Privacy Policy

1. Hagit Alon (hereinafter: “the Business Owner/Business”) considers the protection of visitors’ privacy on the website www.h-a.co.il (hereinafter: “the Website”) to be of utmost importance, and the security of visitors’ information is very important to us, and we are committed to maintaining it.
2. The purpose of this policy is to explain to you in a transparent manner the basis for processing any personal information collected from you through your browsing on the website (hereinafter: “the Website”), how the information will be used, the manner in which information as provided by you is disclosed to third parties, and the use of “cookies” or files or tags on the website.
3. The Business Owner is committed to protecting your personal information (as defined below) in a manner consistent with applicable data protection laws. We ask you to carefully read this policy together with the Business Owner’s terms of use, and to understand the Business Owner’s positions and procedures regarding your personal information and how the Business Owner will handle it.
4. The terms of the privacy policy are written in the masculine form for convenience only and are intended for both genders equally.

Business Owner and Contact Details

5. Business/Company Name: Hagit Alon
6. Registration Number: 027481936

Address: Amir Drori 5, Holon

Phone: 050-5970565

Email: hagit.ha@gmail.com

Privacy Contact / Data Protection Officer

Full Name: Hagit Alon

Email: hagit.ha@gmail.com

Phone: 050-5970565

Policy Confirmation

7. Your use of the website www.h-a.co.il (“the Website”), including registration, browsing, or providing information, constitutes confirmation and agreement to this policy.
8. You are not legally required to provide personal information, however without it you may not be able to enjoy some of the services.
9. If you are providing personal information about another person — you must inform them of this policy and obtain their consent.

Types of Information Collected

10. Personal Information — information about an identified or identifiable person, such as: full name, phone number, email address, physical address, identity number, location data, financial data.
11. Sensitive Information (if provided) — medical information, health status, detailed financial data, or biometric information — handled in accordance with strict legal requirements.
12. Special Sensitive Information — intimate information, political opinions, religious beliefs, genetic information, biometric, medical, information about criminal history, location services, and professional assessments relating to personality or salary data.
13. Anonymous/Technical Information — website usage data, IP addresses, browser types, cookies, general location, clicks, time spent on the website.

Information Collection by Technology

14. The Business Owner makes use of log files, cookies, tags, Web Beacons, and analytical tools such as Google Analytics for the purposes of operating, maintaining, improving the user experience, preventing fraud, and customizing content.

Cookies can be blocked through browser settings, however some services may not be available as a result.

15. Information collected for this purpose is stored anonymously as far as possible.

Types of Information Collected

16. Information voluntarily provided by the user: personal identification details (such as name, phone, email address).
17. Additional contact details provided proactively.
18. Content of inquiries, messages, or requests sent through the website.
19. Automatically collected information.
20. IP address, browser type, operating system, general location.
21. Statistical information and website usage details (such as pages viewed, duration of visit, source of arrival to the website).
22. Cookies and similar tracking technologies, for the purpose of improving the user experience and customizing content.

Purposes of Data Processing

23. The Business Owner will make use of the information for the purpose of:

• Providing the services requested by you.
• Managing relationships with volunteers, donors, suppliers, and other parties.
• Improving and upgrading the website and services.
• Sending marketing and promotional updates subject to your consent.
• Complying with legal provisions, managing legal disputes, or handling complaints.

Sharing Information with Third Parties

24. The Business Owner is entitled to share personal information with:

• Technological service providers (CRM), website hosting, cloud services, systems.
• Payment processing providers, shipping companies, or business partners required to perform the service.
• Competent authorities — when required by law.

25. Information sharing will be carried out in accordance with confidentiality and data processing agreements.

Databases and Registration

26. Personal information is stored in databases managed by the Business Owner, registered in the database registry at the Privacy Protection Authority, to the extent required by law.
27. The Business Owner has appointed a Data Protection Officer (DPO) responsible for supervising and complying with the provisions of the law.

Information Security

28. The Business Owner implements advanced security measures — encryption, access control, cyber monitoring, backups.
29. In the event of a serious security incident, the Business Owner will act in accordance with the provisions of Amendment 13 and will report to the Privacy Protection Authority and data subjects without unreasonable delay.
30. The Business Owner limits access to personal information only to employees or contractors who require it.

Data Retention

31. Information will be retained only for the period necessary to fulfill the purposes of this policy.

User Rights

32. In accordance with the Privacy Protection Law and Amendment 13, you have the following rights:

• The right to review the personal information stored about you.
• The right to request correction of incorrect, incomplete, or outdated information.
• The right to request deletion of personal information (“the right to be forgotten”), subject to legal limitations.
• The right to object to the use of information for direct

The right to restrict data processing.

To exercise your rights, you may contact in writing by email: hagit.ha@gmail.com

33. Information may be stored on cloud servers outside of Israel.
34. The Business Owner will ensure that such transfer of information complies with the provisions of the law, including the existence of appropriate protection mechanisms.

Children

35. The website is not intended for children under the age of 18, and the Business Owner does not knowingly collect personal information from them.

Enforcement and Oversight

36. The Business Owner continuously monitors its compliance with this policy. Privacy complaints will be handled promptly and in cooperation with the Privacy Protection Authority as required.

Changes to the Policy

37. The Business Owner is entitled to update the privacy policy from time to time. Material changes will be published on the website and communicated to users where necessary.

Contact

38. For questions or inquiries regarding this policy, please contact:

Data Protection Officer (Hagit Alon) — Email: haimrisr@gmail.com