About Us

Privacy Policy

Your privacy is important to us. To protect your privacy, we provide this notice explaining our information practices and the choices you can make about the way your information is collected and used.

Introduction

The American Diabetes Association (ADA) is committed to safeguarding the privacy and security of our users’ personal information. This Privacy Policy outlines the types of personal data we collect, how we use and protect that information, and your rights regarding your data. By accessing or using our services, you agree to the terms described below.

Information We Collect

What is Personal Data?

Personal Data (also referred to in this policy as Personal Information) means any information relating to a natural person who can be identified by reference to an identifier such as a name, an identification/account number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

We collect data when you visit American Diabetes Association® (ADA) Websites. There are five types of information you might provide to us: 

  1. Contact information you knowingly choose to disclose 
  2. Registration information when registering for an event 
  3. Billing information when you donate, join, subscribe, or make a purchase 
  4. Demographic or other information about you 
  5. Technical information collected by us as you interact with our websites

We may collect personal data you voluntarily provide when you use our website or services, including but not limited to:

  • Name
  • Email address
  • Mailing address
  • Phone number
  • Account credentials
  • Payment information (when making purchases or donations)

Use of Personal Information

The ADA may use collected data to provide requested content, improve the functionality and quality of ADA websites, facilitate user experience, and deliver products and services. This information may also be used to inform users about additional products or services available through the ADA websites or to request feedback on current or potential new offers. Contact details might be used to send updates from the ADA, such as newsletters, diabetes resources, event and program information, and other relevant listings. If consent is provided, information about third-party products and services tailored to user preferences may also be sent. The frequency and topics of communication will correspond to the information on file. Certain services may enable users to opt into further communications, including newsletters and promotions related to specific interests. If processing purposes change, users will be informed of any new uses for their personal data and provided with opt-out options. Personal data is protected according to established privacy standards, and names, addresses, or emails are not shared with external parties except as outlined in this policy. Details regarding encryption standards can be found in the “Protecting Personal Information” section below. EU-based visitors and subscribers may reference the table below for GDPR-required information about how their personal data is used.

Personal Information Legal Basis for Processing

Some jurisdictions require us to explain our legal basis for collecting and processing Personal Information. We rely on several grounds: (a) to complete transactions, such as responding to requests; (b) meet legal obligations, like recordkeeping for tax or credentialing; (c) with your consent, for activities like marketing; and (d) for legitimate interests, unless outweighed by your rights or freedoms. These interests support the processing purposes outlined in this Privacy Policy that are not required for contracts or legal compliance.

Automatically Collected Information/Technical Information

When you interact with our website, we automatically collect certain technical information, such as:

  • IP address
  • Browser type and version
  • Operating system
  • Referring URLs
  • Pages viewed and the order of those pages
  • Date and time of access
  • Device information
  • Usage of data and analytics

Demographic Information

Certain ADA Website pages gather demographic information such as age, occupation, preferences, gender, education, ethnicity, interests, and diabetes affiliation. These details may be aggregated or combined. Data is generally collected during processes like donations, memberships, program registrations, or product purchases.

Cookies and Tracking Technologies

We monitor site usage and customer traffic to improve the ADA website’s design. The collected information may be used to notify you about important updates, new features, or offers from ADA; if you prefer not to receive these, please contact us as explained in “How to Correct or Update Information” below. We use Google Analytics for aggregated, non-identifiable traffic analysis—click here for Google’s privacy policy.

Our sites use cookies to gather standard statistics, manage your shopping cart, deliver relevant information, and save passwords. Cookies do not identify you personally, and most browsers accept them automatically, though settings can be changed to block them. Nearly all ADA website features remain accessible without cookies.

We sometimes use advertising networks involved in the Network Advertising Initiative (NAI). Consumers can opt out of certain targeted advertising via the NAI tool—learn more or opt out at click here. Opt-outs do not affect non-targeted ads, and ADA is not responsible for third-party opt-out effectiveness or claims.

How We Use Your Information

The ADA may utilize collected information to provide requested content, enhance the operation and quality of ADA Websites, ensure a positive user experience, and deliver our products and services. Additionally, we may use this information to notify you about other products or services available through the ADA Websites, or to solicit your feedback regarding current or potential new offerings. Your contact details may be used to communicate updates from the ADA—including newsletters, diabetes-related resources, event and program information, and other listings that may align with your interests. If you consent, we may also send information concerning third-party products and services tailored to your preferences. The frequency and content of these communications will depend on the information available to us about you. Certain services may offer the option to receive further communications, including newsletters and promotions related to topics of specific interest to you. Should our processing purposes change in the future, we will inform you of any new purposes for which your personal data will be used and provide information on how to opt out. As part of our mission to improve the lives of individuals affected by diabetes, we strive to deliver relevant information while protecting your privacy. We do not share your name, address, or email with external parties except as noted in this policy. For details on our encryption standards, please review the section titled “Protecting Personal Information” below. EU-based visitors and subscribers can reference the following table for GDPR-required information regarding our usage of your personal information.

