Gotthard Mason acts as a data controller under the General Data Protection Regulation (the “GDPR”), the relevant GDPR implementing laws and other applicable laws and regulations. Therefore, we would like you to have a clear understanding of how we use your personal data, how you can access your personal data and how you can protect your privacy. We try to achieve this through this privacy statement. In this privacy statement you can find:
- what personal data we store and/or collect, and why we collect it;
- how we use that personal data; and
- your options regarding accessing and updating or deleting your personal data.
We encourage you to read this privacy statement carefully. We may be required to update this privacy statement in the future. The most recent version of this privacy statement can be found on our website at www.gotthardmason.com. In the event of significant changes to the privacy statement, we may also notify you by email. If you have any questions about this privacy statement, you may also email us at any time at office@gotthardmason.com.
From whom do we collect personal data?
Clients
We collect and retain vital information about our clients to the extent required by law and to fulfill our contractual obligations with them.
Marketing, communication and website visitors
In terms of marketing and other forms of communication, we collect your personal data because you are or have been a client of us, you have visited our website and signed up for our communications or you are otherwise a contact of us. For this purpose, we process your personal data in our relationship management system. We will occasionally provide you with information, including news releases, invitations to events or targeted communications that we think may be of interest to you. In addition, we may approach you for a targeted marketing campaign using data obtained from external sources (Chamber of Commerce, LinkedIn, etc.). In all cases, we strive to send you only the most relevant information and to personalize our forms of communication as much as possible. You can unsubscribe from our emails at any time by clicking “unsubscribe” at the bottom of each digital newsletter. Under no circumstances do we share your personal data for commercial purposes or sell your email address or other personal data.
How do we collect your personal data?
We may collect personal data:
- that we obtained directly from you, for example the information you provided to us to sign up for the newsletter or through your business card that we obtained through direct interaction with you (by email, phone, letter);
- at the time you enter into an agreement with us; and
- that we have obtained from other sources, for example a third party such as a law firm, the Chamber of Commerce trade register, LinkedIn or company websites.
What are the legal bases for collecting your personal data?
There are six legal bases for collecting and processing personal data:
- your consent (that goes without saying);
- contractual obligations that we have entered into with each other;
- our legitimate interest (for example managing and administering the relationship with our clients, including marketing activities);
- a legal obligation (sometimes we are required by law to process personal data, for example for identification purposes);
- a vital interest (it is in your vital interest for us to hold some personal data about you, for example information about allergies); and
- a public interest (if required by a public authority or in the public interest).
In general, we will collect and process personal data based on your consent, contractual obligations, our legitimate interest and to comply with legal obligations.
What personal data of yours do we collect?
- basic information (such as your name, gender, title, position, employer, your relationship with Gotthard Mason);
- contact information (email address, address, phone number);
- a link to your LinkedIn profile;
- your contact person at Gotthard Mason;
- data necessary for billing purposes;
- personal data provided to us during the provision of services (this may include special personal data, such as a passport number or an identification number);
- marketing lists to which you belong based on your interests;
- opt-in/opt-out for communication tools (newsletters, etc.);
- whether you open our emails and/or click on any attached links;
- data about your visit to our website;
- other relevant personal data you have provided to us; and
- photos (e.g. taken at our events).
For what purpose do we collect your personal data?
We collect your personal data:
- to properly address our communications to you;
- to adequately process and respond to any questions or complaints from you;
- to maintain and administer our relationship with you;
- to comply with regulatory and policy requirements;
- to provide the services you request;
- to find out what other services may be of interest to you;
- to communicate with you about our services;
- to improve the service on our website by using statistics about browsing behavior on our website;
- to monitor and analyze business processes and systems;
- to process your job application;
- for business development purposes;
- to improve our communications; and
- to invite you to events.
With whom do we share your personal data?
Our partners in the EU
In connection with one or more of the above purposes, we may share your personal data with third parties, for example, as necessary to fulfill contractual obligations entered into with you. In each case where we share your personal data with a third party, we will ensure that that party is contractually obligated to handle and protect your personal data with care.
Our partners outside the EU
In principle, we do not share your personal data with parties outside the European Union, because those countries may guarantee lesser protection of your data. However, it may happen that in the performance of the agreement entered into with you, we cooperate with a party located outside the EU. In these cases, when your personal data is shared with parties outside the EU, we will ensure that measures are taken to ensure adequate protection of your data.
Law enforcement authorities
We reserve the right to disclose your personal data to the law enforcement authorities that request it, in connection with an offense committed. We will only disclose your personal data if we can reasonably be confident about the circumstances surrounding the request.
How long do we keep your personal data?
We will not retain your personal data for longer than is necessary for the purposes stated in this privacy statement. Your personal data will be retained in accordance with our retention policy which is available upon request. The retention period for each category of personal data is based on regulatory and policy requirements and the purpose for which the data was collected and used.
How do we protect your personal data?
To prevent loss and any other form of unlawful processing of your personal data, we have implemented appropriate technical and organizational measures. The most recent version of our protection policy is available on request.
What are your rights and how can you exercise them?
The GDPR provides certain rights for data subjects whose personal data are collected and processed. You, as a data subject, have the right:
- to information about and access to your personal data;
- to rectify and correct your personal data;
- request deletion of your personal data ('the right of oblivion');
- to restrict or object to the processing of your personal data;
- to retrieve your personal data in an orderly manner and send it or have it sent to another organization;
- to object to profiling; and
- to withdraw your consent to further future processing of your personal data to the extent that such processing is based on your consent.
Should you wish to exercise any of your rights, please contact our Privacy Officer. The contact details of our Privacy Officer can be found at the bottom of this privacy statement. Finally, you still have the right to file a complaint with the Dutch Privacy Authority.
Contact
If you have any questions, comments or complaints regarding this privacy statement or our processing of your personal data, please contact your contact person within Gotthard Mason or our Privacy Officer at office@gotthardmason.com.