PRIVACY STATEMENT NEW AMSTERDAM LEGAL B.V.
PRIVACY STATEMENT NEW AMSTERDAM LEGAL B.V.
PRIVACY STATEMENT NEW AMSTERDAM LEGAL B.V.
New Amsterdam Legal B.V. (NAL) is responsible for processing various personal data. What personal data is processed and how NAL handles this is described below.
NAL reserves the right to unilaterally change or supplement this statement. Therefore, you are advised to consult this privacy statement regularly. If any substantive changes are made to NAL’s policy with regard to privacy, this will be clearly stated on our website.
1.Personal data processed by NAL
NAL processes personal data provided to NAL by you as applicant, prospective or actual client, business relation, supplier or counterparty of NAL. In addition, NAL may process personal data you did not provide yourself, but which is necessary for the establishment, exercise or defence of legal claims. Only personal data that is adequate, relevant and limited to what is necessary to achieve the stated purposes will be processed. NAL will not use the personal data received for any purposes other than those for which it was obtained.
This concerns the following personal data:
− contact details and other personal data necessary to handle your case;
− contact details provided during acquisition meetings, introductions, seminars and other events;
− personal data made available through public sources or obtained from the Commercial Register of the Chamber of Commerce and from the land registry;
– personal data in the context of an application, such as your contact details, date of birth, nationality, marital status, and other contact details included in or with your application.
Contact details are understood to mean:
– your first name and surname;
– your address details;
– your telephone number;
– your e-mail address;
– your citizen service number;
– your gender;
– your nationality.
2. Basis for processing
NAL only processes personal data if and in so far as at least one of the following criteria has been met:
a) the data subject has given consent to the processing of their personal data for one or more specific purposes;
b) processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
c) processing is necessary for compliance with a legal obligation to which the controller is subject;
d) processing is necessary in order to protect the vital interests of the data subject or of another natural person;
e) processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
f) processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
3. Purpose of the processing
NAL processes personal data to perform the contract in which you instructed us to provide our legal services. Depending on the substance of your assignment/case, personal data and possibly personal data of others is processed to handle your case/assignment.
In addition, your data is used to provide you with information as requested, to keep in contact – for example in the context of newsletters and invitations for events – and in connection with invoicing, applications and compliance with statutory obligations.
When personal data is used for different purposes than those for which it was obtained, it will be reassessed whether there is a legal basis for the relevant processing. If this is not the case, consent will be requested again.
In certain situations, NAL may share your personal data with third parties, for example because this is necessary to handle your case – e.g. in the context of legal proceedings. Personal data will not be shared with third parties for commercial purposes. It may, however, occur that contact details of attendees are exchanged during events.
4. Retention periods
The starting point is that personal data will not be retained longer than necessary for the purpose of the processing or to comply with statutory obligations. When the applicable retention period has expired, the relevant data will be destroyed.
5. Rights of data subjects
Everyone has the right to access, rectify or delete their personal data. In addition, everyone has the right to withdraw their possible consent to the processing of data or to object to the processing of their personal data by NAL. Everyone is entitled to data portability. This means that you can request us to send the personal data we process of you to you, or another organisation designated by you, in a computer file. NAL will have to ensure in advance that such a request is filed by the relevant data subject. You can send a request to access, rectify, delete or transfer your personal data, or a request to withdraw your consent, or an objection to the processing of your personal data to wouter.jongepier@newamsterdamlegal.com.
For completeness’ sake, it must be noted that the right to delete personal data does not apply if the processing is necessary for the establishment, exercise or defence of legal claims.
If you believe that NAL does not handle your personal data correctly, please contact us about this. Of course, you can also lodge a complaint with the national supervisory authority, the Dutch Data Protection Authority.
6. Transfer of personal data abroad
If any personal data is transferred abroad, it will be checked whether there are sufficient safeguards with regard to the protection of the personal data. The level of data protection is the same within the EU. Therefore, when personal data is transferred to an organisation within the EU – and the EER – it suffices that the relevant organisation complies with the requirements of the GDPR. Other rules apply when personal data is transferred to countries outside the EU. The main rule NAL uses in this regard is that personal data can only be transferred to countries with an appropriate level of protection.
7. Safety of personal data
NAL is serious about the protection of personal data and takes appropriate measures to counter abuse, loss, unauthorised access, undesired disclosure and unauthorised changes. In addition to technical measures such as system security, this also means that NAL takes organizational measures, including informing its employees about the GDPR, subjecting all of its employees to a duty of confidentiality and pursuing a clean desk policy. The group of people who have access to the data will also be limited as much as possible.
If you are under the impression that your data is not properly secured or if there are indications of abuse, please contact us.
8. Processors
A processor within the meaning of the GDPR acts on the instructions of the controller in the processing of personal data, without coming under the direct authority of the controller. NAL may use processors for processing your personal data, such as our ICT service providers.
NAL has concluded processing agreements with its current service providers which comply with the statutory requirements.
9. Contact details
The controller is New Amsterdam Legal B.V., with its registered office at Gustav Mahlerplein 2 in (1082 MA) Amsterdam. You can reach us by telephone on +31 20 777 00 22 or +31 6 50 29 28 29 or by e-mail at wouter.jongepier@newamsterdamlegal.com. Our contact person for the GDPR is Wouter Jongepier.
