IWPR's Website Privacy Policy

This privacy policy notice is for this website; iwpr.net and served by Institute for War & Peace Reporting, 48 Gray's Inn Road, London WC1X 8LT and governs the privacy of those who use it. The purpose of this policy is to explain to you how we control, process, handle and protect your personal information while browsing or using this website. If you do not agree to the following policy you may wish to cease viewing or using this website.

For further info see IWPR's Privacy Notice.

Information collection

When someone visits iwpr.net we use a third party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.

On our site we collect the following:

  • Name;
  • Email address;
  • City;
  • IP Address.

The information collected from you is used:

  • To improve the website;
  • To improve customer service;
  • To send periodic emails.


We do not include or offer third party products or services on our website.

Tracking and personal data

  • We do not allow third party behavioural tracking and have not enabled Google Adwords on our site;
  • We do not sell, trade, or otherwise transfer personally identifiable information.

Use of cookies

Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

We use cookies to:

  • Improve performance of the site;
  • Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We use Google Analytics to track this information on our behalf;
  • We honour Do Not Track and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place;
  • Users can visit our site anonymously.

The table below explains the cookies we use and why.

has_jsFunctionalityMost commonly associated with the Drupal content management system. Drupal uses this cookie to indicate whether or not the visitors browser has JavaScript enabled.
_gatPerformanceThis cookie name is associated with Google Universal Analytics, according to documentation it is used to throttle the request rate - limiting the collection of data on high traffic sites. It expires after 1 minute.
_gidPerformanceThis cookie name is associated with Google Universal Analytics. It is used to distinguish users.
_gaPerformanceThis cookie name is associated with Google Universal Analytics. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports. It expires after 2 years.
cookie-agreedCookie noticeThis cookie manages the cookie notice that pops up when you visit our site. It expires after 100 days.

How do I change my cookie settings?

Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set, visit aboutcookies.org or allaboutcookies.org.

Find out how to manage cookies on popular browsers:

To find information relating to other browsers, visit the browser developer's website.

To opt out of being tracked by Google Analytics across all websites, visit tools.google.com/dlpage/gaoptout.

Processing your data

In this Notice, we collectively refer to handling, collecting, protecting or storing your personal data as “processing” such personal data.

Why we collect and use personal data

We collect personal data to help us to process your requests, keep in touch with you and to help us to interact with you in the most effective way.

Examples of why we process your personal data include:

  • Keeping you updated on our work and the impact of your support;
  • Making sure you know about events that you can participate in as an IWPR supporter;
  • Inviting you to participate in campaigns;
  • Sending you fundraising appeals;
  • Processing donations or other payments, and verifying financial transactions to protect you from fraud;
  • Processing Gift Aid donations and Gift Aid Declarations;
  • Processing a legacy or gift that you leave in your will;
  • Providing services, products or information you have requested;
  • Checking with you on how you want us to contact you, and record these preferences;
  • Keeping notes of conversations that you have with our team, as a reference if you want to revisit the conversation later;
  • Notifying you of changes to our policies when these affect you;
  • Ensuring that content from our site is presented in the most effective way for you and your computer;
  • Processing a job application you may make with us, or
  • If we need to do so, to comply with a law, process or regulatory requirement.

The information that we collect

The personal data that we collect about you will be based on how you interact with us, including through your use of our website, when you contact or request information from us or as a result of our work.  The personal information that we process includes:

  • Your name;
  • Your postal and email addresses;
  • Your telephone number or numbers;
  • Details of any correspondence that we have had with you. For example, if you call our office, a staff member may make a note of the conversation, in case you need anything else on that matter;
  • How you would like to hear from us, and when you told us this;
  • Details of any donations that you have made to us;
  • Whether or not you have signed up to the Gift Aid Scheme, and when you did so;
  • Your date of birth;
  • Any fundraising appeals that you may have responded to;
  • Events that you have taken part in or enquired about.

There is also other information that we may collect and hold in specific circumstances. For example:

  • Your bank account details if you set up a direct debit with us;
  • Health information that you give us if you are participating in an event, to help us to ensure your safety;
  • Campaigning actions that you have taken on our behalf;
  • Our telephone system lists the numbers that have recently called or been dialed, but we do not link these to any personal records;
  • Information to support our work with high net worth individuals, to understand their philanthropic interests, and complete any necessary due diligence.

How and when we collect information about you

There are a number of ways that we collect information; most often this will be directly from you, for example, if you fill out a form on our website, or directly with one of our fundraisers. Whenever we ask for information from you we will explain why we are asking for it (including by reference to this policy), and, where applicable, you will always be given a choice about how we communicate with you.

In some very specific circumstances we will gather data from publicly available sources, to help us in our work with High Net Worth Individuals. You can find more information on this research and details of these sources in our Information on profiling section below. We use data from third parties to keep our records up to date, (such as where you have signed up to the Telephone or Fundraising Preference Services) or to enhance the information that we hold. Sometimes you will also provide data to third parties who then pass it to us with your permission. For example, you may be raising money for IWPR through JustGiving or similar fundraising platforms, or you may have signed up to one of our campaigns through an external website.

You can find out more about this in our section on how we work with third parties, below.

We do not buy lists of data to use for our marketing purposes or share data with other charities for them to use in their marketing purposes.

Use of IWPR’s website

IWPR’s website privacy policy explains how what data is collected about those using IWPR’s website and how it is used. It includes an explanation of IWPR’s use of “cookies”. Like most websites, the IWPR site uses cookies – small data files that are downloaded when you use a website, to make the site easier to use. The information that is gathered is totally anonymous to us, but it helps us to see how people use our site, so that we can provide a better user experience


We use a third-party provider, MailChimp, to deliver our newsletters and manage our subscriber lists. We gather statistics around email opening and clicks in order to improve our campaigns.

Subscribers are able to unsubscribe via a link placed in the footer of all our newsletters.

For more info please see MailChimp’s privacy policy.

Online giving

Online donations to IWPR are managed by a third party, eTapestry's Donor Management Software (parent company Blackbaud). Any data managed is fully encrypted — not just for forms, but also for all eTapestry functions. Data security includes an environment protected by the latest firewalls, router settings, and storage devices. This includes our Giving & Membership form which is hosted and managed by eTapestry.

For more info please see Blackbaud's privacy policy.

Contact form

The information you provide through our contact form (iwpr.net/contact) is forwarded to relevant department or persons and is not used for any other purpose or shared with any third parties. If you would like us to delete your message(s) from our system please email us at privacy@iwpr.net.

Website security

We use Drupal, a proven, secure CMS and application framework that stands up to the most critical internet vulnerabilities. Drupal is mature, stable and designed with robust security in mind. Our site support team (ag-prime.com) is in charge of monitoring and deploying any security updates on daily bases.

The connection between your browser and our website is encrypted using TLS v1.2 (Transport Layer Security protocol). It is the latest standard technology for keeping an internet connection secure by encrypting any data that is being sent between two systems, preventing criminals from reading and modifying any information transferred, including potential personal details.

HTTPS (Hyper Text Transfer Protocol Secure) appears in the URL when a website is secured by an SSL certificate. The details of the certificate, including the issuing authority and the corporate name of the website owner, can be viewed by clicking on the lock symbol on the browser bar.


If you have any questions regarding this policy document please email us at privacy@iwpr.net.

Changes to this policy

This policy was last updated in July 2018.

From time to time, we may make changes to this policy and you will always be able to see here when it was last updated. If we make significant changes, such as in how or why we process your personal data, we will also publicise these changes on our website or may contact you directly with more information.

Support local journalists