DO-IT B.V. PRIVACY AND COOKIE STATEMENT
This Privacy and Cookie Statement applies to DO-IT BV, its parent company and its sister companies.
We set great store by the protection of your privacy. We therefore handle your personal data with the utmost care. In this Privacy and Cookie Statement we will inform you about the manner in which we handle your personal data. It applies to the processing of personal data of our customers, suppliers and interested parties, including their employees, and of visitors to our websites.
The following questions are answered below:
- What personal data do we process?
- When do we process your personal data?
- To what parties do we disclose your personal data?
- How do we handle the transfer of your personal data to parties outside the EEA?
- How long do we store your personal data?
- How are your personal data protected?
- What are your rights regarding your personal data?
- What should you do if you have a complaint about the way we handle your personal data?
- How do we use cookies on our website?
- How do you contact us?
What personal data do we process?
We process your personal data, for instance, in relation to the offering of goods or services. The personal data that we may collect for this purpose include:
- your name;
- your (business) contact details;
- your position;
- your reading and clicking behaviour;
- your time of arrival and departure, and data on possible exposure to a contagious disease during a visit to one of our branches;
- CCTV images for security purposes if you visit one of our branches.
When do we process your personal data?
We process your personal data in the following cases:
- When processing is necessary for the performance of a contract or prior to entering into a contract
We may process your personal data when it is necessary for the performance of a contract or prior to entering into a contract. Such processing takes place for at least one of the following purposes:
- the offering of goods and the processing of orders;
- invoicing and possible actions to recover a debt.
- When processing is necessary for the purposes of our legitimate interests
We may process your personal data when the processing is necessary for the purposes of our legitimate interests, for instance:
- to improve and optimise our services, including after-sales services, and to handle complaints;
- to handle or resolve disputes;
- to secure and manage our systems and our branches;
- to use the data for marketing purposes;
- to prevent, detect and deal with irregularities.
We will always weigh our legitimate interest against your privacy interest in this processing. Processing on this basis takes place only if our legitimate interest overrides yours.
- When processing is necessary for compliance with a legal obligation
We may process your personal data when it is necessary for compliance with a legal obligation, for instance to comply with relevant food safety legislation. For this purpose DO-IT will ask you whether you have been exposed to any contagious disease when you visit a branch. Your personal data may also be processed in communications with the competent authorities in respect of food safety.
- Consent
We may process your personal data on the basis of your consent. We will ensure that that consent meets the requirements of the GDPR. If the processing is based on consent, you may withdraw that consent at any time. You may do so by contacting DO-IT using the contact details at the bottom of this page.
We aim to process your personal data in a lawful and transparent manner. We will not process your personal data in a manner that is incompatible with the purpose for which they were collected. If we intend to process your personal data for any purpose other than that for which they were collected, we will provide you with additional information insofar as necessary.
If you do not provide us with certain data (despite a request to that effect) or if you withdraw your consent, we may not be able to perform an agreement entered into with you or we may not be able to comply with our legal obligations. We will of course inform you in good time in that case.
To whom do we disclose your personal data?
We may disclose your personal data to third parties. That will always be done in accordance with this Privacy and Cookie Statement and with the applicable laws and regulations. We will ensure that that is done correctly.
DO-IT may disclose your data to the following recipients:
- hosting services engaged by us
- a cloud service for data storage
- an ERP system
- a supported service provider for sending marketing messages and optimising the website
- public authorities that have the right and authority to do so
- external advisors (such as tax and legal advisors)
We have opted to name categories of recipients rather than individual companies, to avoid the need to frequently update this Privacy and Cookie Statement. Please contact us if you wish to receive more information on the specific recipients of your personal data.
How do we handle the transfer of your personal data to parties outside the EEA?
We and our data processors primarily process your personal data on secure servers located within the European Economic Area (“EEA”). However, it is possible that your personal data will be processed outside the EEA. In both cases we and our data processors have provided safeguards in accordance with European and Dutch privacy laws to process your personal data in a lawful manner.