Examples of how we use your information are as follows:

  • Processing transactions and fulfilling orders
  • Responding to inquiries and providing customer support
  • Sending administrative messages, updates, and promotional materials (with your consent)
  • Improving and personalizing our website and services
  • Conducting research and analytics to better understand our users
  • Detecting, preventing, and addressing technical issues and security threats
  • Complying with legal obligations and enforcing our terms

How We Share Your Information

Technical and contact information may be shared with ADA business partners to analyze usage patterns for ADA websites and those of partners, and with web hosting and technical providers for hosting servers and maintaining information security. Information may also be shared with consultants and vendors for customer support and marketing assistance; with credit card processors for processing transactions related to donor and subscriber contracts; and with business partners, with user consent, for providing products or services suited to user interests and preferences. Additionally, personal information may be disclosed when legally required, upon request by a governmental entity, or if it is necessary to: (a) comply with legal requirements or processes, (b) protect ADA’s rights or property, (c) prevent crime or address national security concerns, or (d) safeguard the personal safety of users or the public. If any ADA website is involved in bankruptcy proceedings, the ADA or its trustee may sell, license, or transfer information in accordance with court approval and legal requirements. In the event of an acquisition of the ADA business through merger, consolidation, or purchase, information will be disclosed and transferred to the acquiring party. Aggregated anonymous visitor information may also be shared with clients, partners, and other third parties to facilitate understanding of ADA website audiences and their use of the site.

Examples of our sharing are as follows:

  • Service Providers: With trusted third parties who assist us in operating our website and providing services, subject to confidentiality agreements.
  • Legal Requirements: When required by law, regulation, or legal process, or to protect the rights, property, or safety of our users and others.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.
  • Consent: With your explicit consent, we may share information for other purposes you specify.

Protecting Personal Information 

We implement reasonable administrative, technical, and physical safeguards to protect your personal information from unauthorized access, disclosure, alteration, or destruction. We are concerned with protecting your privacy and data. When you make a donation, register for an event or program, place orders, access your account information, or request information, we use a secure server. This secure server software, Secure Sockets Layer (SSL), encrypts all the information you input before it is sent to us. Furthermore, all customer transactional data we collect is protected against unauthorized access with the use of digital certificates. Digital certificates for the ADA are issued by VeriSign, one of the most established signers of digital certificates. We provide reasonable technical, administrative, and physical controls to secure the confidentiality, integrity, and availability of personal information. If you have any questions about security on the ADA Websites, you may contact us a dataprotection@.

Our commitment to privacy extends not only to the implementation of robust security measures, but also to transparency in how your information is managed throughout its lifecycle. We regularly review our practices to adapt to evolving technological standards and regulatory requirements, ensuring the highest level of care is afforded to your personal data. Our staff is trained to recognize the importance of confidentiality, and access to sensitive information is strictly limited to authorized personnel whose responsibilities require it.

In addition, we conduct periodic security assessments and monitor our systems for potential vulnerabilities. If we identify any security incidents that impact your personal information, we will notify you in accordance with applicable laws and regulations. By fostering a culture of accountability and vigilance, we strive to earn and maintain your trust in every interaction.

Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal data, such as:

  • The right to access and receive a copy of your personal information
  • The right to correct or update inaccurate information
  • The right to request deletion of your data, subject to legal obligations
  • The right to object to or restrict certain processing activities
  • The right to data portability
  • The right to withdraw consent at any time

To exercise these rights, you may contact us using the methods provided in this policy. We will respond to your requests in a timely manner, consistent with applicable laws, and may require verification of your identity to safeguard your information. Please note that certain requests—such as deletion or restriction—may be limited where we are required to retain information or continue processing to meet legal, regulatory, or contractual obligations. We are dedicated to supporting you in understanding and controlling how your information is used, and our team is available to assist with any questions regarding your rights or our data practices.

Data Retention

We retain all personal information collected from visitors or subscribers as required to meet contractual obligations. Certain anonymized data is kept indefinitely for website analytics and to facilitate efficient usage for all users. Data that is no longer needed and without legal basis, will be removed.

Our data retention policy ensures that personal information is kept only for the necessary duration to meet policy goals or comply with relevant legal, regulatory, and contractual standards. When data is no longer required, it will be securely deleted or anonymized using appropriate measures. The retention period may differ based on the data type, collection purpose, and regulatory requirements. For inquiries regarding data retention periods or procedures, our team can provide additional information and assistance by utilizing the contact information below.

Data Deletion

Users have the right to request deletion of their personal data held by the American Diabetes Association. To submit a request, please contact our Data Protection officer by emailing dataprotection@ or call 1-800-DIABETES (800-342-2383). We will respond within 30 days and will delete all eligible data unless exceptions apply. In certain cases, we may be required to retain some information for legal or security reasons, and we will advise you if this is the case. Deletion requests may result in loss of access to certain services. For further information, please contact our Data Protection Officer at the email or telephone listed above.

DMD Healthcare Communications Network Participation

DMD Healthcare Communications Network Participation Disclosure

This website is part of the DMD Healthcare Communications Network (HCN), managed by DMD Marketing Corp. When you register here, your professional information is also shared with HCN and its members to deliver medically relevant communications, as outlined in the HCN privacy policy: https://HCN.health/privacy-policy/. The policy explains how you can manage or opt out of sharing your information.

