1.1. The website available at enter hyperlink address (hereinafter referred to as the “Website”) is operated by and the property of name of entity, company number , with its registered office in (hereinafter referred to as “NAME”, “we” or “us”).
1.3. We are responsible for the processing of your personal data. As the controller, we take all appropriate technical and organisational measures to ensure that processing complies with Regulation (EU) 2016/679 of 27 April 2016 (hereinafter referred to as the “GDPR”). Representatives or employees of NAME who have access to your personal data, as well as processors engaged by us, are obliged to comply with the GDPR.
2. Who are we and how can you contact us?
Name of company:
Hyperlink of Website:
3. How can you contact our Data Protection Officer?
Enter - if applicable
4. For what purposes do we process your personal data?
4.1. NAME processes your personal data for the following purposes:
4.2. Your personal data may or may not be used for direct marketing purposes - specify.
4.3. The processing of your personal data may or may not be the subject of automated individual decision-making/profiling - specify.
5. What is the legal basis for processing your personal data?
5.1. We process your personal data if:
Determine legal basis/bases: consent, implementation of agreement, legal obligation, vital interests, general interest, legitimate interests.
6. The personal data we process
We process the following personal data from you (insofar as provided by you):
7. What other parties receive and/or processes your personal data (in addition to NAME)?
Enter - if applicable
8. Do we pass on your personal data to (companies or entities in) non-EU countries?
Enter - if applicable
9. Where and for how long do we store your personal data?
9.1. Your personal data are stored on a secure server specify.
9.2. We do not store your personal data for any longer than necessary to achieve the purposes specified in Article 4. Once the purpose has been achieved, we, in principle, will delete your personal data and in any case not retain them for longer than insert maximum retention period.
10. What are your rights?
10.1. You have the right to request us to: inspect your personal data;
correct or delete your personal data; limit processing in relation to you.
10.2. You have the right to object to the processing of your personal data. You can at all times object to the processing of your personal data for direct marketing purposes, without incurring costs.
10.3. You have the right to transfer your personal data to another controller.
10.4. If the processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. However, the withdrawal of your consent does not have retroactive effect and does not affect the legality of processing based on your consent given prior to its withdrawal.
10.5. You have the right to submit a complaint to the Data Protection Authority (provide hyperlink to DPA website).
10.6. Exercising the above rights depends on the requirements and conditions as set out in the GDPR.
10.7. In order to exercise any of the above rights, simply send your request to NAME at e-mail address. Note that you will be asked to adequately identify yourself.
11. What are our obligations?
11.1. We will take all appropriate security measures to protect your personal data. This includes the necessary measures as regards access control, encryption, physical and operational security, particularly so with regard to the Website and the servers of NAME.
11.2. We keep a processing register that also describes the (category of) processing of your personal data.
11.3. We cooperate with the competent data protection authorities (upon their request).
11.4. We will, where necessary and/or mandatory, immediately report any breaches of your personal data to the Data Protection Authority (including unlawful processing, loss, unavailability, destruction, damage or the unauthorised distribution thereof), yet no later than 72 hours after being notified thereof.
In the event that such an infringement is likely to jeopardise your rights, we will report this to you under the conditions set out in the GDPR.
In the event that you somehow become aware of a breach of your personal data or those of others, you can contact NAME at enter e-mail address.
11.5. If we use certain new technologies or applications to process your personal data, which could well entail high data protection risks for you, we will carry out a so-called “Data Protection Impact Assessment (DPIA)” under the conditions set out in the GDPR and, if required, consult the Data Protection Authority about this beforehand.
Questions? Feel free to contact us at: e-mail address.