Privacy Policy
Organization: Dress A Girl Southwest Missouri (a Missouri 501(c)(3) nonprofit corporation - "DAGSWMO," "we," "us," or "our") Website: https://www.dagswmo.org Effective Date: 2026-07-11 Last Updated: 2026-07-11
1. About This Policy
DAGSWMO is a volunteer-driven Missouri nonprofit corporation, organized as a 501(c)(3) public charity, with active chapters in Cassville, Monett, and Springfield. We sew and distribute dresses, skirts, and shorts to girls & boys in need locally and - through partner missionaries - internationally.
This Privacy Policy explains what personal information we collect through our website, our volunteer and sponsor programs, and our email and SMS communications; how we use, share, and protect that information; and what choices and rights you have. It applies to information collected through:
- Our website at www.dagswmo.org;
- Volunteer, sponsor, and newsletter sign-up forms (online, and offline forms later transcribed into our systems);
- Email and SMS communications we send;
- Inbound SMS replies you send to us; and
- Our internal admin tools used by DAGSWMO administrators.
DAGSWMO is an independent Missouri 501(c)(3) nonprofit organization. We are not a chapter of, fiscally sponsored by, or a subsidiary of Dress a Girl Around the World, Hope 4 Women International, or any other organization.
DAGSWMO is responsible for the personal information described in this policy, including deciding what information we collect, how we use it, and which service providers help us operate our website and communications. We do not share donor, volunteer, sponsor, or contact records with Dress a Girl Around the World, Hope 4 Women International, or any other organization for their own use.
2. Information We Collect
2.1 Information You Provide Directly
When you sign up as a volunteer, register as a sponsor, subscribe to our newsletter, or contact us, we may collect:
- Identity and contact information: first and last name; email address; phone number.
- Affiliation: chapter (Cassville, Monett, or Springfield); whether you participate as a volunteer, seamstress, missionary partner, vendor, or sponsor; the date you joined.
- Communication preferences: whether you have opted in to email; whether you have opted in to SMS; the date and time each preference was recorded.
- Sponsor information: organization name; organization logo; any message you submit through the sponsor form. (Sponsorship tier is assigned internally by a DAGSWMO administrator based on the actual sponsorship contribution; it is not provided by you on the form.)
- Free-text notes: anything you write in a "notes" or "message" field, plus internal notes our administrators may record about you in the course of coordinating activities.
- Event participation: which events you sign up for, and whether you attended.
2.2 Information Collected Automatically
When you visit www.dagswmo.org, we automatically collect technical telemetry for the purpose of operating, debugging, and securing the site:
- Server-side telemetry: IP address (request-level), browser type, device characteristics, pages requested, request timing, and error diagnostics, collected via Microsoft Azure Application Insights. This telemetry is retained for approximately 30 days.
- Authentication cookies (admin area only): Our administrative portal uses session cookies issued by NextAuth.js to keep authorized DAGSWMO administrators signed in. These cookies are not used on public pages, are not used for advertising, and are not used for cross-site tracking.
We do not use Google Analytics, Meta Pixel, advertising trackers, marketing cookies, or any third-party analytics on the public website. We do not display a cookie consent banner because we do not place tracking or marketing cookies that would require one.
2.3 Inbound SMS Messages
If you reply to an SMS we send - including STOP, HELP, START, or any other text - your phone number and the content of your reply are received by our SMS provider (Microsoft Azure Communication Services) and processed by our system. We record these inbound messages to honor your request (for example, to record a STOP and unsubscribe you) and for audit purposes. Inbound SMS records are retained for 24 months, then permanently deleted (see section 7).
2.4 Information We Do Not Collect
- No payment information. We do not receive, process, or store credit card numbers, bank account numbers, or any other financial account details through www.dagswmo.org. Donations are handled by third-party payment processors on their own platforms; see section 6.3.
- No public-facing user accounts. Only DAGSWMO administrators sign in to the website. You do not need to create an account to volunteer, sponsor, subscribe, or contact us.
