Privacy Policy

Privacy Policy Overview

The Death Penalty Information Center (DPI) col­lects, uses and dis­clos­es sen­si­tive per­son­al infor­ma­tion only as nec­es­sary to main­tain DPI​’s Website and solic­it dona­tions to DPI. DPI does not sell per­son­al infor­ma­tion. DPI does not give per­mis­sion to oth­ers to obtain or share per­son­al infor­ma­tion of vis­i­tors to our web­site or donors to our orga­ni­za­tion. DPI does not track users to our web­site for pur­pos­es of on-line adver­tis­ing. DPI does not share per­son­al data with third par­ties for the third par­ties’ direct mar­ket­ing pur­pos­es. DPI does not know­ing­ly col­lect per­son­al­ly iden­ti­fi­able infor­ma­tion from any­one under the age of 16.

The DPI Website con­tains links to oth­er web­sites that are not oper­at­ed by DPI. If You click on a third-par­­ty link, you will be direct­ed to that site. DPI has no con­trol over and assumes no respon­si­bil­i­ty for the con­tent, pri­va­cy poli­cies or prac­tices of any third-par­­ty sites or services.

To sub­scribe to or to sub­mit an opt-out request for our Newsletter, please con­tact us at DPI@​deathpenaltyinfo.​org.

To sub­mit a request to lim­it use and dis­clo­sure of Your Personal Information, please con­tact Us at DPI@​deathpenaltyinfo.​org.

For California Residents, to exer­cise any of Your rights under the CCPA/​CPRA, con­tact DPI by email: DPI@​deathpenaltyinfo.​org. Only You, or a per­son reg­is­tered with the California Secretary of State that you autho­rize to act on Your behalf, may make a ver­i­fi­able request relat­ed to Your personal information.

Your request to DPI must:

• Provide suf­fi­cient infor­ma­tion that allows DPI to rea­son­ably ver­i­fy You are the per­son about whom DPI col­lect­ed Personal Information or Your authorized representative
• Describe Your request with suf­fi­cient detail that allows DPI to prop­er­ly under­stand, eval­u­ate, and respond to it

DPI will dis­close and deliv­er the required infor­ma­tion free of charge with­in 45 days of receiv­ing Your ver­i­fi­able request. The time peri­od to pro­vide the required infor­ma­tion may be extend­ed once by an addi­tion­al 45 days when rea­son­ably nec­es­sary and with prior notice.

Death Penalty Information Center Privacy Policy

Last updated: March 2026

This Privacy Policy describes DPI poli­cies and pro­ce­dures on the col­lec­tion, use, and dis­clo­sure of Your infor­ma­tion when You use the DPI Website and donate to DPI and tells You about Your pri­va­cy rights and how the law protects You.

We use Your Personal Data to improve the DPI Website and the user expe­ri­ence on the DPI Website. We track infor­ma­tion about donors to DPI to help sup­port our oper­a­tions and facil­i­tate dona­tion trans­ac­tions. By using the DPI Website You agree to the col­lec­tion and use of infor­ma­tion in accor­dance with this Privacy Policy.

A. Interpretation and Definitions

Interpretation: The words whose ini­tial let­ters are cap­i­tal­ized have mean­ings defined under the fol­low­ing con­di­tions. The fol­low­ing def­i­n­i­tions shall have the same mean­ing regard­less of whether they appear in sin­gu­lar or in plural.

Definitions: For the pur­pos­es of this Privacy Policy:

Business, for the pur­pose of CCPA/​CPRA (see sec­tion below on CCPA/​CPRA Privacy Notice (California Privacy Rights)), refers to the Organization as the legal enti­ty that col­lects Consumers’ per­son­al infor­ma­tion and deter­mines the pur­pos­es and means of the pro­cess­ing of Consumers’ per­son­al infor­ma­tion, or on behalf of which such infor­ma­tion is col­lect­ed and that alone, or joint­ly with oth­ers, deter­mines the pur­pos­es and means of the pro­cess­ing of con­sumers’ per­son­al infor­ma­tion, that does busi­ness in the State of California.

CCPA and/​or CPRA refers to the California Consumer Privacy Act (the ​“CCPA”) as amend­ed by the California Privacy Rights Act of 2020 (the ​“CPRA”).

Consumer, for the pur­pose of the CCPA/​CPRA, means a nat­ur­al per­son who is a California res­i­dent. A res­i­dent, as defined in the law, includes (1) every indi­vid­ual who is in the USA for oth­er than a tem­po­rary or tran­si­to­ry pur­pose, and (2) every indi­vid­ual who is domi­ciled in the USA who is out­side the USA for a tem­po­rary or transitory purpose.

Cookies are small files that are placed on Your com­put­er, mobile device or any oth­er device by a web­site, con­tain­ing the details of Your brows­ing his­to­ry on that web­site among its many uses.

Country refers to the United States.

Device means any device that can access the DPI Website such as a com­put­er, a cell phone or a digital tablet.

Do Not Track (DNT) is a con­cept that has been pro­mot­ed by US reg­u­la­to­ry author­i­ties, in par­tic­u­lar the U.S. Federal Trade Commission (FTC), for the Internet indus­try to devel­op and imple­ment a mech­a­nism for allow­ing inter­net users to con­trol the track­ing of their online activ­i­ties across websites.

