Privacy declaration
Introduction
- This is the privacy statement of the webshop “AfterSurgery”, a trade name of the private company Nobel Zorgadvies.
Postal and business address: Ambachtsweg 85, 2641 KW, Pijnacker, Netherlands
Chamber of Commerce number: 8605554
Email address: info@aftersurgery.nl
The website: https://www.aftersurgery.nl
Phone number: 015 - 2024501
- This privacy statement is available on our website and can be downloaded.
- AfterSurgery attaches great importance to privacy and therefore considers it very important that the personal data collected and processed by AfterSurgery is protected as best as possible.
In this privacy statement we would like to explain which personal data we collect from you through our contacts with you and through our services and products. We also explain how we collect the data, what we use the personal data for, with whom we share the personal data, how long we keep personal data, how you can view and adjust the personal data we store, how your personal data is secured with us. and which cookies we use.
How do we receive and collect personal data?
You actively provide certain personal data to us, for example by creating a customer account on our website, in correspondence and by telephone. Some personal data is collected automatically and other personal data we receive from external sources.
The table below shows how we receive and collect personal data.
Which categories of personal data do we process and what is the purpose of that processing?
In addition to business data (such as company name, address, postal code, location, Chamber of Commerce number, company telephone number, bank details), we collect and process various personal data for various purposes.
The table below indicates which categories of data are processed by us and for what purpose.
How does the data arrive at AfterSurgery? |
That data is from: |
Categories of Personal Data: |
Purpose of the processing: |
By visiting our website |
Website visitors or customer |
IP address |
To inform you about our products, to offer you the opportunity to order our products and/or to create a customer account, to download information. |
By placing an order on our website |
Customer |
First name, last name, email address, delivery address |
To deliver the ordered products to you, execute the purchase agreement, process payment, process your order and inform you about its progress. |
By creating a customer account |
Customer |
Name, e-mail address, delivery address, telephone number, overview of ordered products |
To register and save orders, in order to be able to place subsequent orders more quickly. |
Download buttons on our website |
website visitors |
Name, email address |
To send you a download if you have requested one via our website. |
Via the contact form on our website, or by telephone, e-mail or correspondence |
everyone |
Name, (mobile) telephone number, e-mail address (optional: address) |
To respond to you when you submit a request, inquiry or complaint to us. |
If you are logged in to a third-party service (such as Meta or Google) and you visit our website |
Website visitor |
The published information you provide |
For a link to the information you want to share. |
If you leave a review on the website |
Website visitor |
Name and email address (email address will not be published) |
To be able to post the review and to inform you about it. |
If you subscribe to our newsletter |
Website visitor |
Name and email address |
To send you the newsletter with discount promotions. |
When redeeming a value coupon or discount code |
Everyone |
Name and email address |
To allow you to take advantage of the discount on the order offered by AfterSurgery. |
If you opt for payment afterwards or in installments via Klarna |
Customer |
First name, Last name, date of birth, salutation, gender and telephone number |
This allows Klarna to assess whether you are eligible for their payment methods and to apply those payment methods. |
Special personal data.
- Our website and/or service does not intend to collect data about website visitors who are younger than 16 years of age, without their permission from parents or guardians.
- However, we cannot check whether a visitor is older than 16. We therefore recommend that parents be involved in their children's online activities to prevent data about children from being collected without parental consent.
- If you are convinced that we have collected personal data about a minor without this consent, please contact us at the contact address above and we will delete this information.
- In some cases we also need to process data about your physical characteristics and clothing sizes so that we can deliver the correct product. You then provide the details yourself when ordering. If you choose to provide this personal data to AfterSurgery and/or its suppliers, this is always on the basis of your explicit consent. You can always withdraw your consent afterwards.
Cookies
- We use cookies and trackers. Cookies are small files that our website places on the equipment (for example computer, tablet or telephone) of a website visitor. This allows us to recognize you (and/or your computer) on your next visit.
- Cookies can be used to collect or store information about the website visit or about (the device of) the website visitor. We also record information for the purpose of compiling usage statistics and for the security of our website.
- We use the data collected through cookies and trackers to get a better picture of our customers and to develop and adapt our services and website to your personal preferences.
- We use the web analysis service Google Analytics and Meta Pixel Analytics. This service uses cookies to help us analyze how visitors use the website. This means that we use the software, in combination with the cookie, to keep track of how many visitors the website receives and which pages are viewed the most. This allows us to improve the content and quality of our website.
- We have taken measures to protect your privacy in the context of the use of Google Analytics. For example, we have concluded a processing agreement with Google. We have agreed, among other things, that it will only use the collected information and statistics for the benefit of the website and not for Google's own purposes. In addition, we have set the software so that the last part of your IP address is deleted before the IP address is stored by Google. This further limits the risks to your privacy.
