Principles 

To provide more insight into how we handle personal data, the Service has created a privacy policy. This provides frameworks for ourselves and for organizations with which we work. In the privacy policy, we have formulated the following principles, among others: 

• Personal data we process

  We process personal data that you provide to us because you use our website, services and/or products. For example, we process your name, address and residence details, your email address and telephone number. We need this data to be able to contact you. We process your data only in relation to the purpose for which we requested/received the data. After that, they will be destroyed. 

  For specific services and/or products concerning the social domain, the Service may ask for special and/or sensitive personal data from you. Think for example of medical and/or financial data. 

  Are you applying for a vacancy? Then, in addition to the previously mentioned data, we process gender, date of birth, education, availability, CV and your motivation. Would you like to know more? Then please refer to our privacy statement for job applicants.

• Purpose of processing your data 

  To protect your privacy, only you may view your records. A guardian or mentor, representative or advocate, who has been authorized by you in writing, may also view your data. It must be clear that they are acting in your best interests. Your partner or other family members may not view your information unless you authorize them to do so. You do this by giving them written authorization.

• Further processing 

  Sometimes the Service must or may use your personal data for purposes other than those for which the personal data was initially collected. This is only possible when it fits the original purpose. When in doubt about the legality of this, the Service first performs a kind of risk analysis, called a Data Protection Impact Assessment (DPIA).

  For example, the Service uses (personal) data to investigate whether the Service's policies are working well. We do this to make new policy and to monitor the quality of the policy. To investigate this, we sometimes need to combine data. The results of such research are always anonymous.

• Informing you about the processing of personal data 

  We try whenever possible to inform data subjects in advance, such as through this privacy statement for example, in simple and clear language about the use of personal data. Unfortunately, this is not always possible and we inform you afterwards. This can be the case, for example, in enforcement tasks, performed by an extraordinary investigating officer (boa).

• Retention period of personal data by Dommelvallei Service 

  The Service processes a lot of information. That information is important for the Service itself, but also to show why the Service does certain things. This is necessary for public accountability, legal discovery and from a cultural-historical point of view. Therefore, there are rules to ensure that government organizations properly preserve their information. Those rules are contained in the Archives Act and the rules are elaborated for municipalities in the so-called VNG selection list. This states exactly how long local governments retain different types of information. After that period, the Service is obliged to destroy the information. 

  How long information is kept depends on the type of information. And whether the information has been used in litigation, for example. We do not keep your personal data longer than necessary to realize the purposes for which your data are collected. We apply the retention period(s), as imposed on us by laws and regulations. 

• Dealing with privacy-sensitive information by employees Dommelvallei Service 

  We handle personal data with restraint and care. We also ensure that personal data is correct and up-to-date. Personal data is only processed by employees with a duty of confidentiality. Furthermore, we ensure appropriate security, which is laid down in the information security policy.

• Disclosure of your information to third parties 

  We share personal data internally and externally only to the extent strictly necessary for the performance of legal duties. We conclude a processing agreement with organizations, which process your data in the name of or on behalf of us. We do this to ensure the same level of security and confidentiality of your data. The Service remains at all times responsible for processing personal data that takes place on our behalf. 

  We provide your personal data to third parties only if we are legally obliged to do so or with your express, prior consent. You can withdraw consent for a particular processing of your personal data at any time. From the moment of withdrawal, we will then no longer share your data with the third party in question.

Data subjects' rights: view, modify or delete data 

You have the right to inspect, amend or have your personal data deleted. To this end, you can send a request for inspection, modification or deletion to the Data Protection Officer (FG) of the Service, via the general telephone number 088 - 163 10 00 or via e-mail address fg@dienstdommelvallei.nl. 

To make sure that the request for inspection was made by you, we need to establish your identity. This, in order to protect your privacy. We will respond to your request as soon as possible, but no later than one month.

You can also contact the FG if you have questions about the Service's use of your personal data. For more information on privacy, please visit the website of the Personal Data Authority (AP). 

• Viewing your data 

  To protect your privacy, only you may view your records. A guardian or mentor, representative or advocate, who has been authorized by you in writing, may also view your data. It must be clear that they are acting in your best interests. Your partner or other family members may not view your information unless you authorize them to do so. You do this by giving them written authorization.

• Failure to comply or partially comply with a request 

  Sometimes we may refuse your request (in part). This is possible, for example, in the following cases:

  • If the refusal is necessary in the interests of national security, public safety, the prevention, detection and prosecution of criminal offenses. Or to protect the rights and freedoms of others. 
  • If, at the time of the request, there is an ongoing investigation into fraud or criminal offenses to which the request relates. 
  • If the request is related to ongoing legal proceedings. Your request may be refused in ongoing objection or appeal proceedings. This is because you will then already receive the documents. 
  • If the request is allegedly "excessive. You may make a maximum of 3 requests per calendar year related to the same subject or matter. 
  • If we think there is an abuse of right. You can access your personal data to see if it is properly recorded. For example, you may not use that right to get more information in a grievance procedure. 

