1. GENERAL PROVISIONS
We, Jūrmalas Ebreju biedrība (registration No. 40008106411) and Jūrmalas Ebreju draudze (registration No. 50801052731) (hereinafter referred to as “We”), are aware of the importance of protecting the privacy of all participants, especially since We have data on the religious and ethnic affiliation of participants. (General Data Protection Regulation, effective May 25, 2018 (hereinafter referred to as the General Data Protection Regulation), Article 9(2)(d).)
The purpose of this policy is to inform and explain how We protect the personal data that We hold, how and for what purposes the data is processed, as well as to familiarize with the rights and obligations of data subjects. When processing personal data, We comply with the laws and regulations in force in the Republic of Latvia, as well as mandatory instructions and regulations issued by the relevant institutions.
2. HOW DO WE GET PERSONAL DATA?
The information we receive from a person depends on the type of cooperation. We collect personal data mainly in the following ways:
- the data subject provides Us with his/her personal data;
- We receive data from other sources, for example, when you participate in an event organized by Us, during which photos or videos of which information was provided in advance may be taken.
3. WHAT PERSONAL DATA DO WE COLLECT?
The types of personal data may vary depending on the type of cooperation or communication. In general, We divide the types of personal data into the following categories: basic personal data (personal identification data, including contact and communication data, consent data, personal visual data (photos, videos, etc.), personal data of documents and etc.) ), data on children (data on the minor children of the participants), data on the religious and ethnic affiliation of the person (in accordance with Article 9 (2) (d) of the General Data Protection Regulation).
4. HOW DO WE USE PERSONAL DATA?
We process personal data to provide a register of our members, to organize events related to Our activities.
For the security of personal data, We prefer anonymous processing of data in order to avoid re-identification. However, the nature of the collaboration or event often requires the processing of personal data of an identifiable person.
We process personal data only for specific and necessary purposes based on certain legal grounds, including our legitimate interests, such as: providing services, seeking opinions, resolving problems, communicating with our members or candidate members, enforcing mandatory laws, the safety of our members and visitors, employees, information, preventing threats, facilitating detection criminal acts in and around facilities, including information systems, accounting/financial and tax management.
In any of these cases, We process personal data only to the extent permitted by the specific purpose of processing.
5. HOW DO WE PROTECT PERSONAL DATA?
To protect the interests of people, We are constantly improving our processes and security measures. Such security measures include the protection of personnel, information and technical resources, IT infrastructure, internal and public networks, and our buildings. As part of these measures, We maintain an appropriate level of information security to prevent unauthorized access to personal data.
6. TO WHOM WE MAY SHARE PERSONAL DATA?
The exchange of personal data may be necessary in certain cases where it has a specific purpose, for example, We may need to provide personal data to the following categories of recipients:
1. To public institutions, such as the State Revenue Service, information about donations of community members or the Register of Enterprises of the Republic of Latvia about members community board,
2. To each individually at his individual request - by himself or by another person on on the basis of a power of attorney
3. Cooperation partners with whom an agreement and an agreement on the processing of personal
data, for example, to ensure delivery (couriers, mail, etc.).
We also process anonymized data that is not associated with a specific person and does not allow the identification of the data subject. Such data may be used for other purposes and shared with others.
We ensure the confidentiality of personal data by taking security measures in accordance with regulations.
7. HOW LONG DO WE RETAIN DATA?
We retain personal data only for as long as necessary to fulfill the purposes set out in this Privacy Policy, except where longer retention is required or permitted by applicable law.
There are no restrictions on the direct storage of anonymized data, but We also store them only to the extent and for the required period of time.
8. WHAT ARE THE RIGHTS AND OBLIGATIONS OF THE DATA SUBJECT?
The data subject has the right:
• get acquainted with the information we have about him, only this does not contradict normative acts and does not unreasonably infringe the rights of other persons; information about yourself can be obtained in any way acceptable to us that allows Us to identify a person;
• request access to your data, correction or, if necessary, addition, deletion
(right to “forget”), restriction of processing or objection to processing in cases where specified in regulatory enactments, as well as the right to data portability. If the applicant chooses to receive information about themselves remotely, for example, by mail, e-mail, to another address, etc., the applicant is responsible for the security of the chosen method of obtaining and the actions of persons acting on behalf of the applicant.
• request a copy of the personal data being processed, provided that this does not adversely affect the rights and freedoms of others.
• withdraw your consent at any time. Giving or withdrawing consent is free individual's choice and does not impose any additional obligations. However, if a person decides to revoke one of the consents given, it should be borne in mind that the processing of data, associated with this consent will no longer be granted and that the previous possibilities may not be available. Such revocation does not affect the lawfulness of the processing carried out prior to the revocation.
• contact us and the supervisory authorities regarding data processing. If you need more information about this Privacy Policy, aspects of data processing or applicable data protection laws, please contact us so we can consider the question and answer. In any case, you always have the right to file a complaint and
State Data Inspectorate.
We process applications from our data subjects free of charge. Consideration of an application may be refused or a reasonable fee may be charged if the application is manifestly unfounded or in other cases established by regulatory enactments. The application can be submitted in person or remotely, but in a way that makes it possible to identify a particular subject of personal data.
The data subject is obliged:
• provide Us with information about changes in the data provided within a reasonable period of time. It is important for us that we have reliable and up-to-date information.
• provide additional information as needed. Through communication and cooperation We may request additional information to ensure that communication or cooperation occurs with a specific individual.
• read this Privacy Policy.
9. HOW TO CONTACT US?
If you have any questions or concerns regarding this Privacy Policy or the processing of personal data, please contact Us using the contact information provided below.
Jūrmalas Ebreju biedrība, address: Bulduru avenue 33, Jurmala, LV-2010, or Jūrmalas Ebreju draudze, address:
Bulduru avenue 33 k-3 - 1, Jurmala, LV-2010;
Contact phone: +37126886502; e-mail: info@jewrmala.lv