Last Updated Date: April 23, 2020
The GDPR defines ‘Personal Data’ as any information relating to an identified or identifiable natural person (a ‘Data Subject’, ‘you’, ‘your’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
From the 25th May 2018, the GDPR (defined below), as amended or updated from time to time, comes into force. We wish to ensure that we are compliant with our role as set out under the GDPR and as such this policy and the protocols it outlines are the principles which demonstrate our commitment regarding the collection, processing, transfer, storage, and disposal of your Personal Data. The protocols outlined here are followed at all times by the Company, its employees, agents, contractors, or other parties working on our behalf.
METCHA is committed not only to the letter of the law, but also to the spirit of the law and we place a high importance on the correct, lawful, and fair handling of all Personal Data.
1. Data Controller
For the purpose of the General Data Protection Regulation 2016/679 and any implementing legislation (the "GDPR"), Vereniging Leather Naturally, a body corporate doing business in Amsterdam, Netherlands (referred to as “METCHA”, “we”, “us”, or “our”) will be the data controller responsible for any personal data we process.
2. Data Protection Officer (DPO)
We have appointed a DPO for purposes of the GDPR. The contact details for our DPO is as follows:
By email: email@example.com
3. WHAT PERSONAL DATA DO WE COLLECT AND WHY
We may obtain your personal data from our website in the following manners:
3.1. from you directly (for example, at the time of subscribing to any services offered on our website, including but not limited to email mailing lists, entering into a raffle; and/or
3.2. from your device or browser.
If you contact us, we may keep a record of that correspondence.
B. Personal data that we collect and process
We collect the following categories of personal data relating to our website:
- 1. operating system;
- 2. browser type;
- 3. IP address;
- 4. information on the use of our website (for example, pages visited, scroll position, cursor position, clicks on links an buttons, geographical location, time spent on the website);
- 5. cookie data (through third parties – for more information please see our Cookie Notice);
C. Reasons to collect data
We may use your personal data to:
1. Establish and manage our relationship through email marketing campaigns. Where we use your email to communicate marketing information to you we will seek your prior consent where required to do so by law
2. Learn about our websites(s) users’ browsing patterns and the performance of our website(s). In that sense, METCHA can manage and update metcha.com to give a better experience to our audience.
3. Learn about our marketing and advertising campaign performance. Understanding the market in which we operate, what kind of content and campaigns our audience is most interested in.
D. How long do we keep your personal data?
We will retain your personal data only for as long as is necessary for the purposes for which it was collected in connection with the provision of our services to you, unless we have a legal right or obligation to retain the data for a longer period, or the data is necessary for the establishment, exercise or defence of legal claims.
Third parties such as Facebook Pixel, Hotjar and Google Analytics may hold cookies that are stored on their own servers. We do not have access to any data Google, Hotjar or Facebook may collect, such as IP address, gender or age tracking.
Google Analytics, Hotjar and Facebook Pixel extensions that are used by this website are used to analyze general usage data of our platform, never to analyze or retain personal and/or individual data, this data isn't stored on our servers.
To get access to the data we send to Google, Hotjar or Facebook, open the console of your browser to watch it on real time.
We cannot provide the data shared with Google, Hotjar or Facebook since we do not store the data in our database.
5. Your Rights
You are entitled to obtain information from us on how we handle your personal data, to see copies of all personal data held by us and to request that your personal data is amended, corrected or deleted from our systems. You can also limit, restrict or object to the processing of your data. Where you have provided information to us in a machine readable format, you have the right to request we transmit this information back to you or to another organisation.
If you gave us your consent to use your data, e.g. so that we can send you marketing emails, you can withdraw your consent at any time. Please note that even if you withdraw your consent, we can still rely on the consent you gave as the lawful basis for processing your personal data before you withdraw your consent.
You can object to our use of your personal data where we stated we rely on our legitimate business interests to do so. If you would like to exercise any of your above rights, contact us using the contact details in section 2 above.
Any inquiries about your rights under this GDPR, or any other matters regarding your privacy, can be directed to firstname.lastname@example.org. You have the right to request access to and/or correction of your personal data held by us. If you wish to make such request, please contact us by email marking “Attention: Personal Data Access / Correction Request” on your correspondence.