2.5 Photos and Media
DAGSWMO publishes photographs of two distinct groups of people: the volunteers - adults and, occasionally, accompanying minors - who attend our events and sewing workdays to make the dresses, and the children who receive the dresses at distributions conducted by our partner missionaries. These photographs may include identifiable adults and, with the consents described below, identifiable children. A different consent mechanism applies to each group:
- For volunteers and other attendees at DAGSWMO events, we provide notice at the event itself: visible signage at the sign-in / registration table states that photographs may be taken at the event and may be used by DAGSWMO. By signing in and participating, you (or, for a child, the parent or guardian signing the child in) acknowledge this notice. If you (or your child) would prefer not to appear in published photographs, please speak with a DAGSWMO representative at the sign-in table so we can avoid including you in publication.
- For children who receive dresses, photographs are taken by the partner missionaries conducting the distribution, and those partners obtain the permissions on the ground. We require the submitting partner to confirm that parental or guardian consent was obtained at the time the photograph was taken. We avoid pairing a child's name with their photograph and avoid disclosing precise locations.
If you (or your child) appear in a photograph published on www.dagswmo.org and you would like it removed, see section 10.
3. How We Use Your Information
We use the personal information described in section 2 only for the following purposes:
- To coordinate volunteer activities and events.
- To acknowledge sponsors and to display the organization name and logo of consenting sponsors (see section 6.2).
- To send newsletters, event invitations, and operational updates by email or SMS - only if you have opted in to that channel.
- To respond to inquiries you send to us at info@dagswmo.org.
- To maintain the security, reliability, and integrity of our website and admin systems.
- To comply with legal obligations and resolve disputes.
We do not use your personal information for automated decision-making, profiling, or decisions that produce legal or similarly significant effects. We do not use your personal information to train artificial intelligence models.
We do not sell your personal information. We do not rent it, trade it, or share it for any third party's own marketing purposes.
4. SMS Messaging Terms
If you opt in to receive SMS messages from DAGSWMO, the opt-in form will explain the types of messages you are agreeing to receive and will include consent language near the phone-number field. Our SMS program follows these terms:
- Sender: Messages are sent from +1 (833) 600-1888, a toll-free number registered to DAGSWMO.
- Content: Volunteer coordination, event reminders, and operational updates.
- Frequency: Typically, 1-2 messages per month per recipient; frequency varies based on chapter activity.
- Carrier charges: Message and data rates may apply. DAGSWMO is not responsible for carrier charges.
- Opt out at any time: Reply STOP to any message to unsubscribe. We do not send a reply confirming your opt-out; we simply stop, and we will not send further SMS messages unless you opt in again by replying START or otherwise giving us permission. (Your mobile carrier may send its own automatic confirmation, which is outside our control.)
- Help: Reply HELP for assistance, or email info@dagswmo.org.
- Consent records: We record the date and time of your opt-in. We do not share your phone number or opt-in status with third parties for their marketing.
When you reply STOP, we retain a minimal suppression record (your phone number flagged "do not contact") so that you are not re-added to our SMS list, even if your number appears in a future bulk import. The suppression record itself is governed by the retention rules in section 7.
5. Email Communications
Double opt-in. When you sign up for the DAGSWMO newsletter through our website, we email you a confirmation link and add you to our list only after you click it. If you do not confirm your subscription, we will not add you to any email communication methods. Pending confirmation records may be retained briefly for security and troubleshooting, then deleted. This protects you both from accidental signups and from third parties signing up your address without your knowledge.
Every marketing email we send after that includes a one-click unsubscribe link that records your request immediately. You may also email info@dagswmo.org to be removed from our email list at any time.
When you unsubscribe, we retain a minimal suppression record (your email flagged "do not contact") so that you are not re-added - neither by a future bulk import nor by a fresh signup form submission. The suppression record itself is governed by the retention rules in section 7. If you previously unsubscribed and have genuinely changed your mind, submit the newsletter signup again and click the confirmation link in the email we send you - that affirmative click is what clears the suppression.
Operational, transactional, and security-related messages (for example, a reply confirming a request you sent us, or the subscription confirmation link itself) may still be sent after you unsubscribe from marketing email.
6. How We Share Information
We share personal information only as described below.
