Privacy Policy

Effective Date: May 12, 2026  |  Last Updated: May 13, 2026

1. Introduction

Hope58 ("Hope58," "we," "our," or "us") is a Christ-centered ministry partnering with the local church in Bulesa, Uganda. This Privacy Policy explains how we collect, use, share, and protect personal information when you visit our website at hope58.org (the "Site"), make a donation, subscribe to updates, contact us, apply to participate in a mission trip, or otherwise interact with the ministry.

Hope58 serves a global community of supporters, partners, and beneficiaries. Because our donors and visitors may reside in many jurisdictions, this policy is written with reference to the California Consumer Privacy Act of 2018 as amended by the California Privacy Rights Act of 2020 (collectively, "CCPA/CPRA"), the European Union's General Data Protection Regulation ("GDPR"), the United Kingdom's UK GDPR, and similar privacy laws.

2. California Notice at Collection

The following summary describes the categories of personal information we may collect, the purposes, whether each category is sold or shared, and how long it is retained. Full details appear in the sections that follow.

Identifiers (name, email, phone, mailing address, IP, device IDs)

• Purpose: respond to inquiries, send ministry updates, process donations.
• Sold or shared? Not sold. Shared only with service providers as needed to operate the ministry (see Section 7).
• Retention: see Retention section.

Donor and supporter records (donation amounts, payment details, giving history)

• Purpose: process donations, deliver tax acknowledgments, communicate with supporters.
• Sold or shared? Not sold. Shared with our payment processor and giving platform to complete transactions.
• Retention: 7 years for IRS or equivalent tax reporting purposes.

Mission trip and volunteer information

• Purpose: coordinate trip logistics, manage volunteer applications, deliver pastoral and ministry care.
• Sold or shared? Not sold. Shared with trip coordinators, hosts, and partners as needed.
• Retention: per the term of the program, plus a reasonable period after.

Internet or network activity (browsing, page views, cookie data)

• Purpose: site analytics through Google Analytics 4.
• Sold or shared? Shared with Google Analytics if analytics cookies are accepted.
• Retention: up to 26 months for analytics.

3. Categories of Personal Information We Collect

Categories of personal information defined by California law that we may collect:

• Identifiers: name, email address, phone number, mailing address, IP address, online identifiers.
• Donor records: information you provide when making a donation, including payment information processed by our payment partners.
• Volunteer and mission trip records: contact details, emergency contacts, dietary needs, medical or accessibility information you choose to share for the safe operation of trips and programs.
• Internet or network activity: browsing history on our Site, pages viewed, referring URLs, interaction with our content, and information collected through cookies.
• Geolocation data: approximate location derived from IP address.
• Sensitive information: religious beliefs and practices are inherent to our purpose as a Christ-centered ministry. We may also receive other sensitive information you choose to share, such as health or accessibility needs for a mission trip. We treat this information with discretion and use it only for the ministry purposes for which you provided it.

4. Sensitive Personal Information

We do not intentionally request Sensitive Personal Information through the Site. However, you may choose to provide limited health, medical, dietary, or accessibility information when applying for a mission trip, volunteering, or requesting prayer. We use that information only to fulfill your request and to provide reasonable care during the program. If our practices change, we will update this policy and offer the Right to Limit Use of Sensitive Personal Information where applicable.

5. Sources of Information

• Directly from you when you donate, subscribe to updates, apply for a mission trip, contact us, or otherwise interact with us.
• Automatically from your device and browser when you visit the Site, through cookies, analytics, and server logs.
• From our service providers, including donation processors, email service providers, and analytics vendors.
• From parents or guardians when minors are registered for ministry activities or mission trips.

6. How We Use Your Information

We use personal information to:

• Process donations and issue receipts or tax acknowledgments as required.
• Communicate with you about the ministry, updates from the field, prayer requests, and ways to support the work.
• Coordinate mission trips and volunteer programs.
• Respond to inquiries and provide pastoral or ministry care.
• Improve our Site, content, and donor experience.
• Detect and prevent fraud and protect Site security.
• Comply with legal, tax, and reporting obligations in the jurisdictions where we operate.

