r0g_Privacy Policy


As you communicate and interact with us at r0g_agency you have a right to privacy and we make sure that your privacy is protected. You decide how you want to hear from us.

Read below how r0g_agency and the selected third parties we work with collect and use the personal information you provide to us.

We want to ensure that we use your information in accordance with all applicable laws concerning the protection of personal information, esp. GDPR, so that you can easily exercise the rights you are granted under data protection legislation

If you have any questions regarding our privacy policy, please contact us at info@openculture.agency

About r0g_agency


r0g_agency is the non-profit agency for open culture and critical transformation. We follow the philosophy of ‘open knowledge for open societies’, with a focus on creating sustainable open systems solutions for post-conflict development. In doing so the r0g_agency acts to put into practice the mechanisms of sustainable open culture methodologies using appropriate and community based resources and technologies including Open Source (i.e. FOSS and Open Hardware), Open Educational Resources (OER), Open Data and related Open ICT4D, DIY and Up-Cycling methodologies.

Registered at Amtsgericht Charlottenburg Berlin as a non-profit "gemeinnützige GmbH" since 25.09.2013 | Registernr. HRB 153001 | Steuernr. 27/602/57389

Information we may collect about you


We collect information about the members and supporters in our movement who campaign and fundraise with us. The information we gather may include:

Personal information: Name, mailing address, email address, telephone number, date of birth, age, and gender where appropriate (e.g. when registering to run a marathon on our behalf).

Your preferences: We keep a record of what you’ve told us about how you like to be contacted (e.g. emails only) and what you’d like to receive from us, e.g. only information on Peacebuilding, Open Technology, or Open Knowledge

Your interests: Sometimes we collect information about your interests, so that we can contact you about information that is relevant to you.

Your affiliations: We may also collect and record any other relevant information you share with us about yourself, including your affiliations with community groups or your employer. For example, we may require your employer’s details to process a payroll gift.

Payment information


We may collect your bank account details when setting up a regular direct debit, a credit card or debit card number when processing payments by card.

Record of your support

We collect and process information about your interactions with us, including:

  • Details about our contact with you through email, text message, post, on the phone or in person
  • Details about donations you make to us
  • Details about events that you register for, or attend
  • Any other support you provide to us.


Sensitive information

Sensitive information includes details about a person's ethnicity, sexual orientation, religious beliefs, trade union memberships, political opinions, and information about their health.

Sensitive information will not be collected from you unless you choose to provide it to us, e.g. if you tell us about your accessibility needs or dietary requirements to attend any of our events. We only collect sensitive information with your explicit consent and will not transfer it to third parties.


Under 18’s

We are committed to safeguarding the welfare of all children and young people involved in our work.

If you are under 13, we will always ask for consent from a parent or guardian to collect information about you and to continue to contact you. We may also collect the name and contact details of your parent or guardian, where appropriate. Where we do collect personal information from children and young people, we ensure that our privacy notices are ‘child friendly’ and written in clear and plain language.

Payment information


We may collect your bank account details when setting up a regular direct debit, a credit card or debit card number when processing payments by card.

Record of your support

We collect and process information about your interactions with us, including:

  • Details about our contact with you through email, text message, post, on the phone or in person
  • Details about donations you make to us
  • Details about events that you register for, or attend
  • Any other support you provide to us.


Our legal basis for using your information


The legal basis that we rely on will depend upon the circumstances in which we collect and use your personal information. In almost all cases, our processing of your personal information will fall into one of the following categories:

Where you have provided your consent to allow us to use your data in a certain way. For example:

  • Signup to our newsletter (see section on Mailchimp)
  • Participate at one of our events
  • Participate in a fundraiser

Where the processing of your personal information is necessary to carry out the performance of a contract with you. 

Where the processing of your personal information is necessary for us to comply with a legal obligation. 

When we invite for our annual general meeting with our friends and members
Where it is in our legitimate interests to contact you in order to raise funds and achieve our objectives. For example:

Updates about our work, e.g. through our newsletter or Telegram group
Fundraising appeals

In some circumstances, we may use a combination of consent and legitimate interests to process your personal information. For example, if you sign up to our Telegram channel, we rely on your consent to send you petitions and requests for a donation by text message, and we rely on our legitimate interests to call you about getting more involved in our work.

