The International Baptist Theological Study Centre (“IBTS”) is responsible for the processing of personal data as reflected in this privacy statement. We take GDPR very seriously and we are open to concerns or enquiries about GDPR that are not made clear in this document.
1061 AX Amsterdam
+31 20 2103025
Marianne van Zwieten is the Data Protection Officer of IBTS. Contact at email@example.com.
Personal data we process
IBTS processes your personal data because you use our services and/or because you provide it to us yourself.
Below is an overview of the personal data we process:
· Your name, address, email address, and phone number
· Date and place of birth
· Other personal data that you actively provide (e.g. by creating a profile on our website or using our library services)
· List of customer contact details via an app (e.g. Mighty Networks)
· Any information you provide to us in relation to your eligibility to study or work with IBTS (e.g. passport and visa information, location information)
· Information about your activities on our website
· Data about your browsing behaviour across different websites
· Your payment and banking details
Special and/or sensitive personal data we process
IBTS may process the following special and/or sensitive personal data about you:
· Religion or belief
· Religious union membership
· Trade union membership
For what purpose and on what basis we process personal data?
IBTS processes your personal data for the following purposes:
· In relation to fulfilment of contracts in delivering services or goods (e.g. attending events with us, enrollment as a student, purchasing of journals, etc.).
· Payments and invoices
· Letting you know about IBTS’s activities by post, email, and phone in accordance with your marketing preferences and laws relating to direct marketing
· Informing you about changes to our services and products
· Allowing you to create an account (e.g. Moodle)
· IBTS analyses your behaviour on the website in order to improve the website and tailor the range of products and services to your preferences
Sharing personal data with third parties
IBTS shares your personal data with various third parties if this is necessary for the performance of the agreement and to comply with any legal obligation. With companies or individuals that process your data on our behalf, we enter into a processing agreement to ensure the same level of security and confidentiality of your data. IBTS remains responsible for this processing, and may share your information in the following contexts:
· Within IBTS and with members of staff which are involved in carrying out the processing described above
· With third party service providers who, as necessary and appropriate, process your information on IBTS's behalf for the purposes above – this includes, for example, our telephony service providers, cloud storage providers, external academics, our financial administrators, and our auditors
· With any third party that you ask us to share your personal information with, e.g. prospective employers or academic institutions
· If we think this is necessary to in order to protect the rights, property, or safety of IBTS, our employees, our partners, or our customers. This includes sharing information for the purposes of fraud protection
· With government authorities and/or law enforcement officials if required by law
IBTS does not make decisions based on automated processing about matters that could (significantly) affect individuals. These are decisions made by computer programmes or systems, without a human being (e.g. an employee of IBTS) being involved.
How long we keep personal data
We will only keep records of your personal information for as long as is strictly necessary for the purposes for which we have collected it, and in order to comply with any statutory or regulatory obligations in relation to retention of records.
Cookies, or similar techniques, that we use
You can opt out of cookies by setting your internet browser to stop storing cookies. In addition, you can also delete any information previously stored via your browser's settings.
For an explanation, see: https://veiliginternetten.nl/themes/situatie/cookies-wat-zijn-het-en-wat-doe-ik-ermee/
Cookies are also placed on this website by third parties. These include, for example, advertisers and/or the social media companies. Below is an overview:
Cookie: Google Analytics
Function: Analytical cookie that measures website traffic
Retention period: 26 months
Viewing, correcting or deleting data
You have the right to view, correct or delete your personal data. In addition, you have the right to withdraw your possible consent to data processing or object to the processing of your personal data by IBTS and you have the right to data portability. This means that you can submit a request to us to send the personal data we hold on you in a computer file to you or another organisation named by you.
You can send a request to inspect, correct, delete, transfer your personal data or a request to withdraw your consent or object to the processing of your personal data to firstname.lastname@example.org.
To ensure that the request for inspection is made by you, we ask you to send a copy of your proof of identity with the request. In this copy, black out your passport photo, MRZ (machine readable zone, the strip of numbers at the bottom of the passport), passport number and Citizen Service Number (BSN). This is to protect your privacy. We have up to four weeks to respond to your request, however we endeavor to do so as quickly as possible.
IBTS would also like to inform you that you have the opportunity to submit a complaint to the national supervisory authority, the Authority for Personal Data. You can do so via the following link: https://autoriteitpersoonsgegevens.nl/nl/contact-met-de-autoriteit-persoonsgegevens/tip-ons
How we secure and store personal data
IBTS takes the protection of your data seriously and takes appropriate measures to prevent misuse, loss, unauthorised access, unwanted disclosure and unauthorised modification. Your personal information may be stored and processed outside of the country where it is collected, including outside of the European Economic Area. When transferring information to others, within the EEA or otherwise, we ensure that appropriate and suitable safeguards and technical measures are in place to protect your personal data. We will also consider whether there has been a European Commission decision (‘Adequacy Decision’) which will inform our data actions within certain regions and countries. If you have the impression that your data is not properly secured or there are indications of misuse, please contact us via email@example.com.