In light of the continuous developments regarding the appropriate safeguards for international transfer of personal data, the safeguards provided by recipients may be subject to changes. DO-IT therefore refers to the privacy statements of those recipients for up-to-date information on the safeguards. The following data processors of DO-IT may process data outside the EEA:
- Mailchimp: to send newsletters (https://mailchimp.com/legal/privacy/)
- Google and YouTube: when placing cookies
(https://policies.google.com/privacy/frameworks?hl=nl&fg=1).
Please contact us for further information on our specific safeguards when transferring your personal data outside the EEA.
How long do we store your personal data?
We do not store your personal data any longer than is necessary for the purpose for which they were collected and processed. Our storage periods are based on the following factors:
- the scope, nature and sensitivity of the personal data;
- the potential damage as a result of unauthorised use or unauthorised disclosure of your personal data;
- the purposes for which we process your personal data;
- the possibilities of achieving those purposes in another manner;
- the applicable legal requirements.
The following storage periods, among others, apply on the above grounds:
- We store correspondence with our customers for a period of ten years after it loses its current value.
- We store data for marketing purposes for a period of ten years after they lose their current value or until you withdraw your consent.
- Data that must be stored for tax reasons are deleted after seven years.
- We store CCTV images for the security of our branches for a period of four weeks after the day on which the CCTV images were recorded or after the settlement of an incident that has occurred.
- Visitor records are kept for food safety reasons during the product’s shelf life plus twelve months.
How are your personal data protected?
We take all reasonable organisational and technical security measures to secure your personal data and protect them against loss, improper use and other unlawful processing.
Examples of security measures that we use:
- password and access code via an authenticator;
- hard copies in locked cabinets, which hard copies will, in principle, not be taken home;
- access to certain files on a need-to-know basis;
- splitting of authorisation into read access and user rights.
What are your rights regarding your personal data?
You have the right to request access to your personal data. If you file such a request, we will provide you with a list of all your personal data in our possession, unless that is impossible due to overriding third-party interests.
You may furthermore request us:
- to rectify, complete or erase your personal data if you suspect that they contain inaccuracies or have been processed incorrectly;
- to restrict the processing of personal data; or
- to transmit your personal data to another controller.
A request may be submitted in writing, by e-mail or by post, using the contact details at the bottom of this page. We may then request you to provide additional information in order to verify your identity. In accordance with the law, we will process the requests within one month after receiving them. We will then inform you whether we will comply with the request or of the reasons, if any, for rejecting it.
What should you do if you have a complaint about the way we handle your personal data?
If you have a complaint or a question about the way we handle your privacy, you may contact us. Please provide us with as much relevant information as possible about your complaint or question.
We will consider your complaints and questions and respond to them within four weeks. We will make every effort to be of service to you. If you are nevertheless dissatisfied with the handling of your complaint, you may contact the supervisory authority (the Dutch Data Protection Authority) and file a complaint there if you wish.
How do we use cookies on our website?
This website, www.labioidea.nl uses cookies. Cookies are small text files that are sent to your browser and are placed on your computer, mobile phone or tablet. Cookies allow easier and faster use of the website by visitors.
Data are collected by means of cookies. Depending on the type of cookies, they may be personal data. The data (including data that are not personal data) that we may collect include:
- browser data;
- system data;
- geographical data;
- duration of your visit;
- pages visited;
- hyperlinks clicked on;
- location data on the basis of your IP address;
- connection data, such as your IP address.
Purpose of the cookies
Necessary cookies are used to ensure that the website functions properly. In addition to necessary cookies, we also place analytics cookies and marketing cookies to gain insight into surfing behaviour and to improve our services. The analytics/statistics cookies are used to process anonymous data. They therefore cannot be traced to a person and do not affect your privacy. Marketing cookies allow us to see which other websites a visitor has visited. We use that information to show relevant ads. The data collected are not used for any other purpose.
