FAUSA takes your privacy seriously. Because you provide us personal information (information is considered personal if it can be associated exclusively to a specific natural person) as a member of our organization, we are a “controller” of personal information as defined by the EU General Data Protection Regulation (“GDPR”).
In compliance with the GDPR, this privacy notice describes what personal data we collect as part of your membership; how, why, for how long we will use it, and how we keep it secure.
What type of information is collected from you?
We offer you the opportunity to apply online for a FAUSA membership. The information entered when signing up, as shown in the registration form, is collected and stored for use by our website and communications platform. When you sign up to access member-only sections of our website, or when you register for an event, we also store your IP address and the date and time you registered. This serves to protect us in the event a third party improperly and without your knowledge makes use of your data to sign up for our site. None of this information is transferred to third parties. Nor is any of this information matched to any information that may be collected by other components of our website.
Why do we collect this information?
We process our members’ personal information in pursuit of our legitimate interests:
- To verify that applicants fulfill membership requirements.
- To communicate with you about your membership account and notify you of any changes to our services.
- To provide you with news and updates about the activity of the organization and opportunities in which you have indicated an interest.
- To respond to and investigate your questions, comments, support needs, complaints, or concerns.
How do you access and update your personal information?
You always have the right to:
- Access the personal data that we hold about you.
- Restrict the processing of your personal data for specific purposes.
- Request that we correct your personal data if you believe it is inaccurate or incomplete.
- Request that we delete your personal information.
How can you accomplish these things?
Accessing or Updating Your Data
Online: You can view and modify the personal data we hold about you at any time via your web site login. Log in to the website at www.fausa.org. Then click on the “Members” section, then on the Update Your Membership Profile/Details item listed. This page displays all the information we hold about you in our membership database and you can change the pertinent information.
Offline: You must contact the 2nd VP, Membership at firstname.lastname@example.org to request your information be sent to you or to update your data while offline.
Deleting Your Data
You have the right to request deletion of data at any time; however, be aware that FAUSA may not be able to continue your membership benefits or allow event registration without it.
We may also keep anonymized demographic data for historical reporting purposes. This demographic data will not contain any individually identifiable personal information.
When does FAUSA contact you, and how can you manage your communication preferences?
Currently, FAUSA automatically sends newsletters and other pertinent communications about our activities to our members as part of our mission. Each member always has the right to control whether they receive these newsletters. If a member no longer wishes to receive the newsletter, each newsletter includes an “unsubscribe” link at the bottom. You can always click that link to unsubscribe from the email newsletter.
A request to be removed from any or all newsletters may also be made in writing by sending an email to the 2nd VP, Membership at email@example.com.
How do we protect your personal information?
Your contact information is available to FAUSA members through our online password-protected Membership Directory. Any other personal information is only accessible by certain members of the FAUSA Board (President, 1st VP, Communications, 2nd VP, Membership), by the web manager, or by committee chairs when relevant. Those allowed access to this data are given strict GDPR-compliant guidelines about how the information may be accessed and used.
Your data is stored by FAUSA in a password-protected database on our web server. When filling out the online application, or updating your membership data online, your personal data is sent directly via encrypted HTTPS connection to our password-protected database.
External Service Providers
FAUSA never shares or sells your personal information to any third party for any purpose not directly related to our organization’s statement of purpose.
However, FAUSA does use third party suppliers to provide some services necessary to serve our membership. These suppliers may process personal data on our behalf as “processors” and are subject to contractual conditions to only process that personal information under our instructions and protect it.
In the event that we share personal information with external third parties, we only share such information strictly required for the specific purposes and take reasonable steps to ensure recipients shall only process the disclosed personal information in accordance with those purposes.
These third parties currently provide services for FAUSA, and we have documented that they are GDPR compliant:
- Google (Analytics)
- Constant Contact
- Zoom (when coming from IP addresses detected in the EU)
Parts of our website may also be used without entering personal information. Different rules may apply to certain services on our site, however, and are explained separately below. Please be aware that, regardless of whether you provide personal information, data transfer via the internet is subject to security risks and, therefore, complete protection against third-party access to transferred data cannot be ensured.
Our website makes use of so-called cookies in order to recognize repeat use of our website by the same user/internet connection subscriber. Cookies are small text files that your Internet browser downloads and stores on your computer. They are used to improve our website and services. In most cases these are so-called "session cookies" that are deleted once you leave our website.
To an extent, however, these cookies also pass along information used to automatically recognize you. Recognition occurs through an IP address saved to the cookies. The information thereby obtained is used to improve our services and to expedite your access to the website.
