At Studio Automated we value your privacy.
This page tells what Studio Automated does with your personal data, how Studio Automated protects it and how you can exercise your GDPR rights.
WHAT IS PERSONAL DATA?
Personal data is information that can be traced back to you as a person. Examples of personal data are your name, home address and email address. You will find more information about personal data and privacy legislation on the website of the Dutch Data Protection Authority.
WHY DOES STUDIO AUTOMATED USE YOUR PERSONAL DATA?
Studio Automated can use your data for various purposes. Below you will find an overview of the most common processing purposes of Studio Automated and the personal data involved.
|DATA PROCESSING||CATEGORY OF PERSONAL DATA|
|Studio Automated Holding||Contact details; sex; date of birth or age;|
|Studio Automated BV’s||Contact details; IP address and other online IDs; sex; date of birth or age;|
|Procurement||Contact details; ID details; financial data, sex; date of birth or age.|
|Legal proceedings (private law, administrative law and complaints)||Contact details; sex; date of birth or age; ID card details, financial details, substantive procedural details.|
|Screening against (inter)national sanctions- and export controls|
|Contact details; sex; date of birth or age; place of birth, identification data.|
Studio Automated has a register of data processing activities in which all operational and business data processing operations are registered.
HOW LONG DOES STUDIO AUTOMATED KEEP YOUR PERSONAL DATA?
Studio Automated does not process your personal data longer than necessary for the purpose of the data processing. The retention period depends on a number of circumstances:
- applicable laws and regulations, such as fiscal legislation or the 1995 Archives Act;
- type of relationship with you as a data subject, for example customer relationship, job applicant or research participant;
- the necessity to keep data in connection with (future) legal proceedings.
HOW DOES STUDIO AUTOMATED SECURE YOUR PERSONAL DATA?
Studio Automated considers it very important that the personal data you provide is treated and secured with the greatest possible care. In order to optimally protect your personal data against loss, theft, unauthorized access or incorrect use, Studio Automated takes appropriate technical and organizational measures to protect your personal data. These measures include measures to ensure the confidentiality, integrity and availability of personal data through physical, technical (access) controls. When using personal data in research Studio Automated makes sure the research data is pseudonymized whenever possible.
DOES STUDIO AUTOMATED GIVE PERSONAL DATA TO OTHER ORGANISATIONS?
In principle Studio Automated does not share any personal data with other persons or organisations.
There are situations in which Studio Automated is legally obliged to provide personal data to others. This always concerns special circumstances such as compliance with applicable laws and regulations or legal proceedings.
Studio Automated uses IT systems that are not hosted by Studio Automated (cloud computing). Your data will then be processed in these systems on behalf of Studio Automated. Studio Automated ensures that contracted IT vendors use IT systems that offer an appropriate level of data protection. Studio Automated concludes data processing agreements with these vendors.
Below you will find the main categories of recipients who may process your personal data.
- Research partners
- IT-services, web, and data hosting parties
- Payment processors
- Legal advisers and accountants
- Governmental agencies
WHAT ARE YOUR PRIVACY RIGHTS?
Based on GDPR, you have various rights to check if Studio Automated collects and uses your personal data in accordance with the law. You can request access to your data, check if Studio Automated has used the data lawfully or object against the processing of your personal data.
If you want to exercise your privacy rights, you can ask this by email to firstname.lastname@example.org
Your request will always be processed. However, this does not mean that your request can be granted without further ado. In some cases your privacy rights do not apply. This may be the case when your personal data is used in Studio Automated research.
You will receive a reply to your request within a month. If your request cannot be processed within a month, you will be notified accordingly. Studio Automated is required to process your request within three months at the latest.
Studio Automated’s response is a decision governed by the General Administration Act. If you disagree with the decision because Studio Automated has denied your request partially or in full, you can lodge an objection and subsequently apply to the administrative law courts.
INCIDENTS (DATA BREACH)
In spite of our precautionary measures designed to give personal data the best possible protection, it remains possible that an incident may occur in which personal data are involved. An incident of this type is called a data breach. If you believe that a data breach is occurring at Studio Automated, always get in touch with the Data Protection Officer of Studio Automated at email@example.com
The following information should be supplied when reporting a data breach:
- your name and contact details;
- the nature of the incident;
- which personal data are involved;
- which systems are involved in the incident; and
- when and how you discovered the incident.
QUESTIONS AND COMPLAINTS
If you have any questions about this privacy statement, please contact the Data Protection Officer of StudioAutomated at firstname.lastname@example.org. You can also send a letter to:
attn. Data Protection Officer
1019 HD Amsterdam
If you have a complaint, you can contact us in the same way. In addition, you are always entitled to submit a complaint to the Dutch Data Protection Authority.
This privacy statement may be changed at any time by Studio Automated without prior announcement. Changes come into effect as soon as they are published on this website.