A list of the cookies that are placed on our website is shown below:
You can see which cookies are actually used during your session on our cookie page.
| Name | Purpose | Expiry |
| Necessary | ||
| PHPSESSID |
Stores the status of the user session for all the pages of the website.
|
6 days |
| _grecaptcha |
Used to distinguish between humans and bots.
|
Persistent |
| _GRECAPTCHA |
Used to distinguish between humans and bots.
|
179 days |
| CONSENT |
Detects which cookies the visitor has allowed on the website.
|
6107 days |
| CookieConsent |
Stores the visitor’s cookie choice.
|
1 year |
| rc::a |
Used to distinguish between humans and bots.
|
Persistent |
| rc::b |
Used to distinguish between humans and bots.
|
Session
|
| rc::c |
Used to distinguish between humans and bots.
|
Session
|
|
Statistics |
||
| _ga |
Registers a unique ID that is used to generate statistical data on how the visitor uses the website.
|
2 years |
| _gat |
Used by Google Analytics to throttle the request rate.
|
1 day |
| _gid | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. | 1 day |
| Marketing | ||
| IDE |
Used by Google DoubleClick to register and report the website user’s actions after viewing or clicking on one of the advertiser’s ads in order to measure the effectiveness of an ad and to present targeted ads to the user.
|
1 year |
| test_cookie |
Used to check if the user’s browser supports cookies.
|
1 day |
| VISITOR_INFO1_LIVE |
Used to estimate user bandwidth on pages of the website with embedded YouTube videos.
|
179 days |
|
YSC
|
Registers a unique ID to generate statistical data as to which YouTube videos the user has seen.
|
Session |
| yt.innertube::nextld |
Registers a unique ID to generate statistical data as to which YouTube videos the user has seen.
|
Persistent |
| yt.innertube::requests |
Registers a unique ID to generate statistical data as to which YouTube videos the user has seen.
|
Persistent |
|
yt-remote-cast-installed
|
Stores the user’s video player preferences using embedded YouTube video.
|
Session |
|
yt-remote-connected-devices
|
Stores the user’s video player preferences using embedded YouTube video.
|
Persistent |
|
yt-remote-device-id
|
Stores the user’s video player preferences using embedded YouTube video.
|
Persistent |
|
yt-remote-fast-check-period
|
Stores the user’s video player preferences using embedded YouTube video.
|
Session |
|
yt-remote-session-app
|
Stores the user’s video player preferences using embedded YouTube video.
|
Session |
| yt-remote-session-name |
Stores the user’s video player preferences using embedded YouTube video.
|
Session |
Refusing and deleting cookies
When you visit our website, a cookie notice is displayed that allows you to decide to what extent our cookies are placed on your computer.
You may delete placed cookies via your browser settings. It is also possible to delete all information previously stored using your browser settings. The way in which you can do so differs per browser. You can find more information in your browser’s Help function. The website may not function optimally if you opt not to accept the cookies on the website.
More information on cookies
More information on cookies can be found on the following websites:
Consumers’ Association: Wat zijn cookies?
Consumers’ Association: Cookies verwijderen: stappenplan
Consumers’ Association: Tracking cookies blokkeren met adblocker
How do you contact us?
If you have any questions about this Privacy and Cookie Statement or about the way we handle your privacy, you can reach us in the following ways:
| By telephone: |
+31 (0)85 4870 487
|
| By e-mail: |
|
| By post: |
Hermesweg 7 3771 ND Barneveld Attn. Privacy Contact Persons
|
Amendments to this Privacy and Cookie Statement
We reserve the right to amend this Privacy and Cookie Statement from time to time by placing a new version on our website. In the event of significant changes, we will of course inform you in advance.
This Privacy and Cookie Statement was most recently updated on 25 April 2021.