Your privacy is important to us. This Privacy Notice describes how DISHA (Data Insights for Social & Humanitarian Action) collects, uses, and otherwise processes your personal data when you engage with us either as a:
- visitor of the DISHA website (https://disha.unglobalpulse.org/);
- focal point of a DISHA partner organization;
- user of DISHA platforms and solutions;
- participant to DISHA workshops and events; or
- member of the general public engaging with DISHA through general inquiries or other means.
‘Personal data’ is information, in any form, that relates to an identified or identifiable natural person. It includes identifiers such as your name, address or email address.
DISHA is a project led by UN Global Pulse, the Secretary-General’s Innovation Lab, that brings together UN agencies and private, public, and social sector partners that aims to accelerate ethical and responsible access to data and artificial intelligence (AI) solutions to unlock social impact at scale. DISHA is administratively managed and operationally supported by the United Nations Office for Project Services (UNOPS). Details about how UNOPS collects and processes personal data, is available at https://www.unops.org/privacy.
1. What personal data we collect about use and why
- 1.1. If you are a DISHA website visitor: We generally do not collect personal data about you, but we use third party technologies, which may involve use of cookies, to gather usage data and generate statistics about how our website is used. The data collected, such as IP address, browser type, user agent (device ID, OS), browser language, country, referring URL, visiting URL, time/date, posts and pages viewed, video plays, and outbound link clicks, is subsequently aggregated and anonymized to generate statistical reports that do not identify you personally. We use this information to better understand how visitors navigate our website and improve visitor experience.
- 1.2. If you are a focal point of a partner organization: We collect certain information about you, such as name, email address, phone number, job title, location, organization, and details about your organization’s interest in DISHA, to facilitate our engagements with your organization, including exploration of new collaborations, processing of your organization’s registration with DISHA services, and management of our contractual relationship with current partner organization. Unless you opt-out from it, we may also use your details to email you about news and updates related to DISHA services.
- 1.3. If you are an individual applying for and/or using our platforms and solutions:
- 1.3.1 When applying for access to DISHA platforms and solutions via our online forms: you provide us with certain information about you, including your name, email address, job title, organization name, organization type/function, organization address, DISHA services applied to, planned use of DISHA services, application date, and other information provided in the form. We use this information to process your account creation request and to facilitate the management of our contractual relationship and/or the exploration of new collaborations with your organization. To fulfil these purposes, we may need to share the information you provide with your organization, such as when verifying your identity and affiliation with the organization. We also use this data and any additional information that you may voluntarily provide to us, such as your background and experience and referral information, to generate aggregated statistics about the interest in and use of our services, which we use to improve our services and inform DISHA future direction. Unless you opt-out from it, we may also use your details to email you news and updates about DISHA services.
- 1.3.2. If you are an authorized user of DISHA platforms and solutions: we use the information you provided during the application process, as well as any additional information you may share with us to onboard you onto the platform or solution, manage your account, answer your questions about the use of the services, and for troubleshooting purposes. We may also use this information and any feedback you may share with us (whether via email, surveys, interviews, etc.) to improve our platforms and solutions. Additionally, we may use third party technologies, which may involve use of cookies, to gather usage data and generate statistics about how our platforms and solutions are used. The data collected, such as IP address, device ID, browser type, OS, device type, visiting URL, referring HTTP, country, region, city, is aggregated and anonymized to generate statistical reports that do not identify you personally. The aggregated statistics are used to learn how users navigate our platforms, which features are most popular, and help us improve our platforms and solutions.
- 1.3.3. Monitoring the use of DISHA platforms and solutions: we may process information we generate about applicants and users of our platforms and solutions, including user status (pending, authorized, denied, active/inactive), date upon which the status was assigned, reason for denial (where applicable), as well as authorized users’ credentials, and monitor activity on our platforms and solutions, including through login attempts and activity logs, to protect our platforms and solutions against fraud, unauthorized access, or other unauthorized activity.
- 1.4. If you are participating in DISHA workshops/events: we may collect certain information during the event registration process to register you for the event and for event management purposes. This may include your name, email address, job title, organization name, organization type/function, organization address, photo, bio, participant type (prospective/current user, community representative, government representative, etc.), DISHA service(s) of interest, other information provided upon registration, attendance (yes/no), event date/time, event location, and, where relevant, dietary restrictions (solely to provide you with dietary-appropriate catering options). We may also collect and use participant’s input and post-event feedback (collected via surveys, interviews, or otherwise) to improve our services and inform project future direction. Unless you opt-out from it, we may also use your details to email you news and updates about DISHA services and explore opportunities for new collaboration.
