Privacy policy (GDPR)

About our privacy policy

EGIN cares a lot about your privacy. We therefore only process data that we need for (improving) our services and handle the information we have collected about you and your use of our services with care. We never make your data available to third parties for commercial purposes. This privacy policy applies to the use of the website and the services provided by EGIN. The effective date for the validity of these conditions is 25/02/2019, with the publication of a new version the validity of all previous versions expires. This privacy policy describes what information about you is collected by us, what this information is used for and with whom and under what conditions this information may be shared with third parties. We also explain to you how we store your data and how we protect your data against misuse and what rights you have with regard to the personal data you provide to us. If you have any questions about our privacy policy, please contact our contact person for privacy issues, you will find the contact details at the end of our privacy policy.

About the data processing

Below you can read how we process your data, where we store it (or have it stored), which security techniques we use and for whom the data is available.

Web store software

WooCommerce

Our web store has been developed with software from WooCommerce, we host our web store on a server under our own management. We have taken appropriate technical and organizational measures to prevent misuse, loss and corruption of data as much as possible. These security measures consist of the application of SSL encryption and a strong password policy. Backups are regularly made to prevent data loss.

Web hosting

Service provider MijnDomein .nl

We purchase web hosting and email services from MijnDomein.nl. MijnDomein.nl processes personal data on our behalf and does not use your data for its own purposes. However, this party can collect metadata about the use of the services. These are not personal data. MijnDomein.nl has taken appropriate technical and organizational measures to prevent the loss and unauthorized use of your personal data. My Domain is required to maintain confidentiality under the agreement.

Payment processor

Mollie

We use the Mollie platform to handle (part of) the payments in our web store. Mollie processes your name, address and place of residence information and your payment details such as your bank account or credit card number. Mollie has taken appropriate technical and organizational measures to protect your personal data. Mollie reserves the right to use your data to further improve the service and to share (anonymous) data with third parties in that context. All the aforementioned guarantees with regard to the protection of your personal data also apply to the parts of Mollie’s services for which they engage third parties. Mollie does not store your data any longer than is permitted by law.

Shipping and logistics

PostNL

If you place an order with us, it is our job to have your package delivered to you. We use the services of PostNL for the delivery. It is therefore necessary that we share your name, address and city details with PostNL. PostNL uses this information only for the performance of the agreement. In the event that PostNL engages subcontractors, PostNL also makes your data available to these parties.

Purpose of data processing

General purpose of the processing

We use your data solely for the purpose of our services. This means that the purpose of the processing is always directly related to the assignment that you provide. We do not use your data for (targeted) marketing. If you share data with us and we use this data to contact you at a later date – unlike at your request – we will ask you for explicit permission. Your data will not be shared with third parties, other than to meet accounting and other administrative obligations. These third parties are all held to confidentiality on the basis of the agreement between them and us or an oath or legal obligation.

Automatically collected data

Data that is automatically collected by our website is processed with the aim of further improving our services. This data (for example your IP address, web browser and operating system) is not personal data.

Cooperation with tax and criminal investigations

In appropriate cases, EGIN may be required by law to share your information in connection with government tax or criminal investigation. In such a case we are forced to share your data, but we will oppose this within the possibilities that the law offers us.

Retention periods

We keep your data for as long as you are a client of ours. This means that we save your customer profile until you indicate that you no longer wish to use our services. If you indicate this to us, we will also regard this as a forget request. Based on applicable administrative obligations, we must keep invoices with your (personal) data, so we will keep this data for as long as the applicable period runs. However, employees no longer have access to your client profile and documents that we have produced as a result of your assignment.

Your rights

On the basis of the applicable Dutch and European legislation, you as a data subject have certain rights with regard to the personal data processed by or on behalf of us. We explain below what these rights are and how you can invoke these rights. In principle, to prevent misuse, we will only send copies and copies of your data to your e-mail address that we already know. In the event that you wish to receive the data at a different e-mail address or, for example, by post, we will ask you to identify yourself. We keep records of settled requests, in the case of a forget request we administer anonymized data. You will receive all copies and copies of data in the machine-readable data format that we use within our systems. You have the right to submit a complaint to the Dutch Data Protection Authority at any time if you suspect that we are using your personal data in the wrong way.

Right of inspection

You always have the right to view the data that we (have) process and that relate to your person or that can be traced to that. You can make a request to that effect to our contact person for privacy matters. You will receive a response to your request within 30 days. If your request is granted, we will send you a copy of all data with an overview of the processors who have this data at the e-mail address known to us, stating the category under which we have stored this data.

Rectification right

You always have the right to have the data that we (or have it processed) that relate to your person or that can be traced to that change. You can make a request to that effect to our contact person for privacy matters. You will receive a response to your request within 30 days. If your request is granted, we will send you a confirmation at the e-mail address known to us that the information has been changed.

Right to limit processing

You always have the right to limit the data that we (have) process that relate to or can be traced to your person. You can make a request to that effect to our contact person for privacy matters. You will receive a response to your request within 30 days. If your request is granted, we will send you a confirmation at the e-mail address known to us that the information until you remove the restriction will no longer be processed.

Right to transferability

You always have the right to have the data that we (or have it processed) that relate to your person or that can be traced to that data carried out by another party. You can make a request to that effect to our contact person for privacy matters. You will receive a response to your request within 30 days. If your request is granted, we will send you copies or copies of all data about you that we have processed or that have been processed on our behalf by other processors or third parties at the e-mail address known to us. In all likelihood, in such a case, we can no longer continue to provide services, because the secure linking of data files can then no longer be guaranteed.

Right of objection and other rights

In appropriate cases, you have the right to object to the processing of your personal data by or on behalf of EGIN. If you object, we will immediately cease the data processing pending the handling of your objection. If your objection is justified, we will provide you with copies and / or copies of data that we process or have processed, and then permanently cease processing. You also have the right not to be subject to automated individual decision-making or profiling. We do not process your data in such a way that this right applies. If you believe that this is the case, please contact our contact person for privacy matters.

Cookies

Cookies from third parties

In the event that third party software solutions use cookies, this is stated in this privacy statement.

Changes to the privacy policy

We reserve the right to change our privacy policy at any time. However, you will always find the most recent version on this page. If the new privacy policy has consequences for the way in which we process already collected data with regard to you, we will inform you of this by e-mail.

Contact details

EGIN
Summer 84
8251 NN DRONTEN
the Netherlands
p +31 (0) 652 321 547
e info@egin.nl