<p>My Data Done Right is hosted by Bits of Freedom. Bits of Freedom defends freedom and privacy on the internet and, accordingly, operates a clear privacy policy, which applies to all its activities, including this website. Bits of Freedom has created this privacy statement to explain which(personal) data it collects and processes, and for which purposes. Three types of information are relevant in the context of this tool: data about how the website is used (usage statistics), information about yourself that you provide while using the tool (your details), and information that you provide if you were to get in touch with us by e-mail (forms, emails and customer relations management). In the below text we explain how each category of information is dealt with.</p><h2>Usage statistics (cookies)</h2><p>We use the open-source analytics platform Matomo to keep track of website usage. We do this by placing two analytical (first-party) cookies:</p><ul><li>_pk_id: generates a unique number to distinguish one visitor fromanother. This cookie is stored on your computer for 14 days after yourlast visit to the website.</li><li>_pk_ref: registers what site a visitor visits our website from. This cookie is stored on your computer for 30 minutes after your last visit to the website.</li></ul><p>We have taken the following privacy enhancing measures:</p><ol><li>We mask the last five hextets of the IPv6 addresses and the last two octets of the IPv4 addresses we collect from visitors (for example: 2001:db8:7bb:: or 198.51.0.0).</li><li>We store the collected data on our own servers that we host ourselves and are located in the Netherlands.</li><li>Visitor logs (containing the data listed below) are stored for 32 days.</li><li>Our websites will never feature third-party cookies or other trackers.</li><li>We not only respect but encourage the use of Do Not Track headers and cookie-blockers.</li></ol><p>Through Matomo and the abovementioned analytical cookies, we collect the following data:</p><ul><li>The unique number linked to the pk_id cookie (see above).</li><li>Your IP address (masked).</li><li>Pages you visit (titles and URLs) on our website and the date and time the page was visited.</li><li>The URL where you clicked a link that sent you to our site (Referrer URL).</li><li>Links you click on our website that refer to external websites (Outlink).</li><li>Downloads from our website.</li><li>An estimation of your location: country, region, city (we don’t collect your exact geolocation).</li><li>Other data: screen resolution, your local time, website speed, browser language.</li><li>Browser user agent: which browser you use, your operating system, your device (desktop computer, smartphone, etc.).</li></ul><p>We process this data insofar this is necessary for our legitimate interest to analyse the use and functioning of this website. Due to the privacy enhancing measures we take, the impact on your privacy is limited and we do not ask for your consent.</p><h2>Your details</h2><p>The contact details you provide when using My Data Done Right are temporarily stored in your browser on your device for the duration ofgenerating your request(s). We don't store your contact details on our servers. If you choose to be reminded about your request by email and you provide your email address, then we store the following informationon our servers in the Netherlands:</p><ul><li>your email address;</li><li>the type of request you generated (e.g. access request);</li><li>the organisation you sent the request to;</li><li>the date your request was generated.</li></ul><p>We use this information to send you a reminder about your request by email. This information will be deleted after the last reminder email has been sent.</p><h2>Forms, emails and customer relations management</h2><p>When you fill in our feedback form we will not ask for any personal data (e.g. your contact details or name). The only data we collect is:</p><ul><li>your answers to the questions (e.g. ‘Did you receive a response?’ Yes/No);</li><li>the type of request you generated (e.g. access request); and</li><li>the organisation you sent the request to.</li></ul><p>We will aggregate this data and use the aggregated data to assess whether organisations respond properly to people’s requests and meet their legal obligations.</p><p>If you send us an email (@bitsoffreedom.nl), the related personal data will be stored and processed for as long as is necessary, depending on the purpose of the form or the contents of your email, for it to be answered or processed properly. In addition, we may store emails we receive if this is necessary for us to properly carry out our regular activities.</p><p>For the purpose of managing the contact information of our contacts and partners, we use the open source system CiviCRM. We only operate the software ourselves and run it on our own servers. Our contacts’ email addresses and PGP keyrings may also be stored locally in the personal address books of Bits of Freedom employees. Of course,if requested, we can remove your contact information from our systems entirely.</p><h2>Disclosure to third parties</h2><p>We will never pass on your personal data to third parties, with the exception of the cases explicitly mentioned in the contents of our privacy statement. The only two exceptions to the rule are:</p><ul><li>If we have explicitly asked for your permission in advance, prior to passing on your personal data to third parties;</li><li>If we are legally required to do so, and only after we have triedour very best to prevent having to pass on your data on the basis of alegal obligation.</li></ul><br><h2>Your rights</h2><p>Under the General Data Protection Regulation (GDPR) you have, among other things, the right to access the personal data we collect about you and in some cases the right to amend it or have it deleted. In certain cases you can ask us to stop processing your data or request us to provide your data to you in a machine-readable format. </p><p>You can exercise your rights by sending an email or letter to us with your request; use the contact details listed below. To comply with your request, we might ask you to provide information to verify your identity.</p><p>You can file a complaint with your data protection authority if you feel we have abused your personal data.</p><h2>Changes to this privacy policy</h2><p>We might make changes to this privacy policy. If we change something important, we’ll announce that on our website. </p><h2>Our contact details</h2><p>When processing personal data as described in this privacy statement, Stichting Bits of Freedom (Bof) acts as the controller, unlessexpressly stated otherwise. Do you have any questions about this privacy policy or do you want to exercise one of your rights under the GDPR? Get in touch! By e-mail:info[at]bitsoffreedom.nl. By mail: Bits of Freedom, Prinseneiland 97hs, 1013LN Amsterdam, the Netherlands. By phone: +31 20 261 8350.</p>
