Data protection notice

Data protection notice (as of May 25th 2018)

How we handle your data and about your rights of data protection
Customer information according to articles 13, 14 and 21 of the General Data Protection Regulation (GDPR)

With these lines we (also called Society hereafter) would like to inform you about our processing of your personal data and about the rights
you hold according to the data protection rules.

1. Who is responsable for data processing and whom can I address?
Responsible and body to address is:

International Viola d’amore Society e.V.
Adolf-Heilig-Str. 18
75031 Eppingen
Tel: +49 7262 6961
Email-address: violadamoresociety@gmx.net
Since less than 10 persons are in charge of data processing in the Society, the obligation to name a data security official does not apply.

2. Which data from which sources do we use?

We process personal data which we obtain from you in the context of your membership.
Relevant personal data is: name, address and other contact data, day and place of birth, and nationality. Furthermore, this can be mandate
data (e.g. payment order), as well as data from carrying out contractual obligations (e.g. monetary transactions).

3. For which reasons do we process your data and what is the legal base for that?

We process personal data in consistence with the clauses of the General Data Protection Regulation (GDPR) and Federal Data Protection Act
in fulfilment of contractual obligations (Art. 6 para. 1 b) GDPR).
Processing of personal data (Art. 4 Nr. 2 GDPR) is carried out to perform the activities necessary for handling the membership. Reasons of
processing are in line with the purposes of membership (e. g. payment of dues, informing the members) in terms of the German Law of
Insofar you have consented to the processing of personal data for certain purposes (e.g. passing on your data within the Society), lawfulness
of this is given on the basis of your consent.
A given consent may be withdrawn at any time.
This holds also for withdrawals of consents given to us before the General Data Protection Regulation (GDPR) coming into force, that is
before May 25th 2018.
Please note that a withdrawal of consent takes effect only for future processing of data, processing done before the withdrawal are not
concerned by the latter.

4. Who gets my data?

Within the Society, your data is accessible only to persons that need it to fulfill the contractual obligations. We will not pass on your data to
third parties, such as service providers commissioned by the Society, e.g. printing services, nor any other.

5. How long will my data be stored?

Where required, the Society stores and processes your personal data for the period of your membership. In addition, we are subject to
different obligations to safekeeping and documentation that result from the German Association Act. Retention period for safekeeping and
documentation set by this act is ten years.

6. Which rights of data protection do I have?

Each member of the Society has the right of

  • access to personal data, in compliance with art. 15 GDPR,
  • correction of personal data, in compliance with art. 16 GDPR,
  • deletion of personal data, in compliance with art. 17 GDPR,
  • restriction of processing of personal data, in compliance with art. 16 GDPR,
  • objection, in compliance with art. 21 GDPR,
  • data portability of personal data, in compliance with art. 20 GDPR.

Additionally, there is a right of complaint at a supervisory authority for data protection (art. 77 GDPR in conjunction with sect. 19 BDSG).

7. Am I under obligation to provide data?

In the scope of your membership, you are obliged to provide only data that is necessary to establish, handle and end your membership.
Without this data, the Society normally will have to reject your application for membership or not be able to continue an existent