The way we handle privacy

Instead of claiming to value your privacy, we'd like to go over some of the ways we handle your data so you could form your own opinion.

The way we handle privacy

This is how we roll

Some notes about privacy and cookies

Detailed below you'll find the ways we (or our select partners) collect and store data. We believe it is important that this is done in the correct manner and therefore also comply with the relevant laws and regulations, including the General Data Protection Regulation (hereinafter: GDPR).

  • Clear purposes

    Clearly record our purposes before we process your personal data, through this privacy statement.

  • Minimal data

    Store as little personal data as possible and only the data that is necessary for our services.

  • Security measures

    Take necessary security measures to protect your personal information. We also impose these obligations on parties that process personal data for us.

  • Respect your data

    Respect your rights, such as the right to view, correct or delete your personal data processed by us.

We don't sell you or your visitors data. If questions arise, feel free to reach out.

Visit registrations

Upon registering a visit, we save the data you provided. Namely: Your name, emailaddress, phonenumber and browser language. Obviously we'll also save the location you're visiting. If the venue you're visiting enabled the healthcheck option, we'll also save those.

In case you're with more people, we'll save the names of these covisitors. These people fall under your responsibility and we'd like to remind you of this in case we do have to email you about a possible infection.

When you've got a Covisitor visitor account we will connect your account and your visit. This allows us to show you the places you've visited.

All data connected to visit registrations will be automatically deleted within 15 days. In the history of your visits you will therefore never find a visit that was longer than two weeks ago.

The way we use this data: Hopefully nothing. We'll send you one email upon successful registration. If we're informed about a possible Covid-19 case within the 15 days that we store your data, we'll send your another email and possibly send your data to competent authorities. Venue-owners will never see personal information like your name(s), emailaddresses or phonenumbers.

Third party services: The data you provide will be saved, stored and kept in the EU. We use Amazon AWS to send you emails. You'll find their Privacy Policy here.

Visitor account

If you visit the same locations more often or visit multiple locations that use Covisitor, we offer you the option to create an account. Using your account, you are able to register your visit within 5 seconds.

In essence, an account consists of the same data as a visit. We store your name, phonenumber, emailaddress and browser language for an account. Of course we also store your password, using a flashy encryption.

The way we use this data: Basically nothing. We just offer you an option to register even faster. In case you'd want to delete your account, you can drop us a line. We'll do our best to delete all traces of your account if you decide to leave.

At any given moment you're free to change any of the details in your account. The changes you make do not affect past registrations because we don't have any interest in combining and collecting your data.

Third party services: The data you provide will be saved, stored and kept in the EU. We use Amazon AWS to send you emails. You'll find their Privacy Policy here.

Visit registrations

Upon registering a visit, we save the data your visitors provided. Namely: Their name, emailaddress, phonenumber and browser language. Obviously we'll also save the location they're visiting. If you enabled the healthcheck optio, we'll also save those.

In case your visitors with more people, we'll save the names of these covisitors. These people fall under the main visitor's responsibility, we remind them about this in case we do have to email them about a possible infection.

When they've got a Covisitor visitor account we will connect their account and visit. This allows us to show them the places they've visited.

All data connected to visit registrations will be automatically deleted within 15 days. In the history of their visits they will therefore never find a visit that was longer than two weeks ago.

The way we use this data: Hopefully nothing. We'll send you one email upon successful registration. If we're informed about a possible Covid-19 case within the 15 days that we store your visitor's data, we'll send them another email and possibly send their data to competent authorities. As a venue-owner you will never see personal information like their name(s), emailaddresses or phonenumbers.

Third party services: The data visitors provide will be saved, stored and kept in the EU. We use Amazon AWS to send emails to visitors. You'll find their Privacy Policy here.

Venue account

Using Covisitor as a venue requires a Venue account. We save the following datails to deliver our service: Name of contact, company name, emailadress, visitation address, invoice address, Chamber of Commerce/TAX ID, paymentdetails and optional details like website, phonenumber and other settings.

Of course we also store your password, using a flashy encryption. Furthermore we make sure your company and venue's data will be safely stored. As a venue-owner you'll never see visitors data, just as visitors will never see confidential venue data. That's how it should be.

The way we use this data: We need this data to be able to offer our service and will not gather data we don't need for this purpose. Obviously you grant us permission to do so. We'll store this data for up to three months after ending the subscription. Some data may be stored longer because of regulatory reasons.

Third party services: We work together with select companies that may or may not need the above stated details to offer our service.

We use Mollie to process payments.

Contacting Covisitor

Using outlined methods you can ask questions or make a suggestion. If you do so we'll at least use your name and emailaddress. You give us permission to do so. Potentially additional details are needed and will also be stored. All data will be removed when (1) the account will be deleted, or (2) when the issue at hand is resolved.

Third party services: We do not provide any information for fulfillment unless the matter explicitly indicates that one of our suppliers is involved.

Statistics

We gather anonimised statistics about the use of this website.

We use Fathom to do so.

Security

Keeping your data safe is a priority to us. We'll make sure your data is securely stored. We'll also make sure to keep everything up-to-date. All pages you visit should start with httpS:// for a secure connection.

Changes to this policy

When our services or parts thereof change, we need to update this policy. We'll do our best to inform you about applicable policy changes.

Your rights

If you've got any questions or you want to know more about the personal data we store, we can always reach out. Scroll down or visit our support-page.

Complaints

If you want to file a complaint about the way we handle your data, you can write an email to [email protected]. We'll handle your complaint internally and communicate an appropriate solution.

When you're not happy with the way we help you, you've got the right to file a complaint with the authorities. In The Netherlands this authority is called: Autoriteit Persoonsgegevens.