Last modified: September 2021
What data does Picasse process?
- Personal data
Personal data is data that can be traced back to individuals. Picasse processes customer personal data primarily when they sign up as Picasse’s customer. Picasse then asks for the contact’s organization name, name, billing address, phone number and email address. Picasse then creates an account for picasse’s application. You’ll also ask for a username to create an account. All this data is processed by Picasse. Picasse creates a password for the customer when creating an account. This password can be changed directly by the customer to a new personal password. Even after a customer has signed in, this customer’s data is registered, for example because the customer deliberately leaves data (for example, on a Picasse website), reports a failure, files a complaint or does not pay an invoice. This data is also recorded by Picasse.
- Traffic data
When customers use our applications, we ‘transport’ data from these customers. This data is also referred to as traffic data. This is information such as which user (IP address or account name), at what time messages were sent to which phone numbers and email addresses were sent. Picasse stores the data about sending messages to which numbers in a message store. Picasse can keep track of whether a customer has logged into a Picasse application and how a customer uses a Picasse application. However, this is not being done actively at this time.
- Content of the messages
Picasse doesn’t take note of the content of your posts. For the maintenance of the servers, which provide the messaging, it is necessary that a small group of Employees of Picasse, the administrators, have access to these servers. They are not allowed to read messages.
- Location data
Picasse does not process location data from customers using mobile telephony, unless customers request it for their own use in the context of the presence registration service.
For what purposes does Picasse collect data?
Picasse processes personal and traffic data to provide our services. Processing of customer data is necessary to process requests, to create an account, to send invoices and to handle fault reports or complaints. Without processing the above data, we cannot provide our services to customers.
- Meeting legal obligations
In addition, Picasse is required by law to store traffic data and in some cases to provide it to third parties. This may include the provision of data in the context of a criminal investigation and to competent authorities.
- Market research and marketing and sales activities
Picasse will never use personal data and traffic data for market research and marketing and sales activities. Customer data will therefore not be made available to external parties.
How long does Picasse keep customer data?
Picasse does not keep customer data for longer than is legally permitted and is necessary for the realization of the purposes for which your data is processed. How long certain data is stored depends on the nature of the data and the purposes for which it is processed. We use the following retention periods for the following categories of personal data:
Visitor data: General visitor data is (anonymised) stored through Google Analytics for 38 months.
Personal data: The personal data you have entered into our forms will be kept for up to 1 month after the contact has taken place, unless you have become a customer.
Customer information: The personal data you have filled out in our forms will be kept until 1 month after the contact has taken place, unless you have become a customer.
Invoices: 7 years in connection with the legal obligation of the Tax Office.
If a customer has a subscription with Picasse, the customer data will be retained at least during the term of the subscription. After the termination of the contract with a customer, Picasse returns (personal) data to the customer and this data is removed from Picasse’s systems and databases. Picasse will also provide the customer with a written statement that this has been done as defined.
Sharing of personal data with third parties
Picasse does not sell your data to third parties and only provides it if necessary for the performance of our agreement with you or to comply with a legal obligation. With companies that process your data on our behalf, we conclude a processors agreement to ensure the same level of security and confidentiality of your data. Picasse remains responsible for these processing operations.
Cookies, or similar techniques, which we use
On your first visit to our website, we have already informed you about these cookies and asked for permission to place them. You can opt out of cookies by setting your Internet browser so that it does not store cookies anymore. In addition, you can also delete all information previously saved through your browser settings.
Cookies are also placed on this website by third parties. These include, for example, advertisers and/or social media companies. Below is an overview:
Cookie: Google Analytics
Function: Analytical cookie that measures website visit
Retention period: 38 months
Cookie: Facebook Pixel
Function: Analytical cookie that measures website visit & actions
Retention period: 38 months
Cookie: Google Tag Manager
Function: Analytical cookie that measures various actions on the website
Retention period: 38 months
Viewing, modifying or deleting data
You have the right to view, correct or delete your personal data. In addition, you have the right to withdraw your consent to the data processing or to object to the processing of your personal data by Picasse and you have the right to data portability. This means that you can submit a request to us to send the personal data that we have from you in a computer file to you or another organisation mentioned by you.
You may send a request for access, correction, deletion, data transfer of your personal data or request for your consent or objection to the processing of your personal data to firstname.lastname@example.org.
In order to ensure that the request for inspection has been made by you, we ask you to send a copy of your identity document with the request. In this copy, make your passport photo, MRZ (machine readable zone, the strip with numbers at the bottom of the passport), passports number and citizen service number (BSN) black. This is to protect your privacy. We respond to your request as soon as possible, but within four weeks.
How is data protected?
Picasse takes appropriate technical, physical and organisational measures to protect (personal) data from loss or against any form of unlawful processing. This ensures that data is only accessible to persons empowered by virtue of their duties and that the data is only used for the purposes for which it was obtained and thus compatible purposes. This store passwords encrypted so that no one has free access to passwords. The data is also sent to and from the Internet applications encrypted so that data cannot be tapped. When a password is used to protect accounts and personal information, it is also the customer’s responsibility to treat it confidentially. Such information should not be shared carelessly with others. Picasse advises in the case of a shared PC, always log out after using the Picasse application. Prevents unauthorized persons from accessing personal information.
If there is a need for advice on how to handle personal data, which has been entered into the Picasse application, Picasse can be contacted. Picasse can be reached on weekdays to provide advice on this at 088-7422773.