Customer: Anyone who places an order with the Supplier. Be it one legal person or a natural person. General The General Terms and Conditions of Beauty & Care B.V.
Conditions AP Authority Data.
GDPR General Data Protection Regulation.
Data subjects Those to whom personal data relates.
Third Party Relationships of the Supplier which, if any, but not are exclusively part of the Supplier's process.
EEA European Economic Area.
User account Personalized environment on which data can be managed And where the Buyer's previous orders can be viewed by Customer. Data Personal information of the Customer. Also known by the term "personal data". Supplier only submits data which are required for the services provided by the Supplier.
The information required for this is provided by the Customer and may consist of:
Names of companies
Chamber of Commerce numbers
Incident A security incident in which Data is lost gone, or involving unlawful processing of Data.
cannot reasonably be ruled out.
Supplier: Supplier refers to the following company: Beauty & Care B.V. Registered office: Heraclesstraat 18 5048 CG TILBURG Statement Privacy Statement General Data Regulation, in other words this document. Webshop Digital platform which is provided and maintained by Supplier for placing orders.
Insofar as capitalized terms are not separately defined in this Statement, the definitions as stated in our General Terms and Conditions apply in this Statement. Terms from the GDPR such as “processing”, “personal data”, “controller”, “data subjects” and “processor” have the meaning given to them in the GDPR.
The Supplier attaches great importance to the protection of the Data. In this Statement, the Supplier wants to provide clear and transparent information about how the Supplier handles the Data. This means that:
When processing the Data, the Supplier will act in accordance with this Statement, the GDPR and other laws and regulations.
Supplier will treat the Data as strictly confidential and will notify employees, representatives and / or subcontractors involved in the processing of the Data of the confidential nature of such Data.
The Customer can register for the newsletter which is periodically sent by the Supplier. The customer can unsubscribe from the newsletter via a link in the newsletter.
Data will not be passed on to other parties, unless this is necessary for the execution of the purposes for which they were provided.
To be aware of the rights of the Customer with regard to the Data, to point this out to you and to respect them.
The Supplier is responsible for the processing of the Data. If, after reading this Statement, the Customer, or in a more general sense, has questions about this or wishes to contact the Supplier, this can be done via the contact details below:
Beauty & Care B.V.
Contact person: Leon Bastiaans
Purposes Details of the Customer are processed by the Supplier for the following purposes:
Entering into agreements.
Sending targeted information and / or changes to our products / services.
Entering into employment contracts.
Calling or emailing to carry out our services.
Facilitating digital ordering systems.
Generating customer reviews.
The Supplier takes the security of the Customer's Data seriously and takes appropriate technical and organizational measures, maintains them and adapts them to protect the Data against destruction, loss, falsification, unauthorized distribution or access or any other form of unlawful processing. Taking into account the nature, scope, context and purpose of the processing, the state of the art and the costs of implementation, these measures guarantee an appropriate level of security in view of the likelihood and severity of the various risks posed by the processing. of the data to be protected and comply with the provisions of Article 32 GDPR.
Monitoring, information duties and incident managementThe Supplier will actively monitor for breaches of the security measures and report the results of the monitoring to the Customer in accordance with this paragraph.As soon as the Supplier has become aware of a data breach, the Supplier will inform the Buyer without unreasonable delay. The Supplier will provide the following information:The nature of the breach.The categories of Data potentially affected.The size of those affected.The likely consequences of the breach.The measures that have been or will be taken to resolve the infringement or to limit the consequences / damage as much as possible.The Supplier will take the measures that can reasonably be expected of it to rectify the infringement as quickly as possible or to limit the further consequences as much as possible.Reports made on the basis of this section will be addressed to the contact person known to the Supplier. If a specific contact person must be used for this, the Customer will be asked to report this in writing.If necessary in its opinion, the Supplier will inform the parties involved, the AP and other Third Parties about incidents. The Supplier is not permitted to provide information about incidents to data subjects or other Third Parties except insofar as the Supplier is legally obliged to do so. HONOURUnless he has obtained prior permission from the Customer, the Supplier will not process personal data or have it processed by itself or by sub-processors in countries outside the EEA without an adequate level of protection.
Disclosure to Third Parties
The Data that the Customer provides to the Supplier may be provided to Third Parties if this is necessary for the execution of the purposes described under
§ 3.1.The Supplier never passes on Data to Third Parties with whom the Supplier has not concluded a Processing Agreement.
The Supplier makes the necessary arrangements with these Third Parties (Processors) to guarantee the security of the Data.Furthermore, the Supplier will not provide the Data provided by the Customer to Third Parties, unless this is legally required and permitted.Supplier may share Data with Third Parties if you give us written permission to do so. LiabilityThe liability of the Supplier for any damage arising from or related to its attributable shortcoming in the fulfillment of obligations under the Declaration is limited to direct damage and to the maximum amount of € 2,000 per event (i.e. an incident that directly leads to the occurrence of damage on the part of the Customer). Retention periods, return and destruction of DataThe Supplier does not store Data longer than necessary for the purpose described in § 3.1 for which it was provided or required by law.The Customer has the right to inspect, rectify or delete Data.The Customer can object in writing to the processing of Data (or part thereof) by the Supplier.The Customer has the right to have the Customer's Data transferred by the Supplier to the Customer or directly to another party if desired. The Supplier may ask the Customer for identification before complying with the aforementioned requests.The Customer may submit a written complaint against the processing of the Data in the following cases:If the Customer has the impression that data is not properly secured.If the Customer finds indications of abuse.If the Customer has a complaint about the processing of the Data and the Supplier is unable or unwilling to comply with this, the Customer can submit a complaint to the AP. Final provisionsIn the event of the invalidity or voidability of one or more provisions of this Statement, the other provisions will remain in full force.In all cases not provided for in this Statement, the Buyer and the Supplier will decide in mutual consultation.Dutch law applies to this statement.Disputes about or in connection with this Statement will only be submitted to the competent court in 's-Hertogenbosch.