General information on data processing
Who is responsible for your personal data?
Ave Design Limited,
Unit 1.23, United House,
North Road, London
Which categories of Personal Data do we collect?
We may collect and process in particular the following categories of personal data:
- Private or work contact information, such as full name, address, telephone number, mobile phone number, fax number and email address, mobile device unique identifier and the IP address of your computer if you use our services online;
- Payment data, such as data necessary for processing payments and fraud prevention, including credit/debit card numbers, security code numbers and other related billing information;
- Further business information necessarily processed in a business or other contractual relationship with the Centre or voluntarily provided by you, such as purchases, services and other business activities, feedback and any additional information you may provide to us;
- Information about your interests and preferences and other information obtained by website analytics tools, in particular your activities when you use our websites, or products or other services we offer to you online (such as downloadable content). This may include information about which content you download, click or view for how often and how long; (see the section below on Google Analytics)
- Special categories of Personal Data. In connection with the registration for and provision of access to an event or seminar, we may ask for information about your health for the purpose of identifying and being considerate of any disabilities or special dietary requirements you may have. Any use of such information is based on your consent. If you do not provide any such information about disabilities or special dietary requirements, we will not be able to take any respective precautions.
For which purposes do we use your personal data?
We will process your personal data strictly only for the following purposes (“Permitted Purposes“):
- Planning, performing, managing and administering your (or a third party’s to whom you are related) contractual business relationship with the Centre, e.g. by processing payments, performing accounting, auditing, billing and collection activities, providing support services or providing you with other services or things you may have requested;
- Maintaining and protecting the security of our services and websites or other systems, preventing and detecting security threats, fraud or other criminal or malicious activities;
- Ensuring compliance with our legal and regulatory obligations. This may include sales record-keeping obligations for tax or other purposes and sending required notices or other disclosures, compliance screening or recording obligations.
- Informing you, where permitted in accordance with local laws, within an existing business relationship about the Centre’s services which are similar or relate to such services which have already been purchased or used within that business relationship; or
- Solving disputes, enforcing our contractual agreements and to establish, exercise or defend legal claims.
Where you have expressly given us your consent or otherwise legally permitted, we may process your personal data also for the following purposes:
- Administrating and performing customer surveys, marketing campaigns, market analysis, or other promotional activities or events or
- Automated processing: Collecting information about your preferences on the basis of your activities when you use our websites and any services we offer to you online (such as downloadable content or newsletter). The logic behind these automated activities is to identify areas of interest for our customers and to help to analyse how users use our online services, and thereby enable us to offer improved products.
Where your explicit permission is required for any marketing-related communication, we will only provide you with such information if you have opted in. You may opt out at any time if you do not want to receive any further marketing-related types of communication from us. We will not use your personal data for taking any automated decisions affecting you or creating profiles other than described above.
In some meeting formats, participants will automatically be granted access to a Centre online workgroup page that is hosted via Microsoft Office 365 (and not via solidarityaction.network.org). The only personal data of participants used by the Centre to create access is a work email address. Participants have the option to choose the Screen Name under which they want to appear in this workgroup and also to choose their password. Contributions in this workgroup are not visible to the public. For access to and data submitted at the external online platform, the privacy regulations of the service provider Microsoft apply. We inform you that the data exchange with Microsoft conducted by the Centre is regulated via the EU standard clause for the transfer of personal data to third countries. (The servers at which your personal data is stored for the above context are located within the EU.)
Legal basis for the procession of personal data
The legal bases for processing of your personal data are set forth in Article 6 of the GDPR. Depending on the above purposes for which we use your personal data, the processing is either necessary for the performance of a contract or other business agreement with the Centre or for compliance with our legal obligations or for purposes of legitimate interests pursued by a third party or us, always provided that such interests are not overridden by your interests or fundamental rights and freedoms. In addition, the processing may be based on your consent where you have expressly given that to us.
What are cookies?
Cookies are text files containing small amounts of information which are downloaded to your device when you visit a website. They are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie.
Cookies do not harm your computer and do not contain any viruses. They are meant to improve the interaction between the user and the website. In this context, they fulfill different purposes, e.g. allowing a website to recognise a user’s device, letting users navigate between pages efficiently, or remembering user preferences.
How do I turn cookies off?
All modern browsers allow you to change your cookie settings. You can usually find these settings in the Options or Preferences menu of your browser. To understand these settings, the following links may be helpful, or you can use the Help option in your browser for more details.
Cookie settings in Internet Explorer
Cookie settings in Firefox
Cookie settings in Chrome
Cookie settings in Safari web and iOS.
Use of Google Analytics
Further information concerning the terms and conditions of use and data privacy can be found at http://www.google.com/analytics/terms/gb.html or at https://www.google.de/intl/en_uk/policies/.
Use of YouTube
On our website we use components (videos) of YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA, a company belonging to Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA.
When you display a page that has an embedded video, a connection will be made to the YouTube server and the content will appear on the website via a communication to your browser. Further information about data protection by YouTube is provided by Google under the following link: https://www.google.de/intl/de/policies/privacy/
Deletion of personal data
We will hold your personal data as long as required to provide you with the services or information you have requested and to execute and administer your business relationship with us. If you have asked us not to communicate with you, we will hold this information as long as required to comply with your request. We are also required to keep certain of your personal data (e.g. relating to business or tax relevant transactions) for certain retention periods under applicable law. Your personal data will be promptly deleted when it is no longer required for these purposes.
If you would like your record to be deleted earlier by the Centre, please notify us accordingly by contacting firstname.lastname@example.org.
Your data protection rights
Subject to certain legal conditions, you may request access to, rectification, erasure or restriction of processing of your personal data. You may also object to processing or request data portability. In particular you have the right to request a copy of the personal data that we hold about you. If you make this request repeatedly, we may make an adequate charge for this. Please refer to Articles 15-22 of the EU General Data Protection Regulation for details on your data protection rights.
If you have given us your consent for the processing of your personal data, you may withdraw your consent at any time with future effect, i.e. the withdrawal of the consent does not affect the lawfulness of processing based on the consent before its withdrawal. If you withdraw your consent, we will only continue processing your personal information where there is another legal ground or where we are legally required to do so.
For any of the above requests, please send a description of your personal data concerned stating your name and a proof of identity to email@example.com. We may require additional proof of identity to protect your personal data against unauthorised access. We will carefully consider your request and may discuss with you how it can best be fulfilled.
If you have any concerns about how your personal data is handled by us or wish to raise a complaint on how we have handled your personal data, you can contact us at the contact details below to have the matter investigated. If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the competent data protection supervisory authority in your country. For example, if you are from Germany, you may contact the Bundesdatenschutzbeauftragte Office via their website (www.bfdi.de).
We maintain physical, electronic and procedural safeguards in accordance with the technical state of the art and legal data protection requirements to protect your personal data from unauthorized access or intrusion. These safeguards include implementing specific technologies and procedures designed to protect your Privacy, such as secure servers, firewalls and SSL encryption. We will at all times strictly comply with applicable laws and regulations regarding the confidentiality and security of personal data.
We would like to express that in general there are inherent security risks when transmitting data via the internet, such as emails or signing up to websites by using personally identifiable information. This implies security vulnerabilities as it is impossible to safeguard entirely against unauthorised access by third parties.
We also do everything in our power to protect user-information offline. All of your information is restricted. Only employees who need the information to perform a specific job are granted access to personally identifiable information.
What if I’m under 16?
If you are under 16, please make sure that you obtain your parent/guardian’s permission prior to providing us with any of your personal data. Persons under the age of 16 are not permitted to provide us with their personal data without such consent.