Data Privacy Policy - Ahmadiyya Muslim Jamaat Azerbaijan

Data protection declaration of the Ahmadiyya Muslim Jamaat Germany KdöR

Name and address of the person responsible

The person responsible within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the Federal Republic of Germany, in particular the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG) is:

Ahmadiyya Muslim Jamaat (AMJ), public corporation
Genfer Straße 11
60437 Frankfurt am Main

Germany
Telephone: +49 (0) 69 50688600 Fax
: +49 (0) 69 50688666
E-Mail: datenschutz@ahmadiyya.de
Web: www.ahmadiyya.de

General information on data processing
Scope of the processing of personal data as a
matter of principle, we only process personal data of our users insofar as this is necessary for the provision of a functional website and our content. The processing of personal data of our users takes place only with the consent of the user or to safeguard the legitimate interests of AMJ. The fundamental rights and freedoms of the person concerned are preserved.2. Legal basis for processing personal data
Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 (1) (a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis. If processing is necessary to safeguard a legitimate interest of our corporation or a third party and if the interests, fundamental rights and freedoms of the person concerned do not outweigh the first-mentioned interest, Art. 6 (1) (f) GDPR serves as the legal basis for the processing.3. Data deletion and storage duration
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage no longer applies. Storage can also take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data in order to conclude or fulfil a contract.

III. Provision of the website and creation of log files and cookies

Description and scope of data processing – online
Every time our website is accessed, our system automatically collects data and information from the computer system of the calling computer.
These data cannot be assigned to specific persons. This data will not be merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of illegal use.The following data is collected:
(1) Information about the browser type and the version used
(2) The user’s operating system
(3) The Internet service provider / host name of the user
(4) The user’s IP address
(5) Date and time of access
(6) Websites from which the user’s system reached our website (referrer URL)
(7) Local GPS location determination (only for mobile devices)The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.Some of the websites use so-called cookies. Cookies do not harm your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser the next time you visit.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when you close the browser. If cookies are deactivated, the functionality of this website may be restricted.

Our website uses plugins from YouTube, operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages equipped with a YouTube plug-in, a connection to the YouTube servers will be established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile.

2. Legal basis for online data processing The
legal basis for the temporary storage of data and log files, as well as the storage of cookies, is Article 6 (1) (f) GDPR.

3. Purpose of data processing online
The temporary storage of the IP / IT user data by the system is necessary to enable the prayer times or the proximity to the local community or mosque by the user’s computer. To do this, the user’s IP address must be saved for the duration of the session.

The storage in log files takes place to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for other purposes does not take place in this context.

We test our technical systems to make sure they work as expected; Show you content in a way that is appropriate for the device you are using (for example, when you view content on a mobile device or computer); and to monitor the use of the website in order to determine the location of the visitor, to protect against disruptive use, to monitor website traffic and / or to personalize information.

A registration of the user may be necessary for the availability of certain content and services on our website (see IV. Community work, No. 1 description and scope of data processing – offline). The collection of personal data is used to contact the user, in the event of approval, by post or by phone. Furthermore, membership numbers are collected, which are collected for security purposes, so that it can be checked that the applicants are members of the community.

4. Duration of online storage
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of data collection for the provision of the website, this is the case when the respective session has ended.

If the data is stored in log files, this is the case after seven days at the latest. Any further storage is possible. In this case, the IP addresses of the users will be deleted or alienated so that it is no longer possible to assign the accessing client.

For reasons of security and to protect the transmission of confidential content, such as the inquiries that you send to us as the website operator, the AMJ uses SSL encryption for its website. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http: //” to “https: //” and by the lock symbol in your browser line. If the SSL encryption is activated, the data you transmit to us cannot be read by third parties.

5. Protection, objection and removal options
The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no possibility of objection on the part of the user.

In the meantime, you can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading the browser plug-in available under the following link and install: https://tools.google.com/dlpage/gaoptout?hl=de

You can prevent the YouTube server from being informed which of our pages you have visited and possibly your surfing behavior is assigned directly to your personal profile by logging out of your YouTube account.

We have activated the IP anonymization function on this website. As a result, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before it is transmitted to the USA. The full IP address is only transmitted to a Google server in the USA and shortened there in exceptional cases. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
Church work
Description and scope of data processing – offline
As part of our activities, we collect the following personal data from our members or interested parties if you provide them to us:
– Your name;
– Your contact details (including postal address, telephone number, email address and / or social media identity);
– Your date of birth;
– your gender;
– your membership number (AIMS ID);
– Your nationality;
– Your bank details, if you give them for a donation.Applicants for a position or the Institut Jamia will be provided with information that we need to process these applications and assess your suitability (this may include things like employment status, previous experience, depending on the context, as well as unused criminal convictions or pending legal proceedings ) collected.We also receive personal information from other sources, such as social media. Depending on your settings or the data protection guidelines for social media and messaging services such as Facebook, WhatsApp or Twitter, you can give us permission to access information from these services, for example if you tag us publicly in an event photo.2. Legal basis for data processing offline
The legal basis for the temporary storage of the data is Art. 6 Paragraph 1 lit. a and lit. f GDPR.