Organization (referred to as either ​“the Organization” or ​“DPI in this Privacy Policy) refers to the Death Penalty Information Center (DPI), 1701 K Street NW, Washington, DC 20006.

Personal Data (or ​“Personal Information”) is any infor­ma­tion that relates to an iden­ti­fied or identifiable individual.

For the pur­pos­es of the CCPA/​CPRA, Personal Data means any infor­ma­tion that iden­ti­fies, relates to, describes or is capa­ble of being asso­ci­at­ed with, or could rea­son­ably be linked, direct­ly or indi­rect­ly, with You.

We use ​“Personal Data” and ​“Personal Information” inter­change­ably unless a law uses a specific term.

DPI Website refers to the Death Penalty Information Website, acces­si­ble at: https://​death​penal​ty​in​fo​.org/.

Service Provider means any nat­ur­al or legal per­son who process­es the data on behalf of the Organization. It refers to third-par­­ty com­pa­nies or indi­vid­u­als employed by DPI to facil­i­tate the DPI Website, to per­form ser­vices relat­ed to the DPI Website or to assist the Organization in ana­lyz­ing how the DPI Website is used.

Usage Data refers to data col­lect­ed auto­mat­i­cal­ly, either gen­er­at­ed by the use of the DPI Website or from the DPI Website infra­struc­ture itself (for exam­ple, the dura­tion of a page visit).

Website refers to Death Penalty Information Center, acces­si­ble from http://​death​penal​ty​in​fo​.org.

You, Your refers to the indi­vid­ual access­ing or using the DPI Website, or the com­pa­ny, or oth­er legal enti­ty on behalf of which such indi­vid­ual is access­ing or using the DPI Website, as applicable.

B. Collecting and Using Your Personal Data

1. Types of Data Collected

a. Personal Data

While using the DPI Website or when mak­ing a dona­tion to DPI, You may be asked to pro­vide DPI with cer­tain per­son­al­ly iden­ti­fi­able infor­ma­tion that can be used to con­tact or iden­ti­fy You. Personally iden­ti­fi­able infor­ma­tion may include, but is not limited to:

• Email address
• First name and last name
• Address, State, Province, ZIP/​Postal code, City

To process dona­tions, DPI works only with PCI-DSS com­pli­ant pay­ment proces­sors that use tok­eniza­tion to pro­tect sensitive data. 

b. Usage Data

Usage Data is col­lect­ed auto­mat­i­cal­ly when using the DPI Website.

Usage Data may include infor­ma­tion such as Your Device’s Internet Protocol address (e.g. IP address), brows­er type, brows­er ver­sion, the pages of the DPI Website that You vis­it, the time and date of Your vis­it, the time spent on those pages, unique device iden­ti­fiers and oth­er diagnostic data.

When You access the DPI Website by or through a mobile device, DPI may col­lect cer­tain infor­ma­tion auto­mat­i­cal­ly, includ­ing, but not lim­it­ed to, the type of mobile device You use, Your mobile device’s unique ID, the IP address of Your mobile device, Your mobile oper­at­ing sys­tem, the type of mobile Internet brows­er You use, unique device iden­ti­fiers and oth­er diagnostic data.

We may also col­lect infor­ma­tion that Your brows­er sends when­ev­er You vis­it the DPI Website or when You access the DPI Website by or through a mobile device.

c. Tracking Technologies and Cookies

We use Cookies and sim­i­lar track­ing tech­nolo­gies (such as bea­cons, tags, and scripts) to col­lect and track infor­ma­tion and to improve the user expe­ri­ence and ana­lyze activ­i­ty on the DPI Website. The tech­nolo­gies DPI uses may include:

• Cookies or Browser Cookies. A Cookie is a small file placed on Your Device. You can instruct Your brows­er to refuse all Cookies or to indi­cate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of the DPI Website.

Cookies can be ​“Persistent” or ​“Session” Cookies. Persistent Cookies remain on Your per­son­al com­put­er or mobile device when You go offline, while Session Cookies are delet­ed as soon as You close Your web brows­er. DPI uses only Session Cookies.

We use Session Cookies for the pur­pos­es set out below:

• Necessary /​Essential Cookies

Administered by: DPI

Purpose: Session Cookies are essen­tial to pro­vide You with ser­vices avail­able through the DPI Website and to enable You to use some of its fea­tures. They help to authen­ti­cate users and pre­vent fraud­u­lent use of user accounts. Without these Cookies, the ser­vices that You have asked for can­not be pro­vid­ed, and We only use these Cookies to pro­vide You with those services.

2. Use of Your Personal Data

DPI may use Personal Data for the following purposes:

• To main­tain the DPI Website, includ­ing to mon­i­tor the usage of ther DPI Website.
• To con­tact You: To con­tact You by email, tele­phone calls, SMS, or oth­er equiv­a­lent forms of elec­tron­ic com­mu­ni­ca­tion, such as a mobile application’s push notifications.
• To pro­vide You with news and gen­er­al infor­ma­tion about the focus of DPI​’s work, unless You have opt­ed not to receive such information.
• To man­age Your requests: To attend and man­age Your requests to DPI.
• For busi­ness trans­fers: We may use Your Personal Data to eval­u­ate or con­duct a merg­er, divesti­ture, restruc­tur­ing, reor­ga­ni­za­tion, dis­so­lu­tion, or oth­er sale or trans­fer of some or all of DPI assets, whether as a going con­cern or as part of bank­rupt­cy, liq­ui­da­tion, or sim­i­lar pro­ceed­ing, in which Personal Data held by DPI about the DPI Website users is among the assets transferred.
• For oth­er pur­pos­es: We may use Your infor­ma­tion for oth­er pur­pos­es, such as data analy­sis, iden­ti­fy­ing usage trends, deter­min­ing the effec­tive­ness of our pro­mo­tion­al cam­paigns and to eval­u­ate and improve our DPI Website and Your expe­ri­ence on DPI​’s Website.

