Privacy Statement

Updated May 5, 2026

Introduction

Welcome to the website of the Green Valley Kansas Foundation (“Green Valley Kansas Foundation”, “GVKF”, “we”, “our”, or “us”). We are committed to protecting your privacy and maintaining transparency in the collection, use, and handling of personal information.

This Privacy Statement explains:

    • What data we collect
    • How and why we use it
    • Your rights under applicable laws
    • How third-party services – including Cloudflare and Google Site Kit – process information on our behalf
    • Additional considerations

This statement and policy applies to all visitors of our website and individuals who interact with us online.

Information We Collect

Information You Provide Directly

you may voluntarily provide personal information when you:

  • Request information
  • Complete a contact form
  • Communicate with us by email or phone

This may include your name, address, email address, phone number, and message content.

Information Collected Automatically

We may collect certain information automatically to operate, secure, and improve our website, including:

  • IP address
  • Browser type and version
  • Device type
  • Pages visited and on-site interactions
  • Referring websites
  • Error logs and diagnostic/system data
  • Security-related telemetry used to detect anomalies or malicious activity

Cloudflare Processing (Required for CDN & Security)

Our website uses Cloudflare, which acts as a reverse-proxy, CDN, DDoS protection provider, and security layer. Because all visitor traffic passes through Cloudflare’s global network, Cloudflare automatically processes:

  • Visitor IP address
  • System configuration information
  • HTTP request metadata
  • Security-relevant signals (bot patterns, suspicious behavior, rate-limiting triggers)

Cloudflare may temporarily cache website content to improve load times and security. Cloudflare acts as a data processor/service provider and does not sell personal information.

Google Site Kit Processing (Analytics, Tag Manager, Search Console)

If Google Site Kit is enables, Google services may process:

  • Anonymous or pseudonymous Analytics identifiers
  • Browser/device metadata
  • Page interaction data
  • General location (non-precise)

Google Analytics IP anonymization is enabled by default.

Cookies and Similar Technologies

Essential Cookies

Essential cookies are used to:

  • Maintain admin login sessions
  • Store cookie/banner preferences
  • Display required notices
  • Support site security

Cloudflare Cookies

Cloudflare may set cookies for:

  • Load balancing (__cflb)
  • Bot mitigation (__cf_bm)
  • Security challenges (cf_clearance, cf_chl_*)
  • Rate limiting (__cfruid)
  • “Always Online” and caching features

These cookes are primarily security-related and necessary for the site’s legitimate operation.

Google Cookies (via Site Kit)

Google may set cookies for:

  • Analytics measurement (e.g., _ga identifiers)
  • Consent state (Consent Mode)
  • Tag Manager configuration

Google Cookie Consent Requirements

This site is not intended for and does not support customization for visitors outside the State of Kansas, including visitors in California, the EEA, UK, or Switzerland.

How We Use Your Information

We use personal data to:

  • Respond to inquiries and provide requested services
  • Operate, maintain, and secure our website
  • Detect, mitigate, and prevent cybersecurity threats
  • Monitor performance and troubleshoot technical issues
  • Comply with legal and regulatory obligations

Cloudflare Use

Cloudflare processes data to:

  • Deliver content efficiently via CDN caching
  • Protect against DDOS attacks, bots, and malicious activity
  • Provide security analytics
  • Ensure uptime and site integrity

Cloudflare acts strictly on our behalf and does not use data for unrelated purposes.

Google Site Kit Use

Google processes pseudonymous analytics data to:

  • Measure website usage
  • Provide performance statistics
  • Offer security and error reporting
  • Improve content and user experience

We do not use Google Analytics for advertising, retargeting, or profiling.

We do not sell personal information.

Information Sharing

We may share information with:

Service Providers

Including:

  • Cloudflare (CDN, security, edge network)
  • Google (Analytics, Tag Manager, Search Console)
  • Hosting, email delivery, and operational providers

These entities may use personal data only to perform services for us.

Legal Compliance

We may disclose information when required by law, regulation, subpoena, or security investigation.

Organizational Transfers

In the event of reorganization, information may be transferred to the successor entity.

We never sell personal information.

Data Retention

We retain:

  • Contact form information only as long as needed to respond
  • Analytics data according to Google’s retention settings (e.g., 14 months)
  • Security logs for a limited period to detect and mitigate threats

Data Security

We implement administrative, technical, and physical safeguards consistent with cybersecurity best practices, including:

  • Secure hosting
  • Encryption in transit and at rest where applicable
  • Access controls and authentication protections
  • Logging and monitoring
  • Vulnerability management
  • Incident detection and response procedures

Cloudflare and Google maintain their own industry-standard security controls aligned with global privacy and security frameworks.

Children's Privacy

Our website is not intended for children under the age of 13. We do not knowingly collect personal information from children.

Changes to this Policy

We may update this Privacy Statement periodically. Any changes will be posted here with an updated revision date.

For any questions or privacy-related requests, please contact us at:

Green Valley Kansas Foundation
PO Box 111
Manhattan, KS 66505-0111