The protection of your personal data is an important concern for us. We have taken technical and organisational measures to ensure that the regulations governing data protection are observed both by us and by external service providers (processors).

As the controller (responsible body), we take all legally required measures to protect your personal data. Since fewer than 10 people regularly handle personal data in our Association, Article 38 of the Act to Adapt Data Protection Law to Regulation (EU) 2016/679 and to Implement Directive (EU) 2016/680 (DSAnpUG-EU) does not require us to appoint a data protection officer. If you have any questions about this privacy notice, please contact the responsible member of our Executive Board:

Ms Marita Voss-Hageleit
Thankgrimweg 6
59759 Arnsberg
Tel.: +49 (0)2932 39066
E-mail: info@vecco.info

1. Scope of this privacy notice
This privacy notice deals with personal data relating to interested parties and members of our Association who are natural persons as well as all other natural persons who are in contact with us, e.g. representatives or employees of legal persons, but also visitors to our website and persons who, for example, subscribe to our newsletter.

2. Processing of data
Personal data is information about your identity. This includes details such as your name, address, telephone number or e-mail address, and, in the case of club members, also the saving of bank details.
Data is processed in order to fulfil contracts as well as legal obligations. We process data from interested parties to protect our legitimate interests and/or to initiate a contract.

Processing of data when visiting our homepage:
In general, you can visit our homepage without leaving any personal data, e.g. if you only want to learn about our Association or view the corresponding pages. Both the access to our homepage and each retrieval of a file stored on the homepage are logged and stored for a maximum of seven days. This storage is performed for internal system-related and statistical purposes. The following data is logged: name of the retrieved file; date and time of the retrieval; amount of data transferred; notification of successful retrieval; web browser and requesting domain. However, no personal data is transmitted concerning you, as the IP addresses of visitors are only recorded in abbreviated (anonymised) form.

Further processing of data:
In certain cases, we require further information, such as your name and address, so that we can process your enquiry or also provide a requested service. This additional personal data is only collected and stored if you provide this information voluntarily, for example as part of an enquiry or when registering.

Processing by service providers:
In order to fulfil a contract, we forward personal data to service providers (e.g. tax consultants, and Host one.com Denmark). This is done exclusively for the fulfilment of the existing service contract. Personal data will only be forwarded to associations, societies or other institutions outside the scope of the EU GDPR at the express request of the data subject.

3. Internal information
We do not send out newsletters. Information is made available to members on the internal website (accessible to members only).

4 SSL encryption
Our website uses SSL encryption when transmitting any confidential or personal content relating to our users. This encryption is activated, for example, when processing payment transactions or when you send us enquiries via our website. Please ensure that you have already activated SSL encryption before undertaking such activities. It is easy to detect whether you are using encryption: The display in your browser address bar changes from "http://" to "https://". SSL encrypted data cannot be read by third parties. Only transmit your confidential information once SSL encryption is activated and contact us when in doubt.

5 Links
This privacy notice only applies to the content on our website, but not to websites that can be accessed via external links. If we offer links, we make every effort to ensure that they also comply with our data protection and security standards. However, we have no influence over other providers' compliance with data protection and security regulations. We therefore encourage you to review the information provided on the websites of the other providers, including their privacy notices.

6. Right to confirmation
Data subjects have the right to obtain confirmation as to whether their personal data is being processed. To do so, please contact the responsible member of our Executive Board.

7. Storage, deletion
Stored personal data is always erased after expiry of the statutory retention periods.
Stored personal data is also deleted if you revoke your consent to your data being stored and no further legal basis for doing so exists in the event that knowledge of the data is no longer required in order to fulfil the purpose for which it was stored or if storage of the data is not permitted for any other legal reasons, except in cases where legal storage regulations prevent such erasure, in which case the processing of such data will be restricted (blocked) instead of being erased.
Stored personal data is also erased if your personal data has been processed unlawfully or needs to be deleted in order to comply with legal requirements.

In the event that the erasure of your personal data cannot be undertaken or involves an inordinate amount of time and effort, the processing of your data will be restricted instead of the data being erased.

8. Access, information and rectification
You may request information as to what personal data concerning you we are processing. Upon written request, we will be happy to inform you about what data concerning you is being stored.
As e-mail communications do not ensure absolute data security, we recommend that you communicate with us via De-Mail or by post where confidential information is concerned.

If your details are not (or no longer) correct, you can request that they be corrected. Should your data be incomplete, you can request that it be completed. If we have passed on your details to third parties, we will inform these third parties of the rectified data insofar as this is required by law.

9. Restriction of the processing of personal data
You have the right to request that the processing of your personal data be restricted (blocked) for one of the following reasons:

• If you dispute the accuracy of your personal data and we have had the opportunity to verify the accuracy.
• If the processing of your personal data is not lawful and you request that the use of such data be restricted instead of the data being erased.
• If we no longer need your data for the purposes of processing, but you require it in order to assert your rights.
• In order to exercise or defend against legal claims.
• If you have lodged an objection, as long as it has not yet been determined whether your interests override ours.

10. Right to data portability
You have the right to receive personal data that you have given us in a transmittable format.

11. Right to object; contact; lodging a complaint
You may, at any time, revoke your consent to your personal data being collected and stored by us. If, at any time, you should also have any questions about our data protection or seek to request that your data be rectified or erased, we will be happy to hear from you by e-mail (info@vecco.info) or by post (VECCO e.V., Thankgrimweg 6, 59759 Arnsberg). You also have the right to lodge a complaint with the relevant data protection supervisory authority.

12. Right to revoke consent under data protection law
Every data subject has the right, at any time, to revoke their consent to their personal data being processed. Anyone wishing to do so can contact the appointed data protection officer or the responsible member of the Executive Board.

13. Amendments to our data protection regulations
We reserve the right to change oursecurity and data protection measures should technical developments require us to do so. In such cases, we will also amend our data protection information accordingly. We therefore ask you to refer back to our privacy notice from time to time in case of any amendments.

Arnsberg, 22 May 2018