We may share Your Personal Data in the following situations:

• With Service Providers: We may share Your Personal Data with Service Providers to mon­i­tor and ana­lyze the use of our DPI Website, or to con­tact You, or enhance the DPI website experience.
• For busi­ness trans­fers: We may share or trans­fer Your Personal Data in con­nec­tion with, or dur­ing nego­ti­a­tions of, any merg­er, sale of DPI assets, financ­ing, or acqui­si­tion of all or a por­tion of DPI busi­ness to anoth­er com­pa­ny, in which Personal Data held by DPI about our DPI Website users is among the assets transferred.
• With Your con­sent: We may dis­close Your Personal Data for any oth­er pur­pose with Your consent.

3. Retention of Your Personal Data

The Organization will retain Your Personal Data only for as long as is nec­es­sary for the pur­pos­es set out in this Privacy Policy. We will retain and use Your Personal Data to the extent nec­es­sary to com­ply with our legal oblig­a­tions (for exam­ple, if DPI is required to retain Your data to com­ply with applic­a­ble laws), resolve dis­putes, and enforce our legal agree­ments and policies.

Where pos­si­ble, DPI applies short­er reten­tion peri­ods and/​or reduce iden­ti­fi­a­bil­i­ty by delet­ing, aggre­gat­ing, or anonymiz­ing data. Unless oth­er­wise stat­ed, the reten­tion peri­ods below are max­i­mum peri­ods (“up to”) and DPI may delete or anonymize data soon­er when it is no longer need­ed for the rel­e­vant pur­pose. We apply dif­fer­ent reten­tion peri­ods to dif­fer­ent cat­e­gories of Personal Data based on the pur­pose of pro­cess­ing and legal obligations:

• Customer Support Data: Support tick­ets and cor­re­spon­dence are retained up to 24 months from the date of tick­et clo­sure to resolve fol­low-up inquiries, track DPI Website qual­i­ty, and defend against poten­tial legal claims.
• Usage Data: Website ana­lyt­ics data (cook­ies, IP address­es, device iden­ti­fiers) are retained up to 24 months from the date of col­lec­tion, which allows us to ana­lyze trends while respect­ing pri­va­cy prin­ci­ples. Server logs (IP address­es, access times) are retained up to 24 months for secu­ri­ty mon­i­tor­ing and trou­bleshoot­ing pur­pos­es. Usage Data may be retained longer only where nec­es­sary for secu­ri­ty, fraud pre­ven­tion, or legal compliance.
• Marketing/​Newsletter Subscription Data is retained until you unsub­scribe or up to 24 months from your last engage­ment (last email opened or clicked), whichev­er comes first.

We may retain Personal Data beyond the peri­ods stat­ed above for different reasons:

• Legal oblig­a­tion: We are required by law to retain spe­cif­ic data (e.g., finan­cial records for tax authorities).
• Legal claims: Data is nec­es­sary to estab­lish, exer­cise, or defend legal claims.
• Your explic­it request: You ask Us to retain specific information.
• Technical lim­i­ta­tions: Data exists in back­up sys­tems that are sched­uled for routine deletion.

You may request infor­ma­tion about how long DPI will retain Your Personal Data by con­tact­ing DPI at DPI@​deathpenaltyinfo.​org.

When reten­tion peri­ods expire, DPI secure­ly deletes or anonymizes Personal Data accord­ing to the following procedures:

• Deletion: Personal Data is removed from DPI sys­tems and no longer actively processed.
• Backup reten­tion: Residual copies may remain in encrypt­ed back­ups for a lim­it­ed peri­od con­sis­tent with our back­up reten­tion sched­ule and are not restored except where nec­es­sary for secu­ri­ty, dis­as­ter recov­ery, or legal compliance.
• Anonymization: In some cas­es, DPI con­verts Personal Data into anony­mous sta­tis­ti­cal data that can­not be linked back to You. This anonymized data may be retained indef­i­nite­ly for research and analytics.

4. Transfer of Your Personal Data

Your infor­ma­tion, includ­ing Personal Data, is processed at the Organization’s oper­at­ing offices and in any oth­er places where the par­ties involved in the pro­cess­ing are locat­ed. It means that this infor­ma­tion may be trans­ferred to — and main­tained on — com­put­ers locat­ed out­side of Your state, province, coun­try or oth­er gov­ern­men­tal juris­dic­tion where the data pro­tec­tion laws may dif­fer from those from Your jurisdiction.

Where required by applic­a­ble law, DPI will ensure that inter­na­tion­al trans­fers of Your Personal Data are sub­ject to appro­pri­ate safe­guards and sup­ple­men­tary mea­sures where appro­pri­ate. The Organization will take all steps rea­son­ably nec­es­sary to ensure that Your data is treat­ed secure­ly and in accor­dance with this Privacy Policy and no trans­fer of Your Personal Data will take place to an orga­ni­za­tion or a coun­try unless there are ade­quate con­trols in place includ­ing the secu­ri­ty of Your data and oth­er personal information.

