Privacy Statement

PDFinch is registered with the Chamber of Commerce under number 85129739. This document explains how PDFinch handles the processing of your personal data. PDFinch takes the greatest possible care when processing your personal data.

Obtaining personal data:

If you use the services of PDFinch, you provide a number of personal data to PDFinch yourself, or personal data is obtained from you in the context of the agreement. Personal data is understood to mean all data relating to an identified or identifiable natural person.

Categories of personal data

PDFinch processes the following categories of personal data:

• Contact and name and address details, including location details, telephone number, e-mail address;
• Company details, including VAT number and Chamber of Commerce number;
• Financial data;
• Account details, including your hashed (defaced) password and username;
• Other personal data provided by you.

The personal data processed by PDFinch is intended to:

• to contact you to inform you about the services you have purchased and their implementation;
• to be able to perform its services;
• improve its services;
• to be able to make payments;
• to be able to comply with legal obligations;
• to be able to make marketing and communication expressions, including improving the website by analyzing visitor behavior on the website;
• to be able to send newsletters;
• to exchange data with third parties for the performance of the service, insofar as this is necessary.

Processing basis

The processing of personal data is only possible on the following grounds: (i) legal obligation, (ii) execution of the agreement, (iii) obtained (explicit) permission from the data subjects, and (iv) legitimate interest. When providing the services of PDFinch, personal data is processed. PDFinch only processes data that PDFinch deems necessary for (improving) the service and handles the (personal) data that it has collected about you and your use of the services with care. The basis for processing this data is the agreement you have entered into with PDFinch.

Processing requirements

The processing of your personal data is necessary to be able to perform the service. The services that PDFinch offers cannot be fully performed without the processing of your personal data. If your explicit permission is required for specific purposes with regard to the personal data, you must give permission for this separately.

Automated decision making

There is no automated decision-making.

Retention period

The personal data processed by PDFinch is stored in accordance with the relevant laws and regulations. If a longer retention period is necessary on the basis of legislation or regulations, the personal data will be kept longer in accordance with these requirements. All (obtained) personal data will not be kept longer than is strictly necessary.

Processing by third parties

PDFinch only shares personal data with third parties if this is strictly necessary for the execution of an agreement and to comply with relevant laws and regulations. No personal data is sold. PDFinch may have a legal obligation to share personal data with third parties. If personal data is shared with third parties, processing agreements are concluded for this. The third parties with whom personal data is shared are:

• The Payment Provider, for the purpose of executing an agreement. The categories of personal data that are processed are financial data.
• The Accountant, for the purpose of executing an agreement. The categories of personal data that are processed are contact and name and address data and financial data.
• Third parties engaged, for the purpose of executing the agreement. The categories of personal data that are processed are laid down in the processing agreement for each operator.

Security of Personal Data

PDFinch takes the protection of your personal data seriously and takes into account the state of the art, implementation costs, as well as the nature, scope, context and the processing purposes and the risks to the rights and freedoms of persons differing in likelihood and seriousness, appropriate technical and organizational measures to ensure a level of security appropriate to the risk.