Privacy & Security Policy at Etil

Since May 25, 2018, everyone must comply with the General Data Protection Regulation (GDPR). The introduction of the GDPR has significantly changed the legal framework for the protection of personal data. The regulation contains extensive obligations for businesses and strengthens the rights of individuals whose data is processed.

Here, you will find specific information regarding privacy and data protection concerning the processing of personal data by the Etil research group.

If you have any questions that are not answered in this privacy statement, if you have suggestions or comments about its content, or if you have complaints about how we handle your personal data, we would be happy to hear from you. Our contact details can be found at the bottom of this statement.

1. General

Etil processes personal data in a careful and secure manner, in accordance with applicable laws and regulations. We consider this self-evident, but it is also a requirement under the General Data Protection Regulation (GDPR). This is a privacy law that has been in effect across the European Union since May 2018. In this document, we provide further information about the purposes and legal bases for processing, as well as other relevant information regarding the processing of the data you provide.

Due to new legislation or other developments, Etil will adjust its processes when necessary. This may also involve changes regarding the processing of personal data. Therefore, we recommend that you read this statement regularly to stay informed about any changes. The date of the last update is indicated at the end of this document.

2. The Data Controller

Etil processes personal data only when necessary for a specific purpose. For example, to contact you by phone or email, or to carry out an assignment based on an agreement. Etil takes the protection of your data seriously and implements appropriate physical, administrative, technical, and organizational measures to prevent misuse, loss, unauthorized access, unwanted disclosure, and unauthorized modification. Etil research group is ISO 9001 and ISO 27001 certified.

Etil research group has a Privacy Officer. If you believe your data is not properly secured or if there are indications of misuse, please contact us at privacy@etil.nl.

Although Etil processes certain personal data, we want to clarify that a third party is responsible for most data processing. The processing of personal data by these third parties is beyond our control, and we are not responsible for how they handle these data. However, we do enter into a data processing agreement to ensure the same level of security and confidentiality for your data. We advise you to review the privacy statements of these third parties for more information on how they handle your data.

3. Processing of Personal Data

Etil processes personal data only when necessary for a specific purpose, such as contacting you by phone or email, or executing an assignment based on an agreement. Etil takes the protection of your data seriously and implements appropriate physical, administrative, technical, and organizational measures to prevent misuse, loss, unauthorized access, unwanted disclosure, and unauthorized modification. Etil research group is ISO 9001 and ISO 27001 certified.

4. Purpose

The purpose of processing personal data by Etil is to conduct qualitative and quantitative research for both the public and private sectors. We collect and process data based on specific assignments to transform them into valuable insights. These insights enable businesses, governments, and other organizations to understand trends and developments in society, their sector, and their own organization, allowing them to make informed decisions to improve their performance and strategies.

As an innovative and independent research firm, we believe in the power of data to continuously help organizations improve. We combine, collect, and interpret data at all levels, always striving for scientifically sound and sustainable solutions. Our research services aim to provide in-depth, reliable, and actionable insights that empower our partners to achieve their goals effectively.

5. Legal Basis

The processing of personal data by Etil is based on the following legal grounds:

  • Consent: In some cases, we request explicit consent from data subjects to process their data. This applies, for example, when we collect personal data for specific research purposes requiring prior consent.
  • Performance of a Contract: If we collect data based on a specific research assignment, the processing of personal data is necessary for the execution of that agreement. This applies when we support clients with research results or insights.
  • Legitimate Interest: In cases where data processing is necessary for scientific or historical research or for statistical purposes, processing may be based on our legitimate interest in generating valuable insights for both the public and private sectors. We ensure that the rights and freedoms of data subjects are not infringed.

6. Categories of Personal Data

The personal data collected by Etil may include the following categories:

  • Contact details such as name, email address, phone number, and address.
  • Demographic data such as age, gender, marital status, and education level.
  • Employment-related data, such as job title, employer, and work experience.
  • Behavioral and preference data, such as responses to surveys, participation in research studies, and questionnaire answers.
  • Research data, such as responses collected during qualitative interviews, focus groups, or other research activities.
  • Online identifiers such as IP addresses and information collected through cookies.
  • Sensitive data, such as information on ethnic origin, but always with explicit consent from the data subject.

 

7. Data Sharing

Etil shares personal data with third parties only when necessary for the execution of an assignment or to comply with a legal obligation. In such cases, we inform the other party of the need to handle these data securely. Personal data are not processed outside the European Economic Area (EEA).

With companies that process your data, we enter into a data processing agreement to ensure the same level of security and confidentiality for your data.

8. Automated Decision-Making

In some cases, Etil's tools use automated decision-making for research purposes. This means that we process certain data and make automated decisions to identify trends and gain insights.

These automated processes contribute to generating research results, but human intervention is always possible if needed.

We do not make decisions that have legal consequences for data subjects based solely on automated processing. The rights of data subjects remain unchanged.

9. Retention Periods

Etil does not retain personal data longer than necessary for the purposes for which they were collected. Once the data are no longer needed for their original purpose, they are deleted or anonymized. If no agreement is reached, we retain the data for a maximum of one year. After this period, the data are securely deleted unless legal obligations require a longer retention period.

10. Cookies

You can visit Etil's website anonymously unless you provide personal information. However, we want to track the number of visitors and the pages they visit. Only the number of visits is recorded, not the identity of the visitors. Your data remain anonymous. Etil uses cookies for visitor analysis via Google Analytics.

To optimize website accessibility, cookies are also used. A cookie is a small text file temporarily stored on your hard drive by a web page server. With a cookie, our website can recognize you upon your next visit and adjust the site accordingly.

Refusing Cookies

You always have the option to refuse cookies. You can set your web browser to reject all or certain cookies (see your web browser’s manual). If you refuse cookies, some services may not be available or may function slower.

11. Contact

If you have any questions or wish to contact Etil regarding privacy or data protection, please email us at privacy@etil.nl, clearly stating your question or comment.

If you have a privacy complaint, you can also email us at privacy@etil.nl or submit a complaint directly to the Dutch Data Protection Authority.

Privacy Statement, July 23, 2024