7. Service Providers and Ministry Partners

We share personal information with trusted service providers and ministry partners who help us operate. The list below is representative and not exhaustive. We may add, change, or replace providers from time to time, provided the new provider serves an equivalent purpose under similar confidentiality and security obligations. Examples of categories and current providers include:

• Website hosting and infrastructure providers, including GoDaddy, which hosts the Site and includes a hosting-level traffic monitoring tag (tccl.min.js) that loads on every page for performance and infrastructure analytics. This tag operates outside of our cookie consent manager. You may opt out by contacting GoDaddy hosting support.
• Donation and payment processors, including GoMission.church, which processes online gifts and sponsorships on our behalf, or any similar platform we may use.
• Email and communication platforms, including Mailchimp, which delivers our newsletter and ministry updates, or any similar platform we may use.
• Cookie consent management providers, including Osano, or any similar consent platform we may use.
• Analytics platforms, including Google Analytics 4, or any similar analytics platform we may use.
• Mission trip coordination and logistics partners on the ground in Uganda and elsewhere.
• Missionary sending agencies, including MESA Global, which administers the personal support accounts of our founders Matt and Shelley Actis. Gifts you make to support Matt and Shelley personally are processed by MESA Global under MESA Global's own privacy practices and donor receipt policies, which are separate from Hope58's.
• Parent organization, denominational body, or fiscal sponsor where applicable, for accounting, oversight, and ministry coordination.

8. Third Parties and Advertising

We currently use Google Analytics 4 to understand how visitors use our Site. This service may collect anonymized usage data through cookies.

We do not sell personal information for monetary consideration. We do not currently engage in cross-context behavioral advertising or build remarketing audiences from our website visitors. If we engage in such activity in the future, we will:

• Update this Privacy Policy to reflect that activity.
• Gate any such tracking through our cookie consent manager so visitors can opt in or out.
• Provide a clearly labeled "Do Not Sell or Share My Personal Information" opt-out link in our website footer.
• Honor Global Privacy Control (GPC) signals as automatic opt-out requests.

We may share information with professional advisors (accountants, auditors, attorneys), government or licensing authorities when required by law, by subpoena or court order, or to protect our legal rights. We may also share information with successor entities in connection with a merger, dissolution, ministry transfer, or organizational restructure.

9. Cookies and Tracking Technologies

Our Site uses cookies and similar technologies for the following purposes:

• Strictly necessary cookies required for the Site to function, including consent preference storage.
• Functional cookies that remember your preferences and improve performance.
• Analytics cookies for Google Analytics 4 to help us understand Site usage, gated by your consent through our cookie consent manager.
• Hosting-platform monitoring through our hosting provider GoDaddy, which loads a traffic-monitoring script (tccl.min.js) on every page for performance and infrastructure analytics. This script operates outside of our cookie consent manager. You may opt out of GoDaddy's hosting-level monitoring by contacting GoDaddy hosting support.

We use the Osano Cookie Consent Manager to manage your cookie preferences for the cookies and trackers within our control. When you first visit our Site, you will see a consent banner. You can change your preferences at any time by clicking the Osano cookie icon on any page. We honor browser-level Global Privacy Control (GPC) signals as automatic opt-out requests where applicable. The hosting-platform monitoring described above is not controlled by Osano because it is injected by our hosting provider; opt-out for that tag is handled through GoDaddy.

10. Retention

We retain personal information only as long as needed for the purposes described in this policy, to comply with legal and tax obligations, and to maintain accurate ministry records. Typical retention periods:

• Donor and gift records: retained as required for tax reporting purposes, generally 7 years.
• Volunteer and mission trip records: retained for the term of the program, plus a reasonable period after.
• Newsletter and communication contacts: until you unsubscribe, plus a suppression record to honor your opt-out.
• Site analytics: up to 26 months (Google Analytics default).
• Server logs and security data: up to 12 months.

11. International Data Transfers

Hope58 operates internationally, with ministry activities in Uganda and a global donor base. When you interact with our Site or the ministry, your personal information may be transferred to and processed in countries other than your country of residence, including the United States, Uganda, and the jurisdictions where our service providers operate. The privacy laws of these countries may differ from the privacy laws of your country.

For transfers of personal information from the European Economic Area, United Kingdom, or Switzerland to other countries, we rely on lawful transfer mechanisms such as Standard Contractual Clauses, adequacy decisions, or other appropriate safeguards. By interacting with the ministry, you acknowledge that your information may be transferred internationally for the purposes described in this policy.

12. Your Privacy Rights

Depending on where you reside, you may have the following rights regarding your personal information.

California residents (CCPA/CPRA)

• Right to Know: request that we disclose the categories and specific pieces of personal information we have collected about you, the sources, the purposes, and the categories of third parties with whom we have shared the information.
• Right to Delete: request that we delete personal information we have collected from you, subject to legal exceptions.
• Right to Correct: request that we correct inaccurate personal information we hold about you.
• Right to Opt Out of Sale or Sharing: direct us not to sell or share your personal information for cross-context behavioral advertising. As noted above, we do not currently engage in such activity.
• Right to Limit Use of Sensitive Personal Information: this right is preserved if we begin processing Sensitive PI in a way that requires this option.
• Right to Data Portability: receive a copy of your personal information in a portable format.
• Right to Non-Discrimination: we will not discriminate against you for exercising these rights.

