This policy applies to Nopha Group BV and its subsidiaries Nophadrain BV, Nophadrain Industrial BV, and Sedumkwekerij Sedumdirect BV, referred to below as the Nopha Group. The Nopha Group's head office is located at Mercuriusstraat 10, 6468 ER Kerkrade in the Netherlands, telephone number +31 (0)45 535 5030. This policy applies to the Nopha Group's websites and online stores and to the communications conducted by the Nopha Group in general.
GDPR 25 May 2018
To provide you and your company with the best possible service, we at the Nopha Group need to maintain and use contact details and other information about you. Of course, our aim is always to respect your privacy. For that purpose, we act in conformity with the new European privacy legislation, the GDPR (General Data Protection Regulation). This Regulation comes into force on 25 May 2018.
The official GDPR reference is as follows: EU Regulation 2016/679 of the European Parliament and Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data.
More information can also be found on the website of the Privacy Committee https://ec.europa.eu/info/law/law-topic/data-protection_en . Nopha Group collects and uses personal data for specific purposes only. We limit ourselves at all times to what is actually needed.
We keep all of the information you leave with us under lock and key: both the digital version and the hard copy. People who have nothing to do with your data cannot access it. If we pass on your information to someone else – we explain below why and when we do this – we require them to treat your information as carefully as we do and use it only for the purpose for which it was given to them.
The necessary control mechanisms – both software-based and manual – are in place to monitor the quality of the data. A retention period is set depending on the type of information, after which the collected data is completely and definitively erased. Personal data is stored and processed internally wherever possible.
If you have any questions about how we process your personal data or if you wish to rectify, access, supplement, or erase it, you can e-mail a reasoned request to that effect to our Data Privacy Officer at firstname.lastname@example.org or by post to Nopha Group, Data Privacy Officer, Postbus 3016, NL-6460 HA Kerkrade. Your request will be met within four weeks unless this term is not possible owing to circumstances beyond our control, or if there are any conflicts with the privacy of others, or the disclosure of the information is prohibited by law. In that case, you will be informed within four weeks.
As a data subject, you have the right to be kept informed of the data we collect about you at all times. You can access it, rectify it, or have it completely erased. If you feel that Nopha Group is not handling your personal data in a lawful manner or is violating the law and regulations in any other way, you have the right to submit a complaint to the Privacy Committee.
What do we do with your data?
We use your personal data for various purposes. Your personal data includes information that you have provided to us as a customer or prospective customer, supplier or prospective supplier, but also information about your visit to our online store and requests for information.
Within the framework of our contractual agreements, it should be clear that we maintain contact details to communicate with our customers, suppliers, and partners. We also use this data to provide you with more information about products and services related to the agreement we already have with you.
The following applies to you if you are not a customer of ours, but we have we obtained your data from a business card you have provided, a form on our website, face-to-face meetings, telephone calls, the use of the chat feature on our website, or an e-mail. By so doing, you give us your consent to be included in our Customer Relationship Management System (CRM) file as a prospective customer or supplier. We will send you an e-mail confirming this. We store your name and address, your telephone number, mobile phone number, fax number, and e-mail address.
We use this information to contact you and to inform you about products and prices, to send you newsletters, and to invite you to trade fairs and meetings.
Even if you have given us permission to use your personal data, you can withdraw your consent at any time. If we send you a newsletter with your approval, you can easily unsubscribe from it.
We have set out below the different ways of collecting personal data through the various media.
If you consult www.sedumdirect.com or one of the other websites of Nopha Group we would like to know which of our activities you are interested in.
You can call us, e-mail us, and chat with us. You can also fill in a contact form. We use your data and take notes that we keep in order to quickly answer your questions. That enables us to provide you with a faster service next time you contact us. We retain all e-mails for a maximum period of seven years.
As mentioned above, you can also contact us using a chat application on our websites or online store. The chat feature is a Zendesk, Inc. (formerly Zopim) application. We use the chat feature to give you an additional contact option. The chat feature makes it possible for us to track you as a visitor to the website. This is a standard feature of the chat application, but we do not use it. Nophadrain has configured the chat feature in such a way that you must give your consent before the cookies are placed and your IP address can be tracked. You can also withdraw your consent. Chat messages are kept for a maximum of one year and are then deleted.
A processor agreement has been concluded with Zendesk, Inc. (formerly Zopim) to ensure that your personal data is protected. More information about this is provided on the website of Zendesk, Inc: https://www.zendesk.com/company/customers-partners/privacy-policy/ .
If you use social media, such as Twitter or Facebook, you can use your social media account to log in to some parts of our website. If you 'like' an article when you are logged in, that article will appear on your social media account. We do not gain access to your social media account, but you can share interesting content that you find with your friends/followers. If you ask us a question via social media and we take it up, we will keep that message (stating your account name) so that we can respond to it.
Business cards traids/fairs/visits
We are regularly given business cards, usually at a trade fair or during an appointment. We attach these business cards to a lead form that you fill in yourself and sign. By doing this, you give us permission to contact you and to send you product and company information. We store your data for a maximum of seven years.
For security reasons, we are obliged to register the identifying data of all visitors. Visitors register with their surname and company name, which is kept under the management of our planning and control department in a secure folder. This information is kept for a maximum of six months. It will not be used for any other purpose unless you have given your express consent. CCTV cameras are installed in and around our buildings. The recordings are kept for a maximum of four weeks and are only viewed in the event of an incident. The Camera Surveillance Regulations provide a detailed description of tasks, responsibilities, and procedures for camera surveillance on the grounds and at the premises of Nophadrain BV, Kerkrade, to ensure that the camera system is used with due care and that privacy is protected.
We process the personal data that you entrust to as a customer exclusively for your clearly specified order. This data is not used for any other purpose. We treat all personal data that we collect as highly confidential information.
All employees and partners of Nopha Group sign a confidentiality agreement when entering into their employment contract, in which they undertake to treat the information that comes to their notice when performing their duties for Nopha Group as being permanently confidential at all times. They follow a number of clear guidelines and are regularly instructed and made aware of their responsibility.
Nopha Group has a high-security IT infrastructure, which is managed by an external party (as explained below, we enter into a 'processor agreement' with third parties who process personal data for us).
If Nopha Group engages external parties, partners, or subcontractors for certain services, they are thoroughly screened and instructed regarding their confidentiality and information security obligations. If we entrust your data to them, they are given a clear mandate and your data will be used solely for this purpose. Processor agreements have been drawn up for this purpose. Your data is recorded and processed with the utmost care to guarantee that it is accurate and up-to-date, and we do not keep it for longer than necessary for its intended purpose.
Data is only passed on to external parties in the context of a proven partnership (e.g. a commercial offer that we formulate jointly with a partner and for which our commercial contact details are also shared with the partner) or a clearly contractually defined assignment, carried out under our responsibility (e.g. to process visits to our website). Your personal data as referred to here is never transferred outside the EU without your consent.
Up-to-date privacy declaration
Copyright: Nopha Group BV – Mercuriusstraat 10 -6468 ER Kerkrade (NL) – V24-05-2018