GDPR Statement

General Data Protection Regulation (GDPR) Statement

GDPR is a new regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify the personal data protection rights of all individuals residing in the European Union (EU). The GDPR also governs how the personal data of EU residents can be transferred and processed both within and outside the EU. The GDPR gives EU residents specific rights concerning the collection, processing, and storage of their personal data and aims to simplify the regulatory environment which governs how international business is conducted with regard to management of an EU resident’s personal data.

As an association that serves its members with the highest standards, the AsMA welcomes the introduction of GDPR on May 25, 2018.

AsMA is committed to high standards of information security, privacy and transparency.  We have always honored our members' right to data privacy and protection. We do not rely on advertising as a revenue stream. We have never served ads to our members, and never will. We have no necessity to collect and process users' personal information beyond what is required to serve our membership and for the proper functioning of our website.

GDPR defines a Data Subject as any citizen of the European Union no matter where they may reside in the world.

GDPR defines Personal Data as any information relating to a Data Subject that can be used to directly or indirectly identify that person.

GDPR defines Data Controller as an individual or entity that determines the reason, purpose, terms and process by which personal data is captured and processed. AsMA is the controller of data collected from website visitors and members.

GDPR defines Data Processor as an individual or entity that processes and stores personal data on behalf of a Data Controller. AsMA uses Impexium for data processing and storage of information about its membership and customers.  GDPR compliance for Impexium may be found by clicking here. AsMA does not collect or store any personal data about anyone who is not a member or customer. Members and customers grant AsMA revocable consent to collect, process and store their personal data.

A Data Subject who is a member or customer of AsMA may obtain confirmation as to whether personal data concerning them is being collected, processed, and/or stored, where these activities are taking place and for what purpose. Further, AsMA will provide a copy of the Data Subject’s personal data, free of charge, upon request from the Data Subject. Upon request, AsMA will update or delete any personal data being collected, processed and/or stored concerning the Data Subject.

If you have any questions relating to our approach to data protection and security, please contact Jeff Sventek at 703-739-2240.