European Economic Area, United Kingdom, and Switzerland residents (GDPR / UK GDPR)

• Right of Access: request a copy of your personal information.
• Right to Rectification: request correction of inaccurate or incomplete data.
• Right to Erasure: request deletion of your personal information, subject to legal and tax recordkeeping obligations.
• Right to Restrict Processing: request that we limit how we process your data.
• Right to Data Portability: receive your data in a structured, commonly used, machine-readable format.
• Right to Object: object to processing based on legitimate interests, including direct marketing.
• Right to Withdraw Consent: where processing is based on consent, you may withdraw that consent at any time.
• Right to Lodge a Complaint: file a complaint with your national data protection authority.

Lawful basis for processing (GDPR): we process personal information based on your consent (for marketing communications and non-essential cookies), the performance of a contract (donations, trip participation), our legitimate interests (operating the ministry, responding to inquiries, communicating with supporters), and legal obligations (tax and accounting recordkeeping).

13. How to Submit a Request

To exercise any of your rights, contact us using one of the methods below:

• Email: mactis@mesaglobal.co
• Mail: Hope58, PO Box 1341, Clovis, CA 93613, United States

We will verify your identity before responding to a request involving specific personal information. We aim to respond within 30 days for GDPR/UK GDPR requests and within 45 days for CCPA requests. If we need more time, we will notify you and may extend as permitted by law.

Authorized agents (CCPA): you may designate an authorized agent to submit a request on your behalf. We will require the agent to provide written, signed authorization from you and verify your identity directly.

14. Children's Privacy

Our Site is not directed to children under 13, and we do not knowingly collect personal information from children under 13 through the Site. Where minors are involved in ministry activities or mission trips, registration is completed by a parent or guardian, who provides the child's name, age, and any other information needed for the safe operation of the activity.

We follow the Children's Online Privacy Protection Act (COPPA) and California's protections for minors. We do not knowingly sell or share the personal information of consumers under 16. For visitors from the European Economic Area, we do not knowingly process the personal data of children under 16 (or the age of digital consent in their country, as applicable) without parental consent.

15. Beneficiary Imagery and Storytelling

Hope58 publishes photos and stories of the children, young women, pastors, and families we serve in Uganda to communicate the ministry's work to supporters and to invite others to participate. We seek the informed consent of the individuals featured, and parental or guardian consent in the case of minors, before publishing.

We aim to represent beneficiaries with dignity, accuracy, and respect for their agency, consistent with widely recognized standards for development and missions imagery, including the Dochas Code of Conduct on Images and Messages. We use first names only, or first name plus initial, for minors. We avoid publishing combinations of identifying details (full name, photo, age, and specific village or school) that could compromise the safety of any beneficiary.

If you or a person you are responsible for is featured in Hope58 content and you wish to have a photo or story removed or updated, contact us using the information in Section 20 and we will respond promptly.

16. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect personal information. Our service providers maintain their own security measures. No method of transmission or storage is fully secure, so we cannot guarantee absolute security. Notify us immediately if you suspect a security issue with your account or information.

17. Links to Third-Party Sites

Our Site may link to third-party websites and services, including but not limited to donation platforms, social media, partner ministry sites, and similar third parties we may add or change over time. The privacy practices of any linked third party are governed by their own privacy policies, not ours.

18. Religious Mission

As a Christ-centered ministry, our purpose is to serve, disciple, and care for our community in Uganda and to support the donors and partners who make the work possible. Information you share with us as part of ministry participation is used to support that mission. We will not knowingly use personal information in ways inconsistent with our calling or your trust.

19. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page with a revised Last Updated date. Material changes will be communicated by a notice on our Site or by email where appropriate.

20. Contact Us

If you have questions about this Privacy Policy or our privacy practices:

Hope58
PO Box 1341
Clovis, CA 93613
United States
Email: mactis@mesaglobal.co

Do Not Sell or Share My Personal Information

California residents may opt out of the sale or sharing of personal information for cross-context behavioral advertising. As stated in Section 8, we do not currently sell or share personal information for these purposes. If we engage in such activity in the future, an opt-out mechanism will be made available through the cookie consent manager on our Site and through this policy. We also honor Global Privacy Control signals as opt-out requests for the browser or device sending the signal.