CALIFORNIA YOUTH & ARTS (referred to herein as “CY&A,” “we,” “us,” or “our”) is a non-profit organization deeply committed to fostering creativity, self-expression, and artistic exploration in young individuals across the Central Valley. Our mission, centered at our facility at 2701 MITCHELL ROAD SUITE A, CERES, CA 95307, involves providing high-quality educational programs and mentorship. In delivering these vital services, we inevitably collect, use, and share certain information about our students, parents, volunteers, donors, and website visitors. This comprehensive Privacy Policy is designed to detail, in the most transparent and thorough manner possible, how we handle the personal information entrusted to us, reflecting our absolute commitment to maintaining your privacy, trust, and security. We recognize that the data we manage, particularly when concerning minors, is highly sensitive, and we pledge to handle it with the diligence, care, and legal compliance required by state and federal regulations, including the specific requirements surrounding the Children’s Online Privacy Protection Act (COPPA). This policy governs all methods of communication and data collection, including information gathered through our website (calyouth.site), during the enrollment process for any of our programs, through our fundraising and development activities, and in all digital and physical interactions with our staff and mentors. By accessing our website, enrolling a student in our programs, volunteering your time, or donating to our cause, you are acknowledging and consenting to the data collection and usage practices described within this detailed document. If you do not agree with the terms outlined here, please refrain from using our services and contacting us further.

2. The Personal Information We Collect and Its Necessity

We collect various types of personal information, which we categorize based on how it is obtained and the specific purpose it serves in supporting the young artists and the operations of CY&A. The necessity of this data collection is rooted in our need to ensure student safety, facilitate effective instruction, comply with legal mandates, and maintain the operational sustainability of our non-profit mission.

2.1 Information You Provide Directly to Us

This category includes data that is voluntarily and knowingly provided by parents, guardians, students (over the age of 13, where appropriate), and community members through registration forms, applications, communications, and donations. The provision of this information is mandatory for enrollment and participation in our programs.

• Identifiable Enrollment Information: This is the foundational data required to register a student for any program, camp, or workshop. It includes the student’s full legal name, date of birth, current age, current school and grade level, home address (2701 MITCHELL ROAD SUITE A, CERES, CA 95307), telephone number, and the parent or legal guardian’s name and contact information (including primary email address, such as info@calyouth.site). This data is essential for managing class rosters, communicating program changes, and verifying identity for authorized pick-up procedures.
• Medical and Safety Information: For the paramount purpose of ensuring student well-being and managing emergency situations, we collect crucial health-related information. This encompasses known allergies (e.g., food, medications, materials used in the studio), any relevant pre-existing medical conditions (e.g., asthma, diabetes, severe anxiety), the name and contact information of the student’s primary physician, and explicit instructions for emergency response, including necessary medication administration and dosage details. This sensitive data is stored securely and shared only with mentors and staff who require the information for the direct care and safety of the student.
• Financial and Billing Information: When tuition or fees are paid for programs, or when a donation is made to support our mission, we collect transactional data. This may include credit card details, bank account information (for ACH transfers), or other payment information. It is crucial to understand that while we process these transactions, the actual collection, encryption, and long-term storage of sensitive financial data (like full credit card numbers) is handled exclusively by secure, third-party payment processors who are industry-certified (e.g., PCI-DSS compliant). We only retain transactional records, such as the date, amount, service purchased, and the last four digits of the payment instrument, for auditing and accounting purposes.
• Donor and Volunteer Information: Individuals who generously donate to CY&A or volunteer their time are required to provide their full name, contact information, and occasionally, professional background or employment history (for volunteer roles involving student contact). Donor information is used to issue legally required tax receipts, acknowledge contributions publicly (unless anonymity is requested), and communicate future fundraising initiatives necessary for the sustainability of our non-profit mission. Volunteer data, particularly bios and qualifications, may be displayed internally or on our website to ensure transparency regarding the high caliber of support staff and mentors within our community.

2.2 Information Collected Automatically (Usage Data)

When you interact with our website (calyouth.site), certain technical data is collected automatically through standard internet technologies to help us understand site usage, troubleshoot issues, and improve user experience.

