Privacy statement
When providing our services in our coaching practice and for the use of our website, we process your personal data. To inform you how we handle your personal data, we have drawn up this privacy statement.
Version November 2023. This statement supersedes all previous versions.
Download the Privacy Statement here
Privacy statement of Dynamisch Bureau bv with its registered office at Zuid-Hollandlaan 7, 2596 AL in The Hague and registered with the Chamber of Commerce under number 27281205. Dynamisch Bureau bv is active in the field of talent management, (career) coaching, outplacement, reintegration, supported by neurotraining if desired.
1. Purpose of the Privacy Statement
In order to be able to provide our services, Dynamisch Bureau bv will request you to provide personal data or you will share personal data with us on your own initiative. This can be done, for example, during a conversation, via our website, via email, telephone or in any other way. It is also possible that we obtain personal data from third parties in the context of a coaching process.
This Privacy Statement summarises when and how we collect, use, secure and possibly disclose your personal data or the personal data of a data subject (e.g. an employee in the context of a coaching programme, hereinafter referred to as ‘the User’) in connection with the provision of our services.
Dynamisch Bureau bv is based in the Netherlands. Our business operations take place in the European Economic Area (EEA) and, unless otherwise specified, we store our data and that of our users on servers in the EEA.
2. General
Dynamisch Bureau bv reserves the right to change the provisions of this privacy statement. If we make any changes to the Privacy Statement, we will notify you.
3. Definitions
Service(s): the service(s) offered by Dynamisch Bureau bv, including coaching, user interface(s) and possibly neurotraining.
Neurotraining platform: a digital platform consisting of individual measuring devices, an app for users and a web portal
User: the person to whom Dynamisch Bureau bv provides the Services.
Third parties: any natural or legal person, other than the User.
(User) account: the right of access to a user interface for, for example, the Neurotraining Platform, TMA, Jobport, etc.
Declaration of consent: a digital form in which the User grants permission to manage, share and agree to the terms and conditions and this Privacy Statement.
Personal data: any information relating to an identified or identifiable person.
4. Why do we collect personal data?
Personal data may be collected in a number of ways when you use the Services. In the overview below you will find the data that Dynamisch Bureau bv can collect and how long we keep it. At your request, we can delete data earlier if this has no tax or legal consequences.
If you do not provide personal data to Dynamisch Bureau bv or object in any other way to the use of personal data by Dynamisch Bureau bv, this may cause you to be hindered in the use of the Services. The consequences of not providing or objecting to the processing of personal data are set out below for each processing basis.
Processing on the basis of a legal obligation:
The personal data mentioned in this section is required to comply with our legal obligations. Your access to the Services may be blocked or restricted, and we may even terminate the agreement in accordance with our terms and conditions.
Processing necessary for the execution of the agreement:
The personal data mentioned in this section is required for the Service(s) to function properly or to be able to perform them. You may be hindered from using the Service(s) and a Service may not function properly. Your access to the Service(s) may be blocked or restricted, and we may even terminate the agreement.
Processing necessary for legitimate interests:
The personal data mentioned in this section are required to meet the legitimate interests of Dynamisch Bureau bv and to prevent misuse of the Service(s) and security incidents. Your access to the Service(s) may be blocked or restricted, and we may even terminate the agreement in accordance with our terms and conditions.
Processing for which your explicit consent is required:
The personal data mentioned in this section is required for the Service(s) to function properly or to be able to perform them. However, since it concerns personal data, your explicit consent is required for the processing of this personal data. In order to import the personal data, the User agrees to the terms and conditions for the use of the application for neurotraining. Without consent, you will be hindered from using the Service.
5. Sharing your personal data
Unless otherwise stated in this privacy statement, we do not share personal data for commercial or charitable purposes. Personal data may be stored by third parties outside the EU when using Google Analytics, LinkedIn or Facebook in the contact between you and Dynamisch Bureau bv.
Sharing with processors
Dynamisch Bureau bv may engage third parties, such as coaches and hosting providers, to assist us in providing the Services. Those third parties may, as part of their role in providing the Service, process your personal data. In this respect, such third party is hereinafter referred to as the ‘Processor’. We enter into processing agreements with these Processors.
Dynamisch Bureau bv uses the following types of processors:
• Providers of analytical software for marketing purposes (e.g. cookie analysis) in order to optimize the experience of the Service and to be able to offer personalized information;
• Cloud service providers, hosting provider(s) and email services;
• Providers of neurotraining services;
• Providers of services for managing customer and user information;
• Instant messaging providers (instant messaging, SMS and text messaging);
• Helpdesk ticket handling providers;
• Third parties for the performance of the services;
In some cases, the Processor may collect your personal data on our behalf. We inform Processors that they are not allowed to use personal data they obtain from us, except for the purpose of providing the Services. Of course, we are not responsible for any additional information that you provide directly to Processors. In such cases, you must inform yourself about the Processor and its organisation before disclosing personal data to such Processors.
Sharing with your consent
Dynamisch Bureau bv may share personal data with third parties if you give us explicit permission to do so. If you sign up for these third-party services, we may share the personal information you provide for them, such as name or other contact information we reasonably deem necessary, with these third parties so that our partner can provide the services or contact you.
