VMARSmanuals

Privacy Policy for the VMARS Archive Members Only Area

Ownership and Operation of this site

This web site is hosted by Amazon Web Services which is the data processor and controlled by the Vintage and Military Amateur Radio Society which is the data controller for the purpose of the relevant law.

Data Processor

This website is implemented using the Amazon Simple Storage Service (S3). Amazon Web Services are a data processor acting as a supplier to VMARS under instruction from VMARS. Their own GDPR documentation may be found at AWS GDPR documentation. This website is hosted in their London Zone so is subject to UK law.

Data Controller

VMARS is the data controller of this web site for the purposes of the relevant UK and EU law.
The Data Controller can be contacted at honsec@vmars.org.uk.
Please use the above contact details if you wish to discuss your data with the data controller.

Why we collect and use your data

For the purposes of article 6 of the EU GDPR the collection and processing of this data is necessary for the purposes of the legitimate interests pursued by the controller (to deliver files to members only and to investigate technical or security problems or to report computer misuse) by the Vintage and Military Amateur Radio Society ("VMARS").

Both visitors and VMARS officers are data subjects of this web site only to the extent that access is logged.

Cookies

The VMARS archive is a static website with no scripts or cookies. We do not host cookies for third parties and do not monetise access to our site. No cookie consent is therefore needed by this site. No part of the VMARS Archive Members Only Area needs cookies to function and no cookies are used by VMARS. This site is hosted by Amazon Web Services and VMARS is not responsible for any modifications they make to VMARS content in the course of delivering it. Any concerns of this nature should be reported to the Hon Secretary so they can be raised with Amazon.

Data Collected

Data is collected in log files as part of the normal operation of the web server and operating system. This data is the minimum necessary for normal operation. Additionally the Archivist maintains an audit log of all requests.

Web Server Logs

Visits to the public web site are logged in the webserver log file. The following data are logged:
  1. Time of visit
  2. IP address of Visitor
  3. Web Server Login name (for administrative users only)
  4. Page Requested
  5. Success or error code for the page
  6. The Browser and Operating System identification sent by the Visitor's web browser


In the case of an error the technical details of the error which may include user submitted form data and the program statement or page that failed will be recorded in an error log along with the page and visitor details. Web server logs are retained for a maximum of 30 days.

Only the server administrator has access to these logs.

Operating System Logs

HTTPS connections used by the VMARS Archivist to upload new content to the web server. These connections are logged by AWS. The following information is logged:
  1. Time when a session is started
  2. Username
  3. IP address
  4. Time when a session is closed
  5. File name(s) and amount of data transferred
These files are retained for the default period set from time to time by AWS.

Correspondence

E-Mail Correspondence with the Archivist and Hon. Secretary is stored and processed by their internet service providers and held locally by them.

Data Sharing and Transfers

VMARS will not share data regarding your access to the site except with UK law enforcement authorities for the purpose of abuse investigation. VMARS does not sell data or logs.

ICO Registration Exempt

VMARS has completed the Information Commissioners Office questionnaire at https://ico.org.uk/for-organisations/data-protection-fee/self-assessment/ most recently in January 2024 and is not required to register.

Data Subject Rights

You have rights under British and European Data Protection Law to:
  • Obtain a copy of the data a data controller holds on you
  • Have any errors corrected
  • To have your personal data erased
  • To have processing suspended while the data is in dispute
  • To have the controller inform any third party who received the data of an erasure request
  • To receive your data in a portable machine-readable format
  • To lodge a complaint with a supervisory authority (the Information Commissioner's Office in the UK)


The data controller believes that access to this web site and the processing of file requests by the VMARS Members Only Archive site does not require identification and for the purposes of article 11(2) of the GDPR the data controller cannot identify a visitor to the web site solely from the information that is logged. You will not be able to exercise all of your rights under the GDPR unless you provide further information in order to identify your data.


[ Back to Members Only Area ]       [ Back to Manuals Index ]       [ VMARS Home ]

 

 

 

Enquiries and comments relating to content and keys: archivist[at]vmars/dot/org/dot/uk

Enquiries and comments relating to data protection: honsec[at]vmars/dot/org/dot/uk