Privacy Policy – Summit

Last updated: 25.8.2025

1. Introduction

This Privacy Policy explains how personal information is collected, stored, processed and used as part of the operations of the Summit Institute, registered association no. 580031813 (hereinafter: the “Association”), including its digital activities on the websites https://summit.org.il, [Dror] (hereinafter: “Dror’), https://yetzirkapayim.com (hereinafter: “Yetzir Kapayim”) (each of the websites will be referred to hereinafter as: the “Website”) owned by the Association, as well as on any other platform through which users contact the Association. The Website serves as a platform for providing information and services, while collecting information from users, and by using it, the users express their consent to this policy.

User privacy is of utmost importance for us, and we treat this matter with all due seriousness and actively seek to protect the personal information of users.

Any use of the masculine form is for convenience only, but everything stated is intended to address all genders.

2. Agreement

Your use of the website and any information provided to us by you on the various platforms operated by the Association which allow you to contact it, is subject to the provisions of this Privacy Policy.

This policy applies to all user interactions with the program, across all communication channels, whether through the Association’s Website, any other program website or application, or other digital channels, within the framework of services provided by the association, the use of all program services, any communication of the user with the Association, or through other means, online or offline, including, without limitation, phone calls, emails, other electronic messages including SMS, WhatsApp, phone, online chat, as part of the treatments provided to the user, and any other form of communication between the user and the Association or its representatives in connection with the Association. 

Please carefully read the provisions of this Privacy Policy, and if you do not agree with them, please don’t use the Website and don’t provide us with any personal information about yourself. In such cases, we will not be able to provide you with the service offered by us.

Please note that you are not under any legal obligation to provide us with information about yourself, and that the information about you that has been and/or will be provided by you is given of your own free will, and you understand that it will be held in the Association’s databases stored in Israel and/or abroad.

The collected information may be stored with storage providers in Israel or outside of Israel. By agreeing to this Privacy Policy, you confirm that you consent to the storage of information outside of Israel as aforesaid.

Your choice to continue browsing the Website and/or leave details through any one of our platforms constitutes your consent to the collection, processing, use, and transfer of personal information in accordance with the provisions of this Privacy Policy.

Please note that we may change and update the provisions of this Privacy Policy from time to time, at our sole discretion or following changes in legislation, regulation, or guidelines from competent authorities. The updated version will be published on the Website and will take effect on the date of its publication, unless specified otherwise. If the changes introduced are significant, we will notify users through reasonable means (such as a notice published on the website or sent by email, if contact details have been provided to us). Your continued use of the service after the update is published constitutes your consent to the updated policy.

This Privacy Policy is intended to supplement specific provisions that have been or will be provided to you in the relevant documents related to any contact with the Association.

3. Definitions

• “Personal information” – any information which can be used to identify a person, including their name, email address, telephone number, desired type of insurance, etc.
• “User” – any person who enters the site and/or submits information and/or uses the site’s services and/or contacts the association’s services through any possible channel, including telephone contact, WhatsApp, email, etc.
• “The Website” – the various websites operated by the Association and used to collect information.
• Database “Controller” – the party that determines, alone or together with others, the purposes for which the information in the database is processed, or an entity or any of its officers that have been authorized by law to process information in a database. The Association is the database Controller of the database that includes the information collected about you as stated in this Privacy policy.
• “Holder” – in relation to a database – a party outside the company that processes information for the Association.
• “ Processing”, “Use” – Any action taken on personal information, including receiving, collecting, storing, copying, reviewing, disclosing, revealing, transferring, delivering or providing access to it.
• “Cookies” – small text files that are stored on the User’s end device through the browser. Some of the Cookies are required for providing services on the Website (“Essential Cookies”), while others are used for analysis and statistics, or for advertising and marketing purposes.

4. The Information Collected by Us

We will collect your information as follows:

• Your communications with us – information provided by you when communicating with us via telephone, email, messaging and chat services, Zoom, digital feedback forms, or in any other manner.
• Public information and information that can be legally used – We may collect information about you from public sources or those that can be legally used, such as information from state-owned databases, the Central Bureau of Statistics, other databases and information that has been made available to the public, such as in various media, on the Internet, etc. We may also combine such information with information that we already have.
• Additional information that may be provided by you or at your request or by anyone on your behalf in the course of receiving services from the Association, including medical information as defined in the Patient’s Rights Law, 1996, as well as information about military service in regular or reserve duty according to the treatment plan relevant to you.

• Additional information that may be provided by you or at your request or by someone on your behalf, collected within or regarding your use of the Association’s services, including within treatments, workshops, or other activities you participate in or are interested in, including surveys, registration, information contained in answers to questions asked for identification and security purposes, including your passwords and credentials.
• When applying for a job at the company :

First and last name, email address, phone number, details about your training, details about your occupation, date of birth, place of residence, resume, information on how you heard about us, and any additional information you provide us.

