Privacybeleid Applus RTD
The present notice applies to all personal data We collect about you as an applicant for a course of Applus+ RTD [and other entities pertaining to the Applus+ Group]. 'Personal Data' means any information relating to an identified or identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
1. What Personal Data do We collect
We collect your personal data that you send us directly through the application form available on the Website or the application form send to the e-mail address included for information purposes when you apply one of your employees or yourself for a course.
Please bear in mind that certain personal data, marked as compulsory shall be required in order for Us to evaluate your application, and thus, We will not be able to continue the application process in those cases where such compulsory data is not provided correctly.
1.1 Personal Data We collect directly from you
The categories of personal data that We collect directly from you include:
a) Personal details and contact information: name, surname, date of birth, place of birth, photograph, telephone number, e-mail address, postal address;
b) Other details: information about the company where you work;
c) Work and work history: work experience;
d) Talent, recruitment and application details, education and training details: education history and NDT qualifications;
e) Information We collect automatically from you: further information about our use of Cookies and Tracking Technologies is available in our Cookies Policy.
1.2 Personal Data we collect from other sources
We might collect personal data about you from: a) Springest (privacy policy); b) NIIT Limited (privacy policy); c) Bookeo (privacy policy);
The categories of personal data that we collect from other sources are:
a) Personal details and contact information: name, surname, date of birth, place of birth, photograph, telephonenumber, e-mailaddress, postal address;
b) Other details: information about the company where you work.
1.3 Personal Data about third parties
Where you provide Us with personal data such as contact information about third parties, it is your direct responsibility to inform such individuals of their rights and to obtain their explicit consent, where necessary, to the processing (including transfers) of their personal data (including sensitive data), as it may be deemed necessary and in compliance with applicable local data protection laws, as set forth in this Privacy policy.
1. What Personal Data do We collect
We collect your personal data that you send us directly through the application form available on the Website or the application form send to the e-mail address included for information purposes when you apply one of your employees or yourself for a course.
Please bear in mind that certain personal data, marked as compulsory shall be required in order for Us to evaluate your application, and thus, We will not be able to continue the application process in those cases where such compulsory data is not provided correctly.
1.1 Personal Data We collect directly from you
The categories of personal data that We collect directly from you include:
a) Personal details and contact information: name, surname, date of birth, place of birth, photograph, telephone number, e-mail address, postal address;
b) Other details: information about the company where you work;
c) Work and work history: work experience;
d) Talent, recruitment and application details, education and training details: education history and NDT qualifications;
e) Information We collect automatically from you: further information about our use of Cookies and Tracking Technologies is available in our Cookies Policy.
1.2 Personal Data we collect from other sources
We might collect personal data about you from: a) Springest (privacy policy); b) NIIT Limited (privacy policy); c) Bookeo (privacy policy);
The categories of personal data that we collect from other sources are:
a) Personal details and contact information: name, surname, date of birth, place of birth, photograph, telephonenumber, e-mailaddress, postal address;
b) Other details: information about the company where you work.
1.3 Personal Data about third parties
Where you provide Us with personal data such as contact information about third parties, it is your direct responsibility to inform such individuals of their rights and to obtain their explicit consent, where necessary, to the processing (including transfers) of their personal data (including sensitive data), as it may be deemed necessary and in compliance with applicable local data protection laws, as set forth in this Privacy policy.
2. How We use your Personal Data and on what legal basis
We use and subsequently process personal data We collect about you with your consent on the following legal basis, and for the purposes identified below:
a) To register you for a particular course and communicate regarding training sessions: Your information helps us keep you posted on your training schedules and communicate with you regarding your training requirements, exam results and feedback.
b) To create documents which are required for our courses such as attendance lists, statements, diplomas accredited by the Dutch Authority for Radiation and/or provide you with personal certification by ISO9712.
c) To provide course information: We shall use your personal data to respond to your queries, understand training needs as relevant to training services.
d) To contact you: Your information may be used to contact you in response to your request or to provide you with information that we think you may be interested in receiving. We will honor your request if you inform us that you do not want to receive any information that you have not specifically requested.
e) For any other purpose disclosed to you at the time you provide Us with your personal data, to the extent that you have granted Us your prior consent to that particular processing. For example, We will obtain your consent to collect and use certain types of personal data when we are required to do so by law (e.g. in relation to our direct marketing activities, Cookies and Tracking Technologies, or when We process sensitive personal data);
3. What rights do you have over your Personal Data
You have certain rights regarding your personal data, subject to local law.
