Privacy Statement

1. Introduction

NDLCA (“we”, “our”, “us”) is committed to protecting and respecting your privacy. This privacy statement explains how we collect, use, share, and protect your personal data when you visit our website ndlca.com and use our services.

2. Business Information

  • Business Name: NDLCA
  • Physical Address: Mt. Lincolnweg 22, 1033 SN Amsterdam
  • Website: ndlca.com
  • Contact Person for Privacy-Related Issues: Youri Hermes
    • Email: y o u r i @ n d l c a . c o m
    • Phone: + 3 1 (0) 6 2 2 5 8 1 4 2 1

3. Data Collection

We collect the following types of personal data:

  • Name
  • Email address
  • IP address

4. Methods of Data Collection

We collect personal data through:

  • Website forms
  • Cookies

5. Types of Data Collected

We do not collect any sensitive personal data.

6. Purpose and Legal Basis for Processing

We process personal data for the following purposes:

  • Marketing
  • Providing services

The legal bases for processing are:

  • Legitimate interests
  • Performance of a contract
  • Consent

7. Data Sharing

We share personal data with the following third-party service providers for the purposes mentioned:

  • Mailchimp: To manage and send marketing emails and newsletters.
  • Calendly: To schedule appointments and manage bookings.
  • LearnDash: To manage and deliver online courses.
  • Stripe: To process payments securely.
  • Burst Statistics WordPress Plugin: To analyze website traffic and user behavior.
  • QSM (Quiz And Survey Master): To create and manage quizzes and surveys for user engagement and feedback collection.
  • Restrict Content Pro: To manage content restriction and membership subscriptions on the website.

8. Data Storage and Security

We use reputable third-party services to store personal data, which implement various security measures such as encryption, access controls, regular security audits, firewalls, antivirus protection, secure passwords, and regular data backup procedures.

9. Data Retention

We retain personal data for varying periods depending on the nature of the data and the purpose for which it is processed:

  • Customer data: As long as the customer relationship is active and as needed to comply with legal obligations or resolve disputes.
  • Marketing data: Until the individual opts out of receiving marketing communications.
  • Transaction data: For the period required by tax and accounting laws.

Retention periods are determined based on legal requirements, business needs, and user preferences.

10. Data Subject Rights

Individuals can exercise their rights under the GDPR by sending an email to y o u r i @ n d l c a . c o m. These rights include:

  • Access
  • Rectification
  • Deletion
  • Objection
  • Restriction
  • Data portability

Upon receiving a request, we will:

  1. Acknowledge receipt and verify the identity of the individual.
  2. Review the request and gather the necessary information.
  3. Respond within one month, or inform the individual of an extension if needed.

If individuals are unsatisfied with our response, they have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

11. Cookies and Tracking Technologies

We use the following types of cookies for the specified purposes:

  • Essential Cookies: Necessary for the website to function properly, such as maintaining session state and security.
  • Performance Cookies: Used to collect information about how visitors use the website, such as tracking page visits and user interactions to improve the website.
  • Functional Cookies: Enable the website to remember user preferences and settings, such as language preferences or login details.

12. International Data Transfers

We may transfer personal data outside the European Economic Area (EEA) when using third-party service providers. These providers may store data on servers located outside the EEA. To ensure the protection of personal data, we rely on safeguards such as Standard Contractual Clauses (SCCs) and other legally compliant mechanisms provided by our service providers.

13. Children’s Privacy

We do not specifically target our services to children under the age of 16. However, if individuals under 16 use our services, we take special care to protect their personal data. If we become aware that we have inadvertently collected personal data from a child under the age of 16 without parental consent, we will take steps to delete it as soon as possible. If you believe that we may have collected personal data from a child under the age of 16, please contact us at y o u r i @ n d l c a . c o m so we can address the issue promptly.

14. Changes to the Privacy Statement

We may update this privacy statement from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. When we make changes, we will post the updated notice on our website with the date of the latest revision. For significant changes, we will also notify users directly via email. We encourage users to review this privacy statement periodically to stay informed about how we are protecting their information.