<p>My Data Done Right is hosted by Bits of Freedom. Bits of Freedom defends freedom and privacy on the internet and, accordingly, operates a clear privacy policy, which applies to all its activities, including this website. Bits of Freedom has created this privacy statement to explain which(personal) data it collects and processes, and for which purposes. Three types of information are relevant in the context of this tool: data about how the website is used (usage statistics), information about yourself that you provide while using the tool (your details), and information that you provide if you were to get in touch with us by e-mail (forms, emails and customer relations management). In the below text we explain how each category of information is dealt with.</p><h2>Usage statistics (cookies)</h2><p>We use the open-source analytics platform Matomo to keep track of website usage. We do this by placing two analytical (first-party) cookies:</p><ul><li>_pk_id: generates a unique number to distinguish one visitor fromanother. This cookie is stored on your computer for 14 days after yourlast visit to the website.</li><li>_pk_ref: registers what site a visitor visits our website from. This cookie is stored on your computer for 30 minutes after your last visit to the website.</li></ul><p>We have taken the following privacy enhancing measures:</p><ol><li>We mask the last five hextets of the IPv6 addresses and the last two octets of the IPv4 addresses we collect from visitors (for example: 2001:db8:7bb:: or 198.51.0.0).</li><li>We store the collected data on our own servers that we host ourselves and are located in the Netherlands.</li><li>Visitor logs (containing the data listed below) are stored for 32 days.</li><li>Our websites will never feature third-party cookies or other trackers.</li><li>We not only respect but encourage the use of Do Not Track headers and cookie-blockers.</li></ol><p>Through Matomo and the abovementioned analytical cookies, we collect the following data:</p><ul><li>The unique number linked to the pk_id cookie (see above).</li><li>Your IP address (masked).</li><li>Pages you visit (titles and URLs) on our website and the date and time the page was visited.</li><li>The URL where you clicked a link that sent you to our site (Referrer URL).</li><li>Links you click on our website that refer to external websites (Outlink).</li><li>Downloads from our website.</li><li>An estimation of your location: country, region, city (we don’t collect your exact geolocation).</li><li>Other data: screen resolution, your local time, website speed, browser language.</li><li>Browser user agent: which browser you use, your operating system, your device (desktop computer, smartphone, etc.).</li></ul><p>We process this data insofar this is necessary for our legitimate interest to analyse the use and functioning of this website. Due to the privacy enhancing measures we take, the impact on your privacy is limited and we do not ask for your consent.</p><h2>Your details</h2><p>The contact details you provide when using My Data Done Right are temporarily stored in your browser on your device for the duration ofgenerating your request(s). We don't store your contact details on our servers. If you choose to be reminded about your request by email and you provide your email address, then we store the following informationon our servers in the Netherlands:</p><ul><li>your email address;</li><li>the type of request you generated (e.g. access request);</li><li>the organisation you sent the request to;</li><li>the date your request was generated.</li></ul><p>We use this information to send you a reminder about your request by email. This information will be deleted after the last reminder email has been sent.</p><h2>Forms, emails and customer relations management</h2><p>When you fill in our feedback form we will not ask for any personal data (e.g. your contact details or name). The only data we collect is:</p><ul><li>your answers to the questions (e.g. ‘Did you receive a response?’ Yes/No);</li><li>the type of request you generated (e.g. access request); and</li><li>the organisation you sent the request to.</li></ul><p>We will aggregate this data and use the aggregated data to assess whether organisations respond properly to people’s requests and meet their legal obligations.</p><p>If you send us an email (@bitsoffreedom.nl), the related personal data will be stored and processed for as long as is necessary, depending on the purpose of the form or the contents of your email, for it to be answered or processed properly. In addition, we may store emails we receive if this is necessary for us to properly carry out our regular activities.</p><p>For the purpose of managing the contact information of our contacts and partners, we use the open source system CiviCRM. We only operate the software ourselves and run it on our own servers. Our contacts’ email addresses and PGP keyrings may also be stored locally in the personal address books of Bits of Freedom employees. Of course,if requested, we can remove your contact information from our systems entirely.</p><h2>Disclosure to third parties</h2><p>We will never pass on your personal data to third parties, with the exception of the cases explicitly mentioned in the contents of our privacy statement. The only two exceptions to the rule are:</p><ul><li>If we have explicitly asked for your permission in advance, prior to passing on your personal data to third parties;</li><li>If we are legally required to do so, and only after we have triedour very best to prevent having to pass on your data on the basis of alegal obligation.</li></ul><br><h2>Your rights</h2><p>Under the General Data Protection Regulation (GDPR) you have, among other things, the right to access the personal data we collect about you and in some cases the right to amend it or have it deleted. In certain cases you can ask us to stop processing your data or request us to provide your data to you in a machine-readable format. </p><p>You can exercise your rights by sending an email or letter to us with your request; use the contact details listed below. To comply with your request, we might ask you to provide information to verify your identity.</p><p>You can file a complaint with your data protection authority if you feel we have abused your personal data.</p><h2>Changes to this privacy policy</h2><p>We might make changes to this privacy policy. If we change something important, we’ll announce that on our website. </p><h2>Our contact details</h2><p>When processing personal data as described in this privacy statement, Stichting Bits of Freedom (Bof) acts as the controller, unlessexpressly stated otherwise. Do you have any questions about this privacy policy or do you want to exercise one of your rights under the GDPR? Get in touch! By e-mail:info[at]bitsoffreedom.nl. By mail: Bits of Freedom, Prinseneiland 97hs, 1013LN Amsterdam, the Netherlands. By phone: +31 20 261 8350.</p>
rejozenger