6.1 Service Providers
We use the following service providers to operate our website, communications, and administrative systems. We share only the information needed for each provider to perform its service for DAGSWMO. These providers may use the information only as allowed by their service terms, privacy policies, and security commitments:
| Provider | Service to DAGSWMO | Categories of data shared |
|---|---|---|
| Microsoft Azure (Container Apps, Azure Database for PostgreSQL, Key Vault, Application Insights) | Website hosting, primary database, secrets management, telemetry | All categories described in section 2.1 and section 2.2 |
| Microsoft Azure Communication Services | Sending and receiving email and SMS | Name, email, phone, message content, delivery status |
| Microsoft Entra ID | DAGSWMO administrator authentication only (no public users) | Administrator identity |
| Cloudflare (DNS, proxy for dagswmo.org and dagswmo.com, R2 object storage, CDN at media.dagswmo.org) | DNS resolution and HTTP proxy for our domains; hosting and serving media files (event photos, sponsor logos) | Network metadata (IP, request URL) at the edge; publicly accessible media content; standard CDN/edge logs |
| TinaCMS | Content management for DAGSWMO administrators | Does not process public-visitor personal data |
6.2 Public Display of Sponsor Information
If you submit our sponsor form on behalf of an organization, we will display only your organization name and logo publicly on our sponsor recognition page. The sponsor form expressly notes this on submission. The contact name, email, and phone of the individual who submits the form are kept internal and are not published.
6.3 Donations (Third-Party Payment Processors)
Donations are processed by third-party payment processors — Zeffy, PayPal, and Venmo — on their own platforms. The Zeffy donation form is embedded on our site as a third-party iframe; when you donate, your payment information is submitted directly from your browser to Zeffy, not to DAGSWMO. Donations through PayPal or Venmo are completed on those services' own platforms and are governed by their terms and privacy policies (Venmo is a PayPal service). We never receive, process, or store your card number, bank account number, or other financial account details. The applicable processor's own privacy policy governs the donation transaction. Zeffy may set its own cookies within the embedded donation form; those are governed by Zeffy's privacy policy, and section 2.2's no-tracking-cookies statement applies to our site itself. We may receive non-payment information from a processor (for example, your name and the amount donated) to acknowledge your gift.
If we add additional donation processors in the future, this section will be updated before they go live.
6.4 Legal and Safety Disclosures
We may disclose information when we believe in good faith that disclosure is required by law, in response to a subpoena, court order, or other lawful request, or is necessary to protect the rights, safety, or property of DAGSWMO, our volunteers, our recipients, or the public.
6.5 Successor Organizations
If DAGSWMO merges with, dissolves into, or transfers programs to another organization, personal information may be transferred to the successor as part of that transition, and any successor organization must use the information consistently with this policy unless we notify you otherwise.
7. Data Retention
We retain personal information only as long as we need it:
- Volunteer and sponsor records: Retained for as long as the relationship is active. When the relationship ends, the record is marked inactive rather than deleted, because volunteer histories support our long-term mission planning and historical reporting. You may request deletion at any time (see section 10).
- Communication logs - sent and received email and SMS: Retained for 24 months from the date of the communication, then permanently deleted. This retention applies uniformly to inbound SMS replies, outbound SMS, and outbound email.
- Suppression records (do-not-contact flags for unsubscribed contacts): Retained on the contact record for as long as the contact record is retained, so we do not re-add an unsubscribed person via a future import. If you exercise your right of deletion (section 10), we may retain a minimal suppression record, such as a hashed email address or phone number, solely to ensure we do not contact you again. We do not use suppression records for any other purpose.
- Website telemetry (Application Insights): Approximately 30 days.
- Authentication session cookies (administrators only): Expire per NextAuth.js defaults; cleared on sign-out.
- Photo-related records: For U.S. events, a photograph of the sign-in / registration table signage (the consent notice described in section 2.5) is retained as evidence the notice was in place. For international photographs, the submitting partner's written warranty is retained. Image-removal requests and our responses to them are also retained. All three categories are kept for the life of the corresponding photograph plus a reasonable archival period after the photograph is removed, since these records underpin our permission to use, or our action to remove, the image.
You may request earlier deletion of your information at any time (see section 10).
8. Data Security
We use administrative, technical, and physical safeguards intended to protect your information, including:
- Transport encryption: All traffic to and from www.dagswmo.org is served over HTTPS/TLS.
- At-rest encryption: Our database and media storage are encrypted at rest by Microsoft Azure and Cloudflare under their default platform encryption.
- Restricted administrative access: Sign-in to the admin portal is restricted to authorized DAGSWMO personnel using Microsoft Entra ID accounts on the dagswmo.org tenant.
- Secrets management: Application secrets (such as API tokens for SMS and email) are stored in Microsoft Azure Key Vault, with access limited to the managed identity of the running application.