• Log Data and Device Information: This includes your Internet Protocol (IP) address, browser type and version, the type of device you use (e.g., desktop, mobile), operating system, and unique device identifiers. We use this data to diagnose server problems, analyze geographic trends in website traffic, and optimize our site’s display for various devices used by our community in Ceres and surrounding areas.
• Cookies and Tracking Technologies: We utilize cookies (small text files stored on your device) and similar tracking technologies (like web beacons or pixels) to collect usage information. This data helps us remember your preferences (such as language settings), keep you logged in to secure portals (like the enrollment portal), analyze which pages of our site are most frequently visited, and measure the effectiveness of our digital communication and marketing efforts designed to reach new families. You have the option to refuse or disable cookies through your browser settings; however, please be aware that disabling cookies may impair the functionality of some parts of our website, especially those related to enrollment and secure account management.

2.3 Information Collected from Other Sources

We may receive limited information about you from external sources, primarily to confirm eligibility for certain programs or to facilitate payment processing. These sources include secure payment gateways (as noted above), third-party background check services used for volunteers and staff, and occasionally, other educational institutions or community centers, but only with your explicit prior consent. For instance, if you apply for a need-based scholarship, we may receive limited, anonymized verification data from a third-party financial assessment service to confirm eligibility criteria.

3. Dedicated Safeguards for Children’s Personal Data (COPPA Compliance)

The well-being and protection of the privacy of minors, particularly students under the age of thirteen (13), is paramount to CALIFORNIA YOUTH & ARTS. Because our programs serve youth across a wide age range, including those from four years old up to eighteen, we strictly adhere to the requirements of the Children’s Online Privacy Protection Act (COPPA) and relevant state laws regarding the collection and use of personal information from children.

3.1 Policy for Children Under 13

We do not knowingly collect online personal information directly from children under the age of 13 without verifiable parental consent, except as permitted under COPPA. If a child under 13 attempts to submit personal information online, we will require the submission to be made by the parent or guardian. The only personal information we collect and retain from children under 13 is that which is necessary for their direct participation and safety in our programs, such as their first name, gender, age, and, in some cases, medical information, which is always provided by and verified through the parent or legal guardian during the secure, offline enrollment process.

3.2 Verifiable Parental Consent

Before collecting, using, or disclosing any personal information from a child under 13, we require a verifiable method of parental consent, as mandated by COPPA. During our program enrollment process, we utilize robust, verifiable methods, such as requiring the parent/guardian to provide an electronic signature confirming consent, reviewing and signing a physical consent form upon facility visit (2701 MITCHELL ROAD SUITE A), or requiring a valid credit card submission (without retaining the card details) to confirm the identity of the consenting parent/guardian. This parental consent applies to all personal information we collect and use from the child, including the use of their image or artwork in promotional materials, which is always subject to explicit, additional parental approval.

3.3 Parental Rights Regarding Children’s Data

Parents and legal guardians maintain complete control over the information we collect from their children under 13. At any time, a parent has the right to:

1. Review the personal information collected from their child.
2. Request the deletion of their child’s personal information from our records.
3. Refuse to permit the further collection or use of their child’s information.

To exercise these rights, the parent or legal guardian must submit a verifiable request in writing to our Data Protection Officer via email at info@calyouth.site or via postal mail to our Ceres address. We will take reasonable steps to verify the identity of the requesting individual as the child’s parent or legal guardian before granting access to or deleting the child’s data.

4. How We Utilize the Personal Information We Collect

The information collected by CALIFORNIA YOUTH & ARTS is utilized exclusively for purposes that directly support our non-profit mission, administrative functions, and the safety and development of our students. We do not sell personal information to any third parties for marketing or commercial purposes. Our utilization falls into several key areas:

4.1 To Provide and Manage Educational Programs and Services

This is the primary use of collected information. We utilize student and parent data to process enrollment, administer classes and workshops, manage specialized artistic materials, schedule instruction from mentors like David Kim and Dr. Elena Rodriguez, track attendance, and manage communication regarding class cancellations or time changes. Parent contact information (info@calyouth.site) is crucial for timely updates, distributing curriculum guides, and facilitating feedback sessions (e.g., parent-teacher-mentor conferences) to track the student’s progress in artistic skill and personal development.

