Quick Guide to Our Privacy Notice

how do we share data with others?

We want you to know that your personal data is in safe hands with us. There are times when we need to share your information with other trusted parties to provide you with our services or to meet our legal obligations. But don’t worry, we’re very selective about who we share your data with and ensure it’s always protected.

Here’s a quick look at who might need access to your data and why:

• Financial and Legal Partners: This includes banks, insurance companies, and our advisors in financial, tax, legal, and accounting matters. They help us manage our business responsibly and securely.
• Training and Development Experts: Sometimes, we work with specialists to enhance our team’s skills and services, which means sharing information to tailor training programs.
• IT & Security Service Providers: These are the tech wizards who keep our systems running smoothly and safely. Sharing data with them means you get a better, more secure experience.
• Corporate Changes: If we’re involved in a merger, acquisition, or sale, data might be transferred as part of the business assets, but we’ll always keep you in the loop.
• Distribution Partners: To ensure the products you order reach you quickly and safely, we share necessary details with our distribution partners. This collaboration helps us streamline the delivery process, making sure your products are on their way to you without any hitches.

And, of course, if the law or public safety requires it, we might need to share information with public authorities or governments. But even then, we’ll only share what’s absolutely necessary.

Your trust is important to us, so we promise never to sell your personal data or use it for anything like cross-context behavioral advertising. Your privacy is our priority, and we’re here to keep your data safe while providing you with our best services.

International Data Transfer

Due to our company’s multinational nature, the data we process about you may be transferred to or accessed by BUNZL, our affiliates, and trusted third parties from different countries around the world. Your personal data may be moved to a country other than where you live if it’s needed for the purposes we’ve mentioned in this Privacy Notice. We’re serious about protecting your rights during these transfers. That’s why we only send your personal data to places where:

• The European Commission has decided there’s an adequate level of data protection. Please find the list of countries here: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en
• There are strong safeguards in place for transferring your personal data, such as:
  • Standard Contractual Clauses;
  • Codes of conduct;
  • Certification mechanisms;
• Or, if the transfer is allowed under the data protection laws that apply.

We make these international transfers to continue providing you with the best possible services, no matter where you or we are in the world. You may find the countries we may transfer your data to in appendix 2.

Finding Out More

We believe in transparency, so we’ve put together a detailed list of all the processors and partners we work with. This list is regularly updated to reflect any changes, ensuring you have the most current information at your fingertips. You can find this list by visiting our website.

WHEN WILL MY DATA BE DELETED?

We will store your personal data as long as is necessary for the purposes mentioned in this Privacy Notice, especially for the fulfilment of our contractual and legal obligations. We may also store your personal data for other purposes if or as long as the law allows us to store it for particular purposes, including for defense against legal claims.

If you close your customer account, we will delete all the data we have stored regarding you. If it is not possible or necessary to completely delete your data for legal reasons, the relevant data will be blocked for further processing.

What does blocking mean?

If data is blocked, restriction of access rights and other technical and organizational measures are used to ensure that only a few employees can access the relevant data. These employees may also only use the blocked data for the above purposes (e.g. for submission to the tax office in the event of a tax audit).

Blocking will occur, for example, in the following cases:

• Your order and payment details and perhaps other details are generally subject to various legal retention obligations, The law obliges us to retain this data for tax audits and financial audits for strictly specified periods of time. Only then can we finally delete the relevant data.
• Even if your data is not subject to any legal retention obligation, we may refrain in the cases allowed by the law from immediate deletion and instead carry out initial blocking. This applies especially in cases where we may need the relevant data for further contractual processing or prosecution or legal defense (e.g. in the event of complaints). The decisive criterion for the duration of the blocking is then the legal limitation period. After the relevant limitation periods expire, the relevant data will finally be deleted.

HOW WE KEEP YOUR PERSONAL DATA SAFE?

Your privacy and the security of your personal data are of utmost importance to us. We’re committed to protecting the information you share with us. To do this, we’ve put in place a variety of security measures aimed at preventing your personal data from being lost, misused, accessed without permission, changed, or disclosed.

Here’s what we do to keep your data safe:

• Robust Security Practices: We use state-of-the-art security measures to ensure your data is handled securely.
• Limited Access: Only staff, agents, and contractors who really need to know your information for business reasons can access it. They’re all trained in data protection and understand the importance of keeping your information secure.
• Ongoing Vigilance: We continuously monitor and update our security practices to tackle new and evolving threats.

We want to remind you, though, that no system is 100% secure. While we do everything we can to protect your data on our end, there’s always a risk when data travels over the internet. We encourage you to be mindful of this and take your own precautions to protect your information online. Unfortunately, we can’t be responsible for any data breaches that happen outside of our control.

Remember, your security is a team effort. If you have any questions about how you can help keep your data safe, or if you want to learn more about our security measures, please don’t hesitate to get in touch. Your peace of mind is our priority.

your rights

Under certain circumstances, by law you have the right to:

• Request access to your personal information (commonly known as a “data subject access request”). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
• Request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
• Request erasure of your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us to continue to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see below).
• Object to processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object when we are processing your personal information for direct marketing purposes.
• Request the restriction of processing of your personal information. This enables you to ask us to suspend the processing of personal information about you, for example, if you want us to establish its accuracy or the reason for processing it.
• Request the transfer of your personal information to another party.
• Right to human intervention. If the personal data is being used to make automated decisions about you as the data subject (e.g., profiling), you have the right to be told what logic the system uses to make those decisions and to be able to request human intervention to override any such automated decisions.

If you submit a data subject request, we will respond within 30 days, unless the complexity or volume of requests necessitates an extension. In such cases, we may extend our response time by up to two additional months and will notify you of this extension and the reasons for it within the initial 30-day period.

If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact us.

Please note that some of these rights are subject to certain limitations or exceptions. Any requests will be assessed on a case-by-case basis. You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

how to contact us?

If you have any questions or concerns about the processing of your data or the content of this Privacy Notice, please do not hesitate to contact info@verive.eu.

Right to lodge a complaint with the supervisory authority

If you have any complaints regarding the processing of your personal data, please do not hesitate to contact us at the address indicated in the previous section.

If you are not satisfied with our response to your complaint, or if you believe that our processing of your data is contrary to the requirements of applicable data protection legislation, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) via its website: https://autoriteitpersoonsgegevens.nl

Changes to this Privacy Notice

We reserve the right to update and modify this Privacy Notice to ensure that it accurately reflects changes in our practices and our processing of your personal data.

It is important that the information we hold is accurate and up to date. Please keep us informed of any changes to your information that may occur during the recruitment process.

Last modified: 20 March 2024