Article 1. DEFINITIONS
|Applicable Privacy Legislation:||Applicable Privacy Legislation, including the General Data Protection Regulation (hereinafter: GDPR) and any other applicable law relating to the processing of personal data.|
|Controller:||The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data.|
|Dopper:||Stichting Dopper Foundation
2011 KA Haarlem
Chamber of Commerce number: 57084947
|Processing:||An operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.|
|Processor:||The person who processes Personal Data on behalf of the controller, without being subject to his direct authority.|
|Website Visitor:||The Website Visitor refers to the person who uses the Website of Dopper, also including the registration on the Website.|
|Website:||With ‘Website’ the website: <changemakerchallenge.com> is meant.|
2.2 The Website of Dopper contains references to websites of third parties (for example hyperlinks, banners or buttons). Dopper is not responsible for compliance with the Applicable Privacy Legislation by these third parties.
Article 3. PERSONAL DATA COLLECTED
3.1 Dopper Processes the following Personal Data from Website Visitors:
3.1.b. e-mail address*
3.1.c. IP address*
3.1.d. Message to Dopper*
3.1.f. Phone number*
3.1.g. Place of residence*
3.1.i. University or school*
3.1.j. Reaserch topic and reasons for this research*
3.2 These Personal Data are collected by requesting a Dopper newsletter or otherwise using the Website.
3.3 Dopper will only process the Personal Data in accordance with the Applicable Privacy Legislation.
Article 4. PURPOSES AND LEGAL GROUND FOR PROCESSING
4.1 Dopper collects and processes your Personal Data solely for the purpose specified below:
4.1.a. Communication: Your Personal Data are used to communicate with you about your submission and to inform you of matters that are important for the use of the Website and the handling of any complaints and to communicate about your submission. This Processing of Personal Data is necessary for the performance of a contract (your submission) (article 6 paragraph 1 section b GDPR) and for purposes of a legitimate interest pursued by Dopper, namely to conduct its normal business (Article 6 paragraph 1 section f GDPR).
4.1.b. Marketing purposes: Your Personal Data will be used to send the newsletter, the action mail and/or inspiration mail, if you have registered for it. To approach Dopper via e-mail for marketing purposes, Dopper always requests your prior consent, unless it concerns offers about similar products that you have ordered. You always have the option to unsubscribe from mailings. This Processing of Personal Data is based on consent (article 6 paragraph 1 section a GDPR) or is necessary for purposes of a legitimate interest pursued by Dopper, namely to perform marketing activities (article 6 paragraph 1 section f GDPR).
4.2 If Dopper intends to further process the Personal Data for a purpose other than that the Personal Data have been collected, Dopper will provide you with information about that other purpose and all relevant further information before that further processing.
Article 5. TRANSFER OF PERSONAL DATA BY THIRD PARTIES
5.1 Dopper shares Personal Data with the following entities:
5.1.a. Way2Wab Software B.V. (software supplier);
5.1.b. The Rocket Science Group LLC (MailChimp, mailing list provider)
5.1.c. Google Analytics (see article Dopper only uses third party cookies to improve the quality and effectiveness of the Website. For example, it uses Google Analytics, which are set up in a privacy-friendly manner. Google Analytics processes the IP addresses for Dopper.)
5.2 Dopper only shares Personal Data of Website Visitors with third parties after having made contracts with these third parties regarding the processing of Personal Data. In this way, Dopper ensures that the Processors take appropriate technical measures, treat the Personal Data confidentially and guarantee the rights of Website Visitors.
Article 6. SECURITY
6.1 Dopper takes appropriate organisational and technical security measures to protect your Personal Data and to prevent misuse, loss or alteration thereof.
6.2 Dopper stores your Personal Data on servers in and outside of Europe, including in the US. If and insofar as Dopper stores Personal Data with parties in countries that do not have an adequate level of protection, it will agree with these parties standard data protection provisions set by the European Commission. A copy of the agreed standard provisions can be requested by the Website Visitor via email address: firstname.lastname@example.org or telephone number: +31 (0) 23 7370 445.