In particular, you are entitled to receive confirmation from Applus+ acknowledging whether or not it is processing your personal data and, where applicable, to request access to the personal data and also to certain information about the processing (e.g. purposes, categories of the personal data subject to processing and recipients etc.) (right to access).
You are also entitled to request the rectification of inaccurate personal data (right to rectification) and the erasure of your personal data when, among other reasons, they are no longer necessary for the purposes for which they were collected (right to erasure). In specific cases (e.g. if the data subject challenges the accuracy of the personal data, while this is being checked), you can request a restriction on the processing of your personal data, which can only be processed to file or defend claims (right to restriction of processing). Finally, you can also exercise the right to data portability, i.e. receive the personal data in a structured, commonly used and machine-readable format, and the right to transmit such data to another controller without hindrance from the controller to which the personal data have been provided where legally permitted for such purposes (right to data portability).
In addition to the aforementioned rights, you are also entitled to withdraw the consent you may have granted to a specific processing, at any time, as well as to object, for reasons related to your particular situation, to our processing of your personal data based on our legitimate interests or those of a third party, in which case We will cease in processing your personal data unless We are able to rely on legitimate reasons to do so.
We encourage you to contact us to update or correct your information as soon as it changes, or if the personal data We hold about you is inaccurate. We will make sure to reach out to you should we need additional information from you in order to honor any of the requests described in this Section.
Applus+ is committed to protecting your personal data as described in this Privacy Policy, and as required by applicable laws. Should you have any queries or intention of requesting additional information on how to exercise your rights, feel free to contact Us on the information given in article 8. In order to protect your privacy and the confidentiality and security of your personal data, we ask you to provide a copy of a valid identity document with your request, showing only your name and to black-out all other details.
4. How do we share your Personal Data and with whom
Applus+ will be able to share your personal data with third parties under the following circumstances:
a) ISO9712 Certification body. We will share your personal data with ISO9712 certification body: ‘Hobéon SKO’ for you to be able to obtain a ISO9712 examination and certification.
b) Examiners and examination boards. Personal data will be made available to examiners and examination boards if necessary. They will have access to your details in order to make decisions about examination participation and the eligibility for certification.
c) E-learning platforms. We will be able to share your e-mail address with E-learning platforms aNewSpring and/or Moodle to give you the best learning experience.
Before any access is granted to the above third parties, We enter into a written agreement which requires them to refrain from making any further unauthorized disclosures of the personal data, to use the personal data only for the purposes of providing the specific services and according to the instructions received from Applus+, to only retain the personal data as required to fulfill such purposes of protecting our interests, and to have in place adequate and appropriate security measures.
We use and subsequently process personal data We collect about you with your consent on the following legal basis, and for the purposes identified below:
a) To register you for a particular course and communicate regarding training sessions: Your information helps us keep you posted on your training schedules and communicate with you regarding your training requirements, exam results and feedback.
b) To create documents which are required for our courses such as attendance lists, statements, diplomas accredited by the Dutch Authority for Radiation and/or provide you with personal certification by ISO9712.
c) To provide course information: We shall use your personal data to respond to your queries, understand training needs as relevant to training services.
d) To contact you: Your information may be used to contact you in response to your request or to provide you with information that we think you may be interested in receiving. We will honor your request if you inform us that you do not want to receive any information that you have not specifically requested.
e) For any other purpose disclosed to you at the time you provide Us with your personal data, to the extent that you have granted Us your prior consent to that particular processing. For example, We will obtain your consent to collect and use certain types of personal data when we are required to do so by law (e.g. in relation to our direct marketing activities, Cookies and Tracking Technologies, or when We process sensitive personal data);
3. What rights do you have over your Personal Data
You have certain rights regarding your personal data, subject to local law.
In particular, you are entitled to receive confirmation from Applus+ acknowledging whether or not it is processing your personal data and, where applicable, to request access to the personal data and also to certain information about the processing (e.g. purposes, categories of the personal data subject to processing and recipients etc.) (right to access).
You are also entitled to request the rectification of inaccurate personal data (right to rectification) and the erasure of your personal data when, among other reasons, they are no longer necessary for the purposes for which they were collected (right to erasure). In specific cases (e.g. if the data subject challenges the accuracy of the personal data, while this is being checked), you can request a restriction on the processing of your personal data, which can only be processed to file or defend claims (right to restriction of processing). Finally, you can also exercise the right to data portability, i.e. receive the personal data in a structured, commonly used and machine-readable format, and the right to transmit such data to another controller without hindrance from the controller to which the personal data have been provided where legally permitted for such purposes (right to data portability).