For technical reasons, data such as the following, which your internet browser transmits to us or to our web space provider (so called server log files), is collected: - type and version of the browser you use - operating system - websites that linked you to our site (referrer URL) - websites that you visit - date and time of your visit - your Internet Protocol (IP) address. This anonymous data is stored separately from any personal information you may have provided, thereby making it impossible to connect it to any particular person. The data is used for statistical purposes in order to improve our website and services.
On our website we offer you the opportunity to contact us, either by email and/or by using a contact form. Information provided by the user is stored for the purpose of facilitating communications with the user. No data is transferred to third parties. Nor is any of this information matched to any information that may be collected by other components of our website.
Use of Google Analytics with anonymization
Our website uses Google Analytics, a web analysis service from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as “Google“. Google Analytics employs so-called “cookies“, text files that are stored to your computer in order to facilitate an analysis of your use of the site.
The information generated by these cookies, such as time, place and frequency of your visits to our site, including your IP address, is transmitted to Google’s location in the US and stored there.
We use Google Analytics with an IP anonymization feature on our website. In doing so, Google abbreviates and thereby anonymizes your IP address before transferring it from member states of the European Union or signatory states to the Agreement on the European Economic Area.
Google will use this information to evaluate your usage of our site, to compile reports on website activity for us, and to provide other services related to website- and Internet usage. Google may also transfer this information to third parties if this is required by law or to the extent this data is processed by third parties on Google´s behalf.
Google states that it will never associate your IP address with other data held by Google. You can prevent cookies from being installed by adjusting the settings on your browser software accordingly. You should be aware, however, that by doing so you may not be able to make full use of all the functions of our website.
Google also offers a disabling option for the most common browsers, thus providing you with greater control over the data that is collected and processed by Google. If you enable this option, no information regarding your website visit is transmitted to Google Analytics. However, the activation does not prevent the transmission of information to us or to any other web analytics services we may use. For more information about the disabling option provided by Google, and how to enable this option, visit Google Analytics Opt-out Browser Add-on.
We use a third party provider, ConstantContact, to deliver our periodic e-newsletters. We gather statistics around email opening and clicks using industry standard technologies including clear gifs to help us monitor and improve our e-newsletter. Recipients are free to unsubscribe from these emails at any time by utilizing links provided in every email message sent.
Use of reCAPTCHA
In order to protect input forms on our site, we use the “reCAPTCHA” service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter "Google." By means of this service it can be distinguished whether the corresponding input is of human origin or is created improperly by automated machine processing.
To our knowledge, the referrer URL, the IP address, the behavior of the website visitors, information about the operating system, browser and length of stay, cookies, display instructions and scripts, user input behavior and mouse movements in the “reCAPTCHA” checkbox are conveyed to “Google.”
Google uses the information obtained, among other things, to digitize books and other printed matter as well as to optimize services such as Google Street View and Google Maps (e.g. house number and street name recognition).
The IP address provided as part of “reCAPTCHA” is not merged with other data from Google unless you are logged into your Google Account at the time the "reCAPTCHA" plug-in is used. If you want to prevent this transmission and storage of data by “Google” about you and your behavior on our website, you must log out of “Google” before you visit our site or before using the reCAPTCHA plug-in.
Use of YouTube components with enhanced data protection mode
On our website we use components (videos) of YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA, a company belonging to Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA.
To this end, we use the “ - enhanced data protection mode - ” option provided by YouTube.
When you display a page that has an embedded video, a connection will be made to the YouTube server and the content will appear on the website via a communication to your browser.
According to the information provided by YouTube, in “ - enhanced data protection mode -”, data is only transferred to the YouTube server, in particular which of our websites you have visited, if you watch the video. If you are logged onto YouTube at the same time, this information will be matched to your YouTube member account. You can prevent this from happening by logging out of your member account before visiting our website.
Further information about data protection by YouTube is provided by Google under the following link: Google Privacy & Terms.
On the basis of the Federal Data Protection Act, you may contact us if you have questions relating to the collection, processing or use of your personal information, if you wish to request the correction, blocking or deletion of the same, or if you wish to cancel explicitly granted consent. Please note that you have the right to have incorrect data corrected or to have personal data deleted, where such claim is not barred by any legal obligation to retain this data.
Whom can you contact with questions, comments, or complaints?
Please contact 1stVP@fausa.org with any questions, comments, or complaints. For issues logging in to the website, our web manager may also be contacted at firstname.lastname@example.org.
Looking for more information?
The EU GDPR Information Portal