Working with Epilepsy

Privacy Policy

Working with Epilepsy, Inc.

Effective Date: August 29, 2025

Last Updated: August 29, 2025

Our Commitment to Your Privacy

Working with Epilepsy, Inc. ("we," "us," "our," or "Organization") is committed to protecting your privacy and ensuring transparency in how we collect, use, and safeguard your personal information. This Privacy Policy describes our practices regarding information we collect through our website at https://workingwithepilepsy.org (the "Website") and related services.

Our Mission: We provide professional resources and career tools for working-age adults with epilepsy. Your trust is fundamental to this mission, and we handle your personal information with the highest standards of care and transparency.

Information We Collect

Information You Provide Directly

  • Contact Information: Name, email address, phone number when you contact us or use our contact forms
  • Communication Content: Messages, questions, and feedback you send through our contact forms or email
  • Professional Information: Career-related information you may choose to share when requesting resources or participating in our programs

Information Collected Automatically

  • Website Usage Data: Pages visited, time spent on site, referring websites, browser type, device information
  • Technical Information: IP address, browser settings, operating system type
  • Accessibility Data: Information collected by our UserWay accessibility widget to improve website accessibility

Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Ensure website functionality and security
  • Improve user experience and accessibility
  • Analyze website performance and usage patterns

Current Third-Party Services:

  • UserWay Accessibility Widget: Collects accessibility preference data to enhance website usability for users with disabilities

How We Use Your Information

Primary Purposes

  • Service Delivery: Providing professional resources, career tools, and support services
  • Communication: Responding to your inquiries, requests, and providing customer support
  • Website Operation: Ensuring proper functionality, security, and accessibility of our website

Secondary Purposes

  • Service Improvement: Analyzing usage patterns to enhance our resources and user experience
  • Legal Compliance: Meeting legal obligations and protecting our rights and the rights of others
  • Organizational Operations: Internal record-keeping and administrative purposes

Legal Basis for Processing (GDPR)

For users in the European Union, we process your personal information based on:

  • Legitimate Interest: Providing professional resources and maintaining our website
  • Consent: When you voluntarily provide information through contact forms or communications
  • Legal Obligation: Complying with applicable laws and regulations

Information Sharing and Disclosure

We Do Not Sell Personal Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

Limited Sharing Circumstances

We may share your information only in these limited circumstances:

  • Service Providers: Trusted third-party vendors who assist in website operations, subject to strict confidentiality agreements
  • Legal Requirements: When required by law, court order, or to protect our rights and safety
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with continued privacy protection)

Current Third-Party Processors

  • Digital Ocean: Website hosting services (covered by Data Processing Agreement)
  • UserWay: Accessibility widget services
  • Email Service Providers: For responding to communications (subject to DPA when available)

Data Security and Protection

Security Measures

We implement reasonable administrative, technical, and physical safeguards to protect your personal information, including:

Administrative Safeguards:

  • Designated data protection responsibilities
  • Regular security training and awareness programs
  • Vendor management and contractual protections

Technical Safeguards:

  • Secure website hosting with HTTPS encryption
  • Regular security assessments and monitoring
  • Access controls and authentication measures

Physical Safeguards:

  • Secure data storage and disposal procedures
  • Protected access to physical systems and records

Data Retention

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Contact information is typically retained for up to 7 years for administrative purposes, unless deletion is requested earlier.

Your Rights and Choices

General Rights

  • Access: Request information about what personal data we have about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal retention requirements)
  • Communication Preferences: Opt out of non-essential communications

Additional Rights for EU Residents (GDPR)

  • Data Portability: Receive your personal data in a structured, machine-readable format
  • Processing Restrictions: Request limitations on how we process your information
  • Objection: Object to processing based on legitimate interests
  • Withdrawal of Consent: Withdraw previously given consent

Exercising Your Rights

To exercise any of these rights, please contact us using the information provided in the "Contact Us" section below. We will respond to your request within 30 days.

Additional Rights for California Residents

While the CCPA generally does not apply to nonprofit organizations, we extend similar privacy protections to all users.

Cookies and Tracking Preferences

Cookie Management

You can manage cookie preferences through your browser settings. Please note that disabling certain cookies may affect website functionality.

Accessibility Widget

The UserWay accessibility widget stores preferences locally to maintain your accessibility settings across visits. This data is not shared with us directly.

International Data Transfers

If you are accessing our website from outside the United States, please note that your information may be transferred to, stored, and processed in the United States. We ensure appropriate safeguards are in place for such transfers.

Children's Privacy

Our website and services are not directed to individuals under 16 years of age, and we do not knowingly collect personal information from children under 16. If we learn we have collected such information, we will delete it promptly.

Contact Information

Data Protection Contact

For privacy-related questions, concerns, or to exercise your rights:

Working with Epilepsy, Inc.

Privacy Officer

Email: [email protected]
Phone: (332) 264-5352

Mailing Address:
Working with Epilepsy, Inc.
1178 Broadway, FL3
New York, NY 10001

General Contact

For general inquiries about our services:

Legal and Compliance Contact

Corporate Secretary:
The Reverend Deacon Andrew P. Jones
Working with Epilepsy, Inc.
Email: [email protected]

Accessibility and Language Support

This Privacy Policy is available in accessible formats. If you need assistance accessing this information or have questions about our accessibility practices, please contact us using the information above.

Working with Epilepsy, Inc. is an equal opportunity organization committed to accessibility, inclusion, and empowerment for all community members.

This Privacy Policy was last updated on August 29, 2025. We encourage you to review this policy periodically for any changes.