Privacy statement

In this privacy statement, Foundation “The Mighty Fortress” (hereinafter referred to as TMF) informs you about how TMF processes personal data, for what purposes it processes personal data, what your rights are if TMF processes personal data about you and other information that has to do with the way in which it handles personal data. This concerns personal data of all relations of TMF, obtained through various registration processes as a donor, as a newsletter recipient or as other interested parties.

What are personal data

Personal data is data that says something about a natural person. For example, name, e-mail address, date of birth, photos, etc. When (a combination of) these data can be traced back to a natural person, we speak of personal data.

Foundation The Mighty Fortress

TMF focuses on a correct and careful way of collecting and processing personal data of donors, newsletter recipients and other interested parties. The Mighty Fortress processes their personal data in accordance with the applicable legislation with regard to the protection of personal data. As of May 25, 2018, this is the General Data Protection Regulation (GDPR). TMF is responsible within the meaning of the GDPR. If you want to contact TMF about this, please use the contact details at the bottom of this privacy statement.

What personal data does The Mighty Fortress collect and what is being done with it

TMF collects and processes personal data from people with whom they have or have had a direct or indirect relationship. These are, for example, donors, newsletter recipients and other interested parties. TMF only collects personal data from your own registration or registration.

The categories of personal data that The Mighty Fortress processes are:

  • Personal data (name, gender, (e-mail) address, telephone number)
    Financial data (IBAN, payment data)

TMF only collects and processes the personal data that is necessary for the purposes for which the personal data are used. These objectives are: managing the donor administration and the financial administration, receiving donations, taking action for donor and fundraising and providing targeted information about activities and meetings.

Donors

TMF processes your name, gender, address details, telephone number, email address, relationship number and financial data for:

  • Managing the donor administration
  • Managing the financial administration
  • Donor and fundraising
  • The targeted sending of information and invitations to activities and meetings.
  • Statistical research (anonymized)

Volunteers

TMF processes your name, gender, address details, telephone number, e-mail address, customer number, financial data and the volunteer function within TMF for:

  • Managing the volunteer base
  • Organizing the various office activities
  • Managing the financial administration
  • Donor and fundraising
  • The targeted sending of information and invitations to activities and meetings.
  • Statistical research (anonymized)

Newsletter recipients

TMF processes your name, gender, e-mail address, date of registration, relationship number and reading behavior of newsletters for:

  • Sending mailings you have signed up for
  • Donor and fundraising
  • Statistical research (anonymized)

Participants in working holidays

TMF processes your name, gender, address details, telephone number, email address, relationship number and financial data for:

  • Organizing travel and accommodation in relation to the relevant project
  • Managing the financial administration
  • Donor and fundraising
  • The targeted sending of information and invitations to activities and meetings.
  • Statistical research (anonymized)

Other interested parties

When requesting information or registering for meetings for interested parties, TMF only processes personal data that is necessary for that purpose. This includes your name, address, telephone number and e-mail address for:

  • Sending the information you have requested
  • The targeted sending of information about a meeting that you have registered for
  • Donor and fundraising

How long does "The Mighty Fortress" store your personal data

TMF does not store personal data longer than necessary for the purposes for which the data was collected.

The retention period for personal data depends on the purpose for which the personal data are used. For example, certain personal data (such as the name and address of donors and other donors) must be kept for seven years under statutory regulations. After your personal data is no longer necessary, it will be deleted.

How does The Mighty Fortress deal with security, confidentiality and external parties

We are aware that personal data has been entrusted to us and that we must treat it confidentially. Personal data is stored securely and carefully and no longer than is necessary for use within TMF or for the purpose for which it was processed.

TMF has taken appropriate technical and organizational measures to protect personal data against loss or any form of unlawful processing.

Who can access your personal data

Within TMF, personal data is collected and processed by the members of the board. Only the secretary can view the personal data and make changes.

All board members have been instructed in a careful way of handling personal data.

Human action is involved in every process of processing personal data. TMF does not use automatically processed data based on profiling or any other way of automated decision-making.

Exchange of personal data with external parties

Personal data is only used for the activities of TMF and is therefore not shared with external organizations, unless the involved relations explicitly consent to this or unless a legitimate purpose is served by engaging external service providers.

Personal data is shared with such external service providers to facilitate the donor and financial administration, the sending of magazines and other mail and digital mailings, the management of (mail) servers, hosting the website, etc.

When TMF has personal data processed by external service providers (a processor according to the GDPR), TMF and the processor have made clear agreements about the processing and security of the personal data (laid down in a so-called processor agreement).

What are your rights

The GDPR gives people more control over their personal data. According to the GDPR, you have various rights when it comes to your personal data that TMF processes:

  • the right to information (this is what this privacy statement is for)
  • the right of access
  • the right of correction
  • the right to erasure
  • the right to withdraw consent

You can make a request for access, correction or deletion of your personal data at any time, or you can withdraw your consent regarding the use of this data.

If you indicate that you no longer wish to be contacted (via a certain medium), TMF will unsubscribe you and no longer use your personal data for that purpose. You can submit such a request by e-mail to the secretary: info@devasteburcht.nl or via postal address Otterloseweg 251, 7351 TB Hoenderloo.

You will find sample letters for such requests on the website of the Dutch Data Protection Authority. Please note that in some cases TMF may request additional information to establish your identity.

Also keep in mind that TMF may not immediately delete all personal data due to legal obligations (such as retention period for the financial administration).