GDPR

Under the GDPR, EU-based visitors and subscribers have the rights to request from us access to Personal Data we store about you, to amend (or rectify) this data, to restrict our processing of the Personal Data, to erase the data, and to receive a copy of the data in a structured, commonly used and machine-readable format (data portability). If you wish to invoke a right under the GDPR, you may contact us at dataprotection@. Please use the subject line “GDPR Request” in the subject line. Your email should include a sufficiently detailed description of the GDPR right with which you seek assistance along with appropriate contact information. We may need to contact you for further information. The ADA will notify you if your request has been granted or declined, or if exemptions apply. If you have provided consent for the processing and storing of your data, you have the right (in certain circumstances) to withdraw that consent at any time, which will not affect the lawfulness of the processing before your consent was withdrawn. You have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe that we have not complied with the requirements of the GDPR with regard to your Personal Data.

Social Media and Information You Post

If personal information is posted in public or social network areas of the ADA Websites, such as online forums or chat rooms, it may be visible to other users and could be collected or used by individuals not under ADA’s control. The ADA is not responsible for how third parties may use information you post or make available publicly on ADA Websites and communities. If you remove information made public on ADA Websites and communities, copies might still be accessible in cached or archived pages, or if others have saved that information.

The ADA welcomes your participation in its social media platforms and values feedback, comments, and questions. The organization aims to maintain an inclusive environment and asks all users to engage with courtesy and respect when interacting with others’ opinions and viewpoints. The ADA does not allow content that includes discrimination, vulgar language, defamatory statements, personal attacks, off-topic or inappropriate material. Content inconsistent with community guidelines may be removed, and users may be restricted from posting on ADA’s pages. Content posted on ADA social channels does not necessarily reflect ADA’s views. 

Third-Party Links

The ADA Websites may include links to external websites or resources. The ADA does not control these sites or resources and is not responsible for their availability. Additionally, the ADA does not endorse or assume responsibility for any materials, advertising, products, or policies found on or accessible from such external sites or resources. The ADA is also not responsible for any data collection or privacy practices of these sites. Use of or reliance on any materials or goods available through these external websites or resources, including their data collection or privacy policies, is at the user's own risk, and the ADA is not liable for any damage or loss related to such use or reliance.

Email and Notification Guidelines

The ADA only sends commercial emails with recipients' consent or an established business relationship. All recipients can easily unsubscribe from online communications.

  • Donors and event/program participants may opt in or opt out of informational emails (excluding transactional emails) by logging into the Constituent Center.
  • Members can manage their email preferences (except for transaction-related messages) via membership@.
  • Individuals who request specific ADA info agree to receive related emails; Canadian and GDPR users may opt in or out at any time. Unsubscribing is available through links at the bottom of ADA emails or via the Constituent Center. These examples illustrate ADA's opt-in/opt-out options but do not cover every possibility.

Payment Processing

All credit transactions occur in a secure area of our site to protect you from any loss, misuse, or alteration of information collected. When you make a donation, subscribe, or place an order online at any of the ADA Websites, your credit card information is protected through the use of encryption of web content using Transport Layer Security.

Children’s Privacy

ADA Websites are not intended for use by children under the age of 13. The ADA does not knowingly collect personal information from children without appropriate parental consent. If it becomes aware that personal data from a child under 13 has been collected inadvertently, the ADA will promptly take steps to delete such information from its records.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically to stay informed about our privacy practices.

Legal Requests

The ADA reserves the right to share your information to respond to duly authorized information requests of governmental authorities or where required by law.

California

California Civil Code Section 1798.83 (S.B. 27) permits California residents whose relationship with the ADA is primarily personal, family, or household-based to request details about disclosures of personal data to third parties for direct marketing purposes. Requests should be submitted by email to dataprotection@ with “Request for California Privacy Information” stated in the subject line. One request may be submitted per calendar year. If applicable, the ADA will respond via email with a list of categories of personal information disclosed to third parties for direct marketing purposes during the previous calendar year, along with the names and addresses of those third parties. Some data sharing is not covered under S.B. 27.

Acceptance of These Terms

Your use of the ADA Websites shall indicate your understanding and acceptance of the terms of this Privacy Statement. If you do not agree with all the terms herein, you should not use the ADA Websites or services.

Tell Us What You Think

The ADA welcomes your questions and comments about this Privacy Statement, about the practices of the ADA, and about your dealings with this website. Please send an email to dataprotection@, or write to:

American Diabetes Association
ATTN: Data Protection Officer
2451 Crystal Drive, Suite 900 Arlington, VA 22202

Contact Us (Correct/Update Information)

If you have any questions, concerns, or requests regarding this Privacy Policy or to update or correct your personal information, please contact us at:

  • Email:  dataprotection@,
  • Mailing Address: 
    American Diabetes Association
    ATTN: Customer Service Center
    2451 Crystal Drive, Suite 900 
    Arlington, VA 22202

This policy is effective as of August 22, 2025.