These legitimate interests may include:


Operational work: including achieving our objectives to protect and promote open culture, conducting statutory and financial reporting, and ensuring regulatory compliance.

Administration and management: including administration relating to volunteers and staff to comply with legal requirements, the provision of information and services, research, and the management of events.

Campaigning, fundraising and marketing: including sending direct marketing by post, thank you letters, analysis, targeting and segmentation to improve the efficiency of our communication and manage your communication preferences, and in some cases, advertising goods and services similar to those which you have shown interest in before.


To find out more about how we process your information, or if you would like to change how we contact you, please contact us.
How we use your information

In our Supporter Promise, we have committed to making it convenient for you to tell us how you want to hear from us. We carefully manage the communications we send you to ensure we are contacting you in the most appropriate way. If you ask us to stop contacting you, we will, unless we are legally obliged to communicate with you.



We may use the personal information we collect from you to:

  • Provide you with information about us and the work that we do, including products and services that you’ve asked for online or in our office.
  • Administering and managing your donation, including data processing relating to Gift Aid claims, legacies, lottery events and raffles.
  • Manage your direct marketing and communication preferences.
  • Ask for your financial support, such as making a donation to our latest appeal.
  • Encourage you to take action as part of our latest campaign.
  • Comply with our legal and regulatory obligations.
  • Analyse the performance of our campaign actions and fundraising appeals.
  • Keep a history of your support, including donations you have given and actions you have taken.
  • Target online advertising effectively, reaching people who share similar interests and characteristics to our supporters.
  • Create a record of your interests, preferences and level of potential engagement or donation.
  • Organise and administer attendance at our events, such as our annual Write for Rights launch.

How we will contact you


The list below explains how we will contact you about open culture topics, including direct marketing relating to our campaigns, fundraising appeals and events.

We have processes in place to review how we communicate with you. If you tell us that you no longer want our updates, we will act on this as soon as we can.


Email: We will only contact you by email if you have given us your consent along with your email address.

Email is low-cost and fast to send and respond to. You can opt out at any time by clicking on the ‘unsubscribe’ link at the bottom of our emails.


SMS / Telegram channelWe will only contact you by text if you have given us your consent along with your mobile phone number. Text messages are a fast and low-cost way to ask you to support a petition and to raise funds. You can opt out at any time by following the unsubscribe instructions in our text messages.


Telephone: We will only contact you by telephone if you have given us your consent along with your phone number. Exceptions to this are:

where you have signed up to our Telegram group, or taken a text-based action.
where you sign up to fundraise for us (for example, by participating in an event or organising your own) and give us your phone number, as we will call you about ways you can achieve your fundraising target and how we can support you.
If you have already provided us with your phone number, we may call you occasionally, and will be checking that you consent to future phone contact during the call. Being able to call our supporters is important to our ability to raise funds quickly, and most of our calling is carried out by r0g_team members who share your passion for protecting our privacy. You can opt-out of phone calls at any time by contacting us.


Post / snail mail: If you have provided us with your postal address, we may send you post unless you have told us that you would prefer not to receive such information. You can opt-out of receiving post from us at any time by contacting us.


Where needed, we may also contact you for administrative purposes using the contact details that you have given us.


Profiling and research

We regularly use profiling techniques to target our resources and fundraising activity more effectively, so that we can make appropriate requests to those who have the means and the desire to give more. We do this in the following ways:

Due diligence

In order to protect the reputation of r0g_agency, our fundraising policy and procedures (as well as certain legal and regulatory obligations), may require us to use your personal information to carry out due diligence on your donation. We may need to use publicly available information to conduct ethical screenings on potential donors of a significant gift, to ensure our reputation is protected. This might include researching the sources of the donor’s money, previous business practices and reputation.

If you choose not to have your personal information analysed for due diligence purposes, we may not be able to accept your donation.

Using publicly available information

When communicating with individuals who have given, or might consider giving, a substantial donation to r0g_agency, we may seek to find out more about that individual, their interests and their motivations for giving, and may invite them to become more involved in supporting our human rights work.