5. Deleting Your Personal Data

You have the right to delete or request that DPI assist in delet­ing the Personal Data that it has col­lect­ed about You.

You may update, amend, or delete Your infor­ma­tion at any time by con­tact­ing DPI by email at DPI@​deathpenaltyinfo.​org to request access to, cor­rect, or delete any Personal Data that You have pro­vid­ed to DPI.

Please note, how­ev­er, that DPI may need to retain cer­tain infor­ma­tion when we have a legal oblig­a­tion or law­ful basis to do so.

6. Disclosure of Your Personal Data

Business Transactions: If the Organization is involved in a merg­er, acqui­si­tion or asset sale, Your Personal Data may be trans­ferred. We will pro­vide notice before Your Personal Data is trans­ferred and becomes sub­ject to a dif­fer­ent Privacy Policy.

Law enforce­ment: DPI may dis­close Your Personal Data to law enforce­ment only if required to do so by a valid court order or other law. 

Other legal require­ments: DPI may dis­close Your Personal Data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or prop­er­ty of the Organization
• Prevent or inves­ti­gate pos­si­ble wrong­do­ing in con­nec­tion with the DPI Website
• Protect the per­son­al safe­ty of Users of the DPI Website or the public
• Protect against legal liability

7. Security of Your Personal Data

No method of trans­mis­sion over the Internet or method of elec­tron­ic stor­age is 100% secure. While DPI strives to use com­mer­cial­ly rea­son­able means to pro­tect Your Personal Data, DPI can­not guar­an­tee its absolute security.

8. Detailed Information on the Processing of Your Personal Data

The Service Providers DPI uses may have access to Your Personal Data. These third-par­­ty ven­dors col­lect, store, use, process and trans­fer infor­ma­tion about Your activ­i­ty on the DPI Website in accor­dance with their Privacy Policies.

9. Email Marketing

We may use Your Personal Data to con­tact You with newslet­ters, fundrais­ing, or pro­mo­tion­al mate­ri­als, and oth­er infor­ma­tion that may be of inter­est to You. You may opt-out of receiv­ing any, or all, of these com­mu­ni­ca­tions by con­tact­ing DPI at DPI@​deathpenaltyinfo.​org.

CCPA/​CPRA Privacy Notice (California Privacy Rights)

This pri­va­cy notice sec­tion for California res­i­dents sup­ple­ments the infor­ma­tion con­tained in DPI​’s Privacy Policy and it applies sole­ly to all vis­i­tors, users, and oth­ers who reside in the State of California.

A. Categories of Personal Information Collected

DPI col­lects infor­ma­tion that iden­ti­fies, relates to, describes, ref­er­ences, is capa­ble of being asso­ci­at­ed with, or could rea­son­ably be linked, direct­ly or indi­rect­ly, with You or Your Device. The fol­low­ing is a list of cat­e­gories of per­son­al infor­ma­tion which DPI may col­lect or may have been col­lect­ed from California res­i­dents with­in the last twelve (12) months.

Please note that the cat­e­gories and exam­ples pro­vid­ed in the list below are those defined in the CCPA/​CPRA. This does not mean that all exam­ples of that cat­e­go­ry of per­son­al infor­ma­tion were in fact col­lect­ed by DPI, but reflects DPI​’s good faith belief to the best of DPI​’s knowl­edge that some of that infor­ma­tion from the applic­a­ble cat­e­go­ry may be and may have been col­lect­ed. For exam­ple, cer­tain cat­e­gories of Personal Information would only be col­lect­ed if You pro­vid­ed such per­son­al infor­ma­tion direct­ly to DPI.

Category A: Identifiers.

Examples: A real name, alias, postal address, unique per­son­al iden­ti­fi­er, online iden­ti­fi­er, inter­net pro­to­col address, email address, account name, driver’s license num­ber, pass­port num­ber, or oth­er similar identifiers.

Collected: Yes.

Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).

Examples: A name, sig­na­ture, phys­i­cal char­ac­ter­is­tics or descrip­tion, address, tele­phone num­ber, pass­port num­ber, driver’s license or state iden­ti­fi­ca­tion card num­ber, insur­ance pol­i­cy num­ber, edu­ca­tion, employ­ment, employ­ment his­to­ry, bank account num­ber, cred­it card num­ber, deb­it card num­ber, or any oth­er finan­cial infor­ma­tion, med­ical infor­ma­tion, or health insurance information.

Some per­son­al infor­ma­tion includ­ed in this cat­e­go­ry may over­lap with other categories.

Collected: Yes.

Category C: Protected classification characteristics under California or federal law.

Examples: Age (40 years or old­er), race, col­or, ances­try, nation­al ori­gin, cit­i­zen­ship, reli­gion or creed, mar­i­tal sta­tus, med­ical con­di­tion, phys­i­cal or men­tal dis­abil­i­ty, sex (includ­ing gen­der, gen­der iden­ti­ty, gen­der expres­sion, preg­nan­cy or child­birth and relat­ed med­ical con­di­tions), sex­u­al ori­en­ta­tion, vet­er­an or mil­i­tary sta­tus, genet­ic infor­ma­tion (includ­ing famil­ial genetic information).

