Privacy

This is the ONE-Dyas Privacy Statement for customer, supplier and business partner data. This Privacy Statement provides information on the processing of personal data by ONE-Dyas B.V., Parnassusweg 815, 1082 LZ Amsterdam, The Netherlands and/or its group companies, hereafter ONE-Dyas, we or us.

The primary purpose of this Privacy Statement is to inform you. We want you to feel secure when visiting our site and are committed to maintaining your privacy when doing so.

This Privacy Statement may be changed over time. The most up-to-date Privacy Statement is published on our website.

This Privacy Statement is applicable to the processing by ONE-Dyas of all personal data of its customers, suppliers and business partners and other individuals. This Privacy Statement does not address the processing of personal data of employees in the context of their employment relationship with ONE-Dyas.

WHO IS RESPONSIBLE FOR YOUR PERSONAL DATA?

ONE-Dyas B.V., Parnassusweg 815, 1082 LZ Amsterdam, The Netherlands and/or its group companies are the controllers of the processing of all personal data that fall within the scope of this Privacy Statement.

For which purposes do we process your personal data?

FOR WHICH PURPOSES DO WE PROCESS YOUR PERSONAL DATA?

1. When you interact with ONE-Dyas (online or offline)
   1. What does this purpose entail?If you get in touch with us, e.g. via the contact form on our website, we will use your personal data in order to reply to and answer your question.
   2. On what legal ground do we process personal data for this purpose?We process your information for this purpose based on our legitimate interest to adequately answer your questions.
   3. Which personal data do we process for this purpose?For this purpose, we process your name, contact details, your correspondence with ONE-Dyas about your question, and all other personal data which you have shared with us or are necessary to answer your question. If we ask for specific personal information, we will always make clear if such information is required to provide or not.
   4. For what period do we retain your personal data for this purpose?We will retain your personal information for the period necessary to fulfil the purpose above, unless a longer retention period is required or permitted by applicable law. In general, we delete the information about our contact within two years after the last communication or delivery.
2. To comply with the law and to protect health, safety, security, ONE-Dyas assets and interests
   1. What does this purpose entail?We process your personal data in order to safeguard our employees, customers, suppliers and business partners. As such, we authenticate your access rights to our premises. When you (want to) do business with us, we will process your personal data for assessment and acceptance purposes, for the performance of the agreement and any actions in relation to the agreement, such as audits or legal process. We may screen your personal data against publicly available government and/or law enforcement agency sanctions lists. We also process your personal data to protect ONE-Dyas assets and interests.
   2. On what legal ground do we process personal data for this purpose?We will process your information for this purpose based on our legitimate interest as appropriate or necessary (a) under applicable law, including laws outside your country of residence and including sectorial recommendations (e.g. third party due diligence); (b) to comply with legal processes; (c) to respond to requests from public and government authorities including public and government authorities outside your country of residence; (d) to enforce our terms and conditions and other applicable policies or agreements; (e) to protect our operations; (f) to protect our rights, privacy, safety or property, and/or that of yours or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain.
   3. Which personal data do we process for this purpose?For this purpose, we process your contact details such as your address and email address, personal details such as your name and date of birth, payment and credit information, data generated before or during the performance of an agreement between you and ONE-Dyas, your chamber of commerce number, your VAT number or other required tax details, your visiting history to ONE-Dyas premises and any information that is relevant for the above purpose.
   4. For what period do we retain your personal data for this purpose?We will retain your personal information for the period necessary to fulfil the purpose above, unless a longer retention period is required or permitted by applicable law.
3. To use our website
   1. What does this purpose entail?If you use our website, we process technical data to offer you our website functionalities and to allow our website’s administrators to manage and improve our website’s performance. ONE-Dyas also uses cookies to ensure you can retrieve information from our website quickly and easily, read more about cookies below.
   2. On what legal ground do we process personal data for this purpose?We process personal data for this purpose based on our legitimate interest to offer a technically adequately working Website and to improve our website’s performance.
   3. Which personal data do we process for this purpose?For this purpose, we process the personal data that is generated by the functionalities in our website and the technical data from your device such as its IP address, the internet browser you use, the pages you may have visited on our website, your click- and surf behaviour and the length of your session.
   4. How long do we retain your personal data for this purpose?For this purpose, your personal data will be retained for the duration of your website visit (session). After this term, your personal data may be aggregated and used for analytical purposes.

WHO HAS ACCESS TO YOUR PERSONAL DATA?

Access to your personal data within ONE-Dyas

Your personal data may be exchanged with ONE-Dyas, shareholders and associated companies. We exchange your data for administrative purposes and so that we can have a complete overview of your contacts and contracts with ONE-Dyas.

ONE-Dyas employees are authorised to access personal data only to the extent necessary to serve the applicable purpose and to perform their jobs.

Access to your personal data by third parties

The following third parties have access to your personal data, where relevant, for the provisioning of their products or services to ONE-Dyas: banks, insurance companies, IT suppliers, accountants, forensic specialists, lawyers or consultants.

When third parties are given access to your personal data, ONE-Dyas will take the required contractual, technical and organisational measures to ensure that your personal data are only processed to the extent that such processing is necessary. The third parties will only process your personal data in accordance with applicable law and only to the extent necessary to provide their products or services

If your personal data are transferred to a recipient in a country that does not provide an adequate level of protection for personal data ONE-Dyas will take measures to ensure that your personal data are adequately protected, such as entering into EU Standard Contractual Clauses with these third parties. More information about the specific measures may be obtained at the ONE-Dyas Privacy Officer (see for contact details hereunder).

In other cases, your personal data will not be supplied to third parties, except where required by law.

The use of your personal data by data processors

When a third party processes your personal data solely following ONE-Dyas instructions, it acts as a data processor. We enter into an agreement with such a data processor for the processing of personal data. In this agreement, we include obligations to ensure that your personal data are processed by the data processor solely to provide services to us.

HOW ARE YOUR PERSONAL DATA SECURED?

ONE-Dyas has taken adequate safeguards to ensure the confidentiality and security of your personal data. ONE-Dyas has implemented appropriate technical, physical and organisational measures to protect personal data against accidental or unlawful destruction or accidental loss, alteration, unauthorised disclosure or access as well as all other forms of unlawful processing (including, but not limited to, unnecessary collection) or further processing. Examples are IT security policies, staff training and secure servers.

QUESTIONS, REQUESTS FOR ACCESS, CORRECTION AND REMOVAL AND YOUR RIGHT TO OBJECT

You can request access, correction, restriction, portability or removal of the data that ONE-Dyas processes about you at any time by sending a request to it@onedyas.com. You also have the right to object to the use of your personal data, for example, if you believe that the use of your personal data is not necessary for the performance of our activities or compliance with a legal obligations.

In your request, please make as clear as possible what personal information your request relates to. For your protection, we will only implement requests with respect to the personal information associated with the particular email address that you use to send us your request, and we may request you to provide verification of your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable and in any event within any applicable legally required timeframes.

If you feel that we do not comply with applicable privacy rules you have the right to lodge a complaint with a competent data protection authority.

Should you have any questions regarding the processing of your personal data, please contact our Privacy Officer, Cyriel Mintjens, at Cyriel.Mintjens@onedyas.com or via it@onedyas.com.

 

UPDATES OF THIS PRIVACY STATEMENT

This Privacy Statement may be changed from time to time and was last changed on December 9, 2019. We will inform you about any changes in this Privacy Statement on our websites. In the event of any changes which may have seriously effects on your privacy, we will inform you in a more personal manner about the changes.