Privacy and Data Protection Policy and Notice

the Institute for Haredi Strategy and Policy (the “Institute”, “we”, “us”, “our”, and their cognates) respects the privacy of individuals about whom information is collected in the course of its activities and through its website, and is committed to protecting the personal information you may share with us (these and any others with respect to whom we collect personal data, shall collectively be referred to as “you” or “Data Subjects”). 

The Institute specializes in strategic planning, development, implementation, and advancement of data and research driven policy relating to the Haredi community in Israel (the “Activities”). 

This policy and notice (the “Privacy Policy”) explains the types of information we collect from you, that we receive about you or that you may provide in the course of your interest in our activities, services, or when you visit our website. We are transparent about our practices regarding the information we collect, use, maintain and process and describe our practices in this policy and notice. Please read the following carefully to understand our practices regarding your personal data and how we will treat it.

For the purposes of Israel’s Protection of Privacy law and other applicable data protection and privacy laws, we are typically a data controller (or ‘business’) in relation to the personal data we collect through our website or in the course of our Activities.

  1. WHICH INFORMATION MAY WE COLLECT AND HOW?

For the purpose of promoting the Institute’s activities, operating and improving the website, we collect and process personal data from several sources, including:

  1. Information received directly from you: Information provided by you (or on your behalf) when registering for or participating in the Institute’s activities, during interviews, lectures, and conferences, or when you provide your details on the website or elsewhere, is stored and processed in the Institute’s systems in accordance with this Policy. This information may include personal details such as full name, address, position, ID number, phone number, email address, photograph, opinion, and any other information you choose to provide about yourself and others, as well as images and recordings collected during events and conferences.

  2. ‘Technical’ information collected automatically when using the website and other digital channels: This information includes IP address, unique identifiers, browser type, operating system, interface language, time or duration of visits, usage data on the website or system (such as pages viewed, links clicked, activity logs), and information collected using cookies and similar technologies for the purposes of site operation, security, marketing, and analytics.

  3. Information received from third parties: Information about you provided by third parties, such as authorities, authorized bodies, and other third parties, in accordance with applicable law and with your consent. 

  1. WHAT ARE THE PURPOSES OF PERSONAL DATA WE COLLECT?

We will use Personal Data to manage and improve our Activities, and meet our contractual, ethical and legal obligations. All Personal Data will remain accurate complete and relevant for the stated purposes for which it was processed, including for example:

Processing which is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract:

  • carrying out our obligations arising from any contracts entered into between you or your representative and Institute and/or any contracts entered into with Institute and to provide you with the information, support and services that you request from us;

  • sending you contract-related communications; and

  • verifying and carrying out financial transactions in relation to payments you make or receive in connection with the Activities or our services.

Processing which is necessary for the purposes of the legitimate interests pursued by Institute or by a third party of providing efficient and wide-ranging services:

  • establishing a business relationship with you;

  • answering queries sent by you and contacting you upon your request;

  • verifying your identity, ensuring the legitimacy of our business relationship with you or your company, preventing fraudulent activities and operating our business operations efficiently;

  • contacting you to give you commercial and marketing information about features or promotions or additional services offered by Institute which may be of interest to you; 

  • soliciting feedback in connection with the Activities; and

  • tracking use of Institute Activities and services to enable us to optimize them.


Processing which is necessary for compliance with a legal obligation to which Institute is subject:

  • compliance and audit purposes, such as meeting our reporting obligations, anti-money laundering, tax related obligations, and for crime prevention and prosecution in so far as it relates to the Activities and services, our staff, service providers, facilities etc; 

  • if necessary, we will use Personal Data to enforce our terms, policies and legal agreements, to comply with court orders and warrants and assist law enforcement agencies as required by law, to collect debts, to prevent fraud, infringements, and to take any action in any legal dispute and proceeding; and

  • for security purposes.


  1. SHARING DATA WITH THIRD PARTIES

Information is processed by or through third parties, such as:

  • Systems and cloud services: Customer relationship management (CRM) services, task management, data analysis, document management, technical support, hosting services, marketing services, and similar solutions. 

  • Service providers and external advisors: Service providers, contractors, professional advisors (including legal, business, and technological), and system operators acting on behalf of the Institute, who assist us in fulfilling our contractual obligations, improving our services, maintaining systems, handling inquiries, and analyzing information. 

  • Internet data research companies, social media platforms, and external advertisers. Please note that the website or landing pages may contain links to external websites or advertisers that are not under our control. Any use by such third parties is subject to their respective privacy policies, is not our responsibility, and is not governed by this Policy. 