4.2 Communication, Outreach, and Community Engagement

We use contact information to communicate with our community, which includes sending newsletters, program announcements, special event invitations (like our Annual Student Showcase), and critical safety alerts. For parents of enrolled students, these communications are essential for participation. For non-enrolled individuals, these communications are based on consent (opt-in) and serve to inform the public about the positive impact of CY&A in the Central Valley, furthering our mission of accessible youth arts.

4.3 Internal Operations, Safety, and Improvements

Collected data is essential for our internal operations. This involves using financial records for accounting and auditing purposes, using demographic data (anonymized where possible) to apply for grants and secure funding for scholarships, and utilizing student medical information for emergency preparedness and the creation of personalized care plans. Furthermore, we analyze non-identifiable usage data to assess the performance and usability of our website, allowing us to continuously improve our digital resources, streamline the enrollment process, and ensure the most current information is easily accessible to our community.

4.4 Fundraising, Development, and Non-Profit Sustainability

As a non-profit organization, we rely on charitable contributions to subsidize program costs and maintain the quality of our mentorship and facilities. Donor information is used to solicit future contributions, manage pledge payments, recognize donor generosity (unless anonymity is requested), and ensure compliance with all state and federal non-profit reporting requirements. We may analyze donation history to better understand donor interests and tailor future appeals, which is a necessary function for maintaining our long-term financial stability and fulfilling our commitment to keeping our exceptional arts programs accessible to all families in our area.

5. Disclosure and Sharing of Personal Information

We maintain a strict policy of minimizing the sharing of personal information. We only disclose or share data when absolutely necessary for the functioning of the organization, the safety of the students, or when legally compelled to do so.

5.1 Sharing with Essential Service Providers

We utilize trusted external service providers who perform specific functions on our behalf. These service providers are legally and contractually bound to use your personal information solely for the purposes defined by CY&A and to maintain the same rigorous standards of data confidentiality and security that we uphold. Categories of service providers include:

• Payment Processors: As mentioned, highly secured gateways handle all transactional data for tuition and donations.
• IT and Cloud Hosting Services: Companies that provide secure servers and data management platforms necessary to store our enrollment records and manage our website functionality.
• Email Communication Platforms: Services used to send mass email communications (newsletters, reminders, safety alerts) in compliance with anti-spam regulations, which require access to your email address (info@calyouth.site).
• Background Check Agencies: Required for vetting all staff, mentors, and volunteers who have direct contact with our students, ensuring the highest standards of safety within our programs.

5.2 Legal Requirements and Protection

CY&A reserves the right to disclose personal information if required to do so by law or in the good faith belief that such action is necessary to: (a) comply with a legal obligation, such as a subpoena or court order; (b) protect and defend the rights or property of CY&A; (c) act in urgent circumstances to protect the personal safety of students, mentors, volunteers, or the public; or (d) protect against potential legal liability. This may include sharing required information with law enforcement agencies or child protective services when there is a reasonable suspicion of harm to a minor.

5.3 Disclosure with Explicit Consent

Aside from the necessary sharing detailed above, we will not share any personal or medical information about a student or parent without the explicit, written consent of the parent or legal guardian. For instance, if a student’s art piece is selected for public exhibition, we require a separate, signed release form specifying exactly how and where the student’s name and image (if applicable) may be used for promotional purposes.

6. Data Security, Retention, and Physical Safeguards

The protection of the personal information entrusted to us is a continuous priority, involving a blend of electronic, physical, and procedural security measures designed to prevent unauthorized access, disclosure, alteration, or destruction.

6.1 Electronic and Procedural Security Measures

All digital data, particularly sensitive enrollment and health information, is stored on secure, encrypted servers protected by firewalls and sophisticated access controls. Access to student records is strictly limited to authorized personnel (e.g., Program Directors, Lead Mentors, and Administrative Staff) whose job function necessitates access to that information for direct service provision or emergency management. We utilize role-based access control and require mandatory strong, unique passwords and multi-factor authentication for all staff accessing internal systems. All digital communications containing sensitive information are transmitted via secure, encrypted channels.