• When applying to be a foster family :

Names of each spouse, birth dates of each spouse, ages of the couple’s biological children, details about the couple’s lifestyle, residential address, email address, phone number, existence of a kosher phone, type of agreement the couple is interested in, information on how you heard about us, additional comments you chose to write to us, confirmation of consent to transfer the information to another geographic location, and any additional information you send us.

The information collected by us regarding the ages of the foster family’s children does not include information which can be used to directly identify the children, but since it is provided by you – the parent or guardian – it may be used to indirectly identify them under certain circumstances. The collection of the aforementioned information is done for the purpose of assessing your suitability and for your participation in the relevant process. By providing the information you confirm that you have received this information, and that you agree to the provision and use of the information as detailed above.

• When submitting a volunteer application :

First name and last name, phone number, category of volunteering work you are interested in, comments you wrote to us, and any additional information you choose to send us.

• When purchasing a gift card:

Sender’s first and last name, recipient’s first and last name, recipient’s email address, content of the greeting accompanying the gift card, the amount of money you purchased on the gift card, any additional information you choose to provide us.

• When subscribing to the newsletter :

Email address, emails that you will send to us, and any document attached to them.

• When making a donation :

First name and last name, ID numbers, phone number, company name, email address.

• When contacting the Dror program:

Name, email, city, content of the message you send us.

• When purchasing a product on the Yetzir Kapayim website:

First name, last name, company name, shipping address, residential address (street, city, P.O. box, postal code), order details, self-pickup.

• When choosing to volunteer at Yetzir Kapayim:

Name, email, phone, volunteer work you wish to perform, comments if you choose to write.

• When browsing this Website

When you browse this Website, we collect technical information through Cookies, and may collect the following data, without limitation:

• IP address, browser and operating system type;
• Pages you visited on the Website and the duration of your stay;
• Actions you performed on the Website (such as clicks, form filling, shopping cart purchases);
• Unique browser or device identifier (Session ID) or Cookie ID).
• Information regarding your exposure to advertising content on and off the Website.

For more details on Cookies, see below.

• When contacting us by phone

Any information provided to us by you, and as necessary for the treatment, if relevant, will be stored in our databases.

• When using a messaging application such as WhatsApp, SMS

When you contact us using WhatsApp for the purpose of receiving service or contacting us within the framework of any of our programs: any information you provide to us.

5. Why the Information is used

The information collected by us as stated in this Privacy Policy is used for the following purposes:

• Handling any User request submitted to the Association, including referring them to the relevant entity for providing a response, including the therapeutic, rehabilitative, and foster care services. It is also used for workshops, leisure activities, educational programs, and any additional program offered by the Association and which a User may contact us about.
• Contacting the User according to the subject of their request from us.
• Receiving a monetary donation from a User who contacted us for the purpose of making a donation.
• Management of marketing activities, including remarketing, targeted advertising, and direct mail.
• Providing information about the association’s activities in various fields.
• Analysis and improvement of the user experience on the Website.
• Compliance with legal and regulatory requirements.
• Adapting content, services, and marketing offers to your preferences and interests.
• Displaying targeted advertisements on the Website and managing campaigns on external platforms (remarketing).
• Statistical analysis of trends and User behavior to improve our services.
• Improving your browsing experience on the Website.

1. Disclosure of Information to Third Parties

The information collected as specified in this Privacy Policy may be disclosed to the following entities:

• CRM providers with whom we work and who process the information for us.
• Suppliers who store our information on their servers and serve as holders.
• Professional advisors (such as accountants).
• Suppliers providing us with a platform for performing electronic mailing services.
• Suppliers providing the company with various marketing services, including digital marketing.
• Payment companies such as Jgive, PAYPLUS, or any similar company that comes instead of any of the aforementioned companies and handles the collection of donations and/or the receipt of various payments for the Association.
• Third parties providing us with advertising, public relations, data analysis, and digital marketing services.
• Our institutional partners, including the Ministry of Welfare, the Ministry of Health, and the Ministry of Defense.
• Transferring the information to the entity referring you to us, in order to enable you to receive a full or partial refund of the costs of treatments with us.

The information is transmitted as mentioned, subject to agreements ensuring the confidentiality of the information and its use only for the defined purposes.

1. Communication through Various Digital Means

You have the option to communicate with the Association through a variety of digital channels, including: email, phone calls, WhatsApp messages, SMS, video calls (Zoom, Google Meet), online chat systems, and social media, as the case may be.

Part of the communication may involve the provision of Personal Information by you, depending on the content of the inquiry and the circumstances. This information will be stored and processed by us solely for the purposes communicated to you and in accordance with the provisions set forth by law.

It is clarified that some of the aforementioned means of communication are operated by third parties (such as Meta, Google, and others), which have their own independent privacy policies applicable to any use of their platforms. We recommend reviewing the privacy policy of those entities before use, to understand how they process information.

The above does not constitute an assumption of responsibility on our part regarding the manner in which these entities independently use the information provided through them, or regarding the privacy and security policies they implement.

