Applicable from 08/12/2023
What data do we collect?
All data collected is processed in accordance with applicable laws and regulations, including the European Union's General Data Protection Regulation ("AVG"). We strive to collect only that information which is necessary for the performance of our services and to ensure the security and functionality of Amfibon. In this way, we apply the principle of data minimization. If we need your consent to process certain data, we will ask for it explicitly and transparently. You have the right to withdraw your consent at any time without prejudice to the lawfulness of the processing before the withdrawal.
To register on Amfibon, use your account from Apple, Google or Facebook. In doing so, we collect basic information such as your name, email address and profile picture from the selected account. This information is essential for creating an account and identifying Users on Amfibon. When a User registers on Amfibon, they are 16 years of age or older. For Sellers who publish items on Amfibon, we collect banking information, including the bank account number provided and the name of the account holder, in order to deposit funds after a successful Transaction. This information is necessary for processing payments and fulfilling the financial aspect of Transactions between Buyers and Sellers. The account information necessary to use our services is kept for as long as you have an active account with Amfibon. That means that your data will be kept within a period of 5 years from the last login. If you decide to delete your account, your personal data will also be deleted, unless otherwise required by law.
As a Buyer, you will be asked to provide a delivery address when purchasing an Item to be physically shipped by the Seller. This address is maintained solely for the purpose of communicating it to the Seller, tracking the completion of the Transaction, and handling any disputes. Therefore, this information is kept for as long as you have an active account with Amfibon. Like your other data, it will be deleted if you decide to delete your account. However, legal requirements may dictate otherwise.
Why do we ask for your personal information?
We are aware that you trust us when you share your personal data with us. Therefore, it is only natural that we inform you clearly why we are requesting your personal data so that you can maintain your trust in us.
Collecting personal data is essential for providing high-quality services and optimizing the user experience on Amfibon. To enable you to buy and sell Items through our platform, we need to collect certain personal data. This data enables us to facilitate Transactions so that you can take full advantage of our services. Also, by allowing us to analyze data, we gain a better understanding of how Amfibon is used. These analyses help us improve performance, develop new features and optimize Amfibon's overall efficiency.
In addition, collecting information allows us to provide effective customer service, such as answering questions, resolving issues and responding to your requests. This allows us to maintain a high level of support. In addition, processing certain personal data allows us to ensure the security of Transactions and prevent fraud. This includes monitoring suspicious activity and enforcing security measures on Amfibon. We naturally want you, the User, to experience Amfibon as a safe and respectful environment. In some cases, we are required by law to collect and retain certain personal information to comply with applicable laws and regulations.
With whom will your personal data be shared?
When an Item is to be physically shipped, the Buyer will be asked to provide an address to which the Item may be delivered. This address will be communicated with the Seller so that the necessary follow-up steps can take place. In this way, the Transaction on Amfibon can be completed successfully for both parties.
To deliver our services effectively, we share certain information with third-party service providers. These include,but are not limited to, our payment processor, database administrator, data processor, IT support services and analytics providers. These external parties only have access to the data necessary to perform their specific tasks and services. Naturally, they are bound by strict confidentiality obligations and AVG regulations. In situations where required by applicable law, we will share personal data only with your explicit consent.
In accordance with laws and regulations, we may share personal information in response to a subpoena, legal process or other legal obligation. We will take reasonable steps to notify you of any such disclosure, unless prohibited by law. If you are located outside the European Economic Area (EEA), it may be necessary to transfer personal data to jurisdictions outside the EEA. In such cases, we will take appropriate measures to ensure that your data is protected in accordance with the AVG.
In the event of a merger, acquisition, reorganization, sale of assets or other similar business transactions, personal data may be transferred as part of the transfer of assets. In such a case, we will take reasonable steps to maintain the confidentiality of personal data and notify you of the transfer. We may share aggregated and anonymized data with third parties for analysis, research or other business purposes. This data does not identify individual users and is used to understand trends and patterns.
How do we protect your personal data?
At Puidenbroek, we understand that protecting your personal information is of the utmost importance. We want to reassure you that we are committed to ensuring the security and confidentiality of any information you share with us. We employ advanced security measures to protect your personal information from unauthorized access, use or disclosure.
Access to personal data is strictly limited to authorized personnel and external service providers who need this information to perform specific tasks. All data subjects are bound by strict confidentiality obligations. When we share personal data with external service providers, we ensure that they maintain the same high standards of data protection. Contractual obligations are established to ensure that your data remains secure. In addition, our team is regularly trained and informed about the importance of data protection and privacy. This ensures that all employees are aware of best practices and current security protocols.
- The right to information: You have the right to know what data we collect and how we process it.
- Right to access: You have the right to access your personal data that we process.
- The right to rectification: You have the right to have inaccurate data corrected.
- Right to data erasure: You have the right to request the erasure of your personal data under certain circumstances. Sometimes these requests cannot be granted if applicable law does not permit deletion.
- Right to restrict processing: You have the right to restrict the processing of your data under certain circumstances.
- Data portability right: You have the right to receive your personal data in a structured, commonly used and machine-readable format.
- The right to object: You have the right to object to the processing of your personal data on certain grounds.
- The right not to be subjected to automated decision-making: You have the right not to be subjected to a decision based solely on automated processing, including profiling, if it has legal consequences for you or affects you significantly in a similar way.
Our commitment to AVG standards is not just a legal obligation, but a fundamental aspect of how we design, implement and maintain our services. We are committed to providing a high level of data protection and safeguarding your privacy rights. By continually investing in security measures, transparency and compliance with privacy regulations, we strive to provide a safe and secure environment for all your interactions on our platform. If you still have further questions about how we handle your personal data, please feel free to contact us at firstname.lastname@example.org.