Privacy Policy

Data Protection Information

1. Introduction The Groningen Studenten AlpenClub takes your privacy seriously and is committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR). This document explains how we collect, use, store, and protect your personal information.

2. What Personal Data We Collect We may collect and process the following types of personal data:

  • Name and contact details (email, phone number, address)

  • Date of birth

  • Student status and university affiliation

  • Emergency contact details

  • Membership and event participation records

  • Payment information (for membership fees and event costs)

  • Medical information (if provided voluntarily for safety purposes)

3. Purpose of Data Processing We process your personal data for the following purposes:

  • Membership administration and communication

  • Organizing events, training sessions, and competitions

  • Processing payments and financial administration

  • Ensuring the safety of participants during activities

  • Complying with legal obligations and insurance requirements

4. Legal Basis for Processing We process personal data based on the following legal grounds:

  • Your consent (e.g., for marketing communications or storing medical information for safety reasons)

  • Performance of a contract (e.g., membership agreement)

  • Compliance with legal obligations (e.g., financial reporting)

  • Legitimate interest (e.g., ensuring the safety and organization of climbing activities)

5. Data Retention We retain personal data only as long as necessary for the purposes stated above. Membership data will be stored for the duration of your membership and up to two years after cancellation, unless required by law to keep it longer.

6. Data Sharing and Third Parties We do not sell or share your personal data with third parties except:

  • When required by law or regulatory obligations

  • With service providers assisting in membership administration (e.g., payment processors, insurance companies)

  • In case of emergencies, with relevant authorities or medical professionals

7. Your Rights Under the GDPR, you have the following rights:

  • Right to access: Request a copy of your personal data

  • Right to rectification: Request correction of inaccurate data

  • Right to erasure: Request deletion of your data (subject to legal constraints)

  • Right to restrict processing: Limit how we use your data

  • Right to data portability: Request transfer of your data to another organization

  • Right to object: Object to processing based on legitimate interests

  • Right to withdraw consent: Withdraw consent at any time for processing based on consent

8. Data Security We take appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse.

9. Contact Us If you have any questions about our data protection practices or wish to exercise your rights, please contact us at:

Groninger Studenten AlpenClub
Blauwborgje 16
Email: bestuur@gsac.nl

10. Changes to This Policy We may update this policy from time to time. The latest version will always be available on our website. This page is meant to inform you of how we are using your data, and is not legally binding in nature.

Last updated: [19 February 2025]