1. Information Security

• The Association implements a system of physical, technological and organizational information security measures, in accordance with legal requirements, including the Privacy Protection Regulations (Information Security), 5777-2017, to protect the Personal Information of users and guard against unauthorized access, improper use, loss, or exposure.
• Among other things, we implement reasonable measures such as information access controls, the encryption of sensitive data, system monitoring, regular backups, and employee training on privacy protection.
• The Association operates as required by law and implements technological and organizational security measures to secure the information under its control. At the same time, the Association cannot secure its information and communication systems in a way that completely prevents unauthorized intrusions and prohibited use of the information stored in its information and communication systems. Therefore, it is clarified that the association will not be liable for any case in which the information stored in its databases in is disclosed or used following any unauthorized breach. Despite the Association’s efforts to secure the information.
• Employee access to Personal Information is limited only to those who need the information for providing services, and all employees are obligated to maintain the confidentiality of the information in accordance with their obligations.

1. The Use of Cookies

The Website uses Cookies, tracking technologies, pixel tags ([bilingual text]), and other online identifiers for its proper operation and to customize the user experience, improve services, analyze statistical usage, and for advertising and marketing purposes.

Types of Cookies and their use:

1. Essential cookies – Required for the basic functioning of the Website (such as saving login details, language settings, saving a shopping cart). These Cookies do not require consent.
2. Performance and Analytics Cookies – allow the collection of anonymized information regarding the use of the Website (pages you visited, loading times, length of stay), and are used to improve the service.
3. Personalization Cookies – used to customize the user experience, display personalized content and save user preferences.
4. Advertising and Marketing Cookies – collected by the Website and by third parties (such as Google, Meta, advertising and mailing systems) and used to display personalized advertisements, measure the effectiveness of advertising campaigns and perform remarketing activities ([bilingual text]).

Some of the Cookies on the Website are operated by third parties. Information collected through these Cookies is transferred to these parties and will be used in accordance with their privacy policies. Some of these include, for instance, Google Analytics, Facebook Pixel, advertising platforms, or mailing systems.

Cookie Management – You may change your browser settings at any time to block Cookies or delete existing Cookies. It should be stressed that blocking essential Cookies may impair the functioning of the Website and the ability to receive the services offered on it.

1. Using Automations

The Association uses and/or will use automation systems for Processing personal information collected as part of the services for various purposes, including managing ongoing communication with Users, streamlining human resources (HR) processes, managing and synchronizing data between systems, and performing routine operational activities automatically.

Automations are used, among other things, for sending mail (newsletters, reminders, confirmations), onboarding candidates, distributing documents, updating data in internal systems, and transferring information between CRM systems, project management, online forms, and communication platforms.

The Processing is done while adhering to privacy protection principles, including limitation to purpose, data minimization, and access restriction. Automations do not include autonomous decision-making that has a legal or substantial impact on you.

1. Use of Artificial Intelligence (AI) Technologies

During your use of the Website and as part of the services we offer, we utilize artificial intelligence (AI) technologies, including systems for providing automatic responses through chatbots, data analysis tools, machine learning algorithms, and other intelligent systems.

This use includes, without limitation, automatic responses to user inquiries, storing call data to improve and optimize the service, analyzing the content of inquiries, generating insights, and drawing conclusions based on the information provided by you. The information may include Personal Information, which will be processed mechanically and/or automatically, for the purpose of pattern learning, statistical analysis, service customization, and for the improvement of existing models.

This data Processing is carried out in accordance with the applicable law, including the Privacy Protection Law, Amendment 13, and the guidelines of the Privacy Protection Authority regarding the use of artificial intelligence technologies. We are committed to operating transparently, while adhering to principles of privacy, data security, and limiting Processing to the required minimum.

You may contact us at any time to exercise your rights regarding this information – including viewing, correction, deletion, or objection to Processing.

1. Viewing and Correction Rights

As a Website User, you have the following rights to review and correct:

• Right of review – In accordance with the provisions of Section 13 of the Privacy Protection Law, every person is entitled to review the information held about them in the Association’s databases. A request for review can be submitted in writing to the email address specified in this Policy.
• Provision of Information – as required by law, the Association will provide the requester with the information relating to them or will notify that no such information was found.
• Request for Correction or Deletion – if you find that the information provided to you is incorrect, incomplete, unclear, or outdated, you are entitled to contact us in writing and request the correction or deletion of the information.
• Processing the request – the Association will review the request and respond to you as required by law. If the Association rejects the request, you are entitled to appeal to the competent courts, as determined by law.
• how to contact us – requests for access, correction, or deletion of Personal Information must be submitted in writing to the address: privacy@summit.org.il, accompanied by the full identification details of the requester for the purpose of verifying their identity.

1. Contact us

The entity controlling the Association’s databases is the Summit Institute, registered association number 580031813.

For any questions or requests regarding this Privacy Policy, please contact:

The Summit Institute Registered Association, to the attention of the Privacy Inquiries Officer, email: privacy@summit.org.il

1. Updated on

This Privacy Policy was last updated on: 1.9.2025