PRIVACY POLICY
Privacy Policy in accordance with the GDPR
for the non-profit association The Palace Collective e.V.
Effective Date: 14.03.2025
1. Data Controller in accordance with the GDPR
The data controller responsible for data processing in accordance with the General Data Protection Regulation (GDPR) is:
The Palace Collective e.V.
Roseggerstrasse 25/26, 12059 Berlin
contact [at] 90mil.berlin
2. Collection and Processing of Personal Data
We collect and process personal data only to the extent necessary for fulfilling the purposes of our association. Data processing is carried out in compliance with the provisions of the GDPR and the German Federal Data Protection Act (BDSG).
The following data is collected:
Names
Email addresses
Payment information (e.g., bank account or credit card details)
3. Purpose of Data Processing
The data you provide is processed for the following purposes:
Management of memberships
Communication with members and interested parties
Processing of donations and membership fees
Fulfillment of legal obligations
4. Legal Basis for Data Processing
The processing of your data is based on the following legal grounds:
Article 6(1)(a) GDPR (Consent)
Article 6(1)(b) GDPR (Performance of a contract or pre-contractual measures)
Article 6(1)(c) GDPR (Compliance with legal obligations)
5. Disclosure of Data
Your personal data will only be disclosed to third parties if it is necessary for fulfilling the purposes of our association or if you have given your explicit consent. This includes, in particular:
Banks and payment service providers for processing payments
Authorities, insofar as legal reporting obligations exist
Your data will not be disclosed to third parties for commercial purposes.
6. Storage Duration
Your personal data will only be stored for as long as necessary to fulfill the purposes of the association or to comply with legal retention obligations. Once the purpose no longer applies or the legal retention periods expire, your data will be deleted.
7. Your Rights under the GDPR
You have the following rights regarding your personal data:
Right of Access (Article 15 GDPR)
Right to Rectification (Article 16 GDPR)
Right to Erasure (Article 17 GDPR)
Right to Restriction of Processing (Article 18 GDPR)
Right to Object (Article 21 GDPR)
Right to Data Portability (Article 20 GDPR)
If you have given your consent, you can withdraw it at any time with future effect.
To exercise your rights, please contact:
[Email Address or Contact Details of the Data Protection Officer, if applicable]
8. Right to Lodge a Complaint with a Supervisory Authority
You have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data by us. The relevant supervisory authority in Germany is:
[Name and Contact Details of the Relevant Supervisory Authority, e.g., the State Data Protection Commissioner of the federal state where the association is located]
9. Security of Your Data
We implement technical and organizational measures to protect your data from unauthorized access, loss, or misuse. Our security measures are regularly reviewed and adapted to technological advancements.
10. Changes to this Privacy Policy
We reserve the right to update this privacy policy to reflect changes in legal requirements or changes in our data processing practices. The current version is available on our website.
11. Contact
For questions regarding data protection, please contact: contact [at] 90mil.berlin
PRIVACY POLICY