Collected: No.

Category D: Commercial information.

Examples: Records of per­son­al prop­er­ty, prod­ucts or ser­vices pur­chased, obtained, or con­sid­ered, or oth­er pur­chas­ing or con­sum­ing his­to­ries or tendencies.

Collected: No.

Category E: Biometric information.

Examples: Genetic, phys­i­o­log­i­cal, behav­ioral, and bio­log­i­cal char­ac­ter­is­tics, or activ­i­ty pat­terns used to extract a tem­plate or oth­er iden­ti­fi­er or iden­ti­fy­ing infor­ma­tion, such as, fin­ger­prints, faceprints, and voice­prints, iris or reti­na scans, key­stroke, gait, or oth­er phys­i­cal pat­terns, and sleep, health, or exercise data.

Collected: No.

Category F: Internet or other similar network activity.

Examples: Browsing his­to­ry, search his­to­ry, infor­ma­tion on a consumer’s inter­ac­tion with a web­site, appli­ca­tion, or advertisement.

Collected: Yes.

Category G: Geolocation data.

Examples: Approximate phys­i­cal loca­tion, phys­i­cal loca­tion or movements.

Collected: Yes.

Category H: Sensory data.

Examples: Audio, elec­tron­ic, visu­al, ther­mal, olfac­to­ry, or similar information.

Collected: No.

Category I: Professional or employment-related information.

Examples: Current or past job his­to­ry or performance evaluations.

Collected: Yes, for job and intern applicants. 

Category J: Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).

Examples: edu­ca­tion records direct­ly relat­ed to a stu­dent main­tained by an edu­ca­tion­al insti­tu­tion or par­ty act­ing on its behalf, such as grades, tran­scripts, class lists, stu­dent sched­ules, stu­dent iden­ti­fi­ca­tion codes, stu­dent finan­cial infor­ma­tion, or stu­dent disciplinary records.

Collected: Yes, for job and intern applicants.

Category K: Inferences drawn from other personal information.

Examples: Profile reflect­ing a person’s pref­er­ences, char­ac­ter­is­tics, psy­cho­log­i­cal trends, pre­dis­po­si­tions, behav­ior, atti­tudes, intel­li­gence, abil­i­ties, and aptitudes.

Collected: No.

Category L: Sensitive personal information.

Examples: Government-issued iden­ti­fy­ing num­bers, finan­cial account details, genet­ic data, pre­cise geolo­ca­tion, race or eth­nic­i­ty, reli­gious or philo­soph­i­cal beliefs, union mem­ber­ship, mail, email, text mes­sages, bio­met­ric data, health data, and sex­u­al ori­en­ta­tion or sex life.

Collected: Yes, only with respect to email infor­ma­tion or finan­cial infor­ma­tion if dona­tions to DPI are made.

Under CCPA/​CPRA, Personal Information does not include:

• Publicly avail­able infor­ma­tion from government records
• Deidentified or aggre­gat­ed consumer information
• Information exclud­ed from the CCPA/​CPRA​’s scope, such as:
• Health or med­ical infor­ma­tion cov­ered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clin­i­cal trial data
• Personal Information cov­ered by cer­tain sec­­tor-spe­­cif­ic pri­va­cy laws, includ­ing the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994

B. Sources of Personal Information

We obtain the cat­e­gories of per­son­al infor­ma­tion list­ed above from the fol­low­ing cat­e­gories of sources:

• Directly from You. For exam­ple, from the forms You com­plete on the DPI Website, pref­er­ences You express or pro­vide through the DPI Website.
• Indirectly from You. For exam­ple, from observ­ing Your activ­i­ty on the DPI Website.
• Automatically from You. For exam­ple, through Cookies DPI or our Service Providers set on Your Device as You nav­i­gate through the DPI Website.
• From Service Providers. For exam­ple, or oth­er third-par­­ty ven­dors that DPI uses to pro­vide the DPI Website to You.

C. Use of Personal Information

We may use or dis­close Personal Information DPI collects for ​“busi­ness pur­pos­es” or ​“com­mer­cial pur­pos­es” (as defined under the CCPA/​CPRA), which may include the following examples:

• To oper­ate the DPI Website and make it avail­able to You.
• To pro­vide You with sup­port and to respond to Your inquiries, includ­ing to inves­ti­gate and address Your con­cerns and mon­i­tor and improve the DPI Website.
• To ful­fill or meet the rea­son You pro­vid­ed the infor­ma­tion. For exam­ple, if You share Your con­tact infor­ma­tion to ask a ques­tion about the DPI Website, DPI will use that per­son­al infor­ma­tion to respond to Your inquiry.
• To respond to law enforce­ment requests as required by applic­a­ble law, court order, or governmental regulations.
• As described to You when col­lect­ing Your per­son­al infor­ma­tion or as oth­er­wise set forth in the CCPA/​CPRA.
• For inter­nal admin­is­tra­tive and auditing purposes.
• To detect secu­ri­ty inci­dents and pro­tect against mali­cious, decep­tive, fraud­u­lent or ille­gal activ­i­ty, includ­ing, when nec­es­sary, to pros­e­cute those respon­si­ble for such activities.
• Other pur­pos­es con­sis­tent with the con­text in which the infor­ma­tion was col­lect­ed, or as oth­er­wise dis­closed to You at the time of collection.

