NisMemberArea Guidelines

Data Security Guidelines

We are not obliged to appoint a data protection officer.

Objective of the company

The subject and the objectives of our association are determined in the statutes.

Scope of this data protection declaration

This data protection declaration deals with personal data of interested parties and customers of our company who are natural persons and all other natural persons who are in contact with us, e.g. representatives or employees of legal entities, but also visitors of our website and people who, e.g, want to download our newsletter.

Processing of data

Personal data is information about your identity. This includes, e.g., information such as name, address, telephone number or email address. Data processing takes place in order to fulfill the contractual and legal obligations. We process data from interested parties to safeguard our legitimate interests or to initiate a contract. In certain cases we need further information such as e.g., your name and address so that we can process your request or provide the desired services. This further personal data is only recorded and saved if you provide this information voluntarily, for example in the context of an inquiry, registration, application as an employee or as a potential supplier. We work with other companies to meet our contractual obligations. This includes hosting service providers (internet, email) and telephone service providers.

Disclosure of personal data

Your personal data will only be passed on to third parties if this is necessary for the purpose of carrying out the above-mentioned activities or if you have given your prior consent. These third parties may not use the data for other purposes. We only disclose personal data about customers if we are legally obliged to do so, or if we are required to do so by a court decision or if the disclosure is necessary to enforce or protect our general terms and conditions or other agreements. This applies accordingly with regard to the storage of the data. The disclosure of the data is not for economic purposes. Our employees and the companies commissioned by us are committed to confidentiality.

Storage, deletion

Stored personal data is generally deleted after the statutory retention periods have expired. Stored personal data will also be deleted if you revoke your consent to the storage and there is no other legal basis, if their storage is no longer required to fulfill the purpose of the storage or if its storage is inadmissible for other legal reasons unless statutory retention regulations speak against deletion, the deletion is replaced by a restriction of processing (blocking). Stored personal data is also deleted if your personal data has been unlawfully processed or needs to be deleted in order to comply with legal requirements. In the event that the deletion is not possible or can only be carried out with disproportionate effort, the deletion is replaced by a processing restriction.

Information, information and correction

You can request information about your personal data processed by us. On written request, we will be happy to inform you about the data stored about you. When communicating by email, we cannot guarantee complete data security, so we recommend that you send confidential information by post. If your information is no longer correct, you can request a correction. If your data is incomplete, you can request completion. If we have passed on your information to third parties, we will inform them about your correction – if this is required by law.

Restriction of the processing of personal data

You have the right to request that the processing (blocking) of your personal data is restricted for one of the following reasons:

If the accuracy of your personal data is disputed by you and we have had the opportunity to check the accuracy.

If the processing is not lawful and you request a restriction of use instead of deletion.

If we no longer need your data for the purposes of processing, but you need it to assert, exercise or defend against legal claims.

If you have lodged an objection until it is clear whether your interests outweigh them

Right to data portability

You have the right to receive personal data that you have given us in a transferable format.

Right to object, possibility of contact and complaints

You can revoke your consent to the collection and storage of your personal data by us at any time. Even if you have any questions about our data protection or requests for correction and deletion in relation to your data, please do not hesitate to contact us by e-mail at sg@empacta.org or by post to EMPACTA e.V. Thielallee 113, 14195 Berlin. You are also entitled to file a complaint to the responsible data protection supervisory authority.

Changes to our data protection regulations

We reserve the right to change our security and data protection measures insofar as this becomes necessary due to technical developments. In these cases, we will also adapt our data protection information accordingly. Therefore, please note the up-to-date version of our data protection declaration.