Together, we can build what's next for Stollery kids and their families.

Your gift brings the new stand-alone Stollery to life while supporting the care kids rely on today.

Join the movement.
Donate Now

Privacy policy

The Stollery Children’s Hospital Foundation (the “Foundation”) is committed to protecting the privacy of our donors. We value our donors’ trust and recognize that maintaining this trust requires that we be open and accountable in our collection, use and disclosure of our Donors’ Personal Information and Confidential Information. This Privacy Policy complies with applicable Canadian privacy laws, including Quebec’s Act respecting the protection of personal information in the private sector, as amended by Law 25, for our Quebec constituents.

The Foundation occasionally receives, shares, or processes donor information through Canada’s Children’s Hospital Foundations (“CCHF”) and its national partners. These exchanges are governed by mutual information-security agreements, and the Foundation remains responsible for ensuring compliance with provincial and federal privacy laws.

1.0 Definitions

1.1 Donor

“Donor” means a person, company or organization that provides a voluntary transfer of property to the Foundation normally in the form of cash, cheque, credit card or publicly traded stocks or securities and where no advantage is accrued to the donor.

1.2 Constituent

“Constituent” or “Constituents” means the Foundation’s staff members, volunteers, Trustees, Board members and Donors.

1.3 Personal Information

“Personal Information” means information that can be used to distinguish, identify or contact a Constituent and includes a Constituent’s credit card or banking information. Personal Information also includes information with respect to an individual’s status as a Donor to the Foundation and the amount(s) an individual has donated or plans to donate to the Foundation.

1.4 Privacy Officer

“Privacy Officer” means the officer designated by the Foundation from time to time as primarily responsible for the Foundation’s collection, use and disclosure of Personal Information and Confidential Information, including compliance with privacy legislation. The Privacy Officer acts as the point of contact for all privacy questions and issues.

2.0 Accountability for Personal Information

The Foundation collects and stores Personal Information in strict confidence. The Foundation’s Constituents (other than donors) are required to sign confidentiality agreements so that safeguards are in place to ensure that Personal Information is not accessed, disclosed or shared more widely than is necessary to achieve the purpose for which it was collected. The Foundation also takes measures to ensure that the integrity of Personal information is maintained and to prevent it from being lost or destroyed.

Where the Foundation retains third party service providers to conduct activities on the Foundation’s behalf (including fundraising, database creation, processing services, and digital advertising or analytics), the selection is made with a view to professionalism and protection of Personal Information. The Foundation takes reasonable precautions to ensure third party service providers are compliant with applicable privacy legislation [for example, Canadian Anti-Spam Legislation (CASL), Freedom of Information and Protection of Privacy Act (FOIPP), the Payment Card Industry Data Security Standard (PCIDSS), and Quebec’s Act respecting the protection of personal information in the private sector, as amended by Law 25]. All service providers are contractually bound to protect Personal Information, use it only for authorized purposes, and delete or de-identify it once processing is complete.

3.0 Canadian Anti-Spam Legislation

Constituents who have not been active with the Foundation for more than two years will automatically stop receiving non-donation related communication from the Foundation. To request to be added or dropped from the Foundation’s communication list, a Constituent may email info@stollerykids.com or call 780.433.5437. A Constituent may also unsubscribe at any time by clicking the “unsubscribe” link at the bottom of all Foundation emails.

4.0 Collection of Personal Information

4.1 Purpose of Collection of Personal Information

When the Foundation collects Personal Information directly from a Constituent, the Foundation identifies the purposes for which it is collected at or before the time of collection. These purposes include: registration, fundraising, the administration of the donations, providing information about the activities of the Foundation and the Stollery Children’s Hospital, and compliance with legal and regulatory requirements. Personal Information will be collected only by fair and lawful means.

The Foundation may also use Personal Information for data analysis, reporting and research to better understand donor engagement, giving patterns, and fundraising performance. These activities enable the Foundation to plan, evaluate and improve its fundraising programs and donor experience, ensuring that communications are relevant and efficient.

The Foundation may also use Personal Information to deliver relevant advertising about its programs and fundraising initiatives, including through digital remarketing or audience-matching tools offered by third-party platforms such as Google and Meta. These activities help the Foundation reach supporters who have previously engaged with the Foundation’s website, emails, or campaigns, or who share similar characteristics with existing supporters.

4.2 Consent to Collect, Use or Disclose Personal Information

The Foundation collects, uses and discloses Personal Information with Constituent permission. Permission may be expressed orally, in writing or may be implied, and collected orally, electronically or in writing.

Donation-related data collected through CCHF or corporate partners uses standardized consent language authorizing use for tax receipting, donor communication, and other related fundraising purposes.

The Constituent is always in control of their Personal Information. The Constituent has the right at any time to refuse collection, withdraw or modify consent, or limit future contact by the Foundation. These rights are subject to legal or contractual restrictions, and refusal or withdrawal may result in our inability to process donations, issue tax receipts, or provide certain services.

