Personal data

In the course of providing our services, Shift2 records data. This is the case when you enter into an agreement with us, subscribe to our newsletter, visit one of our events, take a course with us, use our (interactive) services, register your interest or otherwise express your interest, or otherwise have contact with Shift2.

Below is an overview of the personal data we process:

• First and last name
• Gender
• Address details
• Phone number
• Email address
• IP address
• Other personal data that you actively provide for example by creating a profile on this website, in correspondence and by telephone
• Location details
• Data about your activities on our website
• Data about your browsing behavior across different websites (for example, because this company is part of an advertising network)
• Internet browser and device type

Shift2 uses the personal data provided by you for the execution and handling of the relevant agreement, for its other services and internal business operations, and to be able to advise you as best as possible about products and services. Insofar as it does not arise from the law or from obligations Shift2 has entered into towards you, no personal data will be provided to third parties without yourq consent.

Special and/or sensitive personal data we process

Our website and/or service does not intend to collect data on website visitors who are under the age of 16. Unless they have parental or guardian consent. However, we cannot verify whether a visitor is older than 16. We therefore recommend that parents be involved in their children's online activities to avoid collecting data about children without parental consent. If you believe that we have collected personal information about a minor without such consent, please contact us at contact@shift2.nl, and we will delete this information.

For what purpose and on what basis we process personal data

Shift2 processes your personal data for the following purposes:

• Sending our newsletter and/or promotional flyer
• Calling or emailing you if necessary to perform our services
• Inform you of changes to our services and products
• Shift2 analyzes your behavior on the website in order to improve the website and tailor the offer of products and services to your preferences.
• Shift2 tracks your browsing habits across different websites to help us tailor our products and services to your needs.

Automated decision-making

Shift2 does not make decisions based on automated processing about things that could (significantly) affect individuals. These decisions are made by computer programs or systems, without the presence of a human being (e.g. an employee of Shift2). Shift2 uses CRM-applications so that we have an overview of our (potential) customers and can thus contact them in a personal way and manage our administration. This does not adversely affect our customers.

How long we keep personal data

Shift2 stores your personal data no longer than strictly necessary to fulfill the purposes for which your data is collected. We use the following retention periods for the following (categories) of personal data:

1. Being able to perform an agreement. Shift2 processes and stores personal data for achieving the performance of the agreement(s). We keep this data as long as the customer has a contract with Shift2. After a contract is no longer valid, for administrative reasons and legal requirements, the data are kept in a (digital) archive for another 7 years.
2. Being able to carry out direct marketing activities. Shift2 processes and stores personal data for carrying out direct marketing activities. We keep this data as long as the customer has a contract with Shift2 or has voluntarily signed up via an opt-in functionality. After a contract is no longer valid, the data is kept in our (digital) archive for another 7 years. If no contract was present, the data, after unsubscribing, will be deleted from Shift2 immediately.

Sharing personal data with third parties

Shift2 does not sell your data to third parties and will provide it only if necessary for the performance of our agreement or to comply with a legal obligation. We conclude a processing agreement with companies that process your data on our behalf to ensure the same level of security and confidentiality of your data. Shift2 remains responsible for this processing.

Personal data may be processed outside the European Economic Area (EEA). In such cases, Shift2 ensures that such cross-border data processing is surrounded by appropriate safeguards with standard contractual clauses approved by the European Commission. These standard contractual clauses provide sufficient safeguards to meet the adequacy and security requirements of the European General Data Protection Regulation (AVG), think GDPR or Privacy Shield compliance.

Cookies or similar techniques

A cookie is a small text file that is stored in the browser of your computer, tablet or smartphone the first time you visit this website. During your first visit to our website, we have already informed you about these cookies and asked your permission to place them. You can opt out of cookies by setting your Internet browser to no longer store cookies. In addition, you can also delete any information previously stored through your browser settings. For an explanation, see: https://veiliginternetten.nl/themes/situatie/cookies-wat-zijn-het-en-wat-doe-ik-ermee/

What types of cookies does Shift2 use and what for?

The cookies used by Shift2 fall into several categories, as explained below.

Functional cookies

This category of cookies is necessary to ensure that the website works properly. For example, these cookies ensure that information from one page is carried over to the next. This way you do not have to fill in the same information every time. Also, these cookies ensure that certain preference settings you have indicated for using a Shift2 website (such as text size) are remembered in a future use of the websites. The use of these cookies does not require your prior consent.

Analytical cookies

These cookies are necessary to make our websites permanently as responsive as possible to the needs of our users by anonymously determining how users use our websites. Given the low impact of these cookies on your privacy, no consent is required for their use. These analytical cookies also include cookies set and read by third parties on behalf of Shift2, such as Matomo and Google Analytics.

Social media cookies

In order to easily share the content of our websites with others through buttons, we use social media cookies from the social media parties, so that various social media parties can recognize you. For the cookies that the social media parties place when you click on the buttons and the data that can be collected with this, we refer to the statement of these various parties. The use of these cookies requires your consent.

• Facebook
• Twitter
• Instagram
• LinkedIn

Tracking cookies

Just a quick note: we really appreciate you reading this privacy and cookie policy word for word. Besides being required by law, we also want to be as transparent as possible about the rights you have as a visitor when it comes to tracking your data. But it will also take you some time. Are you reading this? Then we would like to send you something nice to thank you for your time. Send an email to social@shift2.nl with the subject line "cookie Shift2" and we'll get back to you ASAP.

Tracking cookies are used to collect information about your browsing behavior on our website so that we can analyze our website and continue to improve it. We also use these cookies for future advertising purposes. The use of these cookies requires your consent.

View, modify or delete data

You have the right to view, correct or delete your personal data. In addition, you have the right to withdraw your possible consent for data processing or object to the processing of your personal data by Shift2 and you have the right to data portability. This means that you can submit a request to us to send the personal data we have on you in a computer file to you or another organization named by you. You can send a request to inspect, correct, remove or transfer your personal data or a request to withdraw your permission or objection to the processing of your personal data to contact@shift2.nl or by mail at:

Shift2
Attn: Emiel Duinisveld
Rietbaan 10
2908 LP Capelle a/d IJssel
Netherlands

This address is also the place to go if you have any questions about how Shift2 handles your data. Shift2 is entitled to charge you any fees for this.

To make sure that the request for inspection is made by you, we ask you to send a copy of your ID with the request. In this copy, black out your passport photo, MRZ (machine readable zone, the strip of numbers at the bottom of the passport), passport number and Citizen Service Number (BSN). This is to protect your privacy. We will respond to your request as soon as possible, but within four weeks. Shift2 would also like to inform you that you have the possibility to file a complaint with the national supervisory authority, the Personal Data Authority.

You can do so at the following link: https://autoriteitpersoonsgegevens.nl/nl/contact-met-de-autoriteit-persoonsgegevens/tip-ons

How we secure personal data

Shift2 takes the protection of your data seriously and takes appropriate measures to prevent abuse, loss, unauthorized access, unwanted disclosure and unauthorized modification. If you feel that your data is not properly secured or there are indications of abuse, please contact our CISO Emiel Duinisveld at contact@shift2.nl.

Unsubscribe

If you no longer wish to receive (commercial) information from Shift2 about (new) products and services please notify us by email at contact@shift2.nl. In addition, Shift 2's digital communications will offer you the opportunity to unsubscribe.

Changes

Shift2 reserves the right to make changes to this privacy statement. Therefore, please check this privacy statement regularly to become familiar with Shift2's privacy policy.

Questions and feedback

If you have any questions about this Privacy & Cookie Policy, please contact us.