Our Privacy Policy

Introduction



At Resnap we process personal data, the protection of which is governed by the General Data Protection Regulation (“GDPR”). The GDPR requires us to process personal data legitimately and responsibly. This Privacy Policy governs how Resnap handles and protects personal data.

Purpose of this policy



The purpose of this Policy is to describe how Resnap, as a part of Albelli B.V., handles and protects personal data, to comply with applicable laws and regulations.



Scope of this policy



All handling of personal data by Resnap is within scope of this Policy. This includes data of customer business contacts , consumers, contractors, employees and vendor business contacts (in any form) that is collected, stored, shared, transmitted, and/or otherwise used in our business.



This document applies to all employees, contractors and temporary workers of Resnap and to all other individuals working on our behalf, regardless of geographic location and/or level of responsibility.



Employees and other individuals working on behalf of Resnap in a particular jurisdiction must follow the laws that apply in that jurisdiction. If these contradict or violate the rules and regulations set forth in this policy this must be brought to the attention of the Data Protection Committee.



What is personal data?



Some data is privacy sensitive and may be labelled as ‘personal data’. Personal data is any information relating to an identified or identifiable natural person (the ‘data subject’).



The data subject doesn’t need to be a directly identified individual by means of name, but as soon as an individual can be singled out from a group, be individualized and identified at some point, the data is personal data. All data that relates to an identified or identifiable individual is to be regarded as personal data. For instance, purely transactional data may not in itself be directly identifiable data, but it will become personal data when it is related to an identified or identifiable individual, for example because it is linked to a name, an e-mail address or a telephone number.



The GDPR has a special regime for special categories of data. Special categories data are personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, health or medical data, data concerning a person's sex life or sexual orientation or data relating to criminal offences.



The processing, so the collection or use of sensitive personal data, is prohibited, unless an exception to the general prohibition is applicable. The collection and use of such data shall therefore be avoided as much as possible. Also, avoid collecting and using data of sensitive groups, such as children/minors, disabled and elderly people, unless we clearly are allowed to process such data.



The following are examples of data that are generally considered to be personal data:




First name and/or first initial and last name


Email address


Telephone number


Photos


Data or place of birth


IP-address


Cookies


Financial data


Payment or transactional data


What principles apply to the processing of personal data at Resnap?


The following core data protection principles apply to all processing activities with regard to personal data within Resnap.



Legitimacy, fairness and transparency



Resnap only processes personal data for a fair, clear and legitimate purpose. This means that processing of personal data is always based on a legal basis as provided by the GDPR, such as for example the consent of the data subject, when it is necessary for the entering into or performance of a contract with the data subject or when we are obliged by law to process personal data.



Furthermore, we are open and transparent about the processing of personal data towards the data subject, society and the data protection authorities. We provide the required information regarding our processing activities through different channels, including through our privacy statement on our website.



Finally, we respect the rights of the data subject and facilitate requests where this is required and feasible.



Purpose limitation



Resnap only collects personal data for clearly defined and explicitly described purposes. If we intend to further process the personal data for a different purpose than for which it was originally collected, we will assess whether this new goal is compatible with the original goal. We will take the link between the purposes, the context in which the personal data was collected, the nature of the data and the possible consequences into account in this assessment. Additional measures to protect the personal data will be taken where necessary.



Data minimization



Resnap only collects and processes those categories of personal data that are necessary for the defined purpose(s). Systems are configured to allow only for processing the minimal collection of data (privacy by default).



Data accuracy



Resnap ensures the personal data are collected and used are accurate and up to date, by regularly reviewing our databases and making it easy for data subjects to request rectification of their incorrect personal data.



Storage limitation



Resnap retains personal data only for as long as necessary for reaching the defined purposes or for as long as is allowed by law. We have determined and implemented maximum retention periods for all personal data we have. After the retention period has passed, personal data will either be deleted or properly anonymized.



Integrity and confidentiality



Resnap ensures the personal data that is entrusted to us is stored securely and confidentially. Access to personal data is only provided to those people and/or organizations that need access to the data and are allowed to access and further process it.


Accountability



Resnap is accountable for all use of personal data. We take the necessary technical and organizational measures to ensure compliance with the above principles. We document and demonstrate the effectiveness of these measures.



Policy owner and contact information



This policy is owned by the Data Protection Committee. For any questions about this policy or the use of personal data by albelli, please read our Privacy Statement or email support@resnap.com.



Revisions



This Policy is reviewed and updated periodically, so make sure to take notice of this document on a regular basis.