INATBA (“we”) is the operator of the website https://inatba.org (the “Website”). We collect andprocess personal data of individuals (the “User” or “you”) using the Website and the servicesoffered through the Website. The protection and confidentiality of your personal data is ofparticular importance to us. We treat your personal data confidentially and in accordance withthe applicable data protection laws, in articular with the EU General Data ProtectionRegulation (the “GDPR“).
In the following, we will inform you what data are collected during your visit of our Website, as well as the legal bases for the processing of personal data, the purpose of the dataprocessing, the use, the duration of the storage of data and your rights.
The responsible body (the “Controller”) within the meaning of the GDPR is:
International Association for Trusted Blockchain Applications (in formation)
If you have any questions relating to data processing and your rights according to theapplicable data protection laws, you may contact us by email: firstname.lastname@example.org.
The provider of the Website automatically collects and stores information in so-called server log files. Such information is needed to establish a connection to the Website. The processed information is:
The data is also stored in the log files of our system. These data are not stored together with other personal data of the user and is not combined with other data sources.
The legal basis for processing of the data is Article 6 (1)(f) GDPR. The log files are processed for technical and administrative purposes of establishing and maintaining a connection in order to guarantee the security and functionality of the Website and to be able to prosecute any illegal attacks on it if necessary.
Our legitimate interest in data processing pursuant to Art. 6 (1)(f) GDPR results from the security interest mentioned and the necessity of a trouble-free provision of our Websites.
Data will be stored for one month.
We make use of the following type of cookies:
As a rule, our cookies expire automatically.
Cookies can also be explained on the basis of who issues them. They can be divided into:
Most of the cookies we use are so-called session cookies. They will automatically be deleted at the end of your visit. Other cookies remain stored on your device until you delete them.These cookies enable us to recognize your browser the next time you visit our Website.
We erase your Personal Data automatically when they are no longer required for the purposes listed above. We also erase your Personal Data according to your request and if further storage is neither required nor permitted by applicable laws.
This Website uses the functions of the web analytics service Google Analytics. The provider is Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (“Google”). Google is certified under the EU Privacy Shield and thus guarantees compliance with European data protection laws, https://policies.google.com/privacy/frameworks?hl=en&gl=de.
Google will use this information to evaluate your use of our Website, to compile reports on website activity and to provide other services associated with the use of the Website and the Internet. Google may also transfer this information to third parties if required by law or if third parties process this data on behalf of Google. Information generated by the cookies are automatically deleted by Google after one month or earlier in accordance with the settings of your web browser.
This processing is required to pursue our legitimate interests (Art. 6 paragraph 1 lit. f GDPR) to provide website visitors with a website experience that is tailored to their personal preferences and to provide product recommendations and advertising for our company and our products that are tailored to their interests. The transfer to the United States of America is based on an adequacy decision by the EU Commission (Art. 45 GDPR) due to the recipient’s participation in the “EU-US Privacy Shield”.
The legal basis for storage and processing of data is Article 6 (1) (f) GDPR. The processing is necessary for communication with you being the legitimate interest in data processing pursuant to Article 6 (1) (f) GDPR.
We will delete your personal data as soon as the purpose of the storage no longer applies.
We collect the following data from our members:
Corporate Name, Logo, Email, Postal Address, Legal representative, email, Membership category.
We use your e-mail address to communicate with you. We use G Suite, the e-mail service provider of Google. For more information please see https://gsuite.google.com/terms/dpa_terms.html?_ga=2.33963492.433621457.1528117485-659710155.1528117485.
Data may be disclosed to professional service providers, we might engage for administration of membership fees.
The legal basis for data processing is Article 6 (1) (b) GDPR. The data processing described in this section is needed to conclude and/or execute the membership contract with you.
Personal data are stored for the duration of (i) contract and the winding-up of the contract after termination, and (ii) any existing legal retention obligations according to applicable laws obliging us to keep on storing after that moment.
We process your personal data in strict accordance with the applicable privacy legislation and on the basis of the following legal grounds:
1- Reliable partners
2- Technical security measures
In terms of access (login requirements, password policy, role division, etc.), storage (encryption, backup, etc.), and protection against outside access (firewall, antiviral software, etc.) of the media on which personal data can be stored.
3- Organisational measures
This includes raising awareness among employees and service providers concerning the importance of privacy, the enforcement of policies, the continuous maintenance of a data register, compliance with a data policy, etc.
If we process your personal data based on grounds of legitimate interest (such as processing for prospection purposes to persons we have no prior relationship with), we will conduct a “legitimate interest assessment” (or “balancing test”) to assure that additional safeguards are foreseen and applied. This way, we guarantee a proportionate and balanced processing of your data in accordance with the privacy legislation.
Despite the security measures that we take, it is important to know that the transfer of data via an Internet connection is never without risks and you must take the necessary precautions when you are connected with the Internet in order to protect yourself from viruses, malware, etc.null
In the following, we inform you on your rights that you have in connection with the processing of personal data by us and may exercise according to applicable data protection laws, in particular to the GDPR.
You have the right at any time to demand information on if we process your personal data. In the event of such processing, you may request the following information from us: (i) the purposes for which personal data are processed; (ii) the categories of personal data which are processed; (iii) the recipients or categories of recipients to whom your personal data have been or will be disclosed; (iv) the planned duration of the storage of your personal data or, if specific information is not possible, criteria for determining the storage duration; (v) the existence of a right to correct or delete your personal data, a right to restrict the processing by us or a right of objection to such processing; (vi) the existence of a right of appeal to a supervisory authority; (vii) all available information on the origin of the data if the personal data are not collected directly from you; (viii) the existence of automated decision-making,including profiling in accordance with Article 22 paragraph 1 and 4 GDPR and, at least in these cases, meaningful information on the logic involved and the scope and intended impact of such processing on you.
You have the right to request information on whether your personal data are transferred to a third country or to an international organisation. In this context, you may request to be informed on the appropriate guarantees in connection with the transfer of data.
You have the right to demand us to correct and/or complete your personal data if your personal data processed is incorrect or incomplete.
You may demand your personal data to be deleted if (i) the personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed;(ii) you revoke your consent to the processing and there is no other legal basis for the processing; (iii) you submit an objection to data processing and there are no predominant justifiable reasons for the processing; (iv) your personal data have been processed illegally;(v) the deletion of your personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which we are subject.
You may request to restrict the processing of your personal data if (i) you deny the accuracy of the personal data for a period of time that enables us to verify the accuracy of the personal data; (ii) the processing is unlawful and you refuse to delete the personal data and instead request the restriction of the use of the personal data; (iii) we no longer need your personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims; (iv) if you have lodged an objection against the processing and it has not yet been determined whether the legitimate reasons of the person responsible outweigh your grounds.
You have the right to obtain your personal data in a structured, commonly used and machine-readable format. You have the right to transmit your data to another Controller. Where technically feasible, you have the right to have your data transmitted directly from us to another Controller.
On grounds relating to your particular situation, you have the right to object at any time to the processing of your personal data which is carried out on the basis of Article 6 (1) (f) GDPR. Such grounds exist, in particular, if they underline your interests and outweigh our interest in the respective data processing. If your personal data are processed in order to carry out direct advertising, you have the right to object at any time to the processing of personal data for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct advertising.
If you give us the consent to process your personal data, you have the right to revoke your consent at any time. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.
You have the right to address the supervisory authority for any questions or complaints. The supervisory authority is: https://www.dataprotectionauthority.be
For the following processing tasks, we collaborate with other companies that process your data but which are not allowed to use this data themselves:
There are also companies that could process your data for their own purposes via third-party cookies.