Technical data-protection measures
A clear overview of which data we store, how we protect it and what rights you have.
π
Encryption of sensitive data
Particularly sensitive details are stored encrypted, not in plain text:
- β’Health information (allergies and medical notes)
- β’Contact data such as address and IBAN
π©Ί
Health data
Special rules apply to health information:
- β’It is stored encrypted only.
- β’It is visible only to the relevant teams (kitchen and first aid).
- β’Every access by the team is logged and visible in your data export in the profile.
- β’30 days after the event it is deleted automatically and permanently, not just hidden.
β
Consents
Consents you give are documented verifiably:
- β’privacy policy, terms, liability and age confirmation
- β’each with timestamp and document version
π
Your rights
You stay in control of your data:
- β’On request you can get access to the data stored about you.
- β’You can delete or anonymize your account.
- β’With the βanonymize after eventβ option this happens automatically.
π¨
Protected data export
A data export bundles your most sensitive data and is therefore specially secured:
- β’The export is not downloaded directly in the browser but provided through a one-time download link.
- β’We send this link out-of-band to your registered channel (email or Telegram) and it can be used exactly once.
- β’If you have both channels on file, two-factor protection applies automatically: the link arrives by email and the PIN by Telegram. Only both together release the export β a single compromised channel is then not enough.
- β’A request is possible at most once per day.
- β’The export is locked if your contact details (email or Telegram) were changed in the last 14 days.
- β’Every change to your contact details is additionally reported to your previous contact details, so you notice an unexpected takeover immediately.
πΊοΈ
Map privacy
On the member map:
- β’Only an approximate location is shown, never your exact address.
- β’The display can be turned off at any time.
- β’On request you do not appear in public lists either.
ποΈ
Access and accountability
Access to data is controlled:
- β’When an administrator accesses private data, it is logged.
- β’Booking and finance data are linked in a tamper-evident chain.
π§Ύ
Bookkeeping
Payment-related data (fees, donations, transfers):
- β’It is retained for the legal periods, usually 6 to 10 years.
- β’It is stored revision-safe and therefore cannot be freely deleted.
πͺͺ
Profile data
Address, phone and similar details:
- β’On request they are anonymized after the event, once bookkeeping is complete.
π
Log data
Technical logs are used for error analysis:
- β’They are deleted after 90 days.
- β’Audit and finance logs are tamper-evident.
Your settings: Profile Β·
Delete or anonymize account