This privacy notice clarifies the nature, scope and purpose of the processing of personal data (hereinafter referred to as "data") within our online presence that includes internet-pages, features and content (collectively referred to as "website/s").
All content under eurothrowers.org (and its subdomains) are covered by this privacy notice.
Info: The privacy notice for EuroThrowers members can be found in our membership application form.
The managing committee of the EuroThrowers association. Contact details can be found in the disclaimer.
All persons visiting and using our websites ("users").
With regard to the terminology used, we refer to the definitions in Article 4 of the EU General Data Protection Regulation (Art. 4 GDPR). For convenience, brief versions of some definitions are listed here:
"personal data" means any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
"processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means. The scope of the term is rather broad and encompasses nearly all data handling.
"controller" means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data;
"processor" means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
The following applies if the regulatory basis is not mentioned in our privacy notice: The basis for obtaining consent is Art. 6(1)(a) and Art. 7 GDPR; the basis for processing to fulfil our services and perform contractual measures is Art. 6(1)(b) GDPR; the basis for processing to fulfil our legal obligations is Art. 6(1)(c) GDPR; and the basis for processing with the purpose of pursuing our legitimate interests is Art. 6(1)(f) GDPR.
We take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk, taking into account the state of the art, implementation costs and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, in accordance with Art. 32 GDPR.
Such measures in particular include ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as controlling the access, entry and disclosure, and by separating the data. Furthermore, we have established procedures to ensure that the rights of data subjects can be exercised, to delete data and to react to dangers for the data. Furthermore, we already consider the protection of personal data in the development of our website, in accordance with the principles of data protection by design and default (Art. 25 GDPR).
If, in the context of our processing, we disclose data to other persons and companies (processors or third parties), transmit data to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission, your consent, a legal obligation, or to pursue our legitimate interests (for example, we contract with web hosting and email hosting companies to efficiently and securely provide our websites and the related email communication). Regularly, the framework for this is so-called order processing.
If we process data in a third country (that is outside the European Union (EU) or the European Economic Area (EEA)) or this happens via the use of third party services or disclosure or transmission of data to third parties, this will only be done for the performance of a contract, for pre-contractual steps, on the basis of your consent, on the basis of a legal obligation or to pursue our legitimate interests. Subject to the existence of legal or contractual permissions, we process or have data processed in a third country only in the presence of the special conditions of Art. 44 et seq. GDPR.
You have the right to obtain confirmation whether data concerning you is being processed, and to obtain further information about this data as well as to obtain a copy of the data, in accordance with Art. 15 GDPR.
You have the right to rectification and completion of data concerning you (Art. 16 GDPR).
In accordance with Art. 17 GDPR, you have the right to obtain the immediate erasure of data concerning you, or, alternatively, to obtain a restriction of data processing in accordance with Art. 18 GDPR.
You have the right to obtain data concerning you which you have provided to us, or to have this data transferred to other controllers, in accordance with Art. 20 GDPR.
You have the right right to lodge a complaint with the competent supervisory authority (Art. 77 GDPR).
You have the right to withdraw consent given, affecting future processing (Art. 7(3) GDPR).
In accordance with Art. 21 GDPR, you have the right to object to the future processing of data concerning you.
If not expressly stated, the data stored by us is deleted as soon as it is no longer required for its purpose and if the deletion does not conflict with any legal storage requirements. If the data is not deleted, because it is required for other purposes as permitted by law, its processing will be restricted (Art. 17 and Art. 18 GDPR). This might be the case with data that has to be stored according to commercial or tax regulations.
According to legal requirements in Germany, especially §147(1) Abgabenordnung, mandatory storage times are 10 years (for books, records, management reports, accounting documents, trading books, documents relevant to taxation) respectively 6 years (commercial letters).
If you are contacting us (for example via email), your data is processed to treat and fulfil your request, on the basis of Art. 6(1)(b) GDPR (for (pre-) contractual proceedings) and Art. 6(1)(f) GDPR (other requests).
As a principle, the data obtained via you contacting us is of course not passed on to anyone (except our technical processors). Your data is only passed on if you explicitly request so, giving your consent (Art. 6(1)(a) GDPR). Examples for this are if you request that a message is passed on to a member.
When you are contacting us, you are not required to provide any data - not even your name. But please be aware that you must include all the data we need to process your request, for example you need to include your email address if you want us to reply via email.
We, respectively our hosting providers, collect data pertaining to each access to a server which this website is hosted on ("server log files"). The basis for this is our legitimate interest in a reliable and failure-free operation of our website (Art. 6(1)(f) GDPR). The server log files include information on: Names of the web pages and files retrieved, date and time of retrieval, amount of data transmitted, notifications about successful retrievals, browser type and version, the user's operating system, referral URL (the previously visited internet page), IP address and the requesting provider.
Data in Server log files is stored for 7 days before it is deleted. This is for security purposes, to prevent abuse and fraud. The IP addresses are shortedned before they enter the logiles. Hence the log file data is not personal data.
In our interest to analyse, optimise and economically operate our website, we undertake statistical analysis of how users use our website. To this end, we employ the software AWstats and use the StatCounter.com service. Apart from the access data (see Log files), we capture information on the software and hardware of users.
In each case, the IP address is shortened before processing. The data collected is thus not personal data.
"Cookies" is a term for small files that are stored on users’ devices. Different information can be stored in cookies. A cookie is primarily used to store the information about a user (or the device on which the cookie is stored) during or after his visit to a website.
We use cookies to pursue our legitimate interest (Art. 6(1)(f) GDPR) in a reliable and and secure operation of our website and in preventing fraud and abuse (examples: DDOS detection, ad frequency capping).