No security program can guarantee absolute security. If we become aware of a security incident involving personal information, we will investigate promptly and notify affected individuals and any regulators as required by applicable law, without unreasonable delay.
9. Where Your Information Is Stored
Our primary infrastructure is hosted in the United States (Microsoft Azure, U.S. region). SMS and email are operated from a U.S.-based Azure Communication Services subscription. Media files are served via Cloudflare's global content delivery network.
DAGSWMO's operations, volunteers, and supporters are based in the United States, and our website and communications are directed to a U.S. audience. The main exception is the photographs of dress recipients described in section 2.5, some of whom are located outside the United States; the rights in section 10, including photo removal, apply to them regardless of where they live.
10. Your Rights and Choices
Regardless of where you live, you may ask us to:
- Access the personal information we hold about you;
- Correct information that is inaccurate;
- Delete your personal information (subject only to records we must retain for legal or accounting reasons, which are limited);
- Opt out of email by clicking the unsubscribe link in any message, or out of SMS by replying STOP;
- Remove a photograph of you (or, where you are the parent or legal guardian, of your child).
To exercise any of these rights, email info@dagswmo.org. We will respond within 45 days of receiving your request.
Identity verification. To protect you from disclosure of your information to someone else, we may ask for enough information to reasonably verify your identity before acting on your request. We will not request more than is necessary, and we will not use the verification information for any other purpose.
What "deletion" means at DAGSWMO. When you ask us to delete your information, we will delete or anonymize the personal information associated with your record where reasonably possible. This includes your name, contact details, communication preferences, free-text notes, and communication history. We may retain limited records when required for legal, accounting, security, consent-documentation, or do-not-contact purposes. Information that no longer identifies you, such as anonymous event totals, may also be retained.
If you previously unsubscribed from email or SMS, we may retain a minimal suppression record, such as a hashed email address or phone number, only to help ensure we do not contact you again. We do not use suppression records for any other purpose.
These rights are not limited by where you live. We are a small Missouri nonprofit and do not meet the applicability thresholds for most state-specific consumer privacy statutes (such as the California Consumer Privacy Act); we extend the rights above voluntarily to everyone whose information we hold, regardless of residency or citizenship.
11. Children's Privacy
DAGSWMO's volunteer, sponsor, and newsletter programs are intended for adults ages 18 and over. Minors may participate only with a parent or legal guardian as the registered contact. Our public forms display this disclosure at the point of sign-up. We do not knowingly collect personal information directly from a child under 13 through the website. If you believe a child has provided us with personal information without parental consent, please email info@dagswmo.org and we will delete it promptly.
We may, with the consents described in section 2.5, publish photographs in which children appear. As a general practice, we do not pair a child's full name with their photograph. For US event photographs, we may identify the chapter (Cassville, Monett, or Springfield) the photograph was taken at, since those chapter cities are publicly associated with DAGSWMO and naming them creates no additional risk to a child. For photographs submitted by partner missionaries from abroad, we do not publish more granular location information (such as a specific village, school, or facility) that could identify or endanger a child.
12. Outbound Links and Embedded Third-Party Content
The website contains links to third-party websites, including:
- Our Amazon Wishlist pages, used to receive donated supplies (Amazon receives the purchaser's information, not DAGSWMO);
- Our donation processors — Zeffy, PayPal, and Venmo (see section 6.3);
- Social media pages we maintain (for example, Facebook).
Our chapter pages also embed Google Maps as a third-party iframe to show each chapter's location. The embedded map is served directly by Google, which receives standard technical information from your browser (such as your IP address) when the map loads and may set its own cookies within the map frame. Those are governed by Google's privacy policy; section 2.2's no-tracking-cookies statement applies to our site itself.
We are not responsible for the privacy practices of these other websites. Please review their privacy policies before providing them with personal information.
13. Changes to This Policy
We may update this policy from time to time. The "Last Updated" date at the top of the policy reflects the most recent revision. Material changes will be highlighted on the website and, where appropriate, communicated by email to opted-in subscribers.
14. Contact Us
Questions, concerns, or requests regarding this Privacy Policy or your personal information should be directed to:
Dress A Girl Southwest Missouri Email: info@dagswmo.org Mailing address: PO Box 204, Willard, MO 65781
This policy is governed by the laws of the State of Missouri.