By providing Personal Information or making a donation, donors consent to the Foundation’s use of their information for fundraising, stewardship, and related data-analysis purposes described in this Policy. By providing contact information to the Foundation or interacting with its digital properties, constituents consent to digital marketing and awareness campaigns, which may include securely sharing hashed or encrypted identifiers with advertising platforms (for example, Meta Ads Manager or Google Ads Customer Match). No donor financial information is shared for these purposes. Individuals may withdraw consent or opt out at any time by contacting the Foundation or using platform-specific ad-preference tools.

4.3 Limit of Use, Disclosure and Retention of Personal Information

Personal Information will not be used or disclosed for purposes other than those for which it was collected, except with consent or as required by law. Personal Information will be retained only as long as necessary for the fulfillment of those purposes, after which it will be securely destroyed or anonymized in accordance with applicable privacy laws. The Foundation does not trade, rent, sell, or otherwise commercialize any Personal Information to third parties.

The Foundation may use secure analytical tools, algorithms, and other lawful techniques, such as data segmentation, predictive or propensity modelling, and behavioural analysis, to identify prospective supporters, personalize communications, assess campaign effectiveness, and improve reporting. Analyses are conducted using internal or partner data under confidentiality agreements and do not involve automated decisions with legal or material effects on individuals.

4.4 Online Collection of Personal Information

The Foundation’s web pages contain online forms that allow visitors to make donations. The Personal Information provided on these forms is used only to process these donations. Credit card numbers and banking information, as applicable, are encrypted using Transport Layer Security (TLS) for the protection of a Donor’s Personal Information and are not held in hard copy.

Visitors to the Foundation’s web pages are not required to disclose Personal Information as a condition of using such web pages. When a visitor uses the Foundation’s web pages, data about such use is stored on third party servers. This data may include the name of the visitor’s internet service provider, the web site used to link to the Foundation’s web pages, the web sites that were visited from the Foundation’s web pages and the visitor’s IP-Address. The Foundation uses such data to administer the web pages more effectively, and to gather broad demographic information about what countries and domains visitors come from and their behavior on the Foundation’s web pages.

4.4 Online Collection of Personal Information

The Foundation’s web pages contain online forms that allow visitors to make donations. The Personal Information provided on these forms is used only to process these donations. Credit card numbers and banking information, as applicable, are encrypted using Transport Layer Security (TLS) for the protection of a Donor’s Personal Information and are not held in hard copy.

Visitors to the Foundation’s web pages are not required to disclose Personal Information as a condition of using such web pages. When a visitor uses the Foundation’s web pages, data about such use is stored on third party servers. This data may include the name of the visitor’s internet service provider, the web site used to link to the Foundation’s web pages, the web sites that were visited from the Foundation’s web pages and the visitor’s IP-Address. The Foundation uses such data to administer the web pages more effectively, and to gather broad demographic information about what countries and domains visitors come from and their behavior on the Foundation’s web pages.

4.5 Cookies and Tracking Technologies

The Foundation’s website uses Cookies and similar tracking technologies. A “Cookie” is a small data file created by a web server and stored on a user’s computer. Cookies let websites identify users, keep track of users’ preferences and recognize users who are returning to the website. Cookies also let websites make custom pages for users. Some Cookies may also keep personal information, such as site passwords and account numbers.

Types of Cookies Used:

  • Essential Cookies: Required for basic website functionality
  • Analytics Cookies: Used to understand visitor behavior and improve website performance
  • Marketing Cookies: Used for remarketing and advertising purposes (including Google AdWords)

Managing Cookie Preferences:

The Constituent may accept or refuse all Cookies, third-party Cookies, or Cookies from certain websites through web browser settings. Please note that blocking certain Cookies may affect website functionality.

4.6 Remarketing

Third-party vendors, including Google and Meta, use Cookies to serve advertisements based on a visitor’s previous visits to the Foundation’s web pages. Any data logged will be used in accordance with this policy as well as Google’s applicable policies. Additionally, Constituent data may be used for personalized digital outreach through secure privacy-protected platforms.
The Foundation respects its Constituents’ right to privacy and their decision to choose whether or not to share their information. Constituents who do not wish their information to be used for such advertising activities may contact the Foundation’s Privacy Officer to opt out, or adjust their ad preferences directly on Google or Meta platforms.

5.0 Safeguarding Personal Information

Personal Information is protected with security safeguards appropriate to the sensitivity of the information. The Foundation uses password protocols and secure websites to protect Personal Information. The Foundation’s digital security software is routinely updated for the protection of Personal Information. Personal Information held in hard copy, such as original gift agreements, are secured within the Foundation’s premises.

