We do not use automated decisions based on your personal data.
We use Google Analytics. Google Analytics stores information on Google servers in the United States of America. Google may provide this information to third parties if they are legally obliged to do so, or if these third parties process this information at Google's request. Google indicates that it adheres to the privacy legislation in the countries where it operates.
We have taken measures to protect your personal data. We have concluded a processing agreement with Google and have set up Google Analytics in accordance with the guidelines of the Dutch Data Protection Authority. This means, among other things, that the last quarter of your IP address is masked, and we have prohibited Google from using the collected information for other Google services. For more information about Google's privacy statement, click here .
Protection of personal data
We take reasonable steps to ensure that the level of security is commensurate with the risks associated with the processing of the personal data. We take organizational, technical and administrative measures designed to protect personal data in our organization from unauthorized access, destruction, loss, alteration and misuse. Our Information Security Management System is ISO 27001 certified. Your personal data is only available to employees who need this information to perform their functions. Unfortunately, the 100% security of any processing cannot be guaranteed.
We store your personal data within the European Union. We ensure that our processors do the same. In the event that your personal data is processed in the United States of America, we ensure that this processor is certified under the EU-US Privacy Shield framework.
Sharing of personal data
We may share your personal data with our processors (for example, our hosting parties). We make every effort to ensure that these processors have a level of security commensurate with the risks associated with the processing of the personal data. We have concluded a processor agreement with our processors to ensure that the processing is done according to our instructions and remains within the limits of the GDPR.
You have the following rights with regard to your personal data for which we act as controller. In the event that we are not the controller, please contact the controller to exercise your rights. We will then work with this controller to ensure that you can exercise your rights.
- The right to request insight into your personal data;
- The right to request rectification of your personal data;
- The right to request that your personal data be deleted;
- The right to request restrictions on the processing of your personal data;
- The right to object to the processing of your personal data;
- The right to data portability;
- In the event that our processing basis is consent, the right to withdraw such consent at any time, without affecting the lawfulness of the processing for the withdrawal of consent;
- The right to lodge a complaint with the supervisory authority.
If you wish to exercise your rights, you can send your request to the email address mentioned above. For your and our protection, we may need to further identify you before executing your request. We will comply with your request to the extent required by law. If you feel that you have not received a satisfactory answer from us, you can contact the regulator in your country.
Changes to this privacy statement
The rules regarding privacy and personal data, as well as our use of personal data, are subject to change. We reserve the right to change this privacy statement. We request that you review this statement regularly.
Last change: February 20, 2020