As part of the National Democratic Institute’s ongoing mission to work for democracy and make democracy work around the world, we are updating some of our policies in order to ensure the privacy of those who interact with the Institute. Effective May 25th, 2018, NDI is updating it privacy policy, online platforms and organizational procedures to bring them into alignment with General Data Protection Regulation (“GDPR”).

GDPR, a law passed by the European Union (EU), is designed to strengthen and unify data protection for personal information. While GDPR only covers residents of the European Economic Area, the changes we are making to comply with this regulation will help to improve the privacy of all users of NDI platforms.

For your convenience, here is a brief summary of the changes our privacy policy. We encourage you to review it in full.

Privacy Policy: You have the right to know the type of information the Institute collects, why it is collected, how it is protected and used and the circumstances under which it may be deleted or disclosed. NDI collects only the personally identifiable data  that is voluntarily provided to the Institute and is necessary for specific business purposes.This data is kept up to date, stored securely, and protected from loss, misuse and unauthorized disclosure through the use of appropriate technical measures. User personal data is retained only for the length of time necessary to fulfill the purposes for which it was obtained and when data is no longer required, NDI will irrevocably destroy it.

NDI is also implementing “privacy by design” standards to protect your private information. This means NDI commits to promote privacy and data protection compliance from the start of every project and by default. A detailed explanation about GDPR and the steps NDI is taking to ensure the privacy of our users is available at www.ndi.org/gdpr.