Privacy statement Flowerbook
Introduction
Flowerbook takes your privacy very seriously and shall handle your personal data with the utmost security and care. In this Privacy Statement you will learn how we handle your data as well as learn about your rights concerning our processing of your data. We advise that you read this Privacy Statement thoroughly. Should you have any questions or remarks, please contact us at privacy@flowerbookapp.com.
Who is Flowerbook?
Flowerbook is the besloten vennootschap Flowerbook B.V., with registered office at (2225 JT) Katwijk listed at the Traderegister of the Dutch Chamber of Commerce under 61629243.
Flowerbook is as the controller ultimately responsible with regard to the processing of your personal data.
Flowerbook has appointed a data protection officer. You may contact Fabian van Dijk at fabian@flowerbookapp.com.
How does Flowerbook use your personal data?
Underneath you will find an overview of the purposes for the processing of your personal data. You will also find a specification of which data Flowerbook uses for that specific purpose, the legal justification, and the amount of time Flowerbook keeps this data. For clarity’s sake, we have categorised the purposes.
Services, customer management and financial administration
| Purpose: | Financial administration |
| Information: | Company name, Billing address, Bank details, Outstanding balance |
| Legal basis: | Legal obligation |
| Storage period: | maximum 7 years |
| Purpose: | Services |
| Information: | Email, Data necessary to provide the service, Data generated by the service |
| Legal basis: | Consent |
| Storage period: | maximum 5 years |
Marketing
| Purpose: | Direct marketing |
| Information: | Name, Home address, Email, Phone, Click behaviour, Online behaviour, Interest in a product, Social media account, User ID Legitimate interests |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 5 years |
| Purpose: | Affiliate marketing |
| Information: | Name, Home address, Email, Phone, Click behaviour, Online behaviour, Interest in a product, Social media account, User ID Legitimate interests |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 5 years |
| Purpose: | Newsletter |
| Information: | Name, Home address, Email, Phone, Click behaviour, Online behaviour, Interest in a product, Social media account, User ID Legitimate interests |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 5 years |
| Purpose: | Social media marketing |
| Information: | Name, Home address, Email, Phone, Click behaviour, Online behaviour, Interest in a product, Social media account, User ID Legitimate interests |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 5 years |
| Purpose: | Behavioural targeting |
| Information: | Name, Home address, Email, Phone, Click behaviour, Online behaviour, Interest in a product, Social media account, User ID Legitimate interests |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 5 years |
Website
| Purpose: | Website analytics |
| Information: | Online behaviour, Location |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 5 years |
| Purpose: | Chat feature |
| Information: | Name, Message content |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 1 year |
Security and fraud prevention
| Purpose: | data security |
| Information: | Electronic identification |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | As long as necessary for this purpose |
Research and Development
| Purpose: | Market research |
| Information: | Online behaviour, Email |
| Legal basis: | Legitimate interests |
| Interest concerned: | Commercial interests |
| Storage period: | maximum 5 years |
How did we obtain your personal data?
Flowerbook has obtained your data because you have provided this data to us, and because Flowerbook has obtained your information from third parties. These third parties are: Apple Store, Google Play Store, Facebook, .
What are your rights?
Under the European General Data Protection Regulation you have a number of rights with regard to your data and the processing thereof:
Access
You may access your personal information and make any necessary changes in your account. If you would like to see which personal data Flowerbook has obtained about you, you may exercise your right of access by submitting a request to Flowerbook.
Making changes
If you wish to make changes to the personal information that you have seen as a result of a request for access and you are unable to make the changes yourself in your account, you may request that Flowerbook makes these changes for you. You may request that Flowerbook modifies, corrects, supplements, erases or shields your information.
Restriction of processing of personal data
You also have the right, under certain conditions, to ask Flowerbook to restrict the processing of your personal data.
Right to object
If processing of your data takes place on the grounds of ‘legitimate interest’ by Flowerbook or a third party, you have the right to object to that processing.
Portability of data
You have the right to obtain your personal data from Flowerbook. Flowerbook will provide this in a structured and commonly used format, which can easily be opened using commonly used digital systems.
Withdrawing consent
When the legal basis for a particular processing is your explicit consent, you have the right to withdraw that consent. This does not affect past processing, but does mean that we will no longer be allowed to process this data in the future. It may also result in Flowerbook no longer being able to provide you with certain services.
Response from Flowerbook
A request can be sent to privacy@flowerbookapp.com. Flowerbook will comply with your request as soon as possible and in any case no later than one (1) month after Flowerbook has received such a request. If Flowerbook rejects your request, we will indicate in our reply why the request was rejected.
Recipients of your personal data
It is possible that Flowerbook is required to submit your data to a third party, for example to fulfil a legal obligation.
Transfer to third countries or international organisations
It may be necessary, for instance for technical and operational reasons, to transfer your (personal) data to affiliates of Flowerbook located outside the European Economic Area. Due to the possibility that the regulations in the area of privacy protection do not offer the same protection as within the European Economic Area, Flowerbook will use the Privacy Shield or the EU Model Clauses to protect your privacy as much as possible. If that is not possible, Flowerbook will ask your consent to transfer your (personal) data to countries that do not maintain an adequate protection level. You may withdraw your consent at any time.
What are cookies and how does Flowerbook use them?
Cookies are small pieces of (text) information that are sent to your browser when you visit the website of Flowerbook and then stored on the hard disk or in the memory of your device. The cookies placed via Flowerbook’s website cannot damage your device or the files stored on it. With ‘cookies’, we also mean comparable techniques collecting information, such as device fingerprinting.
Can changes be made to this Privacy Statement?
This Privacy Statement is subject to changes. We therefore advise you to regularly read the Privacy Statement for any such changes.
Questions, remarks, and complaints
If you have any questions regarding this Privacy Statement or the way in which Flowerbook uses your data, you can send an e-mail to privacy@flowerbookapp.com. If you have a complaint about the way your data is processed, please send an e-mail to privacy@flowerbookapp.com. Furthermore, you always have the right to contact the competent national data protection authority. In The Netherlands, this is the Autoriteit Persoonsgegevens.