  • Courts, tribunals, and competent authorities: For the purpose of managing legal proceedings, exercising rights, or complying with binding decisions of competent authorities. 

.

  1. WHERE DO WE STORE YOUR DATA?

Personal Data is stored in systems and servers under our control or ownership, or processed on our behalf by reputable cloud and hosting service providers. We may transfer personal data outside the borders of Israel for the purposes of storage, processing, and data backup. In such cases, we will safeguard your privacy and ensure the protection of personal data in accordance with applicable law. 

  1. DATA SUBJECT RIGHTS

In accordance with applicable law, you may have the right to access and review personal data concerning you, to request its correction, delete information, or to request removal from mailing lists. To exercise these rights, you may contact us at: [email protected]. In your request, please provide the necessary details, including identifying information, the grounds for the request, and the context in which the information was collected. Please note that these rights cannot be exercised in a manner that infringes upon the rights of the Institute or third parties. With respect to marketing mailing lists, you may unsubscribe through the unsubscribe button included in the email.

  1. DATA RETENTION 

We will retain your personal data for as long as we deem necessary in order to provide our services and as required to comply with our legal and other obligations, to assist in dispute resolution, and for enforcement purposes. Please note that non-personal or anonymized information may be retained indefinitely.

In addition, certain data may be retained on the servers of our service providers, such as in backups, in accordance with the privacy and retention policies of those third parties.

  1. WEBSITE DATA COLLECTION AND COOKIES

When using the website of the Institute, personal and ‘technical’ information is collected, inter alia, through cookies and other tracking technologies, for the purposes of operating the systems, improving the user experience, tailoring activities to your needs, and statistics.

What are Cookies? Cookies are small text files sent to your browser when you visit a website or online system and stored on your device. Some cookies are necessary for the proper and secure functioning of the systems, while others are used to analyze usage patterns, tailor content, and improve services.

Types of Cookies the website may use include:

a. Essential cookies: Required for the operation of the system and basic functionalities (such as logging into a secure account).

b. Functional cookies: Used to store user preferences and settings (such as language and time zone).

c. Analytics and performance cookies (e.g., Google Analytics): Used to collect statistical information about the use of digital systems, for the purpose of analysis and improving services and content.

d. Marketing or third-party cookies (e.g., Facebook (Meta)): Where applicable, used to tailor advertisements and content according to your preferences, and will be activated only with your consent where required.


Information collected includes, among other things: IP address, browser type, operating system, geographic location, device information, duration of visits, and pages viewed or accessed.

You may change your browser or device settings to delete or block some or all cookies. However, blocking essential cookies may result in certain services within the website not functioning properly.

  1. INFORMATION SECURITY

We implement appropriate organizational and technological measures, in accordance with applicable law and industry standards, to protect information and prevent unauthorized access to personal data. In this context, the Institute restricts access to personal data to those who require such access and who meet the requirements for managing and accessing personal data in accordance with applicable law. The Institute’s information systems are protected by standard security measures in compliance with legal requirements.

Despite the measures taken, neither we nor any other party can guarantee security of information. Nevertheless, we undertake to act promptly and reasonably to remedy any deficiency or security incident that is identified, and to report security incidents where reporting is required by law.

  1. GENERAL

Minors. We do not knowingly collect or solicit information or data from or about children under the age of 16 without parental consent. If you are under 16, do not register or attempt to register for any of the Institute Activities or send any information about yourself to us. If we learn that we have collected or have been sent Personal Data from a child under the age of 16 without parental consent, we will delete that Personal Data as soon as reasonably practicable without any liability to Institute, unless received lawfully. If you believe that we might have collected or been sent information from a minor under the age of 16, please contact us at: [email protected], as soon as possible.

Changes to this Privacy Policy. The terms of this Privacy Policy will govern the use of the Activities, websites, and any information collected in connection with them. the Institute may amend or update this Privacy Policy from time to time. The most current version of this Privacy Policy will be available on our website. Changes to this Privacy Policy are effective as of the stated “Last Revised” date and your continued use of our website or participation Activities will constitute your active acceptance of the changes to and terms of the Privacy Policy.

Institute aims to process only adequate, accurate and relevant data limited to the needs and purposes for which it is gathered. It also aims to store data for the time period necessary to fulfill the purpose for which the data is gathered. Institute only collects data in connection with a specific lawful purpose and only processes data in accordance with this Privacy Policy. Our policies and practices are constantly evolving and improving, and we invite any suggestions for improvements, questions, complaints or comments concerning this Privacy Policy, you are welcome to contact us (details below) and we will make an effort to reply within a reasonable timeframe.

Institute’s data protection team may be contacted at: [email protected].

* * * * *

Last Revised: April 21, 2026