Privacy Statement

Who are we?

We are Het Security Office. We process personal data of website visitors who fill out our form websites so that we are able to contact them and/or answer questions.

In this privacy statement we explain why and how we process personal data. This privacy statement applies to all our processing, even if we process personal data together with other parties (for example in the case of an event or meeting). In the case of our events, you will always find a privacy statement on the website of the relevant event, where you can find even more specific details about the processing of personal data.

Data Controller

We are the data controller and are located at the address you can find in the trader register. We are registered in the trade register under number 81642393. We do not have a Data Protection Officer.

Contact

If you have any questions, you can contact us via our contact form. You can also reach us by:

• Post
• Social media: Twitter and LinkedIn

Which personal data do we process?

We may process the following personal data:

• First and last name
• Address (in case of Coordinated Vulnerability Disclosure rewards)
• Telephone number (in case of Coordinated Vulnerability Disclosure direct contact)
• E-mail address
• Areas of interest (e.g. “legal” or “search”)
• Statistical data of visitors (e.g. number of downloads or read articles)
• IP address
• Surfing behavior

Why do we process personal data

Legal obligations

A small part of our processing is required by law.

Newsletters

You can register with us for a newsletter. Every newsletter contains an unsubscribe option.

Improvement of content

To improve our services and content, we may process personal data such as click behavior on the website to analyze which articles are most read and open rates to determine whether our content is relevant.

Rights of the Data Subject

As a data subject, you have the following rights under the General Data Protection Regulation (GDPR). If you wish to exercise any of these rights, please contact us via one of the channels described above:

• Information and access: You can see which personal data we process about you.
• Rectification: You can adjust the personal data we have about you if it is incorrect.
• Erasure: You can request that the personal data we have about you be erased. (We may still have to process that data for other purposes.)
• Restriction: If you feel that we are processing your personal data unlawfully or incorrectly, you can request that the processing be limited.
• Objection: You can object to the processing of your personal data. In such cases, we will immediately terminate the processing unless Het Security Office has compelling legitimate grounds to continue. In that case, we will contact you as soon as possible.
• Transferability: You can request that your personal data, which we process on the basis of consent or an agreement, be transferred in an easily readable form.
• Withdrawal of consent: You can withdraw your consent for certain processing activities, for example, receiving newsletters.
• Submit a complaint to the Dutch Supervisory Authority (AP): If you believe that we do not act in accordance with the GDPR, you have the right to file a complaint with the AP.

How do we process personal data?

Data Retention Periods

We do not store personal data longer than is necessary for the purposes for which it is processed. If you wish to know how long we keep a certain piece of personal data and for what purpose, please contact us via one of the channels described above.

Legal Basis of the Processing

As explained above, we process personal data for the performance of a legal obligation, for the execution of an agreement (e.g. membership, event), based on consent, and primarily for carrying out the legitimate interests of Het Security Office in pursuing our objectives as a business. If you would like to know more about how we balance these interests or the specific processing performed on this legal basis, please contact us via one of the channels described above.

Processors and Third-Party Recipients

We engage service providers to perform our services. These may include third-party recipients but in all cases they are processors who process personal data on behalf of Het Security Office. Examples include a cloud environment provider, Google Analytics and a webform service.

Links

The Het Security Office websites contain references to the websites of other organizations. We are not responsible for the way those parties process personal data. The privacy statement of the relevant organization applies to any processing they conduct.

Last update: Roosendaal, 27 September 2023