We do this by collating biographical, financial, corporate and philanthropic information from a wide variety of sources, including information that is held on our supporter database and information that is publicly available. This publicly available information could be obtained by searching for current directorships listed on Companies House or relevant newspaper or media coverage about an individual.

Other sources of data that we use include:

Nexis UK - collates press mentions about individuals from a range of sources
Debrett’s – a source of biographical information about notable people
Who’s Who - a source of biographical information about influential people
Mint UK – a database that allows us to find out more about companies
192.com – a directory of information about people and businesses in the UK
Zoopla – information about house prices in an area where an individual lives
If you would prefer for us not to use your information in this way, please contact us.

Who might we share your information with

r0g_agency respects your right to privacy and your ability to choose how you hear from us. We do not sell your details to anyone. We do not make cold telephone calls to members of the public and we do not purchase information in order to do so.

We will, except as indicated below, only share your details with third parties if you ask us to – for example, when you sign a petition, or where we believe we are under a legal or regulatory duty to do so – for example, in a situation where we need to safeguard a vulnerable person.

Third parties

We use external service providers to help us send you communications and provide you with our services. These providers may include payment providers, fundraising agencies, fulfilment houses, mailing houses, charitable lottery managers, mobile marketing providers and software platform providers. Where needed, we would give relevant persons within these service providers access to your personal information, but only after we have conducted the necessary checks.

Everything an external service provider does is strictly governed by a contract.  In addition, before we share any information with those service providers, we put in place a signed Data Processing Agreement which confirms that the personal information we provide will only be used for the purposes we specify and will be processed in line with data protection legislation. As part of this agreement, the provider needs to comply with strict security measures, including having a secure method for disposing of personal information when it is no longer needed and having a secure process for transferring personal information - for instance, by using encryption.

Some service providers may be based outside of the European Economic Area (EEA).  We ensure any data transfers outside of the EEA are compliant with relevant data protection legislation and that the processing of your personal information is protected by appropriate security measures. For example, organisations we work with who process data in the US must have verified that their data processing standards meet the EU-US Privacy Shield framework.  This framework sets out clear safeguards and transparency responsibilities for US-based organisations processing the data of EU citizens.

From time to time, r0g_agency may work in partnership with other organisations on a fundraising activity or campaign. For example, if you sign up to run a marathon on our behalf, you may receive joint communications from r0g_agency and the marathon sponsor, if you have indicated that this is okay.

If you would like to learn more about how and when we share personal information with external service providers, please get in touch.


We participate in Facebook’s Custom Audience and Lookalike Audience programs, which enable us to display our content to our existing or potential supporters on Facebook. We provide personal information such as your email address or phone number to Facebook which securely encrypts it. That personal information is then deleted by Facebook if it does not match with a Facebook account or once they confirm you have an account.

For more information, please see https://www.facebook.com/business/help/744354708981227
And https://www.facebook.com/business/help/365463786964246

If you do not want your information to be used in this way, please contact us.

Ensuring your information is accurate

We only hold your personal information on our systems for as long as is necessary for the purposes outlined above. We remove personal data from our systems once it is no longer required, in line with our guidelines on how long important information must remain accessible for future use or reference, as well as when and how the data can be destroyed when it is no longer needed.

The length of time each category of data will be retained will vary depending on how long we need to process it for, the reason it was collected, and in line with any statutory requirements. After this point the data will either be deleted, or we may retain a secure anonymised record for research and analytical purposes.

In certain situations, for example where a supporter has told us they are going to remember r0g_agency with a gift in their will, we will retain their details so that we can effectively administer the gift and communicate appropriately with their next of kin or executor.

Your contact preferences are then recorded and updated on our secure database software. We respect your choices and will not contact you by a particular channel if your details are registered with official preference (‘opt out’) services. For example, we would not phone you if your number was registered with the Telephone Preference Service, unless you have specifically given us your consent to receive phone calls from us.

Keeping your personal information safe

r0g_agency has robust measures in place to ensure our physical and technical systems are secure. We take appropriate precautions to protect all personal information we keep on our database, including using encryption and monitoring access to our secure networks and systems.

