The way to achieve a good Privacy by Design approach, recognised by Monotch, is the framework developed by Ann Cavoukian (former Information and Privacy Commissioner of the Canadian province of Ontario).
The framework has seven design principles that Monotch complies with:
- To prevent is better than to correct.
- Data protection is the standard.
- Integrate data protection and security into the design.
- Full functionality – a positive balance (no zero-sum outcome).
- Lifecycle protection. End-to-End security
- Visibility and transparency.
- Respect for User’s Privacy.
Monotch’s privacy officer (PO) is Ingeborg Malta, appointed at the board level as an independent assessor of the state of data protection. She ensures that the data protection regulations are complied with.
Privacy Status Monotch
We see privacy as an essential part of our services. We express this by recording our way of acting in a privacy statute. This is our promise to our customers for handling privacy, which is integrated into our smart mobility platforms.
We do this by including the integral text of our privacy statute as we have established it for our services, as can be read below. This statute has been legally tested and, as a result, has been tightened up in parts.
Your data is a private matter
We believe it is essential to ensure that the Monotch services are reliable. This expressly also applies to how we handle your personal data. We absolutely regard this as a private matter. We have summarised how we guarantee your privacy when performing the Monotch services in this ‘Privacy Statute’. This statute applies to all our customers and employees. In this ‘Privacy Statute’, we indicate what we use your data for, how we protect your data, how long we keep your data, and what rights you have to control our data.
We take care of your privacy
We handle your personal data with care. We do not process your personal data for purposes that fall outside the scope of Monotch’s services. Any necessary use of your data for Monotch complies with the applicable laws and regulations on protecting privacy, particularly the Personal Data Protection Act and the Telecommunications Act.
What personal data
Depending on the services you want to purchase as a customer of Monotch, we register all customer names and contact details, username and password (the username is stored encrypted and can never be traced back to the chosen password).
We save all the information you have entered when using any of the forms on our website(s).
What do we use your personal data for?
We register customers’ names and contact details, usernames, and passwords when registering for our SaaS services. This information is necessary to be able to offer you our Monotch service. We do not exchange this information with our partners.
When using the forms, we register the information you have entered into our CRM system to contact you to answer your questions or to provide you with the requested documentation. If necessary, we will forward this information to one of our partners so that you receive the best service from our services.
We use your data to periodically send you the Monotch newsletter when registering for our newsletter.
How do we secure your data?
We secure our systems on which your personal data is processed in an adequate organisational, technical and physical manner. For this, we use up-to-date and internationally (as well) accepted information systems and methods. Your data is stored on servers in data centres within the EU. Your personal data is only accessible to persons authorised to do so by their position within Monotch.
How long do we keep your data?
We do not store your personal data for longer than necessary for the purpose we collected it unless a different or more extended legal retention period applies to data. Statistical data collected for research purposes can be kept longer. However, this data is anonymised and can never be traced back to a person.
Who is responsible for collecting your personal data?
Monotch BV processes your personal data. We are located at Vogelstraat 23 SCH 4845 PA Wagenberg and are registered with the Chamber of Commerce under number 61837628.
How can you check your personal data?
You have the right to know what we know about you. That is why you can request via the service desk which other data has been registered about you and for what purposes that data is used.
Objection to the use of your personal data
You have several legal options to object to using your personal data further. Even if you have permitted it at an earlier stage, you can object to further use of your data. You can object to using your personal data if used for purposes other than those necessary for the Monotch services.
Special criminal situations
We do not provide data to third parties for purposes that fall outside the scope of Monotch’s services. An exception is if there is a legal obligation to do so. In the event of (a suspicion of) a severe crime, data can be requested using a judicial order.
You can decide for yourself how cookies should be handled. We inform you via the notification bar about the use of these cookies. We want to point out that every visitor can set their browser on their computer so that no cookies are accepted.
Questions and contact
If you have any questions, please contact the Monotch Service Desk on +31(0)88-7120800 or [email protected].
Monotch reserves the right to change this Privacy Statement. In the event of a change, we will inform you in good time (by email) and indicate when this change will take effect. This Privacy Statute applies to the data that we receive/collect during the validity of this statute. An amendment to this Charter will never invalidate your rights regarding this data derived from a previously applicable Privacy Charter. If this proves impossible (for example, due to a change in legislation), we will inform you.
Within the privacy legislation, Monotch has the role of controller or processor. We conclude processing agreements with relevant parties that act as controllers or sub-processor following the General Data Protection Regulation (GDPR).