Privacy policy

5CA B.V., Stationsstraat 154, 3511 EK Utrecht (“5CA”, “we, us, our”), as a controller of your personal data, strives to be transparent and clear. Our goal is to treat the data of our customers, employees, website visitors and other individuals involved in our actions carefully and with respect.

This Privacy Policy aims at explaining how we handle your personal data through our 5CA.com website (“Website”) and careers.5ca.com portal (“Careers Portal”). Please read this Privacy Policy carefully, so you can fully understand our practices concerning personal data.

Personal data means any information that can be used, alone or together with other data, to uniquely identify a human being.

Examples of such data are: name, email address, ID numbers or location data.

A large part of our Website does not require your personal data. For certain parts of the Website, it is necessary for us to process personal data. Overall, we have a lean Website and you do not need to register to use our Website. Nevertheless, we process some personal data to make the Website work, and to offer you the Website Services.

5CA processes personal data of:

• Website Visitors
• Job applicants who apply for a vacancy via Careers Portal

Legitimate interest
We use essential cookies for our website to operate and we rely on the legitimate interests ground under Article 6(1)(f) GDPR.

Consent
We process personal data based on consent according to Art. 6(1)(a) GDPR, which you are free to give or refuse. You’ll see consent options when you visit our website for the first time. You can change your decisions at any time by setting your cookie preferences. If you change your decision, it will not affect the lawfulness of processing based on consent before its withdrawal. For us to process your requests you provide us with your personal information (via “Get in Touch”/”Contact Us” and “Apply for this job” forms). Based on your consent, we collect that personal information and process your request.

Compliance with a legal obligation
To comply with our legal obligation. In case of a violation, alleged unlawful activity or when we need to uphold our Terms, we need to be able to search or share (some of) your personal data.

5CA will save your data for as long as it is necessary for the purpose for which it was provided. We regularly go through our systems to check if your personal data is still necessary for the purposes for which they were provided.

Please refer to our cookie policy to learn more about how long we store your information collected through cookies.

In addition to the above, in some circumstances we may store your personal data for longer periods, for example:

(i) where we are required to do so in accordance with legal, regulatory, tax or accounting requirements, or

(ii) for us to have an accurate record of your dealings with us in the event of any complaints or challenges, or

(iii) if we reasonably believe there is a prospect of litigation relating to your personal data or dealings.

5CA only provides personal data to third parties when this is permitted and done carefully. Personal data will only be provided to third parties if you have given permission yourself or if this is permitted under the General Data Protection Regulation or other applicable privacy legislation. Data is provided to parties that help 5CA to perform services for you or to maintain our Website. If you provide your consent for using your data for marketing purposes, we may share your data with third parties for marketing purposes.

These parties may be located in the Netherlands, other countries in the European Economic Area or elsewhere in the world. Where personal data is stored by us outside the EEA, we will ensure an appropriate level of protection for the data transferred. We require service providers and other service providers to take appropriate measures to protect the confidentiality and security of personal data.

5CA operates around the world and may transfer your personal data to other offices or third-party locations around the world – which may be outside the European Economic Area (EEA) – for the purposes that have been set out in this Privacy Policy. In some countries outside the EEA, data protection laws may provide lower safeguards than those in the EEA, which is why we take specific additional measures to keep this personal data safe as determined by GDPR, such as transferring to countries that have been deemed adequate by the European Commission or using Standard Contractual Clauses (as approved by the European Commission) provided the concerned country provides an equivalent level of data protection.

Ensuring the security of your personal data is very important to us which is why we have taken different technical and organizational measures to ensure this. We want to avoid any personal data from unauthorized access, disclosure, use or alterations. This is why:

• We only provide articles, information and use personal data as described in this Privacy Policy. We never ask for credit card numbers.
• We use regular Malware Scanning.
• Your personal data is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
• We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your personal data.

We have implemented commercially-reasonable technical, organizational and security measures designed to protect your personal data. However, please note that we cannot guarantee that the information will not be compromised as a result of unauthorized penetration intoto our servers. As the security of information depends in part on the security of the computer, device or network you use to communicate with us and the security you use to protect your user IDs and passwords, please make sure to take appropriate measures to protect this information.

If 5CA experience a data breach and your information are affected, 5CA Privacy Team (privacy@5ca.com) will inform you if required by applicable law. 5CA may be also legally bound to contact the local data protection authorities.

Cookies and similar tracking technologies, such as beacons, scripts, web beacons and tags (which together we refer to as “cookies”), are small bits of text, usually stored on a user’s computer hard drive or within a browser. They enable a website (and/or other websites which can recognise a cookie) to remember information about the user’s visit to that website.

Cookies are used to make the website work, or to work more efficiently, as well as to provide information to the owners of the website.

Such information may be used to provide a more personalized and responsive service. Cookies may be either first-party cookies set directly by us to your device, or third-party cookies set by a third-party provider on our behalf. Whenever you use this Website, information may be collected through the use of cookies and other technologies.

For more information regarding the cookies that we use please visit our Cookie Policy: https://5ca.com/cookie-policy/

• You have a right to lodge a complaint with your local data protection supervisory authority: If you believe that your data protection rights may have been breached, you have the right to lodge a complaint with the applicable supervisory authority or to seek a remedy through the courts.
• You have the right to object to profiling.
• You have the right to object, to or to request restriction, of the processing: In certain circumstances, you also have the right to object to the processing of your personal data and to ask us to block, erase and restrict your personal data. If you would like us to stop using your personal data, please contact us.
• You have the right to request that we rectify any personal data.
• You also have a right to request certain details of the basis on which your personal data is transferred outside the European Economic Area.
• You have the right to data portability: You have the right to request that some of your personal data is provided to you, or another data controller, in a commonly used, machine-readable format.
• You have the right to request the erasure/deletion of your personal data: You have the right to [ask/require] us to erase your personal data when the personal data is no longer necessary for the purposes for which it was collected, or when, among other things, your personal data have been unlawfully processed.
• You have a right to access personal data held about you: You have the right to request a copy of the personal data that we hold about you. There are exceptions to this right, so that access may be denied if, for example, making the information available to you would reveal personal data about another person, or if we are legally prevented from disclosing such information. You are entitled to see the personal data held about you. If you wish to do this, please contact us using the contact details provided below.
• You have the right to withdraw: If you have provided your consent to the collection, processing and transfer of your personal data, you have the right to fully or partly withdraw your consent. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose(s) to which you originally consented unless there is another legal ground for the processing.

You can exercise your rights by submitting a request to privacy@5ca.com

Subject to legal and other permissible considerations, we will make every reasonable effort to honour your request promptly in accordance with applicable law or inform you if we require further information to fulfil your request. When processing your request, we may ask you for additional information to confirm or verify your identity and for security purposes, before processing and/or honouring your request. We reserve the right to charge a fee where permitted by law, for instance, if your request is manifestly unfounded or excessive. In the event that your request would adversely affect the rights and freedoms of others (for example, would impact the duty of confidentiality we owe to others) or if we are legally entitled to deal with your request in a different way than initially requested, we will address your request to the maximum extent possible, all in accordance with applicable law.

5CA may make changes to this Privacy Policy. 5CA, therefore, recommends that you regularly check for updates to the privacy statement.

You are welcome to contact us with any questions, comments and requests regarding this Privacy Policy. If you have any other requests or questions about your personal data, you can contact us: privacy@5ca.com