For example, we may share your profile in the Mediation section for the purpose of finding (work) experience. At that moment, we ask for your agreement to share the information you have entered within the Dynamisch Bureau team, via the newsletter, via social media of our employees or share it in any other way, with the aim of drawing attention to your profile and other profiles of candidates for the purpose of finding work (experience).
This data will also be findable via internet search engines. You can then be contacted directly by third parties for possible options.
Our Legal Responsibility
We may share personal data if we are confident that this is permitted by law or if we are legally obliged to do so. We may also share personal data with third parties if it is reasonably necessary or appropriate to comply with the law, if it is necessary to comply with lawful requests from authorities, to respond to any claims, or to protect the rights, property, or safety of us, our users, our employees, or the public, and to, without limitation, protect ourselves or our users from fraudulent, abusive, inappropriate, or unlawful use of the Service(s). We will promptly notify you of any requests from an executive, administrative or other governmental agency that we receive that relate to your personal data, unless prohibited by applicable law.
Anonymized information
Please note that nothing in this article restricts the sharing of anonymized data. It may also be shared with third parties without your permission.
6. Protection of personal data
Dynamisch Bureau bv takes appropriate technical and organisational security measures for the processing of personal data. We follow generally accepted standards for the protection of personal data (ISO 27001 and 27002, NEN 7510), both during the transfer of personal data and once we have received the personal data.
• Access to our servers and infrastructure is only possible by means of a specific combination of keys.
• Access to our database is only possible by means of a combination of keys and personal accounts that are protected by a username and password. Only people who need access to the database for their task will receive such an account.
• We have a password policy in place to ensure strong passwords.
• A firewall is in place that is automatically configured and updated.
• We use TLS (Transport Layer Security) technology to encrypt data traffic and identify the servers involved.
• All information entered by users is checked to ensure that no malicious data is uploaded.
• Security updates occur on a monthly basis.
• Cookies do not contain full authentication information such as passwords.
You should take into account that our Processors are responsible for processing, managing or storing (part of) the personal data we receive. Processors are not authorized to use this data for any purpose other than contributing to the Service(s). These Processors are contractually obliged, by means of a processing agreement they have with us, to secure the personal data they receive from us.
Despite all the measures, there is no way of transmission over the Internet or a method of electronic storage that is always 100% secure. 100% Safety can never be guaranteed.
7. Links to Third-Party Sites
Our Service(s) and/or the website may contain links to other websites, as well as third-party advertisements. Third-party websites may track information about you. We have no control over such sites or their activities. Any personal data you provide on the pages of third parties will be provided directly to that third party and will be subject to the privacy policy of that third party. We are not responsible for the content, privacy and security practices, and policies of websites we link to. Links from our website to third parties or to other sites are provided for your benefit only. We encourage you to review their privacy and security practices and policies before providing any personal information to them.
8. What choices do you have regarding the use of your personal data?
Before we share personal information with third parties in ways not covered by this Privacy Notice, including use for direct marketing purposes, you will be notified and asked to consent at the time such information is collected.
9. Your rights
• You can check, update, correct or delete your personal data collected by the website and (in the performance of) the Service(s) by emailing us at the email address mentioned under ‘Contact’.
• Please note that having personal data deleted may result in the termination of the right to use the Service(s).
• We reserve the right to retain your personal data on file if we believe it is necessary or advisable to provide the Service(s) to others, resolve disputes, enforce the applicable terms of use, for technical and/or legal requirements and/or if the Service so requires.
• In order to access your personal data by email, you must provide sufficient proof of your identity as requested by us. We reserve the right to deny access to any user if we believe there are questions about your identity. We respond to all access requests within 4 weeks. In the case of complex requests, the deadline can be extended by another 4 weeks. If we extend the deadline, we will notify you within 4 weeks of submitting the request.
• You can request us to restrict or stop the processing of your personal data in the future. We will comply with your request, but you may be prevented from using the Service(s) and you may no longer be able or allowed to use the Service(s), as stated in Section 4 of this Privacy Notice.
• You may request us to transfer the personal data we process about you at reasonable intervals, as long as the requested information does not contain personal data of other natural persons and as long as the requested information has been processed on the basis of your consent or processing is necessary for the performance of the Service(s). We will comply with your request within 4 weeks of receipt of the request.
• You have the right to lodge a complaint with the competent privacy authority in connection with our processing of personal data. For the Netherlands, this authority is the Dutch Data Protection Authority, which you can reach via www.autoriteitpersoonsegevens.nl
10. Contact
The Data Protection Officer is Maaike Pronk. If you have any questions, concerns, or comments about this Privacy Notice, please contact us by email at maaike@dynamischbureau.nl.
Overview of processing operations for the purpose of the performance of the Services
When you leave your details on our site, we ask for:
•Name
• E-mail address
•Telephone number
•Zip code
•Residence
• Your question
We store this data for a maximum of 12 months.
From the first moment of contact with Dynamisch Bureau bv for the (possibly) start of the Service(s), we may request:
• Name and address details
• Contact information, such as email address and phone numbers
•Date of birth
•Gender
• Citizen service number, in case of trajectories via UWV
•Work experience
• Competencies and areas of interest
• Call reports
• Content of communication
• Possibly. Employment expert report (for track 2)
• CV and objective
• Analysis and testing
• EEG measurement, if neurotraining is used
• Complaints (lists), if neurotraining is used
We will keep this data for a maximum of 7 years.