Would you like a copy of your personal data? In any case, you will receive a summary of all personal data processed about you. This does not mean that you will receive a copy of your file.

Complaint option with the Personal Data Authority 

Of course, we are happy to help you if you have complaints or questions about the processing of your personal data. You can contact the FG for this at fg@dienstdommelvallei.nl. 

Should you be unable to resolve it, under the AVG you have the right to file a complaint with the privacy regulator, the AP. For more information, see the relevant website of the AP. 

Security 

Due to the nature and content of our services, your privacy is paramount and we have taken appropriate technical and organizational security measures to ensure that only employees authorized to do so process your personal data. 

We use up-to-date technical (security) systems and software to minimize loss or unauthorized access (e.g. hacking, phishing or theft). Your personal data is stored only on servers located in the Netherlands. 

In the unlikely event that, despite all technical measures taken, there is an incident involving your personal data, we will - to the extent necessary - inform you and the Personal Data Authority as soon as possible. In doing so, we will observe the Requirements that apply to such a notification, specifying the relevant information known at that time. In such a situation, we will also take all measures necessary to prevent or limit further damage or consequences, insofar as this is within our influence.

Do you have the impression that your data is not properly secured? Please contact us via telephone number 088 - 163 10 00 or via info@dienstdommelvallei.nl (general e-mail address of the Service).

Police Data Act for boa's 

Dienst Dommelvallei employs special investigating officers (boa's) for tasks related to supervision and enforcement of social safety, think of social investigators. A boa monitors public order and compliance with legal provisions. When violations occur, the boa supervises and takes enforcement action. To this end, an boa processes personal data.

• General

  If a boa processes personal data in the performance of its supervisory task, the AVG applies. If a boa processes personal data as part of its police task (such as detecting criminal offenses, the Police Data Act (Wpg) applies. Like the AVG, the Wpg sets requirements for the processing of personal data.

• Data we process 

  We process personal data for issuing a police report if you have committed a criminal offense or for handling, administering and financially settling case-related payments, such as granting objections, applying the leniency program, applying reductions and payment arrangements.

• Basis for processing 

  The basis on which boas may process your personal data is to carry out a legal obligation. The boas process personal data pursuant to:

  • Code of Criminal Procedure;
  • General Data Protection Regulation;
  • Police Data Act;
  • Extraordinary Investigating Officer Decree;
  • General Administrative Order (APV).
     

• Retention of data 

  The Wpg clearly indicates how long data must be kept. We strictly follow these rules regarding the retention of (police) data.

• Access to data 

  We share (police) data internally and externally (e.g. with police and/or municipalities) only to the extent strictly necessary for the performance of legal duties. Only authorized employees are granted access to the data. Everyone is only given access to that data, which they need for their work. 

  Access to data and employee actions in systems are logged. In this way, we keep track of who performed what action at what time in a given file. 

  The recipients of the data are subject to a duty of confidentiality.

• Rights of data subject 

  The Wpg grants you the following rights:

  • The right to clear information about what we do with your data;
  • The right to access: you can request information in writing about what data we process about you;
  • Right to rectification, supplementation and destruction: you can ask us to modify, supplement or destroy your data;
  • Destruction: you can ask us to destroy your data.

Decisions under the aforementioned rights of data subjects are decisions, which fall under the avenging of the General Administrative Law Act (Awb). In contrast to the AVG, a decision cannot be appealed. Under the Wpg you can turn to the AP with a request for mediation or advice in your dispute with the Service.

Other information 

Link to third-party website(s)

On the website of Dienst Dommelvallei you will find a number of links to external websites. The content of the websites you access through a link are not the responsibility of Dienst Dommelvallei.

Copyright

All material displayed on this website is the property of Dienst Dommelvallei and is protected by copyright, trademark and other intellectual rights. The material may be used and printed only for personal, non-commercial purposes. The material may not be reproduced, distributed, sold or published without written approval from Dienst Dommelvallei. For more information on the use of the material, please contact our web team staff(webteam@dienstdommelvallei.nl).

Responsible Disclosure

Service Dommelvallei takes extensive measures to properly secure its computer systems. However, even our systems may have one or more vulnerabilities. If you discover a vulnerability in one of our systems, please let us know. We can then quickly take appropriate measures.

Applicant privacy statement

We are aware that applicants share privacy-sensitive personal data with us. We handle this appropriately. Read all about it in our applicant privacy statement.