Privacy Notice for United Vision Ry Association

1. Introduction

   Thank you for being a part of United Vision Ry. Protecting your personal data is a top priority for us. This Privacy Notice explains how and why we collect, store, and process your personal information, in compliance with the General Data Protection Regulation (GDPR).

2. What Information We Collect

   We may collect and process the following personal data:

   • Full name
   • Address
   • Email address
   • Contact number
   • Membership details
   • IP address
   • Cookies
   • Location (country-level, not specific addresses)
   • Device & browser information
   • Any other information you voluntarily provide

   Special Category Data: We do not intentionally collect special categories of personal data (e.g., health information, race, religion) unless you voluntarily provide it.

3. Legal Basis for Processing Your Data

   Under the GDPR, we must have a valid legal basis to process your personal data. We process your data based on the following grounds:

   • Contractual necessity: To manage your membership and provide services you have requested.
   • Legitimate interests: For purposes such as statistical analysis, research, and improving our services, provided these interests are not overridden by your privacy rights.
   • Consent: For sending newsletters or marketing communications, if you have explicitly consented.
   • Legal obligation: To comply with legal requirements, such as maintaining financial records.

4. Why We Collect Your Data

   Your data is used for purposes including but not limited to:

   • Member management
   • Sending newsletters or association updates
   • Organizing events and activities
   • Responding to inquiries or feedback
   • Statistical and research purposes

5. How We Store Your Data

   Your information is securely stored in our association management system. We implement appropriate technical and organizational measures to ensure your data is protected against unauthorized access, alteration, disclosure, or destruction.

6. How Long We Keep Your Data

   We retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Specifically:

   • Active Membership: Your data is retained as long as you are a member of the association.
   • Post-Membership: Once your membership is canceled, we retain your data for up to 10 years for administrative purposes, after which it will be securely deleted.

7. Your Data Protection Rights

   Under GDPR, you have the following rights regarding your personal data:

   • The right to access: You can request copies of your personal data.
   • The right to rectification: You can ask us to correct inaccurate or incomplete data.
   • The right to erasure: You can request that we delete your personal data, under certain conditions.
   • The right to restrict processing: You can ask us to restrict the processing of your data, under certain conditions.
   • The right to object to processing: You can object to the processing of your data, under certain conditions.
   • The right to data portability: You can request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

   If you wish to exercise any of these rights, please contact us at the contact details provided below. We may require you to verify your identity before responding to such requests.

8. Cookies

   Our website may use cookies to improve user experience. Cookies are small files saved on your browser that help us track your use of our site and enhance your experience. You can modify your browser settings to decline cookies if you prefer. 

9. Third-party Links

   Our website may contain links to external sites. This privacy notice only applies to our association, and we are not responsible for the privacy practices of other sites. We recommend that you review the privacy notices of any third-party sites you visit.

10. Use of Hotjar

We use Hotjar to better understand the needs of our users and to optimize the offering and experience on this website. With the help of Hotjar’s technology, we get a better understanding of our users’ experiences (e.g., how much time users spend on which pages, which links they click, what they like and what they don’t like, etc.) and this helps us to align our offering with the feedback from our users. Hotjar works with cookies and other technologies to collect data about the behavior of our users and their end devices, in particular the IP address of the device (only recorded and stored in an anonymized form during your website use), screen size, device type (Unique Device Identifiers), information about the browser used, location (country only), preferred language for viewing our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually prohibited from selling the data collected on our behalf.

11. International Data Transfers

If your data is transferred outside the European Economic Area (EEA), we will ensure it is protected to the same standard as within the EEA, either through the use of specific contracts approved by the European Commission or by ensuring the recipient is located in a country that the European Commission has determined provides adequate protection for your data.

12. Updates to This Notice

From time to time, we may update this notice to reflect changes in our practices, legal requirements, or for other reasons. We encourage you to review this notice periodically to stay informed about how we are protecting your data.

13. Contacting Us

If you have any questions about this Privacy Notice or the data we hold about you, or if you wish to exercise your data protection rights, please contact us:

• Email: [email protected]
• Phone: +358 40 329 0538
• Address: Miekka 2 K 156, 02600 Espoo, Finland