Reiswerk Privacy Statement
Click here for the Dutch version of our Privacy Statement
Klik hier voor de Nederlandstalige versie van onze Privacyverklaring
Stichting Reiswerk is committed to the protection of your personal data. In this Privacy Statement, we aim to provide clear and transparent information about how we handle your personal data.
We make every effort to protect your privacy and therefore handle your personal data with care. In all cases, Stichting Reiswerk complies with applicable legislation and regulations, including the General Data Protection Regulation (GDPR). This means that in any case we:
- process your personal data in accordance with the purpose for which it was provided; these purposes and types of personal data are described in this Privacy Statement.
- limit the processing of personal data to the data necessary for the purposes for which it is processed.
- ask for your explicit consent if we need this to process your personal data.
- have implemented appropriate technical and/or organisational measures, or will be implementing these measures soon, to guarantee the security of your personal data.
- do not pass on personal data to other parties, unless this is necessary for the performance of the purposes for which it was provided.
- are aware of your rights with respect to your personal data and want to draw your attention to these and respect these.
If, after reading our Privacy Statement, you have any questions about our privacy statement or more general questions or wish to contact us, please use the contact details on the right:
For what purposes do we process your personal data?
Your personal data will be processed by Stichting Reiswerk for the following purposes:
- To reply to questions asked via the website
- To enter into agreements
- To send news reports and personal mailings
- To send invitations for and communications about events and meetings.
For the purposes stated above, we may request the following personal data:
- First name
- Telephone number
- Email address
Stichting Reiswerk does not retain personal data for any longer than is required for the purpose for which it was provided or as required by law. In practice, this means the following:
- Registration (events) newsletter via registration form: during the period that you are registered.
- Contact details via contact form: for a maximum period of 1 year
- Event participants: for a maximum period of 2 years
- Customers or suppliers: during the term of the agreement and thereafter only in the financial administration for a maximum period of 7 years.
- Prospects/stakeholders/lobby contacts and/or interested parties: during the period that one is seen as a prospect, stakeholder/lobby contact and/or interested party.
Disclosure to third parties
We may disclose the information you share with us to third parties if this is necessary for the purposes described above. For example, we may use the services of a third party for:
- the organisation of the Reiswerk Studenten Challenge and other industry events.
- maintaining the (financial) administration
- providing newsletters and invitations
We will never pass on personal data to other parties whom we have not concluded a data processing agreement with. We will, of course, make the necessary arrangements with these parties (data processors) to guarantee the security of your personal data.
Furthermore, we will not disclose the data you have provided to other parties, unless required and permitted by law. For example, when the police request (personal) data from us as part of an investigation. In such a case we must cooperate and are obliged to provide this data. We may also share personal data with third parties if you give us written permission to do so.
We do not disclose any personal data to parties established outside the EU.
We only process personal data of minors (persons under the age of 16) with the written consent of a parent, carer or legal representative.
We take appropriate technical and organisational measures to protect your personal data against unlawful processing. For example, we have already taken the following measures, or measures have been put in place to effect this as soon as possible, but no later than 1 August 2018;
- logging; firewall; virus scanner and software against malware attacks
- periodic backups
- restricting the storage of personal data from completed forms on our website in the back-end
- limiting the number of officers who may process personal data
- storing personal data on paper in lockable cupboards
- establishing clear protocols and procedures for timely and effective handling of data security incidents
- signing of a nondisclosure agreement by employees
- drawing up a data processing agreement with third parties on the processing of files
- ensuring adequate monitoring of compliance with protocols and legislation and regulations
Rights with respect to your data
You have the right to access, correct or erase the personal data we have received from you. You may also object to the processing of your personal data (or part thereof) by us or by one of our processors. In addition, you have the right to have the data provided by you transferred by us, if you wish, to you or directly to another party. We may ask you to identify yourself before we can respond to the above requests.