Data Privacy Policy M.W. York Grand Lodge of México F. & A. M.

Introduction

M.W. York Grand Lodge of México F. & A. M. recognizes the paramount importance of data privacy for our Members and Grand Representatives who share confidential information with us. We are committed to safeguarding the security and privacy of all personal data provided to us. This Policy outlines the principles and practices we follow when collecting, using, disclosing, and transferring personal information, in accordance with applicable laws—including Mexico’s Ley Federal de Protección de Datos Personales en Posesión de los Particulares and international regulations.

Scope

This Policy applies to all personal information received by M.W. York Grand Lodge of México F. & A. M. in the United States of Mexico from individuals and entities in the European Union (EU), Switzerland, Canada, the United States of America, and other jurisdictions governed by strict data protection laws. It covers all data formats, including electronic, paper, and verbal communications.

Definitions

- Agent: Any third party engaged by M.W. York Grand Lodge of México F. & A. M. to perform tasks on our behalf under our instructions, including the processing of personal data.

- M.W. York Grand Lodge of México F. & A. M.: Be known as Most Worshipful York Grand Lodge of México Free and Accepted Masons, along with its Districts, Lodges, and affiliated groups in the United States of Mexico.

- Personal Information: Any information that can identify an individual, including names, addresses, telephone numbers, email addresses, or any other data that may be linked to a specific person. This excludes anonymized, aggregated, or publicly available information that is not combined with nonpublic data.

- Sensitive Personal Information: Information that reveals an individual’s race, ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health details, or sex life. This category also includes any data that third parties designate as sensitive. In certain cases, additional categories (such as biometric or genetic data) may apply under relevant laws.

Privacy Principles

Our Privacy Principles are based on international best practices and the following key concepts:
  1. Notice:
    • When collecting personal information directly, we will inform individuals—using clear and prominent language—about the purpose of collection, how their data will be used, the types of third parties (if any) with whom the data may be shared, and the choices available to limit such uses.
    • For data received from Districts, Lodges, or other entities, we will honor the original notice provided and the choices made by the individuals concerned.

Choice:

  • Individuals have the option to opt-out of disclosing their personal data to non-agent third parties or using it for purposes other than those for which it was originally collected.
  • For sensitive personal information, explicit opt-in consent is required prior to any disclosure or secondary use.
  • We provide reasonable mechanisms for individuals to exercise these choices.

  1. Data Integrity:

    • We process personal information only for the purposes for which it was collected or subsequently authorized.
    • Reasonable steps are taken to ensure that all personal data is accurate, complete, and current.

  2. Transfers to Agents:

    • We obtain assurances from our agents that they will protect personal information in a manner consistent with this Policy.
    • Should any agent use or disclose personal data contrary to this Policy, we will promptly take corrective measures.

  3. Access and Correction:

    • Upon request, individuals will be granted reasonable access to the personal data we hold about them.
    • We will allow for corrections, updates, or deletions of inaccurate or incomplete information in a timely manner.

  4. Security:

    • We employ appropriate technical and organizational measures to protect personal information against unauthorized access, loss, misuse, alteration, or destruction.
    • Regular risk assessments and updates to our security practices are performed in line with evolving legal and technological standards.

  5. Enforcement:

    • Regular compliance audits are conducted to ensure adherence to this Policy.
    • Any Grand Representative found to be in violation of this Policy may face disciplinary actions, including those outlined in our Masonic disciplinary procedures.

  6. Dispute Resolution:

    • Any questions or concerns regarding the use or disclosure of personal information should be directed to our Privacy Office using the contact details provided below.
    • We will investigate and seek to resolve complaints in accordance with this Policy and, if necessary, participate in dispute resolution processes as required by applicable laws.

  7. International Data Transfers:

    • For data originating in jurisdictions with stringent data protection regulations (such as the EU’s GDPR, Switzerland’s Data Protection Act, or relevant laws in Canada and the United States), we ensure that any international transfers are subject to appropriate safeguards that maintain a level of protection equivalent to those jurisdictions.

  8. Data Retention:

    • Personal information will be retained only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law.

Contact Information

For any inquiries or concerns regarding this Policy, please contact our Data Privacy Officer:

Data Privacy Officer

M.W. York Grand Lodge of México F. & A. M.

Ricardo Preciado Ploneda

Grand Secretary

Regina 1674, Providencia, 4ta Sección

Guadalajara, Jalisco

Email: grandsecretary@yorkmexicomasons.org