The Foundation undertakes to take all reasonable measures to ensure a level of confidentiality and security of Personal Information in accordance with technological standards appropriate to its sector of activity and the sensitivity of the data collected. Notwithstanding the foregoing, individuals providing personal information to the Foundation (“the user”) must acknowledge that no computer system offers absolute security and that there is always a degree of risk involved in transmitting Personal Information over the public Internet. The user agrees that the Foundation cannot be held responsible for any breach of confidentiality, hacking, virus, loss, theft, misuse or alteration of Personal Information transmitted or hosted on its systems or those of a third party, except in the case of gross negligence or intentional misconduct on the part of the Foundation. Accordingly, the user agrees to hold the Foundation and its officers, directors, affiliates and business partners harmless from any damages of any kind, whether direct or indirect, incidental, special or consequential, arising out of the use of Personal Information, except in cases of gross negligence or intentional misconduct.

5.1 Cross-Border Transfers

The Foundation may transfer, store, or process Personal Information in provinces or countries outside Alberta, including the United States of America, using secure cloud or database providers and for participation in national fundraising programs. Such transfers occur only for purposes consistent with this Policy. Before transferring Quebec residents’ Personal Information outside Quebec, the Foundation will conduct a privacy impact assessment and ensure that equivalent safeguards and contractual protections are in place, as required by Law 25. By providing Personal Information or making a donation, donors consent to this cross-border processing and acknowledge that privacy laws of the receiving jurisdiction may differ from those of Canada, and that information may be subject to lawful access by foreign authorities.

Donors may contact the Privacy Officer to obtain more information about the Foundation’s use of foreign service providers and the associated safeguards.

6.0 Accuracy of Personal Information

The Foundation relies on Constituents to provide accurate Personal Information. The Foundation strives to ensure that accuracy is maintained in all applicable Constituent databases. A Constituent may access his or her Personal Information to change or modify Personal Information for accuracy.

7.0 Children’s Personal Information

In light of the importance of protecting a child’s Personal Information, the Foundation does not collect, process or use on any of the Foundation’s web pages or in other Foundation publications, Personal Information of a child without the prior, verifiable consent of his or her legal representative.

For purposes of this Policy, a “child” means:

  • A person under the age of 18 years within the Province of Alberta and other Canadian provinces where applicable law sets the age of majority at 18 or 19 years; or
  • A person under the age of 14 years for residents of the Province of Quebec.

Individuals under the applicable age threshold must not provide the Foundation with Personal Information without the consent of a parent or guardian. Such legal representative has the right, upon request, to view the information provided by the child and/or to require that it be deleted. If a parent or guardian has become aware that a child has provided the Foundation with Personal Information without consent, they should contact the Foundation’s Privacy Officer to request that the Foundation delete that child’s Personal Information.

8.0 Additional Rights for Quebec Residents

For residents of the Province of Quebec, Quebec’s Act respecting the protection of personal information in the private sector, as amended by Law 25, provides the following additional rights regarding Personal Information:

  • Access: Individuals have the right to be informed of the Personal Information the Foundation holds and to request access to or copies of documents containing Personal Information, subject to exceptions provided by applicable law.
  • Rectification: Individuals have the right to request that the Foundation correct, amend, or update Personal Information if it is incomplete, inaccurate, equivocal, or out of date.
  • Deindexing: Individuals have the right to request that the Foundation ceases disseminating Personal Information and de-index any hyperlink attached to the individual that allows access to Personal Information, if such dissemination contravenes the law or a court order.
  • Automated Decision-Making: Individuals have the right to be informed when they are the subject of a decision based exclusively on automated processing of Personal Information, or when identification, location or profiling technology is used.
  • File a Complaint: Individuals have the right to file a complaint with the Foundation regarding handling of Personal Information, or to file a complaint directly with Quebec’s Commission d’accès à l’information.

To exercise any of these rights, an Individual may be asked to provide appropriate identification as required by law. Please contact the Foundation’s Privacy Officer as indicated in Section 9.0 below.

9.0 Transparency Regarding Privacy Practices and Personal Information

The Foundation’s practices relating to the management of Personal Information are available to all Constituents on the Foundation’s web pages. Constituents who do not have access to electronic media may contact the Foundation to request a print version of this Policy.

Any person who is not a Constituent may inquire with the Foundation whether the Foundation holds any Personal Information with respect to that person. The Foundation’s Privacy Officer shall respond to all such inquiries and take steps in accordance with this Policy.

Any concerns about the Foundation’s compliance with this Policy and privacy legislation in general may be directed to the Foundation’s Privacy Officer. The Foundation will investigate all complaints, acting reasonably. In the event that a complaint identifies compliance issues, the Foundation shall take appropriate steps to achieve compliance, acting reasonably.

In the event of a privacy incident involving Personal Information that poses a high risk to an individual’s rights and liberty, the individual will be notified of such incident as soon as possible, and the Foundation will take appropriate steps to preserve the confidentiality and security of any Personal Information.

To contact the Foundation’s Privacy Officer:
Privacy Officer
Email: privacy@stollerykids.com
Phone: 780.433.5437
Stollery Children’s Hospital Foundation
800, College Plaza
8215-112 Street NW
Edmonton, AB T6G 2C8