Please note that the exam­ples pro­vid­ed above are illus­tra­tive and not intend­ed to be exhaus­tive. For more details on how we use this infor­ma­tion, please refer to the ​“Use of Your Personal Information” section.

If DPI decides to col­lect addi­tion­al cat­e­gories of per­son­al infor­ma­tion or use the per­son­al infor­ma­tion DPI col­lect­ed for mate­ri­al­ly dif­fer­ent, unre­lat­ed, or incom­pat­i­ble pur­pos­es, DPI will update this Privacy Policy.

D. Disclosure of Personal Information

We may use or dis­close and may have used or dis­closed in the last twelve (12) months the fol­low­ing cat­e­gories of per­son­al infor­ma­tion for busi­ness or commercial purposes:

• Category A: Identifiers
• Category B: Personal infor­ma­tion cat­e­gories list­ed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
• Category F: Internet or oth­er sim­i­lar network activity

Please note that the cat­e­gories list­ed above are those defined in the CCPA/​CPRA. This does not mean that all exam­ples of that cat­e­go­ry of per­son­al infor­ma­tion were in fact dis­closed, but it reflects our good faith belief to the best of our knowl­edge that some of that infor­ma­tion from the applic­a­ble cat­e­go­ry may be and may have been disclosed.

When DPI dis­clos­es Personal Information for a busi­ness pur­pose or a com­mer­cial pur­pose, DPI enters into a con­tract that describes the pur­pose and requires the recip­i­ent to both keep that Personal Information con­fi­den­tial and not use it for any pur­pose except per­form­ing the contract.

E. Sharing of Personal Information

We may share, and have shared in the last twelve (12) months, Your Personal Information iden­ti­fied in the above cat­e­gories with the fol­low­ing cat­e­gories of third parties:

• Service Providers
• Third-par­­ty ven­dors to whom You or Your agents autho­rize DPI to dis­close Your per­son­al infor­ma­tion in con­nec­tion with prod­ucts or ser­vices DPI pro­vides to You.

F. Sale of Personal Information

As defined in the CCPA/​CPRA, ​“sell” and ​“sale” mean sell­ing, rent­ing, releas­ing, dis­clos­ing, dis­sem­i­nat­ing, mak­ing avail­able, trans­fer­ring, or oth­er­wise com­mu­ni­cat­ing oral­ly, in writ­ing, or by elec­tron­ic or oth­er means, a Consumer’s per­son­al infor­ma­tion by the Business to a third par­ty for valu­able con­sid­er­a­tion. This means that DPI may have received some kind of ben­e­fit in return for shar­ing per­son­al infor­ma­tion, but not nec­es­sar­i­ly a monetary benefit.

To the best of DPI​’s knowl­edge, DPI does not ​“sell” or ​“share” infor­ma­tion as most peo­ple would com­mon­ly under­stand these terms – mean­ing DPI does not, and will not, dis­close Your Personal Information in direct exchange for mon­ey or some oth­er form of payment.

G. Retention of Personal Information

We retain California res­i­dents’ Personal Information for as long as rea­son­ably nec­es­sary to achieve the pur­pos­es described in this Privacy Policy (includ­ing the pur­pos­es dis­closed in this CCPA/​CPRA notice), tak­ing into account: (i) how long we need the infor­ma­tion to pro­vide and main­tain the DPI Website and don­a­­tion-relat­ed activ­i­ties; (ii) whether You have request­ed dele­tion (sub­ject to applic­a­ble excep­tions); (iii) DPI​’s legal, tax, account­ing, and reg­u­la­to­ry oblig­a­tions; (iv) secu­ri­ty, fraud pre­ven­tion, and abuse mon­i­tor­ing needs; and (v) the time peri­ods need­ed to resolve dis­putes and enforce DPI​’s agree­ments.

Specific reten­tion peri­ods for major data cat­e­gories are described in the ​“Retention of Your Personal Information” sec­tion of DPI​’s Privacy Policy, and DPI may retain cer­tain infor­ma­tion longer where required or per­mit­ted by law (for exam­ple, to com­ply with record­keep­ing oblig­a­tions or to estab­lish, exer­cise, or defend legal claims).

H. Sale of Personal Information of Minors Under 16 Years of Age

DPI does not know­ing­ly col­lect per­son­al infor­ma­tion from minors under the age of 16 through the DPI Website, although cer­tain third-par­­ty web­sites that it links to may do so. These third-par­­ty web­sites have their own terms of use and privacy policies. 

We do not sell the Personal Information of Consumers, includ­ing those who are less than 16 years of age. 