3. Purpose of data processing offline
To ensure intact church work, such as collecting donations, organizing conferences or events, running the theology institute Jamia and training courses, as well as information about activities and products of the AMJ and its sub-organizations to members and the public bring to; is essential for the AMJ as a corporation under public law.

Specifically, we use the personal data of members and interested parties:
– To promote our charitable goals;
– manage your donation or support your fundraising;
– organize our events;
– Send you correspondence and communicate with you;
– To provide you with the services, products or information you have requested;
– maintain your relationship with us;
– to respond to or fulfill your requests, complaints or questions that you send to us;
– understand how we can improve our services, products or information through analysis and market research;
– Check that your contact details have been updated so that we can stay in touch with you if you move (see “Updating Your Information” below);
– register, manage and personalize online accounts when you sign up for services developed by us;
– process grant applications and manage our role in the projects we fund;
– to manage our websites and to correct errors, to carry out data analyzes, to research, to compile statistics and to carry out surveys on our technical systems;
– Prepare reports on our work, services and events;
– protect our employees and volunteers;
– Carry out due diligence and ethics screening.

4. Duration of storage offline
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the community work, this is the case if the member dies or moves his residence abroad.

5. Opposition and removal
option You have the right to correct or delete personal data at any time. Information regarding the data processing, processes and storage of those affected can also be collected at the AMJ. See also under point VIII. Rights of the data subject.
Transmission of data to third parties

We may share your information with our affiliated charities and third parties. These third parties may include:
– Ahmadiyya Muslim Association United Kingdom and United States;
– Ahmadiyya Muslim Jamaat International;
– Majlis Ansarullah Germany;
– Lajna Imaillah Germany;
– Majlis Khuddam-ul-Ahmadiyya;
– Other non-profit partners, suppliers and subcontractors who may process information on our behalf;
– IT service providers

If we are legally or officially obliged to do so, we may share your data with the police, regulatory authorities or legal advisors and / or, if we deem it necessary, for the rights, property or safety of the AMJ, its employees, visitors, users To protect members or others.

Otherwise we will not pass on your personal data to third parties.

Under certain circumstances, however, AMJ or some of our suppliers may transfer your data outside of the European Economic Area (EEA) – this may be a country that is not subject to the same data protection laws as companies based in Germany. In these circumstances, we will take steps to ensure that they offer an adequate level of protection in accordance with European data protection laws and there are adequate safeguards in place. This includes imposing contractual adequacy obligations or requiring the recipient to sign or be certified with an international protective framework.

Rights of the data subject

The following list includes all rights of the data subjects under the GDPR. Rights that are not relevant for your own website do not have to be mentioned. The list can be shortened to this extent.

If your personal data is processed, you are the person concerned within the meaning of the GDPR and you have the following rights vis-à-vis the person responsible:

1. Right to information
You can request confirmation from the person responsible as to whether we are processing personal data relating to you.

If such processing has taken place, you can request the following information from the person responsible:
(1) the purposes for which the personal data are processed;
(2) the categories of personal data that are processed;
(3) the recipients or the categories of recipients to whom the personal data relating to you have been disclosed or are still being disclosed;
(4) the planned duration of the storage of your personal data or, if specific information is not available, criteria for determining the storage duration;
(5) the existence of a right to correct or delete your personal data, a right to restrict processing by the person responsible or a right to object to this processing;
(6) the right to lodge a complaint with a supervisory authority;
(7) all available information on the origin of the data if the personal data are not collected from the data subject;
(8) the existence of automated decision-making including profiling in accordance with Art. 22 Para. 1 and 4 GDPR and – at least in these cases – meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.

You have the right to request information about whether your personal data is being transmitted to a third country or to an international organization. In this context, you can request to be informed about the appropriate guarantees in accordance with Art. 46 GDPR in connection with the transmission.

2. Right to rectification
You have the right to rectification and / or completion vis-à-vis the person responsible if the processed personal data concerning you is incorrect or incomplete. The person responsible must make the correction immediately.

3. Right to restriction of processing
You can request the restriction of processing of the personal data concerning you under the following conditions:
(1) If you dispute the correctness of the personal data concerning you for a period that enables the person responsible to verify the correctness of the personal data Review data;
(2) the processing is unlawful and you refuse to delete the personal data and instead request that the use of the personal data be restricted;
(3) the person responsible no longer needs the personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims, or
(4) if you have objected to the processing in accordance with Art. 21 (1) GDPR and it has not yet been determined whether the legitimate reasons of the person responsible outweigh your reasons.
If the processing of your personal data has been restricted, this data – apart from its storage – may only be used with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest processed by the Union or a Member State.
If the processing restriction has been restricted according to the above conditions, you will be informed by the person responsible before the restriction is lifted.

