What data do we collect and how do we use it?
TurningPoints collects members data in order to keep records of campaigning or donating activity and to update followers and supporters with information about current projects and outputs via our newsletter and other general information materials. This includes personal data such as names, addresses, email addresses and phone numbers. Your data is held on our secure server. Personal data linked to donations via our website is processed by Paypal, while personal data linked to newsletter subscriptions is held on secure server.
TurningPoints does not:
- sell nor buy any marketing lists
- employ any cold calling techniques asking for donations
- keep records longer than legally necessary
Members, supporters, suppliers, press, funders, interested organisations and associates are strictly only contacted by phone or post if they have requested that we do so.
Financial data security
Online credit or debit card donations are processed through PayPal, MobilePay or via Arbejdernes Landsbank via their secure transaction system using encryption. All these transactions reflect the choice of the provider, but are all using advanced encryption technology. You can find more information on how they store your data at their own sites.
TurningPoints does not get access to any personal financial data during transactions: our records are limited to your name, address, email address and the different providers unique transaction IDs. These data are held by the providers and on our secure server. Should it ever be necessary to process personal data linked to financial transactions in hardcopy, it will be shredded before disposal.
Mailing list security
The database used for our newsletter includes an opt-in checkbox that clearly states how your data is being used by TurningPoints. Your mailing information is stored or processed in compliance with the EU-U.S. Privacy Shield Framework, which qualify as one of the available cross-border transfer mechanisms (Art. 46 of the GDPR legislation).
Data collected by TurningPoints.eu
Action in case of data security breach
Personal data breaches are defined as where:
- data is lost, destroyed, corrupted or disclosed;
- data is accessed by an unauthorised person, or passed on without proper authorisation;
- data is made unavailable and this unavailability has a significant negative effect on individuals.
In case of a security breach, TurningPoints is committed to following the procedure described in the GDPR legislation, namely documenting all breaches, notifying the Information Commissioner’s Office of a breach within 72 hours of becoming aware of it, and notifying and advising affected individuals in compliance with relevant legislation.
TurningPoints endeavours to keep the data we hold as up to date and accurate as possible. If any of your details change, or if you would like to know what information about you that we hold, please contact us using any of the methods below.
Members or supporters can opt in or out of TurningPoints mailing lists and can unsubscribe themselves from mailing lists at any time by clicking on the unsubscribe link on our newsletter or on emails.
- replying to an email we’ve sent you
- emailing us at firstname.lastname@example.org
- writing to TurningPoints, Hvedebjergvej 22, 8220 Brabrand, Denmark