In relation to our services we process all kinds of data, including personal data when necessary. More information about how we process this data can be found on our privacy page. On this page, you can find per subject which of your (personal) data we process. It also states what we do with your data and how you can manage (some of) this yourself. In the unlikely event that the information you are looking for is not listed, do not hesitate contacting us via chat, with use of our contact form or the contact details as displayed at the bottom of every page on our website. It is our pleasure to help you!

Protection of your data

As a certification body for, among others, ISO 27001, ISO 27701 and NEN 7510 information security is in our DNA. And of course we leverage this knowledge and experience to protect your personal data. Our office is secure, we only work with certified software suppliers, our employees are trained in handling confidential information and we have taken extensive measures to protect your data against loss, unauthorized access and unauthorized alteration. We have taken all these measures to ensure we are worthy of your trust.

Explanation to your rights

More information >

Complaints

More information >

Cookies

The website of Brand Compliance makes use of cookies. However, we do not use a cookie banner, as we do not use cookies that require your permission. Cookies are small files that are stored on your system at the request of a website content provider and can be retrieved and read by the relevant party. This ‘party’ is Brand Compliance, but also third parties providing certain services for our website. Examples are Smartsupp, which provides our chat function, and Google, which makes analyses about the use of the website.

The website of Brand Compliance uses two categories of cookies: “Functional cookies” and “Anonymous analytical cookies”.

Functional cookies

This category includes the cookies that are necessary for the website to work properly. Think of a cookie that keeps track of your cookie preferences, cookies to distinguish your chat messages from chat messages from others, or cookies to record the contents of your shopping cart.
No permission is required for the use of these cookies. They are placed automatically if necessary and they cannot be turned off.

Anonymous analytical cookies

Brand Compliance uses anonymous analytical cookies, for example, to keep track of visitor statistics. This provides us with better insight into the functioning of our website. We use this insight to improve our website’s user experience. We use Google Analytics for this purpose, and we use it in a way that all cookies collect user information anonymously.

Marketing and other tracking cookies

Brand Compliance is committed to protecting your privacy. That is why our website does not use cookies for tracking your browsing history of the internet in a non-anonymous way.

Cookie management and settings

There are several ways to manage the use of cookies on our website:

  • Management of your cookie settings for this website
    If you want to find out how your cookie preference is set for our website, click on settings in your browser at the top right. Select ‘Privacy and/or Security’ followed by ‘Cookies’ to view, change and find out exactly which cookies are used.
  • Removing cookies
    Since the cookies are stored locally on your own system, only you can remove them. Removing has to be done per device (computer, phone, tablet) and per web browser (Edge, Safari, Chrome, Firefox, etc). Ways to do this can vary per device and web browser, but usually it is a function from the Settings menu called “Clear browsing data” or “Clear history”.

This information was last updated on August 23, 2021.

Chat function

If you wish, you can chat with one of our employees on our website. We have set up the chat function in such a way that it does not automatically collect your personal data. However, it is possible that you share personal data during the chat. That is why we briefly indicate here which data (can be) is processed.

  • Any information you share with us in the chat or as an attachment. This could contain personal data.
  • If you wish, you can have a copy of the chat sent to you or someone else when you provide an email address.
  • A cookie (ssupp.vid) with an anonymous identification number. This number is used to separate different people’s chat messages.
  • A cookie (ssupp.visits) with the last page of our website you visited. This gives us background information with regard to your question.
Using your data

The above-mentioned information is only used to help answer your question personally.

Storage and protection

To enable the chat function, we use the supplier Smartsupp. Smartsupp handles the chat technically and stores the chat data for us for 3 months. The cookies are stored on your own system for 6 months. The system stores your data in Europe (Germany).

Keeping the data for some time allows you, for example, to come back or respond to previous chats. By the way, this is only possible from the same system that you used for the previous chats.

The email address of yourself or someone else for a copy of the chat and the corresponding email are not saved.

The chat history is available for Brand Compliance for up to 14 days in the Smartsupp system.

Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.

Managing your data

There are different ways to manage your chat data:

  • View your chat data by going to our website using the same device and browser that you used for previous chat(s).
  • Delete your chat conversations by clearing your cookies. While the conversation won’t be deleted, the anonymous link between your device and the chats will.

This information was last updated on August 23, 2021.

Contact form

With use of the contact form on our website you can quickly and easily ask us a question. In order to be able to process your question, we ask you for the following information:

  • the name of your organisation
  • your name and contact details
  • your question or message

Depending on your situation, the contact details could be regarded as personal data. In addition, your message may of course contain personal information.

Using your data

We only use the information you provide to us via the contact form to process your request.

Storage and protection

We keep the correspondence with you in WordPress for 1 year after the question has been dealt with. That way, we guarantee that we can also help you when you come back to a question at a later time. After one year, all data related to your question will be destroyed. Your data is stored in our CRM system which is hosted in Europe (Netherlands + Ireland). We keep and maintain your data until you tell us to delete it.

Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data we hold and use about you. With regard to the personal data that we have about you in connection with the use of the contact form, you can ask us to:

This information was last updated on August 23, 2021.

Newsletter

We publish newsletters to keep our clients and relations informed of relevant developments regarding certification and our services. You can subscribe to these newsletters for free at various places on our website, by providing us with your personal name, company name and email address and indicating your interest. Depending on your situation, the information you provide may contain personal information.

By providing your details and expressing your interests, you give us permission to send you the newsletter. You can always withdraw this permission, after which we will no longer use your data. You can withdraw your permission simply by clicking on the link ‘Unsubscribe’ at the bottom of each newsletter, or by sending an email with your request to info@brandcompliance.com.

Using your data

We use the data to send you newsletters based on the selected topics. In addition, we can use the information you provided, based on our legitimate interest, to approach you about our products and services in line with the topics you have selected.

Storage and protection

Your data is entered in our CRM system that is hosted in the Netherlands. We also use a professional Dutch email marketing system for the distribution of the newsletters, which sends out the newsletters on our behalf.

We keep and maintain your data until you withdraw your permission or you tell us to delete your data.

Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data we hold about you in relation to the newsletter. You can ask us to:

This information was last updated on August 23, 2021.

Web shop

Brand Compliance has developed a number of certification standards that you can easily purchase online. In order to be able to deliver the certification standards and to handle invoicing and payment properly, we need to process certain data from you. Depending on your situation, this data can be regarded as personal data. It concerns the following information:

  • Company details
  • Name contact person
  • Contact details
  • VAT number (optional)
  • Email address for different delivery (optional)

When you pay with use of Ideal, we also receive your IBAN from the supplier of our online payment module (Mollie Payments for Woocommerce). We use this to link your payment to your order.

Using your data

We use the data to send your order, to contact you in the unlikely event that something goes wrong with the delivery of your order, to prepare and send your invoice and to link your payment to your order.

In line with the purchased product, and based on our legitimate interest, we can also inform you about developments that may be of interest to you. This may include trends, market information and services of Brand Compliance. If you no longer wish to receive this information, just let us know and we won’t be using your data for that purpose anymore.

Storage and protection

For the financial settlement of your order, your details are entered in our financial administration. This is kept for 7 years. In addition, your data is stored in our CRM system. We keep and maintain your data until you tell us to delete it. Both systems store your data in Europe (Netherlands + Ireland).

The settlement of your payment takes place outside of our website. This is done by Mollie Payments for Woocommerce, which stores the transaction data within Europe. Although Mollie Payments is independently responsible for processing your payment, we can help you handle your request for access.

Of course we carefully protect the use and storage of your data. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data we stored about you. You can ask us to:

This information was last updated on August 23, 2021.

Downloads

Brand Compliance offers various knowledge products on its website. These so-called whitepapers are related to services we offer and are sent to you free of charge when you provide us with the following data:

  • Name of your organisation
  • Your name and contact details

Depending on your situation, this data could be regarded as personal data.

Using your data

We use your data to send you the requested information. In addition, we can approach you, based on our legitimate interest, about our services that are in line with the subject of the whitepaper.

Storage and protection

Your data is stored in our CRM system which is hosted in Europe (Netherlands + Ireland). We keep and maintain your data until you tell us to delete it.

Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data that we process based on your downloads. You can ask us to:

This information was last updated on August 23, 2021.

Training & informative sessions

When you register for a training or an informative session, we ask you for certain data. Depending on your situation, this data could be regarded as personal data. The data we ask for include:

  • Name of your organisation
  • Name and contact details of the contact person
  • Topic of interest
Using your data

We use the data to register you for an informative session or training. The so-called basis for processing your data in all these situations is the execution of an agreement.

In addition, we may use your data to inform you, in line with the informative session or training, about topics and our services that are likely to meet the needs of your organisation. We do this based on our legitimate interest. If you no longer wish to receive this information, just let us know and we won’t be using your data for that purpose anymore.

Storage and protection

Your data is stored in our CRM system hosted in the Netherlands. We keep and maintain your data until you tell us to delete it. If you are following a paid training, then your data will also be entered in our financial administration. Your data will be stored in the Netherlands for a period of 7 years.

Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data we hold and use about you. You can ask us to:

This information was last updated on August 23, 2021.

Audits

When we perform an audit based on an agreement, for or at your organisation, we collect a limited set of data, namely:

  • Name and contact details of your organisation
  • Name and contact details of the contact person(s) of your organisation

Depending on the situation, this data could be regarded as personal data.

Using your data

We need this data to be able to perform the audit for you and to prepare the audit report. We also use the organisational data to settle the audit financially, to issue a certificate if necessary and to register it in our certificate register.

In line with the audit performed, and based on our legitimate interest, we may also use your data to inform you about developments that may be of interest to you. This can include trends, market information and new services from Brand Compliance. If you no longer wish to receive this information, just let us know and we won’t be using your data for that purpose anymore.

Storage and protection

For the financial settlement of the audit, your data is entered in our financial administration, where it is stored for 7 years. In addition, your data is entered in our CRM system. Within our CRM system we store and maintain your data until you inform us that we need to delete it. Both systems store your data in Europe (Netherlands + Ireland).

Of course we carefully protect the use and storage of your data. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data we maintain and use about you. You can ask us to:

This information was last updated on August 23, 2021.

Complaint settlement

All efforts of Brand Compliance are aimed at satisfying you. However, it may happen that you are not satisfied and that you want to file a complaint about us as an organisation or about one of our employees. To this purpose, you can use the complaints form on our website. In order to properly handle your complaint, we ask you to fill in some information. Depending on your situation, this data could be regarded as personal data. It concerns the following data:

  • Your name and contact details
  • Name and address details of your organisation
  • Contact details from you or your organisation

In addition, the description of the complaint could contain personal data.

Using your data

We only use your data on the complaints form to handle your complaint.

Storage and protection

If your complaint arises from a business relationship with us, the data will be added to your client file after settlement. If your complaint is not related to being a client at Brand Compliance, data will be kept for two years after the completion of the handling of your complaint. Of course we ensure that your data is well protected during that time. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data that we process in the context of your complaint handling. You can ask us to:

This information was last updated on August 23, 2021.

Job applications

Thank you for considering applying for a job at Brand Compliance. When applying, you provide us with a lot of information about yourself in confidence. It is our job to handle this very carefully. We explain below how we do this. In addition, we explain how you can manage the data you provide to us.

A typical job application contains the following personal data:

  • Name, address and place of residence;
  • contact details;
  • curriculum vitae;
  • motivation.

In addition, if you agree, we will check references and ask you for a Certificate of Conduct (VOG). It is all up to you whether you agree or not. However, failure to agree will lead to rejection of your application.

Using your data

Even though it is obvious, for the sake of completeness we want to let you know what we use your data for. We use the data from your application to get a feel for you as our potential new colleague at Brand Compliance and, as a result, to invite you for an introduction or to reject your application.

Of course we won’t use the data from your application for anything else than to process your application.

Storage and protection

We will destroy your data within four weeks after the completion of the application procedure for the relevant position. The following applies to open applications: four weeks after we have sent you a response.

We can also keep your data longer, but will only do this if you ask us to do so or give us your permission. In that case, we will keep your data for one year.

We store your data in the same way as you provided it to us. An application on paper is saved in paper-format and an application per email is saved in email-format.

Of course we carefully protect the use and storage of your data. You can read more about how we do this at the top of this page.

Managing your data

There are different ways in which you can manage the data we hold about you. You can ask us to:

This information was last updated on August 23, 2021.