About the data processing
Below you can read how we process your data, where we store it, which security techniques we use and for whom the data are transparent.
Our webshop is developed with software from Magento. Personal data that you make available to us for the benefit of our services will be shared with this party. Magento has access to your data to provide us (technical) support, they will never use your data for any other purpose. Magento is required to take appropriate security measures on the basis of the agreement we have concluded with them. These security measures consist of the application of SSL encryption, a strong password policy and secure data storage. Magento reserves the right to share collected data within its own group and affiliated partners in order to further improve the service. Magento takes into account the applicable statutory retention periods for (personal) data.
We take web hosting and email services from Digital Ocean. Digital Ocean processes personal data on our behalf and does not use your data for its own purposes. However, this party can collect metadata about the use of the services. These are not personal data. Digital Ocean has taken appropriate technical and organizational measures to prevent loss and unauthorized use of your personal data. Digital Ocean is obliged to observe secrecy on the basis of the agreement.
We use the services of Microsoft Office for our regular business e-mail traffic. This company has taken appropriate technical and organizational measures to prevent abuse, loss and corruption of your and our data as much as possible. Microsoft has no access to our mailbox and we handle all our email traffic confidentially.
Payment Service Providers (PSP)
We use the MultiSafepay platform to handle a (part of) the payments in our online store. MultiSafepay processes your name, address and residence details and your payment details such as your bank account or credit card number. MultiSafepay has taken appropriate technical and organizational measures to protect your personal data. MultiSafepay reserves the right to use your data to further improve the service and to share (anonymised) data with third parties. In the case of an application for a deferred payment (credit facility), MultiSafepay will share personal information and information regarding your financial position with credit rating agencies. All the above-mentioned safeguards with regard to the protection of your personal data also apply to the parts of MultiSafepay's services for which they engage third parties. MultiSafepay takes into account the applicable statutory retention periods for (personal) data.
We collect reviews via Magento. If you leave a review you are obliged to provide a name and e-mail address. Magento will share this information with us so that we can link the review to your order.
Shipping and logistics
If you place an order with us, it is our job to have your package delivered to you. We use the services of MakeorBuy to perform the deliveries. It is therefore necessary that we share your name, address and residence details with MakeorBuy. Make or Buy uses this information only for the purpose of performing the agreement. In the event that Make or Buy engages subcontractors, MakeorBuy also makes your data available to these parties.
Invoicing and accounting
We use the Twinfield services to keep our records and accounts up-to-date. We share your name, address and residence details and details regarding your order. This data is used for managing sales invoices. Your personal data is sent and stored protected. Twinfield is obliged to observe secrecy and will treat your information confidentially. Twinfield does not use your personal data for purposes other than those described above.
Purpose of the processing
General purpose of the processing
We only use your data for the benefit of our services. This means that the purpose of the processing is always directly related to the assignment you provide. We do not use your data for (targeted) marketing. If you share information with us and we use this information to contact you at a later date - other than at your request - we will ask your permission explicitly for this. Your information will not be shared with third parties, other than to comply with accounting and other administrative obligations. These third parties are all required to observe secrecy on the basis of the agreement between them and us or an oath or legal obligation.
Automatically collected data
Data that is automatically collected by our website is processed with the aim of further improving our services. This information (e.g. your IP address, web browser and operating system) is not personal data.
Participation in tax- and criminal investigation
In some cases, DVM International B.V., on the basis of a legal obligation, can be held to share your data in connection with government tax or criminal investigations. In such a case, we are forced to share your data, but we will oppose this within the possibilities that the law offers us.
We keep your information as long as you are our client. This means that we keep your customer profile until you indicate that you no longer wish to use our services. If you indicate this to us, we will also take this as a request to “forget you”. On the basis of applicable administrative obligations, we must keep invoices with your (personal) data, so we will keep this data for as long as the applicable term runs. However, employees no longer have access to your client profile and documents that we have produced in connection with your assignment.
On the basis of the applicable European legislation, you as a data subject have certain rights with regard to the personal data that are processed by or on behalf of us. We explain below which rights these are and how you can invoke these rights. In principle, in order to prevent misuse, we send copies of your data only to your e-mail address that we already know. In the event that you wish to receive the data at another e-mail address or for example by post, we will ask you to identify yourself. We keep records of completed requests. In the event of a request to “forget you” we will administer anonymous data. You will receive all copies of data in the machine-readable data format that we use within our systems. You have the right to file a complaint with the “Autoriteit Persoonsgegevens” (Dutch Data Protection Authority) at any time if you suspect that we are using your personal data in the wrong way.
Right of inspection
You always have the right to inspect the data that we process or have processed that relate to your person or that can be traced back to you. You can submit a request to that effect to our privacy contact person. You will receive a response to your request within 30 days. If your request is granted, we will send you a copy of all data with an overview of the processors who have this data, with the e-mail address known to us, stating the category under which we have stored this data.
You always have the right to have the data, that we process or have processed that relate to your person or that can be traced back to you, rectified. You can submit a request to that effect to our privacy contact person. You will receive a response to your request within 30 days. If your request is granted, we will send you a confirmation that the details have been changed on the e-mail address known to us.
Right to restriction of processing
You always have the right to limit the data that we process or have related to your person or that can be traced back to you. You can submit a request to that effect to our privacy contact person. You will receive a response to your request within 30 days. If your request is granted, we will send you a confirmation to the e-mail address known to us that the data will no longer be processed until you have removed the restriction.
Right of transferability
You always have the right to have the data that we process or have processed and which relate to your person or that can be traced back to this, be performed by another party. You can submit a request to that effect to our privacy contact person. You will receive a response to your request within 30 days. If your request is granted, we will send you copies or copies of all information about you that we have processed or that have been processed by us by other processors or third parties on the e-mail address known to us. In all likelihood, we will no longer be able to continue the service in such a case, because the secure linking of data files can then no longer be guaranteed.
Right of objection and other rights
If applicable, you have the right to object to the processing of your personal data by or on behalf of DVM International B.V .. If you object, we will immediately stop the data processing pending the settlement of your objection. If your objection is well-founded, we will make copies of data that we process or have made available to you and then permanently discontinue the processing. You also have the right not to be subject to automated individual decision making or profiling. We do not process your data in such a way that this right applies. If you are of the opinion that this is the case, please contact our contact person for privacy matters.
Cookies from third parties
DVM International B.V.
3735 KT Bosch en Duin
Contact person for privacy matters
Ing. Jan C.A. Dekker