From whom do we process personal data and how do we get this data?
We process the personal data from anyone who has direct or indirect contact with Nexio Projects NL B.V. such as customers, partners, employees or any other stakeholders.
We get the data directly from you, when you visit our website, create a customer account, fill in data and/or when you contact us. In some cases, we receive your data from third parties, but only when you authorise those parties to share certain information with us.
How do we use your personal data?
General categories of personal data that we may process:
Usage data: We may collect and process data related to your use of our website and services. This data may include your IP address, geographical location, browser type and version, operating system, visit duration, page views, navigation paths, and patterns of service usage. We obtain this information through our analytics tracking system to analyze and improve website performance and user experience.
Data to process your order: When you place an order, we collect certain information to process and fulfill your request, keep you updated on delivery timelines, and manage returns if necessary. This includes, but is not limited to, your name, email address, delivery address(es), payment details, and phone number. This data is essential to fulfilling our agreement (or with our partners).
Enquiry data: We may process information contained in any enquiry you submit to us regarding our products and services.
Customer relationship data and customer service: We may process information related to our customer relationship including customer contact information. You can contact us 24/7 via marketing@nexioprojects.com. We will help you in the shortest time possible. The notes about the customer contact will be kept as long as you are an active customer. We have a legitimate reason to retain this data such as improving our services. When you send us a private message via social media, your message will be shared with the third-party through which you send us the message (e.g. Facebook, LinkedIn). To ensure your data stays safe, always protect your accounts with strong passwords and keep these safe. We cannot prevent a data leak which happens due to your indiscretion. Customer relation data may also be collected for the purpose of managing our relationships with our customers, allow personalised communication with the customers, keeping records of the communication between us and our customers, promoting our products and services, (online) event registration or service delivery, optimize marketing strategy and improve customer acquisition efforts.
Transaction data: We may process data related to transactions, including purchase of goods and services that you acquired with us. The transaction data may include your name, bank details and transaction details. We may share this data with third-parties (providers of transaction services which are our partners).
Information for marketing: Through e-mail we can share valuable industry trends, (online) events, special promotions and news that we want to share with you. If you opted in to receiving these e-mails, or if you placed one or more orders, we will email you newsletters, (online) event invitations and information about our products and services. If you prefer to not receive this type of emails, you can opt out marketing e-mails immediately. At the bottom of each email we send, we give you an option to opt out. Please use this option if you wish to not receive marketing emails from us anymore.
Correspondence data: We might send you promotional information by post. If you wish to not receive this information, please indicate this to our customer service via marketing@nexioprojects.com, and we will remove you from the list.
Data from customer surveys: We are always working on improving our services and better match our customer’s expectations. Therefore, we will need your data (customer ID, email address, and/ or telephone number) if we are to invite you to customer or market research. Participation for these surveys is entirely voluntary.
Data to prevent fraud: To avoid security incidents and fraud we use your data. The data we use are IP address, search and buying behaviour. This enables us to prevent unauthorised access and to prevent, counter and investigate fraud.
Social media: When you use social media, such as Facebook, YouTube, Instagram, X and LinkedIn, you can like and share our accounts and posts about our products and services. We cannot gain access to your social media account. We recommend you review the privacy policy of the social media platform where you have an account, so you know how your information is used and how you can customise your settings.
In addition to the specific purposes for which we may process your personal data set out in this section, we may also process any of your personal data where such processing is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
Providing your personal data to others
We also work with other external service providers who might require your personal data. We share only the information necessarily for the command that the external service provider will fulfil. With all external service providers we enter agreements in which we agree on what they are allowed to do with your data.
Government: Transferring personal data to the government can occur if government agencies require this information to carry out their tasks. This could be for example the tax authorities. Police or justice might need certain data in the case of fraud or abuse.
In addition to the specific disclosures of personal data set out in this Section, we may disclose your personal data where such disclosure is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person. We may also disclose your personal data where such disclosure is necessary for the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
Where do we store your data?
We store your data within the European Economic Area (EEA). However, it may happen that certain information we collect are transmitted to destinations outside the EEA, for example, because one of our (external) service providers is established there. When this is the case, we make sure that this happens in a safe and lawful manner.
How do we secure your data?
We ensure your personal data is secure at both organisational and technical level. Our IT department ensures that our systems are secure and not vulnerable to threats. Through rigorous access controls, we ensure that your personal data is only accessible to employees that are authorised to use the data. If we give your information to other external service providers, then we ensure through contracts, that they deal with your data as serious as we do.
Amendments
We may update this policy by publishing a new version on our website. You should check this page occasionally to ensure you are happy with any changes to this policy.
We will notify you of significant changes to this policy by email or through the private messaging system on our website.
Your rights
Your principal rights under data protection law are:
The right to information: You have the right to confirmation as to whether we process your personal data and, where we do, access to the personal data.
The right to inspect: You have the right to inspect your data at any time. We will supply you with a copy of your personal data. The first copy will be provided free of charge, but additional copies may be subject to a reasonable fee.
The right to correct: You have the right to have any inaccurate personal data about you rectified and, taking into account the purposes of the processing, to have any incomplete personal data about you completed.
The right to object to: You have the right to object to our processing of your personal data on grounds relating to your particular situation, but only to the extent that the legal basis for the processing is that the processing is necessary for: the performance of a task carried out in the public interest or in the exercise of any official authority vested in us; or the purposes of the legitimate interests pursued by us or by a third party. If you make such an objection, we will cease to process the personal information unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the establishment, exercise or defence of legal claims.
The right to data portability: You have the right to transfer the information that you have given to us in the framework of the agreement that you have entered into with us. You have the right to receive a machine-readable format, so you can save this data in a database of yours or another party. This includes your name, address and residence information. To obtain this information, please send an email to marketing@nexioprojects.com.
The right to restrict processing: In some circumstances you have the right to restrict the processing of your personal data. Those circumstances are: you contest the accuracy of the personal data; processing is unlawful, but you oppose erasure; we no longer need the personal data for the purposes of our processing, but you require personal data for the establishment, exercise or defence of legal claims; and you have objected to processing, pending the verification of that objection. Where processing has been restricted on this basis, we may continue to store your personal data. However, we will only otherwise process it: with your consent; for the establishment, exercise or defence of legal claims; for the protection of the rights of another natural or legal person; or for reasons of important public interest.
The right to be forgotten/request for account delete: In some circumstances you have the right to the erasure of your personal data without undue delay. Those circumstances include: the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; you withdraw consent to consent-based processing; you object to the processing under certain rules of applicable data protection law; the processing is for direct marketing purposes; and the personal data have been unlawfully processed. However, there are exclusions of the right to erasure. The general exclusions include where processing is necessary: for exercising the right of freedom of expression and information; for compliance with a legal obligation; or for the establishment, exercise or defence of legal claims. You have the right to object to our processing of your personal data for direct marketing purposes (including profiling for direct marketing purposes). If you make such an objection, we will cease to process your personal data for this purpose.
The right to complain to a supervisory authority: If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence, your place of work or the place of the alleged infringement. When you have a complaint, please contact us. You also have the right to complain directly to our data protection officer. You can do this by emailing: marketing@nexioprojects.com. Finally, you have the right to file your complaint to the authorities. We process requests within 7 days.
Questions?
If you have any questions about the way in which Nexio Projects handles your personal data, please contact us via marketing@nexioprojects.com.