You can download our privacy policy here.
Privacy policy
The Dutch-Russian Law Association (DRLA) processes your personal data with
the utmost care and in accordance with the law. The DRLA would like to provide
you with the following information regarding the processing of your personal
data:
Controller
The party who determines the purposes and means of the processing of your
personal data (the ‘controller’ within the meaning of section 4 paragraph 7 of
the General Data Protection Regulation (GDPR)) is the Dutch-Russian Law
Association, an association with full legal capacity incorporated and validly
existing under the laws of the Netherlands, with its registered office at (2313
GZ) Leiden, Du Rieustraat 1 and registered in the Commercial Register of the
Dutch Chamber of Commerce under number 72911794.
Processing purposes and legal basis
The DRLA processes your personal data for administrative, membership
recruitment and communication purposes (e.g., keeping a register of our
members, managing our website (www.thedrla.org), sending e-mail
newsletters, organising events, and other communications).
The DRLA bases its processing on the following legal grounds (as summed up
in section 6 GDPR): (i) consent; (ii) performance of a contract; (iii) compliance
with a legal obligation to which the DRLA is subject; and (iv) the legitimate
interests pursued by the DRLA or by a third party (except where these interests
are overridden by your interests and/or fundamental rights and freedoms to
have your personal data protected).
The DRLA requests your consent to send newsletters and invitations to
seminars and other events and to use web beacons. You may withdraw your
consent at any time; this does, however, not affect the lawfulness of processing
based on your consent prior to it being withdrawn.
The legitimate interests for which the DRLA processes your personal data
include the keeping of orderly (financial) records, the promotion of its events,
the handling of requests of our members and the optimalization of the content
and user experience of our website, newsletters, and other communications.
Categories of personal data
The DRLA processes the following categories of personal data: name,
nationality, professional capacity, address, e-mail address, bank account
number, date of commencement and termination of membership of the DRLA,
and the reason for termination of the membership of the DRLA. The DRLA may
also process other personal data necessary for the processing purposes stated
above.
Recipients
Your personal data will be disclosed to the members of the executive board of
the DRLA and, to the extent necessary for the performance of their duties, to
the members of the advisory board of the DRLA.
The DRLA makes use of Mailchimp, an online marketing platform operated by
The Rocket Science Group LLC (a company headquartered in the State of
Georgia, USA), for sending newsletters and other communication with our
members via e-mail. Much of your personal data in that context is processed
by The Rocket Science Group LLC as a ‘processor’ (within the meaning of
section 4 paragraph 8 GDPR) on behalf of the DRLA; such processing is based
on the Data Processing Addendum that is incorporated into the agreement for
the provision of services concluded between The Rocket Science Group LLC
and the DRLA. For more information about the processing of your personal data
by The Rocket Science Group LLC as a ‘controller’ (i.e. not on behalf of the
DRLA), please refer to Mailchimp’s Privacy Policy.
Retention period
The DRLA retains your personal data no longer than necessary for the
processing purposes stated above.
Cookies and web beacons
A cookie is a text file that is stored by your browser on the hard drive of your
computer. Cookies are used to ‘remember’ you and your user preferences
(such as user language) either for a single visit to our website (through a
‘session cookie’) or for multiple repeat visits (using a ‘persistent cookie’).
Cookies ensure a consistent and efficient experience for you as a visitor of our
website, and perform essential functions such as allowing you to register and
remain logged in. Most web browsers automatically accept cookies, but you can usually change your browser setting to prevent this. If you do not want to receive
cookies, please check the Help-function of your internet browser to see how
you can block all cookies. You can also receive a signal before a cookie is
stored. A web beacon, also known as an internet tag, pixel tag or clear GIF, is
a file embedded in an e-mail used to collect information about the use of emails.
The DRLA does not use cookies on its own website. However, when you decide
to sign up for our e-mail newsletter you will be directed to a webpage containing
an online application form that lies within the web domain of The Rocket
Science Group LLC (Mailchimp). On this webpage several cookies are being
used. For more information about the nature and use of cookies by The Rocket
Science Group LLC, please refer to Mailchimp’s Cookie Statement. Moreover,
web beacons are embedded in the e-mail newsletter that we send to our
members via Mailchimp in order to analyze how our members interact with its
content (whether and when a newsletter is opened and what kind of content is
mostly read).
Your rights
Based on the GDPR and the terms and conditions stated therein, you have the
right to request us to give you access to the personal data that are being
processed of you by the DRLA. Moreover, if these personal data are incorrect,
incomplete or irrelevant, you have the right to ask us to alter or supplement
them. You also have the right to object to – or obtain restriction of – the
processing of these personal data and to ask the DRLA to erase them. The
DRLA shall communicate any rectification or deletion of your personal data or
restriction of processing to each recipient to whom your personal data have
been disclosed, unless this proves impossible or involves a disproportionate
effort. Upon your request, the DRLA shall inform you about those recipients.
You also have the right to receive your personal data provided to us in a
structured, commonly used and machine-readable format and to transmit those
data to another controller (or have those personal data transmitted by the DRLA
directly to another controller, where technically feasible).
If you wish to make use of the aforementioned rights, please contact the DRLA
by letter or email, using the contact details shown below. The DRLA will take a
decision on your request within one month.
You also have the right to submit a complaint to a supervisory authority. The
competent supervisory authority in the Netherlands is the Dutch Data Protection
Authority.