6.2 Physical Security at Our Facility

The security measures extend to our physical location at 2701 MITCHELL ROAD SUITE A, CERES, CA 95307. All confidential paper documents (e.g., physical enrollment forms, medical records) are stored in locked filing cabinets within locked administrative offices, accessible only by key-holding staff. Our facility utilizes secured entry points with monitored access during program hours, ensuring that only authorized individuals can enter the premises. Staff and volunteers undergo mandatory training on data handling protocols, emphasizing the importance of securing physical documents and devices when not in use.

6.3 Data Retention Policy

We retain personal information only for as long as is necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. Generally:

• Student Enrollment Records: Retained for the duration of the student’s active enrollment and for a defined period thereafter (typically three to five years) to facilitate re-enrollment, provide academic/artistic references, and satisfy historical data needs, after which they are securely archived or destroyed.
• Financial Records: Retained for the minimum period required by tax and non-profit laws (typically seven years).
• Web Usage Data (Non-Identifiable): Retained indefinitely for trend analysis and historical site improvement purposes.
• Child Data (Deletion Request): If a parent requests the deletion of a child’s data under COPPA, we will delete all personally identifiable information within a commercially reasonable timeframe, except for a minimal record necessary to ensure the child cannot be re-enrolled without the express, new consent of the parent.

7. Your Rights, Choices, and Opt-Out Options

We recognize and respect your right to control your personal information and provide mechanisms for you to exercise these rights easily.

7.1 Access, Correction, and Deletion Rights

You have the right to request access to the personal information we hold about you or your child (for parents of minors), request corrections to inaccurate data, or request the deletion of your personal information from our active records. To initiate any of these actions, please submit a written request via email to info@calyouth.site or via postal mail to our Ceres address. We require sufficient information to verify your identity before processing any such request to prevent unauthorized access or modification of records.

7.2 Opting Out of Communications

You have the choice to opt-out of receiving non-essential communications from CALIFORNIA YOUTH & ARTS.

• Marketing and Fundraising Emails: Every fundraising or marketing email we send contains a clear, functional “unsubscribe” link at the bottom. Clicking this link will immediately remove your email address from that specific mailing list, though you may still receive essential administrative and safety-related emails concerning your child’s enrollment.
• Postal Mail: If you wish to opt-out of receiving physical mail solicitations for donations or event invitations, please notify us in writing via email (info@calyouth.site) or postal mail, and we will update your preference within our donor management system.

8. Third-Party Links and External Services

Our website (calyouth.site) or email communications may contain links to external, third-party websites or services, such as grant applications, external art portfolios, or news articles about our organization. These third-party sites operate under their own distinct privacy policies, which are independent of CALIFORNIA YOUTH & ARTS. We are not responsible for the content, security practices, or privacy policies of any third-party websites. We strongly encourage you to review the privacy policy of any external website you visit, particularly before submitting any personal information, as our comprehensive policy does not extend to those external domains.

9. Changes and Updates to this Privacy Policy

CALIFORNIA YOUTH & ARTS reserves the right to update or modify this Privacy Policy at any time to reflect changes in our operational practices, our services, or legal and regulatory requirements. We will notify you of any material changes by revising the “Effective Date” at the top of this policy and by prominently posting an updated policy on our website (calyouth.site). If the changes are material and affect the way we use children’s data, we will provide specific notice and seek updated parental consent as required by COPPA. We encourage all users, parents, and partners to periodically review this page to remain informed about how we are protecting your information. Your continued use of our services after any changes to this policy constitutes your acceptance of the revised terms.

10. Contact Us for Questions and Concerns

We welcome all questions, comments, or concerns regarding this Privacy Policy or our data handling practices. We have designated a Data Protection Officer who is responsible for overseeing compliance with this policy and responding to all inquiries regarding the privacy and security of personal information.

To contact us with any questions, please use the following contact information:

Data Protection Officer CALIFORNIA YOUTH & ARTS Address: 2701 MITCHELL ROAD SUITE A, CERES, CA 95307 Email: info@calyouth.site