PERSONAL DATA
In order to provide our services, we ask our (prospective) clients to provide us with their data that we collect or otherwise use, with the aim of improving the online experience of their website, including by designing a website tailor-made for the customer, to build, maintain and host, by taking care of our customers’ online marketing, by training our customers and/or by continuing to improve our services to them in other ways and making them more and more in line with their needs. This includes the data we need for the design and construction of an optimal website, such as, but not limited to:
- the data of visitors to the customer’s website, the data of our customer’s customers, of our customer’s target group, etc.,
- who they want to reach with the website and what they want to convey to visitors to their site;
- data that we need for the construction of the website itself and for online marketing, such as data on visits to the website, which pages and articles have been clicked on most and how long they have been viewed, etc.;
- information we need to send our invoice.
The categories of data subjects include:
- our customers;
- prospects and/or suspects;
- visitors to our website;
- our employees or other employees (self-employed persons, temporary workers, payroll employees and/or other contractors);
- our suppliers;
- the clients, customers, donors, members and/or otherwise involved parties of our customers;
- prospects and/or suspects of our customers;
- visitors to our customers’ websites;
- employees of the customer or other employees (self-employed persons, temporary workers, payroll employees and/or other contractors of our customers;
- suppliers of our customers.
We cannot carry out our business activities without the processing of personal data. Personal data is data on the basis of which we can trace the identity of our customers and/or their customers and/or their prospects/suspects, such as name and address data, e-mail addresses, telephone numbers, IP addresses, etc. We process the personal data of our clients with the utmost care. We store this data in a secure environment.
PURPOSE STATEMENT
With this privacy statement we inform you, as the reader of this statement, our customers, the customers of our customers, clients, members, prospects or suspects, employees and applicants of our customers, our employees, our applicants, our suppliers and visitors. of our website and the websites of our customers about the use of personal data, the purpose of the processing, the security of the data, their rights as a data subject, such as the right to inspect and delete their data and about the possible recipients of this data .
We want to guarantee the privacy of our customers, their customers and the users of our website and the websites we build as much as possible. We see it as our responsibility to protect the privacy of everyone involved and to establish a fair, transparent policy that takes everyone’s interests into account. With this statement we trust that we have made an important contribution to this. Nevertheless, if you have any questions and/or comments, please contact info@kellymariaski.com to ask your question or provide your comment.
CAREFULNESS
We will treat and secure the personal data you have provided to us with the utmost care, both in our role as controller of our own data and as processor of our customers’ data. For this reason, we comply with the requirements that applicable laws, regulations and regulations, such as the Telecommunications Act and the GDPR regulation, impose on the processing of personal data.
This means that we:
- process your personal data in accordance with the purpose for which you provided them to us. We have described the purposes of the processing and the type of personal data to be processed in this privacy statement;
- request your consent if we need it for the processing of your personal data;
- have taken appropriate technical and organizational measures so that we can continue to guarantee the security of your personal data;
- not provide personal data to third parties, unless this is necessary for the performance of the purposes for which you provided them, is required by law or you have given your express permission to do so;
- are aware of your rights regarding your personal data, which we point out to you in this statement, and respect them.
BASIS OF PROCESSING
For our services, we record data that we use either in implementation of a law, or for the execution of an agreement and/or for (optimizing) our services and/or on the basis of a (other) legitimate interest. Under no circumstances do we provide data to third parties without permission.
DATA CONTROLLER AND PROCESSOR
For the majority of the data we process, we act as a processor within the meaning of the GDPR, because we process personal data on behalf of and under the responsibility of our customers.
As Kelly Maria Ski, we are the controller within the meaning of the GDPR for the personal data of our customers (largely contact details), our employees, our applicants, our suppliers and visitors to our website. This means that we are responsible, among other things, for the processing of your personal data as a visitor to our website.
