Reach out now to receive a discount on a 2025 CEP assessment or advisory project.

Contact Us

Search

Privacy Policy

Overview

Your privacy is important to The Center for Effective Philanthropy (“CEP”), and we are committed to respecting that privacy. This Privacy Policy describes the personal information practices for the online surveys we conduct (“Surveys”), such as the surveys for the Grantee Perception Report (“GPR”), Applicant Perception Report (“APR”), Donor Perception Report (“DPR”), Staff Perception Report (“SPR”), and customized advisory surveys, including what type of information is gathered and tracked, how the information is used, and with whom the information is shared. In addition, CEP conducts research that generates insights aimed at enhancing the effectiveness of philanthropy.

For the purposes of this Privacy Policy:

  • Personal Data shall mean any data which relates to an identified or identifiable natural person. This may include, but not be limited to, individuals’ names, email addresses, phone numbers, IP addresses, or mailing addresses.
  • Funder shall mean the funder who has commissioned a GPR, DPR, APR, SPR, or custom advisory survey from CEP.
  • Respondent shall mean the individual receiving the survey.
  • Report shall mean the GPR, DPR, APR, SPR or custom advisory report provided to the Funder by CEP

By participating in these surveys, Respondents are aware of the practices described in this Privacy Policy.

This Privacy Policy was last updated on October 08, 2024.

Personal Information

We do not share Respondents’ personal data without a legal basis to do so.

For its online GPR, APR, DPR and SPR, CEP receives the following types of personal data from the Funder commissioning the Survey: Full Name, Email Address, Phone Number (optional), and Mailing Address (optional). The Funder has informed us that it has the right to provide such information to CEP for CEP’s use in producing the Report and to contact you about this survey.

Respondents can visit and complete the Surveys without revealing any additional personal information about themselves. We do not request any personal data from you and ask that you not include any personal data in your responses to the Survey.

With the exception(s) listed in this Policy, CEP does not intentionally share personal data with third parties or sub-contract the processing of personal data to any third party. The following processers which we use are subject to, and handle data consistent with, the GDPR:

Qualtrics: CEP online surveys are administered using Qualtrics a third-party survey platform. Names and email addresses of survey respondents are entered into the Qualtrics system in support of online survey administration. Qualtrics collects IP addresses from survey respondents, which are permanently deleted by CEP after the survey period has closed. Privacy statement: https://www.qualtrics.com/gdpr/.  Qualtrics is  ISO 27001 certified and FedRAMP authorized.

  • Anthropic: CEP uses Anthropic, an AI-driven platform, to process and analyze qualitative data from surveys. Names, email addresses, and any other personal data are not entered into Anthropic’s system; only the textual data from survey responses is processed. Privacy statement: https://www.anthropic.com/legal/privacy. Anthropic is ISO 27001
  • Third-Party Translations: CEP uses third-party translators to translate into English any open-ended survey comments provided in another language. CEP does not intentionally share personal data with translators. Nonetheless, the translators with whom we contract are certified in the following: ISO 9001 (Quality Management System), ISO 17001 (Translation Quality Management System), and ISO 27001 (Information Security Management System).

We will not exchange or sell your e-mail address or phone number to third parties. However, we reserve the right to disclose your personal information as required by law; when we believe that disclosure is necessary to protect our rights; to comply with a judicial proceeding, court order, or legal process; or in connection with an actual or proposed corporate transaction or insolvency proceeding involving all or part of the business or asset to which the information pertains.

Lawful Basis for Processing

We collect and process personal data on the lawful basis of our legitimate interest. However, if you decide to object to the processing of your personal data, you may do so by contacting righttobeforgotten@cep.org with any such request.

Information Security and Quality

The security of your personal information is important to us.  We follow generally accepted industry standards and legal requirements to protect the personal information submitted to us, both during transmission and once we receive it.  However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

We will make a sincere effort to respond in a timely manner to your requests to correct inaccuracies in your personal information, to remove personal information you do not want stored, or to answer any questions you may have about our use of your information.

Information Gathered through Surveys

The information we collect in our Surveys is that which Respondents voluntarily choose to provide. Participation in the survey is optional, and Respondents are not required to answer any specific question within the Surveys.

The Survey ratings provided by Respondents are used as follows:

  • As part of an average or proportion shared in the Report for a Funder
  • As part of an average or proportion in CEP’s comparative datasets
  • As part of an average or proportion used in CEP’s Research

CEP never shares averages or proportions that comprise of fewer than five data points. The survey results as provided to the funder do not contain any personal data.

The open-ended responses provided by Respondents are used as follows:

  • Shared without redaction or de-identification with the funder.
  • As a quote, redacted to protect confidentiality, shared in CEP’s Research

General Data Protection Regulation

The GDPR is a European Regulation concerning the use and processing of personal information. We are committed to processing your information in compliance with the GDPR and have agreed with the entities providing personal data to us to do so

The Website is published in the United States and is subject to laws of the United States. If you are located in a country outside the United States and voluntarily submit personal information to us, you thereby consent to the processing of your personal data in the United States.

CEP’s EU Standard Contractual Clauses can be found here.

Changes to our Privacy Policy

If we decide to change our Privacy Policy, we will post changes to this website and other places we deem appropriate so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.

We reserve the right to modify this Privacy Policy at any time, and such change will apply with respect to information you provide or your activity within the Surveys after the change in policy, so please review it frequently.

Questions Regarding this Policy

All respondents have the right to access their personal data and/or have the right to have their personal data forgotten. Please contact righttobeforgotten@cep.org with any questions or requests in this sphere.  Otherwise, we will maintain your personal data consistent with the permissions given to the entity providing the personal data to us and the terms of this policy in effect at the time that the personal data was provided to us.

Any questions regarding this statement or our privacy policies should be directed to CEP’s survey administrator at:

Carly Marchioni
The Center for Effective Philanthropy
675 Massachusetts Avenue, 11th Floor
Cambridge, MA USA 02139
617-492-0800 x255