Last updated on:
This privacy statement is used by Vlijtig-Iesje, registered with the Dutch Chamber of Commerce under number 84525398, on the website/web shop vlijtig-iesje.com.
General
We consider the careful handling of personal data to be of utmost importance. Personal data is processed and secured with great care. We adhere to the requirements set by the General Data Protection Regulation (GDPR) in our processing activities. In this statement, we explain which personal data we collect and use, and for what purpose. We recommend that you read this statement carefully.
Security
We make every effort to secure the website/web shop against misuse and unauthorized access to personal data. We do this, for example, through SSL-secured connections. It is your responsibility to secure the device you use to visit and interact with our website, such as using antivirus software.
Personal data
By using our website/web shop, you provide certain information or we may request specific data to process your desired order. This may include personal data: information that can be traced back to you, either directly or indirectly. We only store and use the personal data that you provide directly, or where it is clearly indicated that the data is being provided to us for processing.
We use the obtained and collected personal data primarily for the execution of the agreement, specifically to ensure proper handling of your order. Additionally, we may process some of this data further to stay in contact with you about our products and services. We believe we have a legitimate interest in doing so, namely: achieving our business interests through direct marketing.
Web shop
When you place an order through the web shop, you are required to provide certain information to ensure proper processing of your desired order. For example, we ask you to provide details about yourself and the order, such as: name, address, telephone number, email address, payment method, and the order itself. We process this information as part of fulfilling the agreement. Additionally, we also process data that you do not fill in yourself, but that we collect when you use the webshop and which can be indirectly traced back to you. This data we collect and process includes, for example, your IP address and transaction ID.
Additionally, if you contact us with a question or request regarding your order, we may make notes.
The personal data you provide is primarily processed to fulfill the order you place. The legal basis for processing the provided data is the execution of the agreement.
After processing the order, we may use the provided data for marketing purposes. The legal basis for this is the pursuit of our legitimate interest as a company: since you have placed an order with us, we want to continue keeping you informed about our products and services.
Retention periods
Most of the personal data that we process is data that is related to an order. Based on tax legislation and our obligations with regard to keeping accounts, we are obliged to store financial and order data for a period of 7 years. We do not store other data for longer than 5 years. Data that ends up in logs as a result of a technical necessity, such as IP address in web server log(s), are deleted as soon as possible by means of log rotation.
Processing by third parties
Our webshop uses an advanced integrated system that consists of various components and service providers, so that the website functions optimally and safely. For the operational functioning of the webshop we use reliable partners such as:
- Jetpack (for security and performance)
- Google Site Kit (for Analytics)
- Mollie (for payments)
- CookieYes (for cookie management and privacy compliance)
These service providers ensure that the webshop runs smoothly, the user experience is improved and we comply with privacy legislation.
Delivery services and logistics service providers
When you place an order, the personal data that is necessary to have the order delivered to you will be shared with the delivery services. These delivery services can receive your name, address, city and telephone number from us to have the order delivered to the location specified by you. These logistics service providers can also involve other service providers in providing the logistics shipping process. All these delivery services and logistics service providers are bound by the General Data Protection Regulation with regard to the processing of your personal data. They can be seen as independent controllers under the GDPR. We have therefore not concluded any processing agreements with them.
Provision to third parties
We may engage third parties to process personal data on our behalf. These third parties are then called “processors”. These processors always act under our responsibility and may not use the personal data for their own purposes. We have concluded processing agreements with these third parties. These are our hosting provider and suppliers of online tools. With these online tools we can, for example, send the newsletter or follow up on your questions or comments.
Cookies
Cookies are placed on our website. We have recorded how we handle cookies in a separate cookie statement .
Third party websites or services
This statement does not apply to websites or services of third parties that are connected or linked to our website by means of links or otherwise. We cannot guarantee that these third parties will handle your personal data in a reliable or secure manner. We recommend that you read the privacy statements or terms and conditions of these websites or services before using the websites or services of these third parties.
Ordering on Etsy
When you place an order through Etsy, you share personal information with Etsy in addition to us. This information is used to process and handle your order. We encourage you to carefully read Etsy's privacy policy to understand how they handle your personal information. By using Etsy, you agree to their privacy policy and the way they collect and process your information.
Questions, right of access, correction and deletion
For questions about our privacy policy or questions regarding access and changes to (or deletion of) your personal data, you can contact us at any time. In order to prevent abuse, we may ask you to identify yourself adequately.
You have the following rights under the GDPR:
- The right to access, rectify or erase personal data or restrict processing, as well as the right to object to (further) processing.
- The right to take and/or transfer your data.
- If the processing of personal data is based on consent, you have the right to withdraw this consent at any time.
- You have the right to file a complaint with the Dutch Data Protection Authority about our processing of your personal data.
Changes
We reserve the right to change this privacy statement at any time. Therefore, consult this text regularly to ensure that you are aware of the latest version.