- In order to make optimal use of the functionalities of our website, we advise you to program your internet browser in such a way that it accepts cookies.
- We ask you in advance to give us permission to place cookies.
- Placed cookies can be deleted immediately after your visit to our website. Consult the privacy or settings menu of your internet browser.
- By disabling or refusing cookies you may not be able to use all the features of our website.
Newsletters
- If you subscribe to our newsletters, you explicitly consent to the collection of your data.
- Each newsletter indicates how you can unsubscribe.
Reviews
WebwinkelKeur
We collect reviews via the WebwinkelKeur platform. If you leave a review via WebwinkelKeur, you are required to provide your name, place of residence and email address. WebwinkelKeur shares this information with us so that we can link the review to your order. WebwinkelKeur also publishes your name and place of residence on its own website. In some cases, WebwinkelKeur may contact you to provide an explanation of your review. In the event that we invite you to leave a review, we will share your name and email address with WebwinkelKeur. They only use this information for the purpose of inviting you to leave a review. WebwinkelKeur has taken appropriate technical and organizational measures to protect your personal data. WebwinkelKeur reserves the right to engage third parties to provide services, and we have given WebwinkelKeur permission to do so. All the above-mentioned guarantees with regard to the protection of your personal data also apply to the parts of the services for which WebwinkelKeur engages third parties.
Provision to/by third parties.
With whom can personal data be shared?
- We only provide your data to third parties if this is necessary for the execution of our agreement or to comply with a legal obligation.
- We have entered into a processing agreement with companies that process your data on behalf of AfterSurgery to ensure the same level of security and confidentiality of personal data. We record these processing agreements in our processing register. We remain responsible for the processing of the personal data provided.
- We use external marketing parties for marketing purposes. We only accept data that has been demonstrably obtained by them after explicit consent from the person concerned.
- Personal data may be passed on to:
- the suppliers contracted by us who deliver the products you order;
- the other companies contracted by us: marketing company, IT company, parcel delivery service, e-mail service provider and external payment service;
- social media companies, such as Meta (if you use them).
- email service provider and third party payment services.
- Payments on our website are made via an external payment service and with a secure link. The data you enter for payment will therefore not be visible or visible on our servers. We only receive a positive or negative message whether the payment was successful. We refer you to the website of that external payment service for their own privacy statement.
Basis for the processing.
- We may only process personal data if there is a legal basis. Which basis applies depends on the data we use and what we use it for.
- We have stated the applicable basis(s) for each of the processing operations in our processing register.
- There is always at least one of these situations:
- The use of the data is necessary for the execution of an agreement. This may be an agreement between you and AfterSurgery and/or our suppliers or to be able to do something at your request to conclude an agreement.
- There is permission to use the data. We have then expressly asked you for permission.
- There is a legal obligation to use the data.
- The use of the data is necessary for the representation of a legitimate interest.
Transfer of personal data to countries outside the EEA.
- In principle, we do not transfer personal data outside the Netherlands or the European Economic Area (EEA). All AfterSurgery suppliers are based in the EEA.
- If we do transfer personal data outside the Netherlands, we will only do so to the extent permitted by law. This means, for example, that we require those processors to provide an adequate level of protection and to implement the European standard contractual clauses.
- For technical and operational reasons, it may be necessary for your personal data to be transferred (to servers of) to other countries where privacy regulations may provide less protection than in the European Economic Area (EEA). Even in that case, we will always take appropriate measures to ensure that your personal data is protected as best as possible.
- In order to offer you Klarna's payment methods, we must pass your personal details (contact and order details) to Klarna Bank AB (publ), Stockholm, Sweden at checkout. Your transferred personal data will then be processed in accordance with Klarna's own privacy statement which can be found on the Klarna website.
Rights of data subjects.
- European privacy legislation gives its citizens certain rights with regard to their personal data. If you are located in Europe, you can ask us to take the following actions in relation to the personal data we hold about you:
- Inspection. To provide you with information about our processing of your personal data and to give you access to your personal data.
- Correctness. Update or correct inaccuracies in your personal data.
- Delete. Delete your personal data. Deletion of personal data may only be possible if that data is no longer relevant. In response to a request for deletion, we will weigh our interests and your privacy interests. In the event of a deletion decision, we will inform you to what extent this limits or prevents the use you make of our services.
- Transfer. Transfer a machine-readable copy of your personal data to you or to a third party of your choice.
- Restrict. Restrict the processing of your personal data.
- Objection or withdrawal. To object to our reliance on our legitimate interests as a basis for our processing of your personal data that affects your rights. In addition, you have the right to withdraw your consent to data processing.
- You can submit these requests using the contact details above. We will respond to your request as quickly as possible, but within four weeks. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to deny your request. If we deny your request, we will tell you why, subject to legal restrictions.