If, after reading our privacy statement, or in a more general sense, you have questions about privacy or wish to contact us, you can contact us via the contact details below:
Kelly Maria Ski
Kerkstraat 40
5961 GD, Horst
T: +31611921297
E: info@kellymariaski.com
W: https://kellymariaski.com
APPLICATION
This privacy policy applies to all services and websites of Kelly Maria Ski and to visits to our website. It therefore applies to all information provided to us by our customers regarding data of others, such as their customers, members, donors, clients and/or other data subjects affiliated with the customer, and also to information provided by our own employees, applicants, by visitors to our website, by our suppliers, etc.
You should be aware that unfortunately we cannot accept responsibility for the privacy policies of other companies and/or their sites and resources, even if we refer to them on our website.
PROVISION OF PERSONAL DATA IS NOT MANDATORY
Kelly Maria Ski would like to emphasize that you, as a visitor to the website, or as our customer, are not obliged to provide us with your personal data. If you want us to create a website for your company or use our services in another way, we need at least the details of your company and your name and address details to send the invoice.
In general, our services are not possible without receiving more data, because we want to build a targeted website that meets the wishes of your target group and customers, so that it conveys what you want it to convey and that provides information that is relevant to you. target group and customers. For this we need data depending on the purpose of the website and the target group of our customers. It is and remains a voluntary choice to do business with us and to provide us with data. You can withdraw the order in the manner laid down in the agreement concluded by us and/or in the general terms and conditions. After the agreement has ended, you can request us to destroy the data.
PURPOSES OF DATA PROCESSING OF OUR CUSTOMERS AND/OR PROSPECTS AND/OR OF VISITORS TO OUR WEBSITE
We process your personal data for the following purposes:
- entering into and executing agreements;
- management of the resulting relationships;
- expanding our customer base;
- sending newsletters and invitations;
- processing contact/quote requests;
- answering questions;
- optimization of our website and that of our customers;
- online marketing purposes;
- providing information about our services.
For the above objectives, we may request the following personal data from you:
- name and address details;
- e-mail address;
- phone number;
We also collect the following data:
- about the users of the website,
- about the duration of the visit,
- the domain,
- the browser type,
- the pages you visit,
- which articles you have read and
- your IP address.
If you complete a contact and/or registration form on the website, or send us an email, we process the data you have provided to us and store it for as long as the nature of the form or the content of your email requires. email is necessary for the complete answer and handling thereof.
PURPOSES OF DATA PROCESSING OF OUR EMPLOYEES AND APPLICANTS
We process your personal data on the basis of the following principles and for the following purposes:
- to comply with the law (Wage Tax Act, Compulsory Identification Act, Gatekeeper Act);
- to implement the employment contract (payment of wages);
- to implement other agreements (lease agreements, study agreements, user agreements);
- conducting application procedures;
- to check whether our employees are functioning sufficiently, whether they are still developing optimally, whether they are still in their place and/or whether they are given sufficient space to develop, etc.
In general, applicants provide us with at least the following information:
- name and address details;
- e-mail address;
- phone number;
- Birthdate and place;
- intended function;
- nationality;
- educational attainment;
- work experience;
- skills (including the languages they master)
- possession of a driver’s license.
Sometimes they also provide the following information:
- a passport photo;
- a personal vlog;
- marital status;
- family composition;
- leisure activities and interests;
- certificates and/or references;
- a link to their LinkedIn profile
- a link to their personal website.
If an applicant is hired, we will keep the CV and accompanying motivation letter provided by him in his personnel file. We supplement this file with a copy of the employment contract, a copy of the payroll tax form (with BSN number), a copy of his identity card, conversation reports and/or recording of (work) agreements made, agreements to be concluded (such as lease, user, pension or study agreements), new employment contracts to be concluded, certificates, leave overviews, expense reimbursements, bonus and/or target schemes, a copy of your diploma, Certificate of Good Conduct, job profile, work or residence permit, etc. In the event of an employee’s disability we add an action plan and all other documents required for compliance with the Gatekeeper Act. In that case, we also register the frequency of your absence.
THIRD PARTIES AND PROCESSORS
We can provide the data you have provided to us to our processors if this is necessary for the implementation of the purposes described above.
