PRIVACY POLICY

Name and Contact Details of the Data Controller and the Data Protection Officer

These privacy notices apply to the data processing carried out by the

Short Statured People of Australia Inc. (SSPA)

Data Controller:
Becks Kim

Data Protection Officer:
Marib Aldoais
Leimbergerstraße 43a
91052 Erlangen
marib.aldoais@gmail.com

1. Collection and Storage of Personal Data and Type and Purpose of Use

a) When visiting the website

When you visit our website, the browser used on your device automatically sends information to our website’s server. This information is temporarily stored in a so-called log file. The following information is collected without your involvement and stored until it is automatically deleted:

  • IP address of the requesting computer
  • Date and time of the access
  • Name and URL of the accessed file
  • Website from which the access took place (referrer URL)
  • Browser used and, if applicable, the operating system of your computer and the name of your internet provider

These data are processed for the following purposes:

  • Ensuring a smooth connection to the website
  • Ensuring a comfortable use of our website
  • Evaluation of system security and stability
  • Other administrative purposes

The legal basis for the data processing is Art. 6(1) sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes listed above. Under no circumstances do we use the collected data to draw conclusions about your identity.

In addition, we use cookies when you visit our website. Further information regarding cookies can be found in section 3 of this privacy policy.

b) When using our contact forms

For inquiries of any kind, we offer the option to contact us through a form provided on our website. A valid email address is required so that we know who the request is from and can reply. Any further information is optional.

Data processing for the purpose of contacting us occurs pursuant to Art. 6(1) sentence 1 lit. a GDPR on the basis of your voluntary consent. The personal data collected for the use of the contact form will be automatically deleted once your inquiry has been completed.

2. Disclosure of Data

Your personal data will not be transferred to third parties for purposes other than those listed below. We only share your personal data with third parties if:

  • you have given express consent according to Art. 6(1) sentence 1 lit. a GDPR,
  • the disclosure is necessary to establish, exercise, or defend legal claims according to Art. 6(1) sentence 1 lit. f GDPR and there is no reason to assume an overriding legitimate interest in not disclosing your data,
  • a legal obligation exists according to Art. 6(1) sentence 1 lit. c GDPR, or
  • it is legally permitted and necessary for the performance of a contract with you according to Art. 6(1) sentence 1 lit. b GDPR.

3. Rights of Data Subjects

You have the right to:

  • Art. 15 GDPR – Request information about your processed personal data
  • Art. 16 GDPR – Request immediate correction of incorrect/incomplete data
  • Art. 17 GDPR – Request deletion of stored personal data
  • Art. 18 GDPR – Request restriction of processing
  • Art. 20 GDPR – Receive your data in a machine-readable format or transfer to another controller
  • Art. 7(3) GDPR – Withdraw consent at any time (processing stops for the future)
  • Art. 77 GDPR – Lodge a complaint with a supervisory authority

4. Right to Object

If your personal data is processed based on legitimate interests according to Art. 6(1) lit. f GDPR, you have the right to object at any time for reasons related to your particular situation. If the objection concerns direct marketing, you have a general right to object without providing a specific reason.

To exercise your withdrawal or objection rights, send an email to the Data Protection Officer.

5. Data Security

We use TLS (Transport Layer Security) encryption during visits to our website, usually with 256-bit encryption. If your browser does not support 256-bit, 128-bit v3 technology is used instead.

You can recognize encrypted data transmission by the closed lock symbol in your browser.

We also use technical and organizational security measures to protect your data from manipulation, loss, destruction, or unauthorized access. These measures are continuously improved.

This application contains links to third-party websites. These websites may have their own privacy policies, and we assume no responsibility or liability for them. Please review those policies before submitting personal data.

Two types of external links are used:

  1. External links marked with an icon, e.g., SSPA Inc.
  2. Links requiring popup consent, especially links embedded in images

Only when you click an external link or give consent will data be transmitted to the destination website. This may include:

  • Your IP address
  • The time you clicked the link
  • Your device’s operating system
  • Your browser version

7. Updates and Changes to this Privacy Policy

This privacy policy is valid as of February 2026. Changes may become necessary due to future website developments or legal/regulatory updates. The current version can be accessed and printed at any time on our website.