Autism Parents Association - Malta
Autism Parents Association (APA) takes Data protection very seriously and tries it’s best to ensure that personal data is protected through processes that are by design targeted at keeping personal data safe. If the processing of personal data is necessary and there is no statutory basis for such processing, we obtain consent from the data subject.
The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR). By means of this data protection declaration, our association would like to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.
The Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
Autism Parents Association
PO Box 30,a
What data do we collect and why do we store and process your Personal Data?
APA collects a series of general data and information when a data subject either becomes a member through our Internet channels or by means of a physical form which is filled in manually. This data and information is stored on our online server. Generally, when a data subject enrolls we might require to collect the following: Name & Surname, Address, Telephone and Mobile numbers and email addresses.
When using our website we may collect the above personal details as well. Our web hosting provide also collects data through their server logs such as (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (referrer), (4) the date and time of access to the Internet site, (5) an Internet protocol address (IP address), (6) the Internet service provider of the accessing system, and (7) any other similar data and information that may be used in the event of attacks on our information technology systems.
The data collected is never used by APA to draw any conclusions about the data subject. Rather, this information is needed to help us deliver the level of service that we feel our members deserve. We use this data to be able to contact our members and update them with information and newsletters from time to time.
Who collects personal data?
Data is collected by:
- By our committee members upon collection of the Application forms.
- Through our website and social media pages.
- Through emails opened and actioned by committee members.
- Through phone calls and messaging services.
We usually retain the personal data of our members for the period during which they are considered as parent members. As a policy, APA retains the information received upon enrollment and is valid for one year. After this period, the data subject is no longer considered as a member unless the membership is renewed.
Who we share your data with
APA does not share the members data with any third parties.
How to contact us
Routine erasure and blocking of personal data
The data controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject to.
If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data is erased in accordance with legal requirements.
You rights as a data subject:
As a data subject GDPR provides you with extensive rights as follows:
- Right of confirmation
- Right of access
- Right to rectification
- Right to erasure (Right to be forgotten)
- Right of restriction of processing
- Right to data portability
- Right to object
- Automated individual decision-making, including profiling
- Right to withdraw data protection consent
- Data protection for applications and the application procedures
For more detailed information about your rights under GDPR, please click here