- You can always view your own data and personal settings and change them if necessary by logging in to your customer account.
Retention periods
- We will not store your personal data for longer than is strictly necessary to achieve the purposes for which your data is collected or for as long as this is required by law.
- The retention periods we use are recorded in our internal privacy policy. Some parts of this are:
- in the case of a completed order: until the warranty period expires, with a maximum of 24 months after the order;
- in the case of a customer account: until the customer cancels the account or the account has otherwise expired. Inactive customer accounts will be deleted 24 months after the last action.
- After the retention period has expired, we will delete your data or make your data anonymous. If we make your data anonymous, we will delete all data that refers to you. The data can no longer be linked to you. The anonymous data helps us get a better picture of our products and services.
Bulletin
- We store personal data in, among others, the following databases:
- a cloud storage;
- a CMS.
- This list of the most important databases is based on the situation at the time this privacy statement was drawn up and may change in the meantime.
Security
- We take the protection of personal data seriously and take appropriate measures to prevent misuse, loss, unauthorized access, unwanted disclosure and unauthorized modification.
2. Our website is secured with SSL and we ensure that the comprehensive virus protection is always up to date.
3. Our employees have a confidentiality clause in their contracts. We also invest in the awareness of our employees in the field of information security and data privacy.
4. We have made clear agreements with our suppliers about the protection and confidentiality of personal data.
5. If you feel that your data is not properly secured or there are indications of misuse, please contact us at the contact address above.
Externe links en social media.
- Our website contains links to other external websites. We cannot be responsible for the content of those websites and the way in which your personal data is handled there.
- We make every effort to keep the external links up to date and to refer to the correct websites.
- Our websites may contain buttons and links from social media providers, such as Facebook, YouTube or Instagram.
- Our privacy statement does not apply to these social media channels. The use of social media is your own responsibility.
- We recommend that you read the privacy rules of the associated companies carefully, so that you know what happens to your data.
- Many social media providers are located outside the EEA and store personal data there. As a result, personal data may not be protected at the same level as we are used to within the EEA.
- If we have a page on one of the social media channels (such as on Facebook), our privacy statement does apply to the content of that page.
Questions and complaints
- If you have any questions about this privacy statement or about (the exercise of) your rights, you can contact us at the contact address above.
- If you have complaints about how we handle privacy, you have the right to file a complaint with the Dutch Data Protection Authority. For the Netherlands this is: Dutch Data Protection Authority, PO Box 93374, 2509 AJ The Hague.
- In that case, we ask you to contact us first. We will of course do everything within reason to reach an agreement with you.
Changes to our privacy statement
- From time to time it may be necessary to adapt our privacy statement to current events and new insights into data protection.
- We will notify you of any such changes in a timely and reasonable manner. Changes will be announced on our website.
- Using our services means that you accept our privacy statement.
- We recommend that you read the most recently updated version of our privacy statement.
E-mail and mailing lists
Shopify: Our website uses Shopify, a third party that handles e-mail traffic from our website and the sending of any newsletters. All confirmation emails you receive from our website and web forms are sent via Shopify's servers. Shopify will never use your name and email address for its own purposes. At the bottom of every email sent automatically via our website you will see the 'unsubscribe' link. If you click here you will no longer receive emails from our website. This can seriously reduce the functionality of our website! Your personal data is stored securely by Shopify. Shopify uses cookies and other internet technologies that provide insight into whether emails are opened and read. Shopify reserves the right to use your data to further improve its services and to share information with third parties in this context.
Shopify Mail
We use the services of Shopify Mail for our regular business email traffic. This party has taken appropriate technical and organizational measures to prevent misuse, loss and corruption of your and our data as much as possible. Shopify Mail does not have access to our mailbox and we treat all our email traffic confidentially.
Payment processors
Shopify Payments: We use the Shopify Payments platform to process (part of) the payments in our online store. Shopify Payments processes your name, address and place of residence details and your payment details such as your bank account or credit card number. Shopify Payments has taken appropriate technical and organizational measures to protect your personal data. Shopify Payments reserves the right to use your data to further improve its services and to share (anonymized) data with third parties. Shopify Payments shares personal data and information regarding your financial position with credit rating agencies in the event of a request for a deferred payment (credit facility). All the above-mentioned guarantees with regard to the protection of your personal data also apply to the parts of Shopify Payments's services for which they engage third parties. Shopify Payments does not store your data for longer than permitted by legal terms.
Shipping and logistics
When you place an order with us, it is our job to have your package delivered to you. We use the services of DPD, DHL and GLS to carry out deliveries. It is necessary for us to share your name, address and residence details with these carriers. They only use this information for the purpose of executing the agreement. If it engages subcontractors, it will also make your data available to these parties.
This privacy statement was last changed on: 17.09.'23.