Article 7. STORAGE PERIODS
7.1 Dopper does not store the Personal Data of Website Visitors longer than strictly necessary in relation to the purposes for which they are processed. Except where there is a legal retention term;
7.1.a. IP addresses of Website Visitors are kept 1 month;
7.1.b. Name and e-mail address for marketing purposes are stored until the Website Visitor objects to our use of the e-mail address;
7.1.c. Name, Sex, Phone number, Place of residence, Studies, University or school, Reaserch topic and reasons for this research, message to Dopper are kept 6 months after our services are provided.
7.2 You can request Dopper to erase the Personal Data earlier. If the Personal Data are no longer necessary in relation to the purposes for which Dopper has collected or otherwise processed the Personal Data, Dopper will erase the Personal Data.
Article 8. Cookies
8.2 Cookies are small pieces of information that are stored by the browser on the Website Visitor’s computer. Dopper uses different types of cookies for different purposes.
8.2.a. Functional cookies: cookies that are necessary for the Website to function properly.
8.2.b. Analytical cookies: cookies that ensure that insight can be gained into how Website Visitors use (parts of) the Website, so that Dopper can improve the Website and that it fits as well as possible with what Website Visitors find interesting and important. Dopper does not use the data obtained with these cookies to study the use of the Website at an individual level, but only at an aggregated level.
8.3 Dopper only uses third party cookies to improve the quality and effectiveness of the Website. For example, it uses Google Analytics, which are set up in a privacy-friendly manner. Google Analytics processes the IP addresses for Dopper.
8.5 Most browsers are set to accept cookies by default. The Website Visitor can set the browser to disable cookies or indicate when a cookie is being sent. However, it is possible that some functions and services of both Dopper and other websites do not function properly if cookies are disabled.
Article 9. Scope of your Obligations to provide Data
Generally, you are not obliged to provide us with your personal data. However, if you do not provide this information, we will not be able to make our Website available to you, or to communicate with you. Personal data which we necessarily require for the above mentioned processing purposes are marked as mandatory information by a “*” or another symbol.
Article 10. YOUR RIGHTS
10.1 You can request Dopper at all times to view, correct, rectify, supplement, delete or restrict your Personal Data if these are factually incorrect, incomplete or if they are processed in violation of a legal obligation. In so far as the data processing is based on consent (see above), you have the right to withdraw this consent at any time.
10.2 You can request Dopper to obtain the Personal Data that you have provided to Dopper in a structured and commonly used form, so that you can transfer the data to another controller. You are only entitled to this insofar as the processing is based on consent in the sense of article 6 paragraph 1 section a GDPR or article 9 paragraph 2 section a GDPR or if it concerns a processing that is based on the performance of a contract as referred to in Article 6 paragraph 1 section b GDPR and the processing is carried out by automated means.
10.3 If you wish to make use of one of the rights mentioned in this article, you can request this from Dopper’s customer service:
2011 KA Haarlem
|Telephone number:||+31 (0) 23 7370 445|
10.4 Dopper will provide you with information about the follow-up given to the request immediately and in any case within one month of receipt of the request. Depending on the complexity of the request and on the number of requests, this period can be extended by another two months. Dopper will notify you of such an extension within one month of receipt of the request.
10.5 If your requests are manifestly unfounded or excessive, in particular because of the repetitive character, Dopper will either charge you a reasonable fee or refuse to comply with the request.
Article 11. RIGHT TO OBJECT
You have the right to object to the processing of your Personal Data at any time. Insofar as the processing of your Personal Data takes place for direct marketing purposes, Dopper will always honour your request. For processing for other purposes, Dopper will also cease processing, unless it has compelling legitimate grounds for the Processing which override your interests, rights and freedoms or that are related to the institution, exercise or substantiation of a legal claim.
Article 12. DATA PROTECTION AUTHORITY
You have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, place of work or of an alleged infringement of the GDPR at all times.
Article 13. Automated DECISION MAKING / PROFILING
We do not use automated decision making or profiling (an automated analysis of your personal circumstances).
Article 14. MISCELLANEOUS
14.1 Dopper is entitled at all times to delete your Personal Data without notice. In such a case, Dopper owes no compensation to the Customer as a result of such deletion.