This is the privacy notice of the European Automotive Research Partners Association - EARPA. In this document, “we”, “our”, or “us” refer to EARPA. Our contact details can be found here.
EARPA acknowledges that the lawful and correct treatment of personal data and information is crucial and is fully committed to the principles of data protection, as set out in the General Data Protection Regulation (GDPR).
This privacy notice explains and will attempt to help you understand what information is collected, how we use this information and what to expect when EARPA collects and processes it.
What information do we collect and receive about you?
We collect personal data and information about you when you register with us as a member and/or subscribe to our newsletter. We have an interest in ensuring that you receive only the communication that is relevant and applicable to yourself. The types of personal data we hold are listed below:
We will use the personal information above to send you our newsletter and grant you access to our intranet if you are an EAPRA member, or to invite you to our events and provide you with information on them if you are an external contact. You may opt out of this at any time by contacting us.
How we use the information about you
Information that you supply will be treated in confidence and in accordance with the principles of the GDPR.
We store this information in safe and secure tool that includes an internal and external memebrs database hosted by a third-party provider. This information is kept as accurate as possible – all of our staff regularly take responsibility for keeping this database up to date. With the same tool, we create and deliver our newsletters and mailings to our members. With this we gather automated statistics around email opening and clicks using industry standard technologies including clear gifs to help us monitor and improve our newsletter.
We use Twitter, to manage and handle our social media interactions. If you send us a private or direct message then we will store this for 3 months before deleting the correspondence. This will not be shared with anyone else.
In addition, we do also have hard copies of data, securely and safely stored in the office and this information is never shared.
We will amend your personal record as soon as you tell us that your details have changed (e.g. a change of job title or an organisation name). If you leave an organisation and would like us to delete your record, this will be done as soon as we are informed.
In summary, EARPA communicates with you through certain means and on the following basis:
We will not share any of the information you provide during the period of your membership with any third parties for marketing purposes or store any of your information outside of the European Economic Area. The information you provide will be held securely by us and/or our data processors whether the information is in electronic or physical format.
Basis for information processing – why we use the information about you
All of the information you provide will only be used for the purpose of progressing your application and for its intended purpose, or to fulfil legal or regulatory requirements if necessary. We ensure that we collect only the minimum personal data necessary and keep it for only as long as necessary, after which it is deleted from our database.
There are certain bases under which we process different categories of your personal information. The three categories explained below are applicable from an EARPA perspective:
When an account is created via our website, or your organisation applies for membership via another means such as email or post, and an authorised representative has agreed to our terms and conditions, then a contract is formed between yourselves and EARPA. In order to carry out these obligations, the information that you provide us, personal or otherwise must be processed accordingly.
Certain actions by yourself require no contractual obligation, for example simply browsing our website or inquiring about events that we run. On the other hand, subscribing to our newsletter or registering for access to our intranet would involve entering into a contract as explained above. However, if, during the course of any of these actions you provide us with personal information, then you also now have to provide us with consent.
We aim to obtain your consent to process any personal information through an opt-in process. Essentially this means that whenever you will be asked for personal information by EARPA you will first be asked for your explicit consent by us – that you are content and in agreement that we will process your data and information in a legal and safe manner and for a specific purpose. This consent has to be stated clearly and explicitly and must be an active traceable action by the individual rather than passive acceptance through pre-ticked boxes or opt-outs.
The withdrawal of consent can also easily be exercised at which point we will discontinue processing your information.
You may withdraw your consent at any time by instructing us via firstname.lastname@example.org.
On occasions we must process your personal information in order to comply with a statutory obligation. For example, we may be required to provide information to legal authorities upon their request or if they have proper authorisation.
Other information we may retain
EARPA may also collect and receive:
How do we protect the security of your information?
EARPA takes the security and privacy of your personal data seriously taking into account the potential sensitivity of this information. Various organisational and technical measures are taken to protect information you provide to us from loss, misuse, and unauthorised access, alteration or disclosure.
We handle two different databases. One for external contacts and one for members with access to our intranet. Neither database is accessible by third parties and is only handeld by our staff. Contact details from members with access to our intranet can be found on our intranet (in the members address book) by other EARPA members with access to our intranet. We do not provide the option to download contact details of any of our members, they can only be looked up.
To learn more about current practices and policies regarding security and confidentiality of Customer Data and other information, please contact the EARPA Secreteriat.
When can we share and disclose your information
EARPA may share information with others as follows:
Requesting access about the data we have
You have the right to access the information we hold about you. This is called a subject access request. To make this request please contact the EARPA Secretariat under info(at)earpa.eu.
36-38, Rue Joseph II
If you would prefer us to:
Please tell us. You can do so by emailing us. We will make any changes requested as soon as possible.
You also have the right to ask us for a copy of the information we hold about you and to have any inaccuracies in your information corrected. Furthermore, if you feel that we have not satisfactorily handled and processed your data or information, please do contact us and we will do everything we can to rectify the problem.