Privacy Policy

Privacy Policy

In accordance with Article 13 of the Regulation (EU) 2016/679 (General Data Protection Regulation or “GDPR”), this Privacy Policy details the methods and objectives of personal data processing undertaken by YAS, acting as the Data Controller (hereafter referred to as the “Controller”), via the website (“the Website”). We ensure that the processing of user data adheres strictly to the prevailing personal data protection regulations. The Controller reserves the right to modify this Policy at any time. Users will be notified of any changes through suitable means. For additional information or inquiries, please contact us at [email protected].

About the Website

The Website is designed to minimize the collection and utilization of users’ identifiable information. Processing is avoided when objectives can be met through alternative methods. This Policy exclusively pertains to the Website and does not extend to any external pages or websites linked from our site or managed by third parties. Users are advised to review the privacy policies of these third-party sites for a comprehensive understanding of their data processing practices.

Purpose of Data Processing

The Controller processes personal data for the following purposes:
  • Enabling users to join the association via the “Become a Member” section.
  • Facilitating user access to their personal accounts through the “Member Login” feature.
  • Addressing inquiries made by users through the “Info & Contact” section.
  • Allowing users to apply for participation in Y7, Y20, and other YAS initiatives.
  • Enabling user participation in online activities.
  • Distributing newsletters for informational purposes, contingent upon user consent.

Data Collection

User-Provided Data

When users voluntarily submit personal details like their name, surname, or email, the Controller will inevitably capture this data. This is essential to address user requests and deliver the requisite services. Users wishing to minimize data collection are advised either not to submit requests or to provide minimal personal information.

Data Processing Methods

Personal data is primarily processed electronically. Only individuals expressly authorized by the Controller will handle this data, ensuring full compliance with relevant regulations. Data is retained in a format that identifies users only for the duration necessary to fulfill the original collection purposes, always within legal constraints.

Data Sharing

User data will not be shared or disclosed to third parties without explicit, informed consent. However, it should be noted that in certain circumstances, such as legal obligations or directives from competent authorities, user data might be shared with entities like law enforcement agencies.

Security Protocols

The Controller implements robust security measures to mitigate risks of data loss, unauthorized access, or non-compliant processing.

User Rights

Users have the right to:
  • Confirm whether their personal data is being processed and receive this data in a comprehensible format.
  • Request updates, corrections, or additions to their data.
  • Seek deletion, anonymization, or restriction of their processed data.
  • Object to the processing of their personal data.
These rights can be exercised anytime by reaching out to the Controller at [email protected].