Privacy Policy

Introduction
Roijakkers Finance, located at Kastanjelaan 400 in Eindhoven, attaches great importance to the protection of your personal data. This privacy policy explains how we collect, process, and protect personal data. By using our services or our website, you agree to this privacy policy.

1. Identity of Roijakkers Finance

2. Personal data that we process

Roijakkers Finance processes personal data about you because you use our services and/or because you provide this data to us yourself. Below you will find an overview of the data that we may process:

First and last name
Date of birth
Gender
Address details
Phone number
Email address
Bank details (if applicable)
Other information that you actively provide to us, for example via correspondence or during a conversation.

3. Sensitive personal data

3.1. Special and sensitive personal data
Roijakkers Finance processes sensitive personal data only when this is necessary for our services and with the utmost care. Sensitive data that we may process includes, among others:

Financial data, such as bank account information and financial reports, which are essential for advisory services.
Login credentials and security information, such as usernames and passwords, if applicable to our services or customer portals.
Advisory reports and files, which may contain confidential financial data and recommendations.

3.2. Confidentiality and secrecy
Sensitive data is treated with strict confidentiality. Employees and involved third parties who have access to this data are bound by confidentiality agreements and may only process the data for the purpose of fulfilling their duties within our services.

3.3. Security of sensitive data
Roijakkers Finance has taken appropriate technical and organizational measures to protect sensitive personal data against loss, unauthorized access, and destruction.

4. Purposes and legal bases for processing

Roijakkers Finance processes your personal data for the following purposes:

Execution of agreements: For the handling of our services, such as wealth accumulation and pension advice.
Statutory obligations: To comply with fiscal and administrative obligations, such as tax returns and financial reporting.
Marketing and newsletters: To inform you about relevant services, provided you have given consent for this.
Customer service and communication: For answering questions and improving our services.

5. Specific processing objectives

5.1. Legal obligations and compliance
Roijakkers Finance is legally obliged to process certain personal data for specific purposes. The processing purposes include, among others:

Identity verification: To verify the identity of customers in accordance with the Anti-Money Laundering and Counter-Terrorism Financing Act (Wwft). This may involve retaining certain identity documents.
Tax and financial reporting: For tax returns, financial administration, and to comply with tax obligations. This data may be shared with competent authorities, such as the Tax and Customs Administration.
Personnel Administration: For the processing of payroll and compliance with the Working Conditions Act (if applicable to employees).

5.2. Contractual obligations
The processing of personal data is necessary for the performance of agreements with customers. This includes, among other things, the preparation of reports and analyses, the maintenance of contact information, and the storage of financial data relevant to the provision of our services.

6. Retention periods

Roijakkers Finance does not retain personal data for longer than is strictly necessary to achieve the purposes for which the data are collected. The retention periods are as follows:

Invoice and payment data: 7 years (statutory retention obligation for tax purposes).
Contact details for marketing purposes: Retained for as long as consent exists or until you withdraw it.
Other personal data for advisory services: Up to 5 years after termination of services, unless a longer retention period is required by law.

7. Sharing personal data with third parties

Roijakkers Finance shares your personal data with third parties only if this is necessary for the execution of our agreement or to comply with legal obligations. This may be with the following parties:

  • Administrative and accounting service providers
  • IT and software vendors who support us with data management
  • Tax and Customs Administration or other government agencies, if required

We enter into a data processing agreement with third parties who process your data on our behalf to ensure the same level of security and confidentiality of your data.

8. Security breach (Data leaks)

8.1. Reporting of data breaches
Despite all technical and organizational security measures, a data breach can never be completely ruled out. Roijakkers Finance takes data breaches very seriously and has implemented procedures to quickly detect and report security breaches.

8.2. Notification to data subjects and the Data Protection Authority
In the event of a data breach that could have serious consequences for the data subjects, Roijakkers Finance will report this data breach to the Dutch Data Protection Authority within 72 hours. Data subjects will be notified if the data breach poses significant risks to their rights and freedoms.

8.3. Internal reporting and actions
In the event of a data breach, an internal report is drawn up and all necessary steps are taken to contain the incident and improve security to prevent recurrence.

9. Your rights

Under the GDPR, you have various rights regarding your personal data. You can invoke the following rights:

  • Right of access: You can obtain an overview of the personal data that we process about you.
  • Right to correction: You can have incorrect or incomplete data corrected.
  • Right to erasure: You may request us to delete your data, unless we are legally obliged to retain it.
  • Right to restriction of processing: You may request us to restrict the processing of your data.
  • Right to data portability: You may request us to send the personal data we hold about you to you or another organization.
  • Right of objection: You can object to the processing of your data.

You can send requests regarding your rights to info@roijakkersfinance.nl. To prevent misuse, we ask you to include a copy of your proof of identity. Please make your passport photo, MRZ (machine readable zone), passport number, and BSN illegible on this copy. We will respond to your request within four weeks.

10. Security of personal data

Roijakkers Finance takes appropriate technical and organizational measures to protect your personal data against loss, unauthorized access, unwanted disclosure, and unauthorized modification.

11. Use of our digital learning environment

To provide the e-learning, Roijakkers Finance uses the Podia platform (www.podia.com). Through this platform, we process, among other things:

  • Name and email address
  • Account details (login)
  • Purchase history
  • Progress and completion status of the e-learning
  • Technical data such as IP address and device details (for security and functionality)

Podia acts herein as a processor. A data processing agreement applies with Podia.

Payments for the digital learning environment are processed via Stripe. Roijakkers Finance itself does not receive full payment or credit card details. Stripe processes payments in accordance with its own privacy and security policy and complies with applicable security standards.

Account details are retained for as long as the digital learning environment is offered and the user has access. Upon termination of access, personal data will be deleted or anonymized, unless a statutory retention obligation applies (such as the 7-year tax retention obligation for invoices).

Podia and Stripe may process personal data outside the European Economic Area (specifically the United States). In that case, appropriate safeguards are applied, such as Standard Contractual Clauses (SCCs), in accordance with the GDPR.

12. Changes to this privacy policy

Roijakkers Finance reserves the right to make changes to this privacy policy. The most current version can always be found on our website. In the event of significant changes, we will inform you by email.

Contact
For questions about this privacy policy, you can contact us via:

E-mail: info@roijakkersfinance.nl
Address: Kastanjelaan 400, 5616 LZ Eindhoven