We also take care to ensure we have secure systems for processing your payment information, such as your credit card or debit card details. Our current payment service providers use a range of methods to protect your personal information including secure payment gateways, fraud screening and IP address blocking.

Despite our best efforts to protect your personal information electronically, the security of information sent over the internet cannot be guaranteed and may be illegally intercepted or changed after it has been sent. r0g_agency cannot accept liability for this if this happens.

Other ways we look after your personal information

We report to our principal Boards (governing the Amnesty International UK Section and the Amnesty International UK Section Charitable Trust) on data protection through regular briefings, meetings and other appropriate channels where required.

Amnesty International UK also has a dedicated Data Protection Team, who oversee our compliance with data protection rules and are our main point of contact for data protection enquiries.

Our Data Protection Team are responsible for:

Training all our staff and volunteers involved in data processing
Educating the organisation on the importance of being compliant
Maintaining comprehensive records of all data processing
Providing guidance and advice to the organisation and our staff and volunteers as required
Data protection training

We provide data protection guidance and training for our staff and volunteers in our offices and bookshops so they are aware of their data protection responsibilities. Training is provided when staff and volunteers first join us, and every year after this as refresher training. Our data protection training covers UK data protection law, the risks associated with using personal information and how to handle personal information responsibly in compliance with the law.

Back to top

Managing your contact preferences

You can change your contact preferences at any time. This includes telling us that you don’t want us to contact you for marketing purposes.

You can do this quickly and easily by:

Clicking the ‘unsubscribe’ link at the footer of our emails to indicate that you do not wish to receive our fundraising or campaigning updates.
Asking us to stop sending you marketing texts by sending us an "opt-out" text message - following the instructions we provide you in the text messages you receive from us.
Contacting our Supporter Communications Team.
Entering your details on the Fundraising Preference Service (FPS) website and choosing ‘Amnesty International UK’  (Charity Number 1051681).
The FPS is run by the Fundraising Regulator, and allows you to stop email, telephone, addressed post, and/or text messages from a selected charity or charities by using the online service at www.fundraisingpreference.org.uk or by calling the telephone helpline on 0300 303 3517. Once you have made a request through the FPS, we will ensure that your new preferences take effect within 28 days of your request.

We treat an opt-out through the FPS as constituting an opt-out to both parts of Amnesty International UK, including our Limited Company and charitable Trust.

Back to top

Your data protection rights

You are in control of how we use your data and you have the right to ask us to stop processing your personal information. You also have the right to request a copy of the information we hold about you.

You are also granted a number of additional rights under data protection legislation, which are outlined below:

Where we are processing data based on your consent, you have the right to withdraw consent at any time. Please see ‘Managing your contact preferences’ for more information on how to do this.
You have the right to change your personal information if it is incomplete or inaccurate.
You have the right to request the deletion or removal of your personal information in certain circumstances, including where it is no longer necessary for us to hold it for the purposes for which we are processing it.
You have the right to restrict our processing of your data if there is disagreement about its accuracy or legitimate usage.
You have the right to move, copy or transfer your personal information easily and safely from one IT environment to another, in some circumstances.
You have the right to object to processing based on legitimate interests (as described above) including profiling activity, and “direct marketing”.
Please note that these rights are not exercisable in all circumstances. For example, personal data might not have to be erased if it is needed in the interests of public health, or to support legal claims, compliance and scientific or historical research.

For more information about these rights, please read the guidance issued by the Information Commissioner’s Office.

Subject Access Requests

If you would like to request a copy of the personal information that Amnesty International UK holds on you, please contact our Data Protection Team and we will respond to your request at the latest within one month of receipt.

Making a complaint

Listening and responding to feedback from our supporters and members is very important to us.

You can make a complaint or raise a concern about how we process your personal information by contacting our Data Protection Team.

We will acknowledge a complaint about any aspect of our data protection policy within 5 working days and aim to resolve complaints within 10 working days of receiving it. If you are dissatisfied with our response, please contact us using the details below.


Changes to this privacy notice

This privacy notice may change from time to time. For example, we may update this notice to reflect any relevant changes to legislation and regulation, and any changes to r0g_agency’s policy.

Please visit this website section periodically to keep up-to-date with the changes in our notice.

Contact us at info@openculture.agency