This privacy statement describes how EF-CONCEPTS (which also includes the following websites EF-SOLAR, EF-POWER, EF-SUPPLY, EF-CHARGE, EF-STORAGE) treats the privacy of persons involved in its business. This privacy statement describes how EF-CONCEPTS processes personal data and how data subjects can exercise their rights under the General Data Protection Regulation (GDPR).
1. Processing of personal data
We process personal data in the context of our services. EF-CONCEPTS is the controller as referred to in the GDPR and has the following contact details:
Ambachtsweg 43, 3542 DE Utrecht
EF-CONCEPTS processes personal data in accordance with the privacy regulations and in the manner described in this privacy statement.
A. Clients and data subjects
In the context of our services, we may process the following personal data of our clients or data subjects: name and contact details (such as e-mail address and telephone number).
In principle, the processing of your personal data by us is based on Article 6(b) of the GDPR, namely to be able to perform the contract for services concluded with you. We may also process personal data to protect our legitimate interests, such as improving our services. If your personal data is processed on the basis of consent, you will be explicitly asked for consent.
B. Website visitors
As part of our online services, every website visitor can leave his or her contact details on the EF-CONCEPTS websites. We will use this information to contact you and store it as necessary to answer your question.
Use of Social media plugins
Pages on our website can be shared on LinkedIn, Twitter and Facebook. EF-CONCEPTS does not monitor and is not responsible for the processing of your personal data by and through these third parties. The use of these media is therefore at your own risk. Before using these services of third parties, it is advisable to read the privacy statement of these third parties first.
C. Other relations
Where suppliers or other service providers are concerned, EF-CONCEPTS may process personal data such as name and address, telephone number, e-mail address and bank account number, necessary for deliveries or the purchasing of services. We process this data to be able to perform the agreement or to comply with legal obligations, such as keeping records or for auditing purposes.
2. Your personal data and third parties
EF-CONCEPTS only shares your personal data with third parties to the extent necessary for the provision of the services with due observance of the purposes set out above. This could include the engagement of another third party on behalf of and at the request of EF-CONCEPTS. In addition, EF-CONCEPTS may provide personal data to a third party, such as a supervisory authority or another body invested with public authority, to the extent EF-CONCEPTS is legally required to do so.
A processing agreement will be concluded with the third party that processes your personal data on behalf of and at the request of EF-CONCEPTS, under which such third party is also required to comply with the GDPR. Third parties engaged by EF-CONCEPTS who offer services as controllers, are themselves responsible for compliance with the GDPR in regard to the further processing of your data.
EF-CONCEPTS places great value on the security and protection of your personal data and, taking into account the state of the art, ensures that suitable technical and organizational measures are in place to guarantee a security level appropriate to the risk involved. If EF-CONCEPTS makes use of services of third parties, such as an IT supplier, EF-CONCEPTS will, in the context of the protection of personal data, record agreements regarding adequate security measures in a processing agreement. If EF-CONCEPTS transfers data outside the EEA, this will only be done to countries to which an adequacy decision applies, if the recipient is certified for the EU-US Privacy Shield (such as Google), if we have concluded an agreement with a recipient, which includes model provisions as established by the European Commission, or if this is necessary for the performance of our agreement with you.
4. Retention period
EF-CONCEPTS does not retain processed personal data any longer than necessary for the purposes of data processing set out above, or as long as is required under the legislation and regulations. In principle, client files are retained for 5 years.
5. Privacy rights
A request in connection with the exercise of privacy rights (such as access, correction, restriction, objection, transferability of data, removal of your personal data or withdrawal of consent given previously) can be sent to email@example.com stating ‘Exercise of privacy rights’. For verification purposes, we may ask you to provide proof of your identity. We aim to respond to your request within one month.
6. Changes and questions
We may change this privacy statement at any time and will always publish the latest version on our website. We therefore recommend that you consult our website regularly.
If you have any questions about this privacy statement or about your privacy, please contact us by e-mail (firstname.lastname@example.org) stating ‘EF-CONCEPTS Privacy Statement’.