Settly Privacy Policy
Introduction: We respect your privacy

We will handle your personal data in a careful, secure and confidential manner. This privacy statement explains how we do this.

This privacy statement applies to the personal data we receive from you or a third party within the context of our service provision or our business operations. We will also collect personal data from you when you visit our website or use our app.

We will exclusively use your personal data for the purposes listed in this privacy statement, and not for any other purposes, unless the further processing of personal data is compatible with the purposes for which this data was originally processed.

Why we collect personal data: purposes

We process your personal data for the following purposes:

Users
  • to create an account for you
  • to provide you with the required services
  • to respond to your questions, comments or complaints
  • to connect you with others within the Settly community
  • to show your attendance to events
  • to optimize the exposure of information in your Settly environment (content)
  • to send you relevant information
  • to inform you of our services and events via mailings and newsletters
  • to improve our service provision and develop and market new services
  • to exercise our rights resulting from the agreement
  • to resolve a (potential) conflict, and in order to be able to protect our rights or those of third parties, including (other) clients
Clients
  • to provide you with the required services
  • to respond to your questions, comments or complaints
  • to send you relevant information and to inform you of our services and events via mailings and newsletters
  • to invoice you for our services
  • to improve our service provision and develop and market new services
  • to exercise our rights resulting from the agreement
  • to resolve a (potential) conflict, and in order to be able to protect our rights or those of third parties, including (other) clients
Suppliers/other business contacts
  • to be able to request information on your service provision/products or to be able to respond to the information sent by you
  • to be able to give you an assignment
  • to comply with your request
  • to be able to pay your invoices
  • to be able to exercise our rights resulting from the agreement
  • to invoice you for our services
  • to be able to resolve a (potential) conflict, and in order to be able to protect our rights or those of third parties, including (other) clients
What personal data we collect

Users

Registration
In order to use our services, it is necessary to activate your account on our website or app. To create an account, you are required to validate or provide the following mandatory contact information such as: full name, email address, nationality, family status, country of residence and password.

Profile Information You may provide additional information about yourself on your account (e.g., international experience, date of birth, professional background, gender, interests, profile picture, et cetera). Providing additional information beyond what is required at registration is entirely optional and on a voluntary basis. Providing such information may improve the use of the services we offer.

Service provision
To be able to provide our services, for example answering your questions, we will need to process further personal data you provide. What personal data depends on the questions you ask on our platform.

Sensitive personal data
We may process sensitive personal data within the context of our service provision. Sensitive personal data includes data that is particularly sensitive in view of its nature, such as data that reveals race or ethnic origin, political views, religious or philosophical beliefs, union membership, genetic data, biometrical data, data concerning health, data with regard to someone’s sexual behaviour or orientation and criminal record data.

We only process sensitive data if you have given us your explicit consent to do so.

Clients

We process the names and contact details (email, telephone number, (business) address) of contact-persons and other relevant persons within your company.

Suppliers/other business contacts

We process the names and contact details (email, telephone number, (business) address) of contact-persons and other relevant persons within your company

Website visitors

Cookies Like most websites, we use cookies. A cookie is a simple, small file that is sent with pages of this website and stored on the hard disk of your computer by your browser.

Use of permanent cookies We use a permanent cookie to recognise you during a subsequent visit to our website. Consequently, the website can be adjusted specifically to your preferences. We can even use a cookie to remember you have given permission for the placement of cookies. This saves you from repeating your preferences. This therefore saves time and enhances your experience on our website. You can remove permanent cookies via the settings on your browser.

Use of session cookies We can use a session cookie to monitor which website sections you have viewed during a particular session. This enables us to gear our service towards the surfing behaviour of our visitors in the best possible way. These cookies will be removed automatically once you close your web browser.

Security of personal data

We will ensure the personal data we have received from you is adequately secured, in line with applicable legal requirements and guidelines.

Retention period for personal data

We will not store your personal data longer than is necessary for the purpose of data processing. We use the following retention periods, unless there are other (legal) reasons to store the data for a longer period of time:

Client/User/Supplier data​: we will not store your data for more than two years after the termination of the agreement between us.

Administrative data​: financial records will be stored for seven years.

Financial data​: any data required for invoicing will not be stored for longer than two years from the date on which the invoice was paid.

Where your personal data is processed

We will process your personal data in the European Union/EEA. However, some of the third parties mentioned below are based in the USA. We will make sure that these third parties have appropriate safeguards in place to secure your personal data.

With whom we share your data

We will not sell your data. We will only share your data with other parties if that is necessary, for example to provide services to you, or to protect our own rights and legitimate interests. For example, we may share your personal data with the following categories of third parties:

  • Professional advisors such as lawyers and accountants
  • Governments or (regulatory) bodies
  • Service providers who assist us in making analyses, including Google Analytics, Mailchimp, Mandrill, Pusher, Firebase
  • Postal, e-mail or courier services

Please note: this list is not exhaustive and there may be other examples where we share your personal data with other parties in order to optimise our service provision.

Who processes your personal data

We may deploy third parties – processors – in order to be able to supply our services, such as IT service providers, software suppliers, et cetera who process personal data on behalf of us and who are commissioned by us. We will ensure an appropriate level of protection is in place for your personal data and conclude a processor’s agreement with each processor, in which we lay down the obligations of both parties.

Changes to our policy

This privacy statement could be amended in the event of changes to our service provision or changes to privacy laws. We will always announce any changes on our website. We will personally inform you of any changes that apply to you, for example by sending you an email.

How you can exercise your rights

You have a number of rights under privacy legislation (this includes the GDPR). These rights are specified in article 12 – 23 of the GDPR and in related legislation. In any case, you have the following rights with regard to your personal data:

  • The right to request access to your personal data
  • The right to request the correction of your personal data if it is not correct (rectification)
  • The right to request removal of your personal data
  • The right to request the restriction of the processing of your personal data
  • If we process your personal data based on our legitimate interests: the right to object to the (further) processing of your personal data (resistance)
  • If we process your data on the basis of your permission or on the basis of an agreement we have concluded with you: the right to request transfer of personal data (data portability)

If you wish to exercise one or more of the rights specified above, you can contact us via privacy@settly.nl

Right to complain

Do you disagree with a decision made by us regarding privacy, you will be able to use one or both of the following options:

  • You can contact us: we will try to find a solution together with you.
  • You can submit a complaint: you have the right to submit a complaint to the Dutch Data Protection Authority: Dutch Data Protection Authority
Contact

The responsibility for the processing of personal data lies with:

Settly BV - privacy@settly.nl