Privacy statement Sunsit

We respect your privacy and process your personal data only for the purpose for which you provided it and in accordance with the Data Protection Act / General Data Protection Regulation.

1. Company details
Sunsit BV
De Ring 1
5261 LM Vught
073-684 05 02
www.sunsit.nl
www.hello-suns.com
www.suns-tuinmeubelen.nl
Chamber of Commerce: 17267242
VAT No.: NL821483195B01For the purposes of this privacy statement, “We” refers to Sunsit.

2. Website
When we refer to the website, we mean www.hello-suns.com, www.suns-tuinmeubelen.nl, www.suns-outdoorfurniture.com, www.suns-gartenmoebel.de, www.suns-shine.com, dealerwebshop.hello-suns.com and www.sunsit.nl

3. Cookies & Google analytics
If you use the website, the following cookies are used by default: collecting and analyzing statistics (Google Analytics). This has little or no impact on the privacy of website visitors. These cookies are stored for approximately 6 months. We do not process full IP addresses here and no full IP addresses or other data are shared with Google.

4. Personal data
(a) General. We keep digital and/or physical records of our customers and relations. We process personal data to execute the agreements concluded with our customers and (insofar as there is no agreement for this) to deliver orders and to provide information or advice to our customers and relations.
b) What personal data? The personal data that we process concerns the following data of our customers:
* Name, address city, telephone number and e-mail address
* Chamber of Commerce number
* VAT number
* other data that we receive or process in the context of the order provided to us.
We store as little customer data as possible and only process necessary data.
(c) Accessibility. In principle, every employee of Sunsit has access to the personal data processed on behalf of customers or relations.
(d) Disclosure to third parties. To process personal data, we use software provided by one or more third parties for which they provide support services. We also make use of ICT service providers. These entities may also have access to personal data if necessary for the provision of support or maintenance. We do not provide personal data to other third parties, unless it is necessary or useful for performance of the agreement or as stated above.
(e) Deadlines. We retain personal data for a period of (approximately) 7 years. We assume at least the period during which the tax authorities can still request data or apply assessments or corrections. Personal data received from our customers for the execution of warranty work is kept for a maximum period of 5 years (being our warranty period).

5. Personal Data Security
Personal data is processed in a secure environment and stored within the European Union. We have implemented multi-level security measures for this purpose. We periodically evaluate the level of security and adjust our security policy if necessary.

6. Right of data subject
The person whose personal data we process (the data subject) has various rights in accordance with the General Data Protection Regulation. Briefly put, these are as follows.
* Data subject can ask us for access to the personal data that are processed about him.
* Data subject has the right to rectify his personal data,
* The right to request erasure of personal data,
* The right to restrict processing,
* The right to transfer personal data,
* The right to object.The exact content of these rights and any limitations to them, are stated in the General Data Protection Regulation. We comply with what is stated there about these rights.

7. Complaint
If you believe that your privacy rights are being violated, you have the right to file a complaint about this with the Personal Data Authority.

8. Data Breach
If a personal data breach has occurred, we notify the Personal Data Authority without unreasonable delay, unless the personal data breach is unlikely to pose a risk to the rights and freedoms of natural persons. If the personal data breach is likely to involve a high risk to the rights and freedoms of natural persons, we shall notify the data subject of the personal data breach without delay.This privacy statement was last updated on May 7, 2018