Privacy Policy for International Korean Adoptee Associations (IKAA)
Updated: 15 March 2026
This policy sets out how IKAA collects, processes, and holds your personal data if you visit our event ticket shop, visit our website www.ikaa.org, or otherwise provide personal data to us. This policy affects your legal rights and obligations so please read it carefully. If you do not agree to this policy, please do not use our website or otherwise provide us with your personal data. If you have any questions, please contact us at info@ikaa.org.
Personal data for purposes of this policy does not include aggregated or deidentified data.
Our website may contain links to other sites of interest. Once you have used these links to leave our website, you should note that we do not have any control over that other site. Therefore, we cannot be responsible for the protection and privacy of any information which you provide while visiting such sites and such sites are not governed by this policy. You should exercise caution and look at the privacy policy applicable to the site in question.
Personal data we collect
We collect, process, store and use personal data when you book a ticket or buy any of our associated products and services including without limitation your name, address and email address together with payment information, date of birth, date of adoption, etc. We may also collect personal data that you give to us about other people if you register them to attend an event. You agree that you have notified any other person whose personal data that you provide to us of this privacy policy and, where necessary, obtained their consent so that we can lawfully process their personal data in accordance with this policy. For our email newsletter, we collect your personal data such as your email address when you sign up for the newsletter.
You agree that any personal data you provide to us is accurate, complete, and up to date to the best of your knowledge. If you contact us by email or other communication methods, we may retain records of that correspondence, including any personal data contained within the communication, for the purposes described in this policy.
When you visit our website or event ticket shop, we, or third parties automatically collect and store information about your device and your activities. This information could include (a) your computer or other device’s unique ID number; (b) technical information about your device such as type of device, web browser or operating system; (c) your preferences and settings such as time zone and language; and (d) data about your browsing actions and patterns. We collect some of this information using cookies in accordance with the Cookie section of this policy.
How we use your personal data
We may use the personal data we collect to provide, secure, and improve our website, the event ticket shop, our events, and our products and services. Your personal data may also be used for our and our partners’ marketing efforts, and for analytical and research purposes.
You may withdraw your consent or opt out of our direct marketing communications at any time. You can choose to no longer receive marketing communications by contacting us at info@ikaa.org or clicking unsubscribe from a marketing email. We may also use your personal data to send you relevant administrative or program-related communications about events or activities you have registered for. These communications are necessary to deliver the services you have requested and are not marketing in nature.
We may also use your personal data for our legitimate interests, including dealing with any customer services you require, enforcing the terms of any other agreement between us, for regulatory and legal purposes (for example anti-money laundering), for audit purposes and to contact you about changes to this policy.
Who do we share your data with?
We may share your personal data with any service providers, sub-contractors and agents that we may appoint to perform functions on our behalf and in accordance with our instructions, such as payment providers, event ticketing providers, email communication providers, IT service providers, accountants, auditors and lawyers.
We may also share limited personal data with relevant partners, including funding partners, for fundraising, marketing, other business purposes or in furtherance of our mission.
In certain situations, we may also process, use, or disclose your personal data in response to legal requests or requests by public authorities, government agencies, or law enforcement. We may also process, use, or disclose your personal data to protect the safety, rights, or property of us, third-parties, or the public.
Where we hold and process your personal data
Some or all of your personal data may be stored or transferred outside of the UK and the European Union (the EU) for any reason, including for example, if our email server is located in a country outside the UK or EU or if any of our service providers or their servers are based outside of the UK or EU.
Cookies
A cookie (or similar tracking technologies such as a pixel) is a small text file containing a unique identification number that is transferred (through your browser) from a website to the hard drive of your computer. These files are then used by websites to identify when users revisit that website.
Our website may use cookies so that we can recognize you when you return and personalize your settings and preferences. Most browsers are initially set up to accept cookies. You can change your browser settings either to notify you when you have received a cookie, or to refuse to accept certain cookies. Please note that our website may not operate efficiently if you refuse to accept cookies.
Our website also may use Google Analytics and other tracking technologies to monitor how it is used. Google Analytics collects information anonymously and generates reports detailing information such as the number of visits, where visitors generally came from, how long they stayed, and which pages they visited. These technologies place several persistent cookies on your computer’s hard drive. If you do not agree to this you can disable persistent cookies in your browser. This will prevent Google Analytics from logging your visits.
Security
We endeavor to process your personal data in a manner that ensures appropriate security of the personal data. However, you acknowledge that no system can be completely secure. Therefore, although we take steps to secure your personal data, we do not promise that your personal data will always remain completely secure. Where we have given, or you have chosen a password, you are responsible for keeping this password confidential.
Retention
We will retain your personal information for as long as is necessary to fulfill the specific purposes outlined in this privacy policy and to allow us to comply with our legal requirements. This is a case by case determination that depends on things like the nature of the data, why it is collected, why it is processed, and any relevant legal or operational retention needs. For example, we may retain your data for as long as you maintain an account on our website so that we may process and deliver your orders. We may also be legally required to hold some types of information to fulfill our statutory obligations. When the relevant processing activity has been completed, we may destroy your data, or alternatively anonymize the data in such a way that you are not personally identifiable, either directly or indirectly.
Personal Information Requests – European Union Residents
European Union residents may send us an email at info@ikaa.org to request access to, correct, or delete any personal information that you have provided to us. To protect your privacy and security, we may take reasonable steps to verify your identity before granting access to, correcting, or deleting data. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.
Basis for Processing – European Union Residents
Data protection law in Europe may require a “lawful basis” for collecting and retaining personal information from residents of the European Economic Area. Our lawful bases include:
- Performing the contract we have with you: In certain circumstances, we need your personal data to comply with our contractual obligation to deliver our products and services, and assist with any questions you may have.
- Consent: we may ask your consent to process your personal information in some situations. You have the right to withdraw consent where provided by applicable law.
- Legal compliance: Sometimes the law says we need to collect and use your data.
- Legitimate interests: This is a term in data protection law that allows us to process your personal information if we have a fair reason to use your data, and only if we do so in ways which do not hurt your interests and rights. We sometimes require your data to pursue our legitimate interests in running our business, including for delivering our products and services, fraud prevention, quality assurance, and marketing purposes, as long as our use of your data does not materially impact your rights, freedom or interests. This allows us to improve and develop the quality of the online experience we offer all our users.
General
We may change the terms of this policy from time to time. You are responsible for regularly reviewing this policy so that you are aware of any changes to it. If you continue to use our website, event ticket shop, or otherwise provide your personal data after the time we state the changes will take effect, you will have accepted the changes.