Regulatory Notices
Any staff person or volunteer who believes they have been subjected to discrimination or harassment, or who has witnessed such behavior, should report it to the Non-Discrimination Coordinator. If a member of the public or attendee of an event believes they have been subjected to discrimination or harassment, they should report it to the Non-Discrimination Coordinator. The process for reporting a grievance is included in the complete Grievance Policy available here.
Privacy and Protection: The West Anniston Foundation maintains all program and participant information in a secure cloud-integrated development environment (IDE) using encryption and meeting international standards ISO/IEC 27001, SOC 2 (System and Organization Controls) Type II, and General Data Protection Regulation (GDPR). Participant information, project artifacts, observational data, and other project information are stored securely on protected cloud drives using encrypted in-transit and at-rest access and sharing. All cloud-based platforms used by WAFDN employ cloud storage redundancy practices and backup for data using server replication across multi-regions in cloud centers in the U.S.
Access, Data Sharing, and Responsibilities: Access to sensitive and protected is limited to authorized users and based on users’ roles and responsibilities of each individual to ensure privacy and appropriate permissions for protecting data. Multifactor authentication is used to verify credentials. Only non-directory and aggregate-level data are shared with partners, community stakeholders, and the general public. Appropriate file-sharing protocols and built-in safeguards are used to share information and govern data handling.