Stichting HBO Haaglanden, trading under the name The Hague University of Applied Science (hereinafter: 'THUAS') considers your privacy important. If we ask for your personal data, we will handle it carefully and comply with the General Data Protection Regulation (hereinafter: 'GDPR'). 

THUAS receives your personal data in various ways, for example via the website, contact moments, services, systems/tools/applications, application for a function or employment. THUAS wants to be transparent about what exactly we do with your personal data and why. Furthermore, we would like to inform you about what you can expect from us and what privacy rights you have. You can read all about this in this privacy statement. 

This privacy statement provides the relevant information for each target group and applies to all activities (including online via THUAS website and applications).

THUAS is responsible for your personal data

  • THUAS is responsible for protecting your personal data as well as possible. In doing so, we comply with the General Data Protection Regulation (GDPR).

    Contact information THUAS:

     

  • Email: [email protected]

  • Johanna Westerdijkplein 75

     

  • 2521 EN The Hague

Data Protection Officer

  • THUAS has appointed a Data Protection Officer to ensure that the processing of your personal data takes place in accordance with the GDPR and for internal control of our privacy policy. Our DPO is Silvia van Dijk. She can be reached via:

     

  • E-mail: [email protected]

  • Phone: 06 14 83 36 55

  • Johanna Westerdijkplein 109

     

  • 2521 EN The Hague

Definitions

A number of concepts from the GDPR can be found in this privacy statement: 

Data subject

A natural person whose personal data THUAS processes. 

Personal data

All information about an identified or identifiable natural person. This means that information is either directly about someone or can be traced back to this person.

Processing

Everything that is done with personal data, for example collecting, recording, organizing, structuring, storing, consulting, updating or modifying, retrieving, consulting, using, providing by transmission or otherwise making available, blocking, erasure or destruction of data.

How do we protect your personal data?

Security of personal data is of great importance to us. We have taken appropriate technical and organizational measures to protect your personal data against misuse, loss, unauthorized access, unwanted disclosure and unauthorized modification.

All employees of THUAS and employees of the processors involved who may have access to your data are bound by confidentiality. The processing register of THUAS describes which (categories of) employees have access to specific data of, for example, students or employees.

If you think that your data is not properly secured or if there are indications of abuse, please contact the Information Security Officer (ISO) of THUAS immediately via [email protected].

Use of personal data at THUAS

On what basis do we process your personal data (legal basis)?

We may only process your personal data if there is a basis for this. The personal data that Your THUAS processes are based on 1 of the following 6 principles from the GDPR: 

  1. After consent of the person in question. Once given, permission may be withdrawn at any time, without giving any reason. 
  2. The processing is necessary for the execution of an agreement
  3. The processing is necessary to comply with a legal obligation that rests on THUAS. 
  4. The processing of the data serves a public interest
  5. The processing is necessary to protect the vital interests of the person (vital interest). 
  6. The processing is necessary for the representation of the legitimate interests of De THUAS. For this purpose, a balance of interests is made per specific case.

To whom do we provide your data?

How long do we retain your data? 

THUAS does not store your personal data longer than is necessary to achieve the purposes for which the data was collected, or as long as specific laws or regulations prescribe. An example is the retention periods from the Archives Act (elaborated in the Selection List of Universities of Applied Sciences or tax and employment law laws. The retention period is entered in the processing register for each processing operation.

Footage at THUAS

What are your rights as data subject?

Third-party websites

Our privacy statement does not apply to third-party websites that are connected to our website by means of links. We cannot guarantee that these websites handle your personal data safely and reliably.

Cookies

In addition to personal data, THUAS uses cookies for its websites, for example to improve the ease of use of its websites. Cookies do not contain any personal data of the user. They only remember the preferences and interests based on the surfing behavior of the device. THUAS uses these cookies to improve user experiences. Read our cookie statement here.

Data breach

In the event that data does fall into the hands of third parties who are not allowed to have access to that data, then there is a data breach. You can report a suspicion of a data breach to the Privacy Officer ([email protected]). THUAS then goes through all the required steps.

Complaints

If you have any questions or comments about the processing of your data by THUAS, please first contact our privacy organisation via [email protected]. We take your privacy and rights very seriously and are happy to help you. 

Of course you can (afterwards) also contact our DPO. The DPO can be reached by telephone on 06 14 83 36 55 or by e-mail via [email protected]. If you feel that we are not helping you in the right way, you have the right to file a complaint with the Dutch Data Protection Authority ("AP"), which acts as a supervisory authority within the domain of privacy and information security. This can be done via the website Report complaint to the AP | Dutch Data Protection Authority Report complaint to the AP | Dutch Data Protection Authority

Questions

Do you have any questions or comments about our privacy statement as a result of this information? Send an e-mail to our privacy organization via [email protected].

Version management and changes to the privacy statement

Adopted on January 10, 2006 by the Executive Board
And a consequence of the privacy policy of The Hague University of Applied Sciences, part of the Information Obligation.

The Hague University of Applied Sciences has the right to make changes to this privacy statement. You will always find the most up-to-date privacy statement on the website of The Hague University of Applied Sciences and Intranet/Sharepoint. Changes to the text take effect from the moment they are published.

This text was last modified on January 1, 2023