privacybeleid
Company info
Bedrijfs-
informatie
Company name: VRcafe
Address: Stationsplein 68, 2011LM, Haarlem
Phone number: +31 23 2340606
KVK nummer: 58448578
Nederlandse belastingnummer: NL001584419B78
Bank: NL45INGB0397954417 BIC: INGBNL2A
Websites: https://vrcafehaarlem.nl https://vrcafehaarlem.nl
DEFINITIONS AND INTRODUCTION
Personal data: any information that provides details about a natural person and allows you to directly or indirectly identify that person. For example, a name, (email) address, or phone number.
Data subject: the person to whom personal data relates, or their representative. For instance, the customer or supplier whose address and phone number you have stored.
Processing of personal data: any action that can be performed with personal data, including:
- Collecting, recording, and organizing data.
- Requesting, modifying, and consulting data.
- Disclosing data to others.
- Shielding or destroying data.
Controller: the person or organization that determines:
- Whether personal data may be processed and, if so, for what purposes.
- The specifics of the processing.
- The means used for the processing.
- welke middelen daarbij gebruikt mogen worden.
Processor: the person or organization that processes personal data on behalf of the controller, for example, through a web application.
Data Processing Agreement: an agreement in which the controller and processor make arrangements regarding the processing of personal data.
Personal data is processed by VRcafe and also by the following processors on behalf of VRcafe:
- Mailchimp
- Yuki
- OnlineAfspraken.nl B.V.
- SynthesisVR
VRcafe has Data Processing Agreements with all parties that process personal data on their behalf.
Personal data is collected on the VRcafe website, through email, via telephone customer contact, and in-person at the location.
2. PURPOSE OF COLLECTING AND PROCESSING PERSONAL DATA
2. Doel van het verzamelen en verwerken van persoons
gegevens
2.1 Types of personal data processed
- For reserving the services of VRcafe, the individuals provide the following information:
- Company name
- Residential address
- Email address
- Phone number
- For billing and accounting purposes, the individuals provide the following information:
- Company name
- Email address
- For billing and accounting, the individuals may also provide the following information:
- Company name
- First name and Last name
- Additional information
- Address
- Postal code
- City
- Country
- Invoice email address
- Quotation email address
- KvK-number
- VAT identification number (Btw-nummer)
- Phone number
- Customer number
- Bank account number
- Voor het toesturen van informatie of offertes over de services van VRcafe kunnen betrokkenen de volgende persoonsgegevens beschikbaar stellen, wanneer ze per email of telefoon contact opnemen met VRcafe:
- Company name
- Email en/of telefoonnummer
- Company name
- Address
- Postal code
- City
- Country
- KvK-number
- VAT identification number (Btw-nummer)
2.2 Categories of individuals whose data is processed Users of the services of VRcafe, or potential users who contact VRcafe directly via email or phone.
3. RIGHT OF ACCESS, CORRECTION, AND OBJECTION OF THE DATA SUBJECT
Upon the data subject's initial request, the controller shall, within a reasonable period, and if possible within five working days after receiving the request, proceed to:
- Provide in writing all necessary information that the data subject may require;
- Correct, supplement, delete, or restrict Personal Data;
- Transfer the Personal Data in a structured, commonly used, and machine-readable format.
4. SECURITY MEASURES
4. Beveiligins maatregelen
The data controller and data processor shall take all appropriate technical and organizational measures to adequately secure and maintain the (processing of) Personal Data against loss or any form of careless, unskilled, or unlawful use or processing, taking into account the state of the art.
5. DESTRUCTION
5.1 Deletion of Personal Data
The data controller is obliged to completely and irreversibly delete all Personal Data upon the first request from the data subject, unless the storage of Personal Data is legally required by the data controller. In such a case, the data controller shall promptly inform the data subject of such legal obligation and the implications for the retention period arising from it.
5.2 Deviation
The data controller may deviate from the previous article to the extent that a legal retention period would apply to Personal Data or to the extent that it is necessary to prove compliance with its obligations to the data subject.