For example, we use third parties for:
- the hosting of our website;
- taking care of the (financial/payroll) administration;
- arranging the sending of newsletters and invitations.
These processors provide a service to you on our behalf, whereby your personal data will only be used to perform that service. These processors are not entitled to use your data for their own purposes. We have entered into agreements with these processors in which we have made arrangements with them in this regard and in which they declare that they use an appropriate technical and organizational security system to ensure the protection of your personal data.
We do not pass on personal data to third parties with whom we have not concluded a processing agreement, unless this is legally required. An example of this is that the police requests (personal) data from us in the context of a criminal investigation. In such a case, we may be obliged to cooperate and provide this information.
Finally, we may share personal data with third parties if you have given us prior written permission to do so.
CLICKING BEHAVIOR AND VISITATION DATA
General visitor data is kept on the website. In this context, in particular the IP address of your computer, any user name, the time of request and data that a visitor’s browser sends can be registered and used for statistical analyzes of visiting and clicking behavior on the website. We also optimize the operation of the website.
We try to anonymize these data as much as possible. This information is not provided to third parties.
NEWSLETTER
We like to keep interested parties informed of all developments in our organization and within our field. For this reason, we send a newsletter in which we inform them about news in the field of our services and related matters. We will only add your email address to our list of newsletter subscribers with your explicit permission. Every newsletter contains a link with which you can unsubscribe.
Withdraw consent/unsubscribe from newsletter
If you no longer wish to receive our newsletter, you can easily unsubscribe by clicking on the ‘unsubscribe newsletter’ button in the newsletter. Your personal data will be removed from the subscriber list.
USE OF COOKIES
We use cookies when offering electronic services. A cookie is a simple small file that is sent with the pages of this website and stored by your browser on the hard drive of your computer. We use cookies to remember your settings and preferences. We also use cookies to optimize the use of our website and to gain better insight into its use. We may also use the information that users have left on the website to create personal profiles in order to tailor our responses to requests to users’ needs. We can also use this information to liven up the experience of our website and make it more personal.
Revoke consent
You can withdraw the consent you have given for the use of cookies at any time. You can easily revoke this by taking the steps below.
Disable cookies
Most browsers are set to accept cookies by default, but you can reset your browser to refuse all cookies or to notify you when a cookie has been sent. It is possible that some functions and services on our and/or other websites will not function correctly if the cookies in your browser are disabled.
Click here for our cookie statement.
STORAGE PERIOD
Kelly Maria Ski does not store personal data longer than necessary for the purpose for which it was provided or is required by law.
For newsletters, this means that we keep your data until you unsubscribe from the newsletter. Then they will be destroyed.
For our applicants, this means that we delete their CV and motivation letter at the end of the procedure, unless we hire the applicant or unless the applicant gives us permission to keep the CV and/or motivation letter. In that case, we will keep these documents for a period of one year. At the end of that year, we will contact the applicant to give him the opportunity to supplement the data or to request us to delete them.
For our former employees, we destroy the interview reports as soon as possible after termination of employment. The maximum retention period is a maximum of two years. We keep the copy of the passport provided – by law – for five years and the data regarding payroll tax returns – also by law – for seven years. We also keep the email addresses of our former employees active for some time after termination of employment.
SECURITY
We have taken appropriate technical and organizational measures to protect personal data. We ensure that the security of personal data is sufficient, given the state of the art, to prevent unlawful processing, unauthorized access, modification, disclosure and/or loss of data as much as possible. As far as possible, we ensure encryption of the data. We have taken the following measures, among others:
- All persons who can access your data on behalf of Kelly Maria Ski are obliged to keep it confidential;
- Only employees who are authorized to do so by virtue of their position have access to the personal data.
- We only use the personal data for the purposes for which we received it.
- We have a username and password policy on all our systems;
- We pseudonymize and ensure the encryption of personal data if there is reason to do so;
- We regularly test and evaluate our measures;
- Our employees have been informed about the importance of protecting personal data*
- We only work with reliable processors with whom we have concluded sound agreements.
