Your data, our care

Respecting Dutch Privacy Law: A Comprehensive Guide

At Slow and Luxury Travel italy, we are committed to respecting and adhering to the current Dutch laws and regulations concerning privacy and the protection of personal information. The Netherlands upholds stringent privacy standards through its implementation of the General Data Protection Regulation (GDPR) and supplemental national legislation, ensuring individuals have control over their personal data. Below, we outline our approach to complying with these laws and safeguarding your privacy.

1. Understanding Dutch Privacy Law

The General Data Protection Regulation (GDPR) came into effect on May 25, 2018, and is enforced in the Netherlands by the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, AP). This law governs the processing of personal data across the European Union and is supplemented in the Netherlands by the Dutch Implementation Act for GDPR (Uitvoeringswet AVG).Key principles of GDPR include:

• Lawfulness, fairness, and transparency: Personal data must be processed lawfully and transparently.
• Purpose limitation: Data must only be collected for specified, explicit, and legitimate purposes.
• Data minimization: Only the data necessary for achieving a purpose should be collected.
• Accuracy: Personal data must be accurate and kept up-to-date.
• Storage limitation: Data must not be stored longer than necessary.
• Integrity and confidentiality: Personal data must be processed securely to protect against unauthorized access, loss, or damage.

2. Your Rights Under Dutch Privacy Law

As an individual, you have several rights under the GDPR and Dutch privacy law:

• Right to access: You can request information about the data we process about you.
• Right to rectification: You can request corrections to inaccurate or incomplete personal data.
• Right to erasure ("right to be forgotten"): You can request the deletion of your personal data in specific circumstances.
• Right to data portability: You can request that your data be transferred to another organization.
• Right to restrict processing: You can limit how we process your data under certain conditions.
• Right to object: You can object to the processing of your personal data for direct marketing or other legitimate purposes.

3. Our Commitment to Compliance

We take privacy seriously and have implemented the following measures to ensure compliance with Dutch and EU privacy laws:

a. Data Collection and Processing

We only collect and process personal data when necessary for specific and lawful purposes, such as providing services, fulfilling contracts, or complying with legal obligations. Examples of data we may collect include:

• Contact details (name, email address, phone number)
• Payment information

b. Transparency and Communication

We provide clear and accessible information about how we collect, use, and protect your personal data through our privacy policy. This policy is regularly reviewed and updated to reflect changes in law or our practices.

c. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Once the data is no longer needed, we ensure it is securely deleted or anonymized.

e. Third-Party Sharing

We do not share personal data with third parties unless necessary for providing services, complying with legal obligations, or with your explicit consent. Any third-party partners are required to adhere to GDPR standards.

4. Data Breach Reporting

In compliance with Dutch law, we will notify the Autoriteit Persoonsgegevens and affected individuals of any data breaches that pose a risk to personal rights and freedoms. Our incident response team is trained to handle such situations swiftly and effectively.

5. How to Exercise Your Rights

If you wish to exercise your rights under the GDPR or have questions about how we handle your data, please contact us:

• Email: babettem@planet.nl
• Phone: +31 6 38348906

We will respond to your request promptly and in accordance with applicable laws. Please note that we may require verification of your identity before fulfilling certain requests.

6. Filing a Complaint

If you believe that your privacy rights have been violated, you have the right to file a complaint with the Autoriteit Persoonsgegevens. You can contact them through their website: https://autoriteitpersoonsgegevens.nl.

Conclusion

Protecting your personal information is a cornerstone of our commitment to ethical and responsible business practices. By adhering to Dutch and EU privacy laws, we strive to provide you with the highest level of transparency, security, and trust. Thank you for entrusting us with your data.