4. Right to deletion
a) Obligation to delete
You can request from the person responsible that the personal data concerning you be deleted immediately, and the person responsible is obliged to delete this data immediately if one of the following reasons applies:
(1) The personal data concerning you are for the purposes for which they were collected or otherwise processed are no longer necessary.
(2) You revoke your consent on which the processing was based in accordance with Article 6 (1) (a) or Article 9 (2) (a) GDPR, and there is no other legal basis for processing.
(3) You object to the processing in accordance with Art. 21 Paragraph 1 GDPR and there are no overriding legitimate reasons for the processing, or you object to the processing in accordance with Art. 21 Paragraph 2 GDPR.
(4) The personal data concerning you have been processed unlawfully.
(5) The deletion of your personal data is necessary to fulfill a legal obligation under Union law or the law of the member states to which the person responsible is subject.
(6) The personal data relating to you were collected in relation to the information society services offered in accordance with Art. 8 Paragraph 1 GDPR.
b) Information to third parties
If the person responsible has made the personal data concerning you public and is obliged to delete it in accordance with Art. 17 Paragraph 1 GDPR, he shall take appropriate measures, including technical measures, to take into account the available technology and the implementation costs, to make the person responsible for data processing who process the personal data, that you, as the data subject, have requested them to delete all links to this personal data or copies or replications of this personal data.
c) Exceptions
The right to deletion does not exist if processing is necessary
(1) to exercise the right to freedom of expression and information;
(2) To fulfill a legal obligation that requires processing under the law of the Union or of the member states to which the person responsible is subject, or to perform a task that is in the public interest or in the exercise of official authority that is transferred to the person responsible has been;
(3) for reasons of public interest in the area of public health in accordance with Art. 9 Paragraph 2 lit. h and i as well as Art. 9 Paragraph 3 GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes in accordance with Art. 89 Para. 1 GDPR, insofar as the right mentioned under section a) is likely to make the realization of the objectives of this processing impossible or seriously impair it,
(5) for the establishment, exercise or defense of legal claims.

5. Right to information
If you have asserted the right to correction, deletion or restriction of processing against the person responsible, the person responsible is obliged to notify all recipients to whom the personal data relating to you have been disclosed of this correction or deletion of the data or restriction of processing unless this proves impossible or involves a disproportionate effort.
You have the right to be informed about these recipients by the person responsible.

6. Right to data portability
You have the right to receive the personal data concerning you, which you have provided to the person responsible, in a structured, common and machine-readable format. You also have the right to transfer this data to another person responsible without hindrance from the person responsible to whom the personal data was provided, provided that
(1) the processing is based on consent in accordance with Art. 6 Para. 1 lit. a GDPR or Art. 9 Para. 2 lit. a GDPR or on a contract in accordance with Art. 6 Para. 1 lit. b GDPR and
(2) the processing is carried out using automated procedures.
In exercising this right, you also have the right to have your personal data transmitted directly from one person responsible to another, insofar as this is technically feasible. This must not impair the freedoms and rights of other people.
The right to data portability does not apply to the processing of personal data that is necessary for the performance of a task that is in the public interest or takes place in the exercise of official authority that has been transferred to the person responsible.

7. Right to Object
You have the right, for reasons that arise from your particular situation, to object at any time to the processing of your personal data, which is based on Art. 6 Para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions.

The person responsible will no longer process the personal data concerning you unless he can prove compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

If the personal data concerning you are processed in order to operate direct mail, you have the right to object at any time to the processing of the personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is connected to such direct advertising.

If you object to processing for direct marketing purposes, the personal data relating to you will no longer be processed for these purposes. In connection with the use of information society services – regardless of Directive 2002/58 / EC – you have the option of exercising your right of objection by means of automated procedures that use technical specifications.

8. Right to withdraw the declaration of consent under data protection
law You have the right to withdraw your declaration of consent under data protection law at any time. Revoking your consent does not affect the legality of the processing carried out on the basis of your consent up to the point of revocation.

9. Automated decision in individual
cases including profiling You have the right not to be subjected to a decision based solely on automated processing – including profiling – which has legal effects on you or which significantly affects you in a similar manner.

This does not apply if the decision
(1) is necessary for the conclusion or performance of a contract between you and the person responsible,
(2) is permissible on the basis of legal provisions of the Union or of the member states to which the person responsible is subject and these legal provisions take appropriate measures to safeguard your rights and freedoms as well Contain your legitimate interests or
(3) with your express consent.
However, these decisions may not be based on special categories of personal data according to Art. 9 Paragraph 1 GDPR, unless Art. 9 Paragraph 2 lit. a or g GDPR applies and appropriate measures have been taken to protect your rights and freedoms and your legitimate interests .
With regard to the cases mentioned in (1) and (3), the AMJ, as the person responsible, takes appropriate measures to safeguard your rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person on the part of the person responsible, to state your own And to contest the decision.

10. Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your place of residence, your place of work or the place of the alleged infringement, if you are of the opinion that the processing of your personal data violates the GDPR.
The supervisory authority to which the complaint was submitted informs the complainant of the status and the results of the complaint, including the possibility of a judicial remedy according to Art. 78 GDPR.

VII. Contact

Please feel free to contact us using the above options if you have any questions about this data protection declaration or the information that we process about you.