In addition to the aforementioned rights, you are also entitled to withdraw the consent you may have granted to a specific processing, at any time, as well as to object, for reasons related to your particular situation, to our processing of your personal data based on our legitimate interests or those of a third party, in which case We will cease in processing your personal data unless We are able to rely on legitimate reasons to do so.
We encourage you to contact us to update or correct your information as soon as it changes, or if the personal data We hold about you is inaccurate. We will make sure to reach out to you should we need additional information from you in order to honor any of the requests described in this Section.
Applus+ is committed to protecting your personal data as described in this Privacy Policy, and as required by applicable laws. Should you have any queries or intention of requesting additional information on how to exercise your rights, feel free to contact Us on the information given in article 8. In order to protect your privacy and the confidentiality and security of your personal data, we ask you to provide a copy of a valid identity document with your request, showing only your name and to black-out all other details.
4. How do we share your Personal Data and with whom
Applus+ will be able to share your personal data with third parties under the following circumstances:
a) ISO9712 Certification body. We will share your personal data with ISO9712 certification body: ‘Hobéon SKO’ for you to be able to obtain a ISO9712 examination and certification.
b) Examiners and examination boards. Personal data will be made available to examiners and examination boards if necessary. They will have access to your details in order to make decisions about examination participation and the eligibility for certification.
c) E-learning platforms. We will be able to share your e-mail address with E-learning platforms aNewSpring and/or Moodle to give you the best learning experience.
Before any access is granted to the above third parties, We enter into a written agreement which requires them to refrain from making any further unauthorized disclosures of the personal data, to use the personal data only for the purposes of providing the specific services and according to the instructions received from Applus+, to only retain the personal data as required to fulfill such purposes of protecting our interests, and to have in place adequate and appropriate security measures.
Applus+ Group companies. Applus+ works closely with other business partners and companies that fall under the Applus Group. We might share certain information:
I. Related to your query or suggestion with other Applus group companies to respond to it adequately;
II. To contact you with electronic newsletters and/or promotional e-mails relating to products and services offered by Us and/or other members of Applus Group, as well as about events and news related to our activities (testing, inspection, engineering, certification and related services), through post, e-mail, mobile apps or other electronic equivalent means; and A list of companies within the Applus group is available at: www.applus.com/appluscompanies.
Law enforcement agency, court, regulator, government authority or other third party with compelling authority. We will be able to share your personal data with these parties where we believe this is necessary to comply with a legal or regulatory obligation or otherwise to protect our rights or the rights of any third party.
Because We operate as part of a global business, the recipients referred to above can be located outside the jurisdiction in which you are located (or in which we provide the services), including third countries outside the European Union ("EU") that are not regarded as providing an adequate level of protection of the personal data. Please refer to the "International Data Transfer" section below for more information.
5. How do we protect your Personal Data
We implement technical and organizational measures to ensure a level of security appropriate to the risk to the personal data we process. These measures are aimed at ensuring the on-going integrity and confidentiality of personal data. We evaluate these measures on a regular basis to ensure the security of the processing.
6. For how long do we store your Personal Data
We will keep your personal data for as long as We have a relationship with you. Once our relationship with you has come to an end, We will retain your personal data for a period of time that enables Us to: a. Maintain business records for analysis and/or audit purposes; b. Comply with record retention requirements under the law or required by International Standards; c. Defend or bring any existing or potential legal claims; d. Deal with any complaints regarding the services.
We will delete your personal data when it is no longer required for these purposes. If there is any information that we are unable, for technical reasons, to delete entirely from our systems, We will put in place appropriate measures to prevent any further processing or use of the data.
I. Related to your query or suggestion with other Applus group companies to respond to it adequately;
II. To contact you with electronic newsletters and/or promotional e-mails relating to products and services offered by Us and/or other members of Applus Group, as well as about events and news related to our activities (testing, inspection, engineering, certification and related services), through post, e-mail, mobile apps or other electronic equivalent means; and A list of companies within the Applus group is available at: www.applus.com/appluscompanies.
Law enforcement agency, court, regulator, government authority or other third party with compelling authority. We will be able to share your personal data with these parties where we believe this is necessary to comply with a legal or regulatory obligation or otherwise to protect our rights or the rights of any third party.
Because We operate as part of a global business, the recipients referred to above can be located outside the jurisdiction in which you are located (or in which we provide the services), including third countries outside the European Union ("EU") that are not regarded as providing an adequate level of protection of the personal data. Please refer to the "International Data Transfer" section below for more information.