1.Personal data processed by NAL
NAL processes personal data provided to NAL by you as applicant, prospective or actual client, business relation, supplier or counterparty of NAL. In addition, NAL may process personal data you did not provide yourself, but which is necessary for the establishment, exercise or defence of legal claims. Only personal data that is adequate, relevant and limited to what is necessary to achieve the stated purposes will be processed. NAL will not use the personal data received for any purposes other than those for which it was obtained.
This concerns the following personal data:
− contact details and other personal data necessary to handle your case;
− contact details provided during acquisition meetings, introductions, seminars and other events;
− personal data made available through public sources or obtained from the Commercial Register of the Chamber of Commerce and from the land registry;
– personal data in the context of an application, such as your contact details, date of birth, nationality, marital status, and other contact details included in or with your application.
Contact details are understood to mean:
– your first name and surname;
– your address details;
– your telephone number;
– your e-mail address;
– your citizen service number;
– your gender;
– your nationality.
2. Basis for processing
NAL only processes personal data if and in so far as at least one of the following criteria has been met:
a) the data subject has given consent to the processing of their personal data for one or more specific purposes;
b) processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
c) processing is necessary for compliance with a legal obligation to which the controller is subject;
d) processing is necessary in order to protect the vital interests of the data subject or of another natural person;
e) processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
f) processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
3. Purpose of the processing
NAL processes personal data to perform the contract in which you instructed us to provide our legal services. Depending on the substance of your assignment/case, personal data and possibly personal data of others is processed to handle your case/assignment.
In addition, your data is used to provide you with information as requested, to keep in contact – for example in the context of newsletters and invitations for events – and in connection with invoicing, applications and compliance with statutory obligations.
When personal data is used for different purposes than those for which it was obtained, it will be reassessed whether there is a legal basis for the relevant processing. If this is not the case, consent will be requested again.
In certain situations, NAL may share your personal data with third parties, for example because this is necessary to handle your case – e.g. in the context of legal proceedings. Personal data will not be shared with third parties for commercial purposes. It may, however, occur that contact details of attendees are exchanged during events.
4. Retention periods
The starting point is that personal data will not be retained longer than necessary for the purpose of the processing or to comply with statutory obligations. When the applicable retention period has expired, the relevant data will be destroyed.
5. Rights of data subjects
Everyone has the right to access, rectify or delete their personal data. In addition, everyone has the right to withdraw their possible consent to the processing of data or to object to the processing of their personal data by NAL. Everyone is entitled to data portability. This means that you can request us to send the personal data we process of you to you, or another organisation designated by you, in a computer file. NAL will have to ensure in advance that such a request is filed by the relevant data subject. You can send a request to access, rectify, delete or transfer your personal data, or a request to withdraw your consent, or an objection to the processing of your personal data to wouter.jongepier@newamsterdamlegal.com.
5. Rights of data subjects
Everyone has the right to access, rectify or delete their personal data. In addition, everyone has the right to withdraw their possible consent to the processing of data or to object to the processing of their personal data by NAL. Everyone is entitled to data portability. This means that you can request us to send the personal data we process of you to you, or another organisation designated by you, in a computer file. NAL will have to ensure in advance that such a request is filed by the relevant data subject. You can send a request to access, rectify, delete or transfer your personal data, or a request to withdraw your consent, or an objection to the processing of your personal data to wouter.jongepier@newamsterdamlegal.com.
For completeness’ sake, it must be noted that the right to delete personal data does not apply if the processing is necessary for the establishment, exercise or defence of legal claims.
If you believe that NAL does not handle your personal data correctly, please contact us about this. Of course, you can also lodge a complaint with the national supervisory authority, the Dutch Data Protection Authority.
For completeness’ sake, it must be noted that the right to delete personal data does not apply if the processing is necessary for the establishment, exercise or defence of legal claims.
If you believe that NAL does not handle your personal data correctly, please contact us about this. Of course, you can also lodge a complaint with the national supervisory authority, the Dutch Data Protection Authority.
6. Transfer of personal data abroad
If any personal data is transferred abroad, it will be checked whether there are sufficient safeguards with regard to the protection of the personal data. The level of data protection is the same within the EU. Therefore, when personal data is transferred to an organisation within the EU – and the EER – it suffices that the relevant organisation complies with the requirements of the GDPR. Other rules apply when personal data is transferred to countries outside the EU. The main rule NAL uses in this regard is that personal data can only be transferred to countries with an appropriate level of protection.
7. Safety of personal data
NAL is serious about the protection of personal data and takes appropriate measures to counter abuse, loss, unauthorised access, undesired disclosure and unauthorised changes. In addition to technical measures such as system security, this also means that NAL takes organizational measures, including informing its employees about the GDPR, subjecting all of its employees to a duty of confidentiality and pursuing a clean desk policy. The group of people who have access to the data will also be limited as much as possible.
If you are under the impression that your data is not properly secured or if there are indications of abuse, please contact us.
8. Processors
A processor within the meaning of the GDPR acts on the instructions of the controller in the processing of personal data, without coming under the direct authority of the controller. NAL may use processors for processing your personal data, such as our ICT service providers.
NAL has concluded processing agreements with its current service providers which comply with the statutory requirements.
9. Contact details
The controller is New Amsterdam Legal B.V., with its registered office at Gustav Mahlerplein 2 in (1082 MA) Amsterdam. You can reach us by telephone on +31 20 777 00 22 or +31 6 50 29 28 29 or by e-mail at wouter.jongepier@newamsterdamlegal.com. Our contact person for the GDPR is Wouter Jongepier.