I. Your Rights under the CCPA/​CPRA

The CCPA/​CPRA pro­vides California res­i­dents with spe­cif­ic rights regard­ing their per­son­al infor­ma­tion. If You are a res­i­dent of California, You have the following rights:

• The right to notice. You have the right to be noti­fied which cat­e­gories of Personal Information are being col­lect­ed and the pur­pos­es for which the Personal Information is being used.
• The right to know/​access. Under CCPA/​CPRA, You have the right to request that DPI dis­clos­es infor­ma­tion to You about DPI​’s col­lec­tion, use, sale, dis­clo­sure for busi­ness pur­pos­es and shar­ing of per­son­al infor­ma­tion. Once DPI receives and con­firms Your request, DPI will dis­close to You:
  • The cat­e­gories of per­son­al infor­ma­tion DPI col­lect­ed about You
  • The cat­e­gories of sources for the per­son­al infor­ma­tion DPI col­lect­ed about You
  • Our busi­ness pur­pos­es for col­lect­ing that personal information
  • The cat­e­gories of third par­ties with whom DPI shares that personal information
  • The spe­cif­ic pieces of per­son­al infor­ma­tion DPI col­lect­ed about You\
• The right to say no to the sale or shar­ing of Personal Information (opt-out). You have the right to direct DPI to not sell Your per­son­al infor­ma­tion. To sub­mit an opt-out request, please see the ​“Do Not Sell or Share My Personal Information” sec­tion or con­tact DPI at: DPI@​deathpenaltyinfo.​org.
• The right to cor­rect Personal Information. You have the right to cor­rect or rec­ti­fy any inac­cu­rate per­son­al infor­ma­tion about You that DPI col­lect­ed. Once DPI receives and con­firms Your request, DPI will use com­mer­cial­ly rea­son­able efforts to cor­rect (and direct our Service Providers to cor­rect) Your per­son­al infor­ma­tion, unless an exception applies.
• The right to delete Personal Information. You have the right to request the dele­tion of Your Personal Information under cer­tain cir­cum­stances, sub­ject to cer­tain excep­tions. Once DPI receives and con­firms Your request, DPI will delete (and direct Our Service Providers to delete) Your per­son­al infor­ma­tion from DPI​’s records, unless an excep­tion applies. We may deny Your dele­tion request if retain­ing the infor­ma­tion is nec­es­sary for DPI or DPI​’s Service Providers to:
• Complete the trans­ac­tion for which DPI col­lect­ed the per­son­al infor­ma­tion, pro­vide a good or ser­vice that You request­ed, take actions rea­son­ably antic­i­pat­ed with­in the con­text of our ongo­ing busi­ness rela­tion­ship with You, or oth­er­wise per­form our con­tract with You.
  • Detect secu­ri­ty inci­dents, pro­tect against mali­cious, decep­tive, fraud­u­lent, or ille­gal activ­i­ty, or pros­e­cute those respon­si­ble for such activities.
  • Debug prod­ucts to iden­ti­fy and repair errors that impair exist­ing intended functionality.
  • Exercise free speech, ensure the right of anoth­er con­sumer to exer­cise their free speech rights, or exer­cise anoth­er right pro­vid­ed for by law.
  • Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
  • Engage in pub­lic or peer-reviewed sci­en­tif­ic, his­tor­i­cal, or sta­tis­ti­cal research in the pub­lic inter­est that adheres to all oth­er applic­a­ble ethics and pri­va­cy laws, when the information’s dele­tion may like­ly ren­der impos­si­ble or seri­ous­ly impair the research’s achieve­ment, if You pre­vi­ous­ly pro­vid­ed informed consent.
  • Enable sole­ly inter­nal uses that are rea­son­ably aligned with con­sumer expec­ta­tions based on Your rela­tion­ship with Us.
  • Comply with a legal obligation.
  • Make oth­er inter­nal and law­ful uses of that infor­ma­tion that are com­pat­i­ble with the con­text in which You provided it.
  • The right not to be dis­crim­i­nat­ed against. You have the right not to be dis­crim­i­nat­ed against for exer­cis­ing any of Your consumer’s rights, including by:
  • Denying goods or ser­vices to You;
  • Charging dif­fer­ent prices or rates for goods or ser­vices, includ­ing the use of dis­counts or oth­er ben­e­fits or imposing penalties;
  • Providing a dif­fer­ent lev­el or qual­i­ty of goods or ser­vices to You; or
  • Suggesting that You will receive a dif­fer­ent price or rate for goods or ser­vices or a dif­fer­ent lev­el or qual­i­ty of goods or services

J. Exercising Your CCPA/​CPRA Data Protection Rights

Please see the ​“Do Not Sell or Share My Personal Information” section and ​“Limit the Use or Disclosure of My Sensitive Personal Information” sec­tion for more infor­ma­tion on how to opt out and lim­it the use of sen­si­tive information collected.

Additionally, in order to exer­cise any of Your rights under the CCPA/​CPRA, and if You are a California res­i­dent, You can con­tact DPIs by email: DPI@​deathpenaltyinfo.​org

Only You, or a per­son reg­is­tered with the California Secretary of State that You autho­rize to act on Your behalf, may make a ver­i­fi­able request relat­ed to Your personal information.

Your request to DPI must:

• Provide suf­fi­cient infor­ma­tion that allows DPI to rea­son­ably ver­i­fy You are the per­son about whom DPI col­lect­ed Personal Information or an autho­rized rep­re­sen­ta­tive; and
• Describe Your request with suf­fi­cient detail that allows DPI to prop­er­ly under­stand, eval­u­ate, and respond to it.

DPI can­not respond to Your request or pro­vide You with the required infor­ma­tion if DPI can­not ver­i­fy Your iden­ti­ty or author­i­ty to make the request, and con­firm that the per­son­al infor­ma­tion relates to You.

DPI will dis­close and deliv­er the required infor­ma­tion free of charge with­in 45 days of receiv­ing Your ver­i­fi­able request. The time peri­od to pro­vide the required infor­ma­tion may be extend­ed once by an addi­tion­al 45 days when rea­son­ably nec­es­sary and with prior notice.

