Privacy declaration

Privacy declaration Arrowflex

We are committed to giving you clarity on how we handle your personal data. In this Privacy Statement we inform you about this.

1. Contact details

Arrowflex is the data controller and is located at Kerkenbos 13-07, 6546 BG in Nijmegen. You can reach us by phone at +31 (024) 3881959 or by email at ruud@arrowflex.nl.

2. To whom does this Privacy Statement apply?

This Privacy Statement applies to all persons whose personal data Arrowflex processes, with the exception of persons employed by Arrowflex. Personal data is any data which contains information about persons with which the persons are identifiable.

This Privacy Statement applies to:

• clients of Arrowflex,
• Potential clients with whom Arrowflex has made or intends to make contact,
• visitors to the Arrowflex website,
• Recipients of newsletters and commercial emails from Arrowflex, and
• All other persons who contact Arrowflex or from whom Arrowflex processes personal data.
• This Privacy Statement does not apply to employees, temporary workers, insourced workers, student interns, and job applicants.

3. What personal data do we process?

Arrowflex respects your personal data and ensures that the personal information provided to us or otherwise obtained is treated confidentially. Personal data involves all information about a person. Data that indirectly says something about someone is also personal data.

By processing personal data, we mean: collecting, recording, organizing, storing, updating, modifying, retrieving, consulting, using, providing by means of transmission, dissemination or any other form of making available, assembling, connecting, as well as blocking, erasing or destroying your personal data.

We process personal data that you have provided to us yourself, personal data generated during your visit to our website and reading of newsletters, and personal data derived from other sources, such as corporate Social Media platforms and business cards.

Personal data provided by you:

• Contact information and other personal data necessary to process your order,
• contact information and other personal data entered on contact forms or other web forms, and
• contact information provided during introductory meetings, events, seminars, etc. such as information provided on business cards.

Personal data obtained through or generated by our website, electronic newsletters, commercial e-mails or related technologies:

• IP number,
• Your browsing habits on the website, such as data about the first visit, previous visit and current visit, the pages viewed and how to navigate through the website, and
• Whether you open a newsletter or commercial email and which parts of it you click on.
• See our cookie policy

Personal data obtained from other sources:

• personal data available on public business social media platforms such as LinkedIn,
• personal data obtained from the Commercial Register of the Chamber of Commerce, and
• personal data available on public business websites.

Our website may contain hyperlinks to other parties’ websites and social media buttons. We are not responsible for the content of those websites or the services of respective social media platforms. Nor is Arrowflex responsible for the privacy policies and use of cookies on those websites and social media platforms.

4. What do we use your personal data for?

We use your personal data for a variety of purposes. We list them for you:

• Performing a contract in which you have commissioned us.

If you submit an order for processing, your contact details will be requested in any case. Other personal data may also be necessary for the processing of the assignment, depending on the nature of the assignment. Furthermore, the data is used for invoicing the services provided.

• Fulfilling legal and regulatory obligations.
• Collecting fees.
• Maintaining contact with you.

Your contact information is maintained in EU relationship management systems and may be used for such purposes as sending newsletters, updates, invitations to events and seminars, and sending you information you have requested from us.

• To improve our product and service information and conduct targeted marketing campaigns.

We believe it is important to approach you with information that is relevant to you. To make this possible, we combine and analyze the personal data available to us. Based on this, we determine which information and channels are relevant and which moments are most suitable for providing information or establishing contact. In marketing campaigns, we do not process special personal data or, for that matter, confidential data. If we would like to create a personal, individual customer profile of you, we will ask for your prior consent. If we would like to create a personal, individual customer profile of you, we will ask for your prior consent.

We analyze the following data:

• Interaction Data: Personal data obtained from contact between Arrowflex and you. For example, about your use of our website or supported applications. This also applies to offline interactions, such as how often and when there is contact between Arrowflex and you.
• Behavioral data: Personal data that Arrowflex processes about your behavior, such as your preferences, opinions, wants and needs. We can derive this information, for example, from your browsing behavior on our website, from reading our newsletters or from your request for information. But also through conducted, incoming phone calls and email contact with our staff. We collect and use information obtained through tracking cookies only with your consent, which you can withdraw at any time. See our cookie policy.
• Conduct and analyze client satisfaction surveys.Sometimes we ask clients to participate in a client satisfaction survey. This is done through an online questionnaire. Participation in this is voluntary. Prior to each client satisfaction survey, you will receive further information about how we work and how we handle the information obtained.
• Improving and securing our website www.arrowflex.nl.
• Creating user statistics. Website user statistics allow us to get a picture of, among other things, the number of visitors, the duration of the visit, which parts of the website are viewed and click behavior. These are generic reports, with no information on individuals. We use the information obtained to improve the website.

5. Security level

We protect personal data, taking into account the state of the art, using appropriate technical and administrative security measures to minimize the risk of loss, misuse, unauthorized access, disclosure and alteration. These include security software such as a virus scanner and firewalls, a secure Internet connection, encryption of data, and physical and administrative access controls to data and servers.

6. Retention of personal data

We do not keep your personal data longer than is strictly necessary for the fulfillment of the purposes. If legal requirements apply to retention, personal data will not be kept longer than required by law.

7. Legal basis of processing

We process personal data based on one of the following legal grounds:

• Obtained permission
• On the basis of an agreement or in the run-up to the conclusion of an agreement
• Legal obligation
• In connection with a legitimate interest

A data controller may only process personal data if this can be based on one of the exhaustively listed legal grounds in the General Data Protection Regulation (AVG). The four legal grounds on which Arrowflex relies are:

• Consent: If we have asked you for permission to process your personal data and you have given this permission, you also have the right to withdraw this permission at any time.
• Agreement or leading up to the conclusion of a contract: If you commission us to provide innovation or finance consultancy services, we will process personal data if and to the extent that it is necessary for the performance of the contract.
• Legal obligation: We provide personal data to regulatory authorities only if required to do so by law. In such cases, we will take steps reasonably necessary to ensure that your personal data is protected to the fullest extent possible.
• Legitimate interest: We may also process personal data if we have a legitimate interest in doing so and do not disproportionately infringe on your privacy. For example, we use your contact information to invite you to seminars and events.

8. Processors

We may engage service providers (processors) to process your personal data who process personal data exclusively on our behalf. We conclude a processor agreement with these processors that meets the requirements of the General Data Protection Regulation (AVG). For example, we work with service providers who provide SaaS (software as a service) solutions or hosting services. In addition, there are ICT service providers who provide us with support in keeping our systems secure and stable. We also use third-party services to send newsletters and commercial emails. These are examples of parties that qualify as processors as defined in the General Data Protection Regulation (AVG).