5. How do we protect your Personal Data
We implement technical and organizational measures to ensure a level of security appropriate to the risk to the personal data we process. These measures are aimed at ensuring the on-going integrity and confidentiality of personal data. We evaluate these measures on a regular basis to ensure the security of the processing.
6. For how long do we store your Personal Data
We will keep your personal data for as long as We have a relationship with you. Once our relationship with you has come to an end, We will retain your personal data for a period of time that enables Us to: a. Maintain business records for analysis and/or audit purposes; b. Comply with record retention requirements under the law or required by International Standards; c. Defend or bring any existing or potential legal claims; d. Deal with any complaints regarding the services.
We will delete your personal data when it is no longer required for these purposes. If there is any information that we are unable, for technical reasons, to delete entirely from our systems, We will put in place appropriate measures to prevent any further processing or use of the data.
7. International Data Transfers
Your personal data will be transferred to, stored, and processed in a country that is not regarded as ensuring an adequate level of protection for personal data under European Union law. We have put in place appropriate safeguards (such as contractual commitments) in accordance with applicable legal requirements to ensure that your data is adequately protected, on the basis of the relevant sets of standard contractual clauses approved by the European Commission available for consultation at https://ec.europa.eu/info/law/law- topic/data-protection/data-transfers-outsideeu/model-contracts-transfer-personal-data-third- countries_en. For more information on the appropriate safeguards in place, please contact us at the details below.
8. Contact Us
Applus+ is the data controller in respect of the personal data we collect and process. If you have questions or concerns regarding the way in which your personal data has been used, please contact dataprivacy@applus.com. In order to protect your privacy and the confidentiality and security of your personal data, we ask you to provide a copy of a valid identity document with your request, showing only your name and to black-out all other details.
We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If, however, you believe that We have not been able to assist with your complaint or concern, you have the right to make a complaint to the data protection authority of the Netherlands using their website: https://autoriteitpersoonsgegevens.nl/en.
9. Changes to this Privacy Policy
You are entitled to request a copy of this Privacy Policy from us using the contact details set out above. This Privacy Policy will be subject to changes, as deemed necessary from time to time.
If We change this Privacy Policy, We will notify you of the changes. Where changes to the Privacy Policy will have a fundamental impact on the nature of the processing or otherwise have a substantial impact on you, We will give you sufficient advance notice so that you have the opportunity to exercise your rights (e.g. among other, to object to the processing). Moreover, and to the extent that Applus+ relies on consent for the performance of any of its processing activities, We will make sure to request your consent where the aforementioned changes may have a substantial impact on the relevant processing before these changes are made effective.
[MAY 25th 2018]
Your personal data will be transferred to, stored, and processed in a country that is not regarded as ensuring an adequate level of protection for personal data under European Union law. We have put in place appropriate safeguards (such as contractual commitments) in accordance with applicable legal requirements to ensure that your data is adequately protected, on the basis of the relevant sets of standard contractual clauses approved by the European Commission available for consultation at https://ec.europa.eu/info/law/law- topic/data-protection/data-transfers-outsideeu/model-contracts-transfer-personal-data-third- countries_en. For more information on the appropriate safeguards in place, please contact us at the details below.
8. Contact Us
Applus+ is the data controller in respect of the personal data we collect and process. If you have questions or concerns regarding the way in which your personal data has been used, please contact dataprivacy@applus.com. In order to protect your privacy and the confidentiality and security of your personal data, we ask you to provide a copy of a valid identity document with your request, showing only your name and to black-out all other details.
We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If, however, you believe that We have not been able to assist with your complaint or concern, you have the right to make a complaint to the data protection authority of the Netherlands using their website: https://autoriteitpersoonsgegevens.nl/en.
9. Changes to this Privacy Policy
You are entitled to request a copy of this Privacy Policy from us using the contact details set out above. This Privacy Policy will be subject to changes, as deemed necessary from time to time.
If We change this Privacy Policy, We will notify you of the changes. Where changes to the Privacy Policy will have a fundamental impact on the nature of the processing or otherwise have a substantial impact on you, We will give you sufficient advance notice so that you have the opportunity to exercise your rights (e.g. among other, to object to the processing). Moreover, and to the extent that Applus+ relies on consent for the performance of any of its processing activities, We will make sure to request your consent where the aforementioned changes may have a substantial impact on the relevant processing before these changes are made effective.
[MAY 25th 2018]