Last Updated: 28th December 2023
1. What is Personal Data?
In the context of the GDPR, Personal Data is defined as any information relating to an identified or identifiable natural person. An identifiable natural person is someone who can be identified, directly or indirectly, by reference to an identifier such as a name, an identification number, location data, an online identifier, or other factors.
2. How do we handle personal data?
We are responsible for handling the personal data provided to us or collected by us. We ensure that the processing of personal data complies with applicable legislation, including the GDPR and other applicable Swedish data protection legislation.
3. What Personal Data do we collect?
You may be able to use our website without providing us with any data. There may be a request for data about you on some pages, for example, when you register to receive our newsletter, fill in contact forms or the like.
We collect personal information that you voluntarily provide to us when you use our website, express an interest in obtaining information about us, or otherwise when you engage with us. All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information. The personal information that we collect depends on the context of your interactions with us, the choices you make, and the features you use. The personal information we collect may include the following:
- Email addresses
We may collect information that you voluntarily provide to us when reporting instances of corruption or unethical behavior encountered with our services or employees. This information could include specific details about the nature of the issue or concern. When submitting a report, you have the option to provide your contact details, such as an email address. This is entirely voluntary and not a requirement for submitting a report. If you choose to provide your contact details, they will be used exclusively for communications related to your report and not for any other purposes. We ensure that any personal data collected, apart from the contact details you may provide, will be anonymized and not identifiable to you.
4. In what contexts do we collect personal data?
We treat your Personal Data with respect and solely for purposes compatible with our organization’s activities and values.
We process personal data to conduct our operations. Specifically, this means:
- Communicating with individuals
- Administering memberships or donations
- Responding to inquiries and related matters
Personal data is primarily collected in the following contexts:
- When expressing interest in subscribing to our newsletters or during other email communications with us
- When filling in our contact forms
- During donation process
- During membership registration
- When signing up for our events
We track the number of visitors to centralasien.org. The collected statistics are solely managed by Centralasiengrupperna’s staff. The statistics are analyzed to improve our operations and are not shared with third parties for marketing or similar purposes.
7. What personal data do we share and why?
Service Providers: We may disclose your information to trusted third-party service providers who assist us in providing our Services. These entities may include payment processors and IT service providers. For instance, when subscribing to our newsletter, your email address may be shared with the provider of the system we use for email dispatch. We enter into agreements with these third parties to ensure that they handle your information securely and in accordance with applicable privacy laws and regulations.
Legal Compliance: We may disclose your information if required to do so by law, regulation, or legal process, including to respond to a subpoena, court order, or government request. We may also disclose your information to exercise or defend our legal rights or to protect the rights, property, or safety of our users, employees, or others.
8. Storage of personal data
When we have no ongoing legitimate need to process your personal information, we will either delete or anonymise such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
9. Your Rights as a Data Subject
You have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your personal information, (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; (iv) if applicable, to data portability; (v) right to receive a record of processing activities. In certain circumstances, you may also have the right to object to the processing of your personal information. You can make such a request by contacting us by using the contact details provided in the “Contact Us” section below. We will consider and act upon any request in accordance with applicable data protection laws.
If we rely on your consent to process your personal information, you have the right to withdraw this consent at any time by contacting us or updating your preferences. Please note however that this will not affect the lawfulness of the processing before its withdrawal nor will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.
You can unsubscribe from our newsletters at any time by clicking on the unsubscribe link in the emails that we send, or by contacting us using the details provided in the section “Contact Us” below. You will then be removed from our communication lists. However, we may still communicate with you — for example to respond to your inquiries or for other non-marketing purposes.
10. Changes to this Policy
11. Contact Us
If still unsatisfied, you may contact the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten).