In relation to our services we process all kinds of data, including personal data when necessary. More information about how we process this data can be found on our privacy page. On this page, you can find per subject which of your (personal) data we process. It also states what we do with your data and how you can manage (some of) this yourself. In the unlikely event that the information you are looking for is not listed, do not hesitate contacting us with use of our contact form or the contact details as displayed at the bottom of every page on our website. It is our pleasure to help you!
Protection of your data
As a certification body for, among others, ISO 27001, ISO 27701 and NEN 7510 information security is in our DNA. And of course we leverage this knowledge and experience to protect your personal data. Our office is secure, we only work with certified software suppliers, our employees are trained in handling confidential information and we have taken extensive measures to protect your data against loss, unauthorized access and unauthorized alteration. We have taken all these measures to ensure we are worthy of your trust.
Explanation to your rights
Complaints
The website of Brand Compliance makes use of cookies. However, we do not use a cookie banner, as we do not use cookies that require your permission. Cookies are small files that are stored on your system at the request of a website content provider and can be retrieved and read by the relevant party. This ‘party’ is Brand Compliance, but also third parties providing certain services for our website. An example is Google, which makes analyses about the use of the website.
The website of Brand Compliance uses two categories of cookies: “Functional cookies” and “Anonymous analytical cookies”.
Functional cookies
This category includes the cookies that are necessary for the website to work properly. Think of a cookie that keeps track of your cookie preferences or cookies to record the contents of your shopping cart.
No permission is required for the use of these cookies. They are placed automatically if necessary and they cannot be turned off.
Anonymous analytical cookies
Brand Compliance uses anonymous analytical cookies, for example, to keep track of visitor statistics. This provides us with better insight into the functioning of our website. We use this insight to improve our website’s user experience. We use Google Analytics for this purpose, and we use it in a way that all cookies collect user information anonymously.
Marketing and other tracking cookies
Brand Compliance is committed to protecting your privacy. That is why our website does not use cookies for tracking your browsing history of the internet in a non-anonymous way.
Cookie management and settings
There are several ways to manage the use of cookies on our website:
- Management of your cookie settings for this website
If you want to find out how your cookie preference is set for our website, click on settings in your browser at the top right. Select ‘Privacy and/or Security’ followed by ‘Cookies’ to view, change and find out exactly which cookies are used. - Removing cookies
Since the cookies are stored locally on your own system, only you can remove them. Removing has to be done per device (computer, phone, tablet) and per web browser (Edge, Safari, Chrome, Firefox, etc). Ways to do this can vary per device and web browser, but usually it is a function from the Settings menu called “Clear browsing data” or “Clear history”.
This information was last updated on March 8, 2023.
With use of the contact form on our website you can quickly and easily ask us a question. In order to be able to process your question, we ask you for the following information:
- The name of your organization
- Your name and contact details
- Your question or message
Depending on your situation, the contact details could be regarded as personal data. In addition, your message may of course contain personal information.
Using your data
We only use the information you provide to us via the contact form to process your request.
Storage and protection
We keep the correspondence with you in WordPress for 1 year after the question has been dealt with. That way, we guarantee that we can also help you when you come back to a question at a later time. After one year, all data related to your question will be destroyed. Your data is stored in our CRM system which is hosted in Europe (Netherlands + Ireland). We keep and maintain your data until you tell us to delete it.
Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data we hold and use about you. With regard to the personal data that we have about you in connection with the use of the contact form, you can ask us to:
- inform you about the data we have about you (right of access);
- correct incorrect data (right to rectification);
- delete the data (right to erasure);
- ‘freeze’ your data and to no longer use it (right to restriction of processing);
This information was last updated on March 8, 2023.
We publish newsletters to keep our clients and relations informed of relevant developments regarding certification and our services. You can subscribe to these newsletters for free at various places on our website, by providing us with your personal name, company name and email address and indicating your interest. Depending on your situation, the information you provide may contain personal information.
By providing your details and expressing your interests, you give us permission to send you the newsletter. You can always withdraw this permission, after which we will no longer use your data. You can withdraw your permission simply by clicking on the link ‘Unsubscribe’ at the bottom of each newsletter, or by sending an email with your request to info@brandcompliance.com.
Using your data
We use the data to send you newsletters based on the selected topics. In addition, we can use the information you provided, based on our legitimate interest, to approach you about our products and services in line with the topics you have selected.
Storage and protection
Your data is entered in our CRM system that is hosted in the Netherlands. We also use a professional Dutch email marketing system for the distribution of the newsletters, which sends out the newsletters on our behalf.
We keep and maintain your data until you withdraw your permission or you tell us to delete your data.
Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data we hold about you in relation to the newsletter. You can ask us to:
- inform you about the data we have about you (right of access);
- correct incorrect data and/or to complete missing data (right to rectification);
- delete the data (right to erasure);
- ‘freeze’ your data and to no longer use it (right to restriction of processing);
- stop using your data for direct marketing purposes (right to object).
This information was last updated on March 8, 2023.
Brand Compliance has developed a number of certification standards that you can easily purchase online. In order to be able to deliver the certification standards and to handle invoicing and payment properly, we need to process certain data from you. Depending on your situation, this data can be regarded as personal data. It concerns the following information:
- Company details
- Name contact person
- Contact details
- VAT number (optional)
- E-mail address for different delivery (optional)
When you pay with use of iDEAL, we also receive your IBAN from the supplier of our online payment module (Mollie Payments for WooCommerce). We use this to link your payment to your order.
Using your data
We use the data to send your order, to contact you in the unlikely event that something goes wrong with the delivery of your order, to prepare and send your invoice and to link your payment to your order.
In line with the purchased product, and based on our legitimate interest, we can also inform you about developments that may be of interest to you. This may include trends, market information and services of Brand Compliance. If you no longer wish to receive this information, just let us know and we won’t be using your data for that purpose anymore.
Storage and protection
For the financial settlement of your order, your details are entered in our financial administration. This is kept for 7 years. In addition, your data is stored in our CRM system. We keep and maintain your data until you tell us to delete it. Both systems store your data in Europe (Netherlands + Ireland).
The settlement of your payment takes place outside of our website. This is done by Mollie Payments for WooCommerce, which stores the transaction data within Europe. Although Mollie Payments is independently responsible for processing your payment, we can help you handle your request for access.
Of course we carefully protect the use and storage of your data. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data we stored about you. You can ask us to:
- inform you about the data we have stored about you (right of access);
- correct incorrect data for marketing purposes (right to rectification);
- delete your data from our CRM system (right to erasure);
- ‘freeze’ your data and to no longer use it (right to restriction of processing);
- stop using your data for direct marketing purposes (right to object).
This information was last updated on March 8, 2023.
Brand Compliance offers various knowledge products on its website. These so-called whitepapers are related to services we offer and are sent to you free of charge when you provide us with the following data:
- Name of your organization
- Your name and contact details
Depending on your situation, this data could be regarded as personal data.
Using your data
We use your data to send you the requested information. In addition, we can approach you, based on our legitimate interest, about our services that are in line with the subject of the whitepaper.
Storage and protection
Your data is stored in our CRM system which is hosted in Europe (Netherlands + Ireland). We keep and maintain your data until you tell us to delete it.
Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data that we process based on your downloads. You can ask us to:
- inform you about the data we have stored about you (right of access);
- correct incorrect data and/or to complete missing data (right to rectification);
- delete your data (right to erasure);
- ‘freeze’ your data and to no longer use it (right to restriction of processing);
- stop using your data for direct marketing purposes (right to object).
This information was last updated on March 8, 2023.
When you register for a training or an informative session, we ask you for certain data. Depending on your situation, this data could be regarded as personal data. The data we ask for include:
- Name of your organization
- Name and contact details of the contact person
- Topic of interest
Using your data
We use the data to register you for an informative session or training. The so-called basis for processing your data in all these situations is the execution of an agreement.
In addition, we may use your data to inform you, in line with the informative session or training, about topics and our services that are likely to meet the needs of your organization. We do this based on our legitimate interest. If you no longer wish to receive this information, just let us know and we won’t be using your data for that purpose anymore.
Storage and protection
Your data is stored in our CRM system hosted in the Netherlands. We keep and maintain your data until you tell us to delete it. If you are following a paid training, then your data will also be entered in our financial administration. Your data will be stored in the Netherlands for a period of 7 years.
Of course we have ensured that all your data is well protected. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data we hold and use about you. You can ask us to:
- inform you about the data we process about you (right of access);
- correct incorrect data and/or to complete missing data (right to rectification);
- in certain situations, delete your data (right to erasure);
- ‘freeze’ your data and to no longer use it (right to restriction of processing);
- stop using your data for direct marketing purposes (right to object).
This information was last updated on March 8, 2023.
When we perform an audit based on an agreement, for or at your organization, we collect a limited set of data, namely:
- Name and contact details of your organization
- Name and contact details of the contact person(s) of your organization
Depending on the situation, this data could be regarded as personal data.
Using your data
We need this data to be able to perform the audit for you and to prepare the audit report. We also use the organizational data to settle the audit financially, to issue a certificate if necessary and to register it in our certificate register.
In line with the audit performed, and based on our legitimate interest, we may also use your data to inform you about developments that may be of interest to you. This can include trends, market information and new services from Brand Compliance. If you no longer wish to receive this information, just let us know and we won’t be using your data for that purpose anymore.
Storage and protection
For the financial settlement of the audit, your data is entered in our financial administration, where it is stored for 7 years. In addition, your data is entered in our CRM system. Within our CRM system we store and maintain your data until you inform us that we need to delete it. Both systems store your data in Europe (Netherlands + Ireland).
Of course we carefully protect the use and storage of your data. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data we maintain and use about you. You can ask us to:
- inform you about the data we process about you (right of access);
- correct incorrect data and/or to complete missing data (right to rectification);
- in certain situations, delete the data (right to erasure);
- ‘freeze’ your data and to no longer use it (right to restriction of processing);
- stop using your data for direct marketing purposes (right to object).
This information was last updated on March 8, 2023.
All efforts of Brand Compliance are aimed at satisfying you. However, it may happen that you are not satisfied and that you want to file a complaint about us as an organization or about one of our employees. To this purpose, you can use the complaints form on our website. In order to properly handle your complaint, we ask you to fill in some information. Depending on your situation, this data could be regarded as personal data. It concerns the following data:
- Your name and contact details
- Name and address details of your organization
- Contact details from you or your organization
In addition, the description of the complaint could contain personal data.
Using your data
We only use your data on the complaints form to handle your complaint.
Storage and protection
If your complaint arises from a business relationship with us, the data will be added to your client file after settlement. If your complaint is not related to being a client at Brand Compliance, data will be kept for two years after the completion of the handling of your complaint. Of course we ensure that your data is well protected during that time. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data that we process in the context of your complaint handling. You can ask us to:
- inform you about your data as stored by us (right of access);
- correct incorrect data and/or add an additional statement (right to rectification);
- ‘freeze’ your data and to no longer use it (right to restriction of processing).
This information was last updated on March 8, 2023.
Thank you for considering applying for a job at Brand Compliance. When applying, you provide us with a lot of information about yourself in confidence. It is our job to handle this very carefully. We explain below how we do this. In addition, we explain how you can manage the data you provide to us.
A typical job application contains the following personal data:
- Name, address and place of residence;
- Contact details;
- Curriculum vitae;
- Motivation.
In addition, if you agree, we will check references and ask you for a Certificate of Conduct (VOG). It is all up to you whether you agree or not. However, failure to agree will lead to rejection of your application.
Using your data
Even though it is obvious, for the sake of completeness we want to let you know what we use your data for. We use the data from your application to get a feel for you as our potential new colleague at Brand Compliance and, as a result, to invite you for an introduction or to reject your application.
Of course we won’t use the data from your application for anything else than to process your application.
Storage and protection
We will destroy your data within four weeks after the completion of the application procedure for the relevant position. The following applies to open applications: four weeks after we have sent you a response.
We can also keep your data longer, but will only do this if you ask us to do so or give us your permission. In that case, we will keep your data for one year.
We store your data in the same way as you provided it to us. An application on paper is saved in paper-format and an application per email is saved in email-format.
Of course we carefully protect the use and storage of your data. You can read more about how we do this at the top of this page.
Managing your data
There are different ways in which you can manage the data we hold about you. You can ask us to:
- inform you about the data we have stored about you (right of access);
- correct incorrect data (right to rectification);
- delete your data (right to erasure);
- ‘freeze’ your data and to no longer use it (right to restriction of processing);
- finally, you may object if you have the impression that we are using your data unjustly (right to object).
This information was last updated on March 8, 2023.