- 1.5. Recordings of virtual meetings and events: If you participate in a virtual meeting, workshop, or event with us, we may record the session to facilitate notetaking exercise and the production of summaries and reports. When we do so, we promiscuously inform you thereof prior to starting the recording to give you the opportunity to consent to such recording. Note that, in certain group contexts, should you refuse to be recorded, your only option may be to not participate in the session. We generally use third party service providers to record, store, and transcribe the recordings, as well as to generate automated summaries of the session.
- 1.6. If you are a member of the general public engaging with us: We also collect certain information about you when you inquire with us, via email or other means, about our services or products, about DISHA, or about collaboration opportunities. We use the information you provide to respond to your inquiry.
2. Who we share your personal data with
From time to time, we may need to share your information:
- with DISHA UN or non-UN partners who collaborate with us on the DISHA project to the extent necessary to fulfill the purposes described above, and/or as part of aggregated statistical reports which do not personally identify you (e.g., website and platforms usage, workshop participation statistics, etc.) for reporting, fundraising, and planning purposes;
- with our event co-organizer(s) and/or event venue provider as necessary for event registration and management purposes;
- with UNOPS, to comply with internal UNOPS regulations, rules, and processes, or as otherwise necessary to enable UNOPS to provide operational and administrative support to DISHA;
- with other UN departments and offices where consistent with our legitimate objectives and to facilitate the UN’s mission as outlined in the UN Charter;
- with third party service providers, such as cloud providers, when necessary to facilitate the collection, processing and storage of personal data on our behalf.
When sharing your data with non-UN third parties, we ensure as much as possible that the recipient has provided sufficient guarantees as to compliance with the UN Principles on Personal Data Protection and Privacy, including through vetting process and contractual obligations limiting the use of the data for specified purposes and ensuring an adequate level of protection of the data we share with them.
3. How we keep your personal data secure
We store your personal data using appropriate systems. We implement appropriate technical and organizational measures designed to protect the confidentiality, integrity and availability of your information and the resilience of our systems and services. We review our information security measures regularly to mitigate risks, including accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to your personal data.
4. How long we retain your personal data
We retain your personal data for as long as needed to fulfill the legitimate purposes for which it was collected. We also retain your personal data in order to comply with our organizational requirements and policies. We then delete or securely dispose of the data in accordance with our retention policies.
5. How you can access or correct your information
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes.
In accordance with data protection best practices, you may request access to, update/rectification, or removal of your personal data, or you may object to processing by contacting us at the address listed under section 9. In some instances, you may also update the information you provided to us directly through the tools available in our platforms. Please note that a request for removal of your personal data or any other restriction on our ability to process your personal data may mean that we are unable to provide you with the relevant services associated with that personal data.
6. Use of cookies and other tracking technologies
Some of the technologies used to gather usage data and generate statistics about our website and platforms may involve the use of cookies or similar tracking technologies. Cookies are identifiers that enable web browsers to store information about visitors of the website or platforms. Use of DISHA website and platforms constitutes your consent to the use of cookies as described in this Privacy Notice. If you do not wish to have your information collected via cookies, you may choose to disable new cookies on your web browser as well as disable cookies altogether.
7. Notification of changes
This Privacy Notice may be amended by DISHA at any time. Any changes will be posted on this page.
8. Privileges and immunities
Nothing in or relating to this Privacy Notice shall be deemed a waiver, express or implied, of the privileges and immunities of the United Nations, including its subsidiary organs.
9. Contact
For questions or queries regarding this Privacy Notice, please contact us via disha@unglobalpulse.org.
Gayan Peiris, Head of Data and Technology, Chief Digital Office, UNDP
Kersten Jauer, Deputy Director, UN Secretary-General’s Office
Brigitte Hoyer Gosselink, 
Vilas Dhar, 
Ankit Bisht, Partner, McKinsey & Company
Arden Ali, Project Lead: Digital Ethics and Governance, Jain Family Institute
Jerome Hodges, Chief Research Officer, Jain Family Institute