorrect information. See the access and correction section below.
We do not have a fixed schedule for the disposal of personal information. We keep data as long as we consider it relevant and useful. We will erase your identifiable data upon your request unless we are required to keep the data for contractual or legal reasons. For example, we may need to keep records if you use a credit card or make a contribution.
Purpose Specification & Use Limitation
We use personal information only for the purpose for which we obtained it from you, and we may continue to do so unless you tell us to stop. You can opt-out of some or all communications from us at any time.
If we ever want to use personal information in a way that is not consistent with this policy, we will seek your affirmative consent.
We process your personal information for a variety of reasons, depending on how you interact with our Website, including:
- To evaluate and improve our website operations and your experience. We may process personal information to identify usage trends, determine the effectiveness of our promotional campaigns, and to evaluate and improve our website operations and your experience.
- To identify usage trends. We may process personal information to understand better how our users use the Website and to improve the Website.
- To determine the effectiveness of our marketing and promotional campaigns. We may process personal information to understand better how to provide the resources that are most relevant to you.
These three functions aggregate user information to draw general conclusions about website activities rather than activities about individual users.
We occasionally post testimonials on our Website that may contain personal information. We only post a testimonial from you with your express permission.
If you sign up for one of our email issue updates, we will send you that update. If you sign up for text messages, we will send you text messages. If you come to one of our conferences, dinners, assemblies, or other events, or if you use any of our services, we may use your information to send you information about that event or about other similar events, activities, and services. At our conferences, meetings, and other events, we ask your permission to include your name on a list of attendees, their affiliations, and contact information that we share with other attendees. If you make a contribution, we use your information to thank you, and we may ask for additional contributions.
We do not sell, rent, share, or otherwise voluntarily disclose our lists, donor lists, or other personally identifiable information for any commercial purpose. In our advocacy work, we may share a registration or meeting list with other groups that are working on the same issues.
We sometimes add an individual to one of our issue updates or other lists because a CFA staff member interacted with that individual and believes that they would be interested. If you ask us for more information about our activities, we might add you to a CFA list. We make these decisions on a case-by-case basis. Many of our emails contain opt-out links. We remove anyone from any or all lists upon request. We send postal invitations for some of our events, and we honor any opt-out requests that we receive for postal lists.
If you use a credit card to pay CFA or make a contribution, our credit card processor handles the processing of the transaction. This is how credit card activities occur, and it is normal. The credit card processor and your credit card company use your information subject to their own privacy policies and legal requirements. We normally do not see or maintain your credit card number, but we do have your name, card type, expiration, and last four digits of the card number.
We may disclose any personal information we collect to contractors who provide administrative services and support for CFA. This includes our Internet Service Provider, database providers, consultants, lawyers, auditors, and others. We try to avoid sharing personal information, but vendors support some of our services so sharing is essential. For example, we maintain some databases with cloud service providers. We try to select vendors and contractors who have reasonable privacy and security policies.
As required by law, we disclose personal information in response to a subpoena, search warrant, court order, or similar demand. We may or may not contest any demand for data. We think it is highly unlikely that we will receive a demand for individual records, but we feel obliged to let you know about the possibility. If we find it practicable, we will make reasonable attempts (via telephone, email, or through our Website) to tell you about any of these disclosures, either before or after they occur. We can’t guarantee that we will have the time or resources to notify you, however. Our attempts may fail if we do not have current contact information.
We also reserve the right to disclose any information that we believe to be necessary or appropriate to protect the security or integrity of our Website or service; to take precautions against liability; or to the extent permitted under other provisions of law, to provide information to law enforcement agencies or for an investigation on a matter related to public safety. These disclosures are also unlikely.
We may voluntarily disclose data to law enforcement, to our Internet Service Provider, to security investigators, or to others who can assist us in identifying or preventing illegal or improper activities on our Website. We may ask our Internet Service Provider to make appropriate disclosures for the same purpose, including disclosures of IP addresses and any other identifiable information that it maintains.
We keep some personal information on computers and in file cabinets in our office. We believe that our building and our office have reasonable and appropriate administrative, technical, and physical safeguards. Independent service providers maintain some personal information on our behalf elsewhere. We rely on our Internet Service Providers and others who support our data, Internet, and cloud activities to maintain reasonable and appropriate security. We cannot guarantee perfect security. If we suffer a data breach involving your personal information, we will notify you about the breach as required by law and, if appropriate, we may notify you even if not required by law.
Access and Correction
If we have any personal information about you, we provide you with a copy of that information if you ask. If you think that the information we have about you is not accurate, relevant, timely, or complete, you can ask us to change it. If we do not make the change you requested, we will tell you why in writing. If you ask, and we can do so, we will delete your personal information. We do not charge a fee for any of these requests.
We regularly instruct our staff members about our privacy and security policies and practices. Staff members who access personal information must appropriately use and protect all personal information in the possession of CFA. This is part of their job responsibilities, and we hold staff members accountable for compliance with our privacy and security policies.
CFA is located at:
1620 I Street, NW – Suite 200
Washington, DC 20006
Other CFA Websites
This policy applies to most CFA websites. Some CFA websites have privacy policies with additional elements or other privacy policies. These are:
- America Saves. Our websites at https://americasaves.org/, https://americasavesweek.org/, and https://americasavesforyoungworkers.org/ collect and use some personal information from those who sign up for a savings program.
- Military Saves. Our Website at https://militarysaves.org/ collects some information from those who sign up for a savings program.
Other Websites: We provide links on our websites to websites operated by other entities. If you follow these links, you should understand that other privacy policies apply, and your personal information may be collected, used, and disclosed under different rules.
Children: This Website is not directed at children under 13 who have statutory protections under the Children’s Online Privacy Protection Act. Some young children may use our Website to obtain consumer information, but we do not expect that any will engage in activities that result in our obtaining personal information.
Social Media: We use social media, including Facebook, Twitter, and other platforms to make consumer information available to individuals. Social media sites have their own privacy policies. If you participate in our social media activities and provide us with personal information, we may add that information to our records, and it will become subject to this policy.
December 2022. Version 3.0 of this policy reflects new activities on CFA website, including the use of Google Analytics and some cookies-based activities.