GDPR and your personal data
Since 25 May 2018, the General Data Protection Regulation (AVG, or GDPR for General Data Protection Regulation) has been in force. This determines how personal data is handled in EU member states and imposes guidelines on anyone storing personal data. So too Volta, and in two different ways: personal data of customers that we store ourselves and personal data of third parties (customers of our customers) that we store on commission.
Data volta stores about you
As a visitor to Volta.be, some of your data are stored automatically. These data allow us to provide you with a better experience on our website and to see in a general, non-individualised way how you use our website. It is therefore not personal data according to the definition of the AVG. You can read exactly what we store and how this is done in our cookie and privacy statement.
We do store personal data about you as a customer of Volta: data directly related to your identity. You can read a thorough definition of “personal data” here. In summary, it is any data ‘relating to an identified or identifiable living natural person’. We store this data to give you, (employee of) our customer, the best possible service. You should know that:
- we only store data that we reasonably need, such as your name, contact details and possibly your birthday (nice, because then we can congratulate you);
- we use your data in the execution of an agreement between you and Volta and possibly also for our own marketing campaigns;
- we never share your personal data with third parties;
- your data will be kept as long as you are (an employee of) our customer;
- you have the right to know what data we keep at any time, to ask for it or correct it and to request that we delete it;
- you have the right to lodge a complaint with the Personal Data Authority.
Data volta retains as a 'processor'
As a communications agency, we also come into frequent contact with the personal data of our clients' customers. How this is done is also regulated by the AVG. You can read the small print in the addendum to our agreements. As a customer, you thereby have the role of processing controller, which means that the storage of personal data is your responsibility. As processor, Volta has the task of ensuring that this is done correctly. Volta is NOT responsible for what the controller does with personal data, even though we do have access to those data. But of course we do inform our customers about what is allowed and what is not.
Questions about your own GDPR?
According to GDPR, the updated privacy law, you cannot just collect data from website visitors. You need their explicit consent. Simple “Allow cookies” banners, commonly used, are therefore no longer sufficient.