Any dis­clo­sures DPI pro­vides will only cov­er the 12-month peri­od pre­ced­ing the ver­i­fi­able request’s receipt.

For data porta­bil­i­ty requests, DPI will select a for­mat to pro­vide Your per­son­al infor­ma­tion that is read­i­ly usable and should allow You to trans­mit the infor­ma­tion from one enti­ty to anoth­er enti­ty without hindrance.

K. Do Not Sell or Share My Personal Information

As defined in the CCPA/​CPRA, ​“sell” and ​“sale” mean sell­ing, rent­ing, releas­ing, dis­clos­ing, dis­sem­i­nat­ing, mak­ing avail­able, trans­fer­ring, or oth­er­wise com­mu­ni­cat­ing oral­ly, in writ­ing, or by elec­tron­ic or oth­er means, a Consumer’s per­son­al infor­ma­tion by the Business to a third par­ty for valu­able con­sid­er­a­tion. We do not sell Your per­son­al infor­ma­tion. Subscribers to our newslet­ter and donors to our web­site are auto­mat­i­cal­ly opt­ed out of the sale of their personal information.

L. Limit the Use or Disclosure of My Sensitive Personal Information

If You are a California res­i­dent, You have the right to lim­it the use and dis­clo­sure of Your sen­si­tive per­son­al infor­ma­tion to that use which is nec­es­sary to per­form the ser­vices or pro­vide the goods rea­son­ably expect­ed by an aver­age con­sumer who requests such ser­vices or goods.

DPI col­lects, uses, and dis­clos­es per­son­al infor­ma­tion in ways that are nec­es­sary to main­tain the DPI Website and solic­it dona­tions. To process dona­tions, DPI works only with PCI-DSS com­pli­ant pay­ment proces­sors that use tok­eniza­tion to pro­tect sen­si­tive data. For more infor­ma­tion on how DPI uses Your per­son­al infor­ma­tion, please see the ​“Use of Your Personal Information” sec­tion or con­tact DPI by email at DPI@​deathpenaltyinfo.​org.

To sub­mit a request to lim­it the use or dis­clo­sure of sen­si­tive per­son­al infor­ma­tion, please con­tact DPI using the meth­ods list­ed in the ​“Contact Us” sec­tion of Our Privacy Policy.

M. ​“Do Not Track” Policy as Required by California Online Privacy Protection Act (CalOPPA)

Our DPI Website does not respond to Do Not Track sig­nals. DPI does not track users to its web­site for pur­pos­es of on-line advertising.

However, some third-par­­ty web­sites do keep track of Your brows­ing activ­i­ties. If You are vis­it­ing such web­sites, You can set Your pref­er­ences in Your web brows­er to inform web­sites that You do not want to be tracked. You can enable or dis­able DNT by vis­it­ing the pref­er­ences or set­tings page of Your web browser.

N. Your California Privacy Rights (California’s Shine the Light law)

Under California Civil Code Section 1798 (California’s Shine the Light law), California res­i­dents with an estab­lished busi­ness rela­tion­ship with an orga­ni­za­tion can request infor­ma­tion once a year about shar­ing their Personal Information with third par­ties for the third par­ties’ direct mar­ket­ing pur­pos­es. DPI does not share Personal Information with third par­ties for third par­ties’ direct marketing purposes.

If you’d like to request more infor­ma­tion under the California Shine the Light law, and if You are a California res­i­dent, You can con­tact DPI using the con­tact infor­ma­tion provided below.

O. California Privacy Rights for Minor Users (California Business and Professions Code Section 22581)

California Business and Professions Code Section 22581 allows California res­i­dents under the age of 18 who are reg­is­tered users of online sites, ser­vices or appli­ca­tions to request and obtain removal of con­tent or infor­ma­tion they have pub­licly post­ed. DPI does not allow for any third-par­­ty to pub­licly post on DPI​’s Website.

P. Children’s Privacy

The DPI Website does not address any­one under the age of 16. We do not know­ing­ly col­lect per­son­al­ly iden­ti­fi­able infor­ma­tion from any­one under the age of 16. .

Q. Links to Other Websites

Our DPI Website con­tains links to oth­er web­sites that are not oper­at­ed by DPI. If You click on a third-par­­ty link, You will be direct­ed to that third-party’s site. You are strong­ly advised to review the Privacy Policy of every site You visit.

We have no con­trol over and assume no respon­si­bil­i­ty for the con­tent, pri­va­cy poli­cies or prac­tices of any third-par­­ty sites or services.

R. Changes to this Privacy Policy

We may update DPI​’s Privacy Policy from time to time. We will noti­fy You of any changes by post­ing the new Privacy Policy on our Privacy Policy page.

DPI will let You know via email and/​or by post­ing a promi­nent notice on the DPI Website, pri­or to the change becom­ing effec­tive and update the ​“Last updat­ed” date at the top of this Privacy Policy.

You are advised to review this Privacy Policy peri­od­i­cal­ly for any changes. Changes to this Privacy Policy are effec­tive when they are post­ed on our Privacy Policy page.

S. Contact Us

If you have any ques­tions about this Privacy Policy, You can con­tact us by email at: DPI@​deathpenaltyinfo.​org.