Privacy statement for waitro.org 

As data protection and security are some of our top priorities, we would like to provide you with extensive information as to how we will process your personal data.  Your data will remain your property. Our systems are subject to regular security audits and are constantly being developed. 

The aim of this privacy statement is to inform you about the personal data that will be processed when you visit our website and use the members’ area, and the rights you have with regard to your data. 

1. Definitions

The applicable legislation states that personal data must be processed lawfully, fairly and transparently for data subjects (“lawfulness, fairness and transparency”). To ensure this, we would like to inform you about the terms defined in the European General Data Protection Regulation (GDPR) and the new Federal Data Protection Act (BDSG), which are also used in this privacy statement. 

1.1 Personal data

“Personal data” means any information related to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. 

1.2 Processing

“Processing” means any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transfer, dissemination or other means, alignment, combination, restriction, erasure or destruction. 

1.3 Restriction of processing

“Restriction of processing” means the marking of stored personal data with the aim of limiting its processing in the future. 

1.4 Profiling

“Profiling” means any form of automated data processing used to evaluate certain personal aspects related to a natural person, particularly to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements. 

1.5 Pseudonymization

Pseudonymization” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data cannot be attributed to an identified or identifiable natural person. 

1.6 Filing system

“Filing system” means any structured set of personal data that is accessible according to specific criteria, whether centralizeddecentralized or dispersed on a functional or geographical basis. 

1.7 Controller