*Our office has a privacy policy in which the importance of data protection is the starting point. We pass this policy on to all our employees. Our privacy policy includes a clean desk policy and a clean screen policy, the prohibition on storing passwords, the prohibition on viewing or processing personal data for private purposes and the prohibition on storing personal data on a local disk. We have provided training to our employees to increase their awareness of the protection of personal data.
RIGHTS OF DATA SUBJECTS
Inspection and copy
We believe that a transparent privacy statement is important. We also think it is important to point out the rights that you can exercise. As a data subject, you have the right to view your personal data and to request that they be corrected, supplemented, deleted and/or protected.
We believe it is very important that third parties cannot steal the private data of our customers and our employees and request access to their data with just an email. For this reason, we believe it is important that our customers or other data subjects can only inspect their data if they personally request it, so that we can determine the identity of the requester with certainty.
If we receive a customer request from one of our customers, we will forward the request to our customer and notify the data subject. If they wish to do so, we will of course be happy to help our customers provide this access, so that they can meet their obligations. This allows everyone involved to freely exercise their rights.
Supplement, improve, delete, erase and rectify
You can also request us to supplement, improve, correct and/or delete the data we know about you. Data subjects also have the right to rectification and erasure of their data (the right to be forgotten). We will delete the data if it is factually incorrect, incomplete, irrelevant to the purpose for which we collected it or if we have otherwise used it in violation of a law. If there is a basis for deletion and you want it and it is permitted by law, we will completely erase your data so that you are no longer known to us.
Limiting data processing and right to data portability
You have the right to restrict data processing. This means that you can request us to stop part of the data processing and to continue another part. You also have the right to data portability. This means that we provide your data to you in a compressed manner, so that you can easily provide it to another controller.
Objection
You can also object to data processing if you believe that your specific interests outweigh our legitimate interest in processing it. If you object to data processing, we will weigh your objections and then make a well-considered decision regarding your objection to data processing. If you do not agree with this or if you object to the way we handle your data, you can file a complaint with the Dutch Data Protection Authority. You can easily submit the complaint via the AP website.
Other rights
You also have the right not to be subject to automated decisions, the right to seek effective legal remedies and the right to compensation in the event of a violation of your privacy. Finally, those involved now also have a collective right of action.
If you have any questions or comments or would like to exercise one of the rights mentioned, you can contact us via the email address: info@kellymariaski.com.
COMPLAINTS
If you have a complaint about the processing of your personal data, we request that you contact us directly. If we cannot reach an agreement with you, we will of course find this very annoying. In that case, you have the right to file a complaint with the Dutch Data Protection Authority, which is the supervisory authority in the field of privacy protection.
OBLIGATION TO REPORT DATA LEAKS
If personal data ends up in the hands of an unauthorized person, we call it a data breach. In practice, a data breach often occurs when an employee accidentally leaves his laptop, telephone and/or USB stick in public transport or another public place, or if they have been stolen. But a data breach can also occur if a company’s data has been hacked, if an employee accidentally sends a file containing personal data by e-mail to an unauthorized person or if computer files have been leaked in some other way.
We register all (small and large) data leaks internally. If there is a data breach with a significant risk of serious adverse consequences for the protection of personal data or if those consequences have already materialized, we will report the data breach to the Dutch Data Protection Authority. If the data breach is likely to have or will have adverse consequences for the privacy of the data subject(s) and we have no compelling reasons for not reporting, we will also report the leak to the data subject(s).
ADJUST PRIVACY STATEMENT
We reserve the right to amend this privacy statement. Changes will be published on this website. If there are any significant changes, we will inform you by newsletter or e-mail. We will not inform you separately for obvious errors or minor changes.
The latest version of this privacy statement dates from March 2, 2023.
QUESTIONS, FEEDBACK AND CONTACT
With this privacy statement and our cookie policy we want to give you clarity about how we handle your data. We regularly check whether we comply with this privacy statement and our cookie policy. If you have any questions about this privacy policy, please contact us at:
Kelly Maria Ski
Kerkstraat 40
5961 GD, Horst
+31611921297
info@kellymariaski.com