This Privacy Statement applies to all activities of Erasmus Academie, including the activities via the website. This Privacy Statement provides the most relevant information on each subject.
Erasmus Academie treats personal data with care and acts within the limits of the General Data Protection Regulation (GDPR).
Controller and responsibility
Erasmus Academie is the controller, within the meaning of the GDPR. Erasmus Academie regards it as essential that the personal data of its students, course participants, employees and visitors are handled and secured with the greatest possible care. We also want to be open about the way in which we process your data. For that reason, we explain this below. Priority is given to compliance with the requirements of the GDPR in all cases.
For which purposes does Erasmus Academie process your personal data?
Erasmus Academie uses your personal data that we gather for its business operations and for correct implementation of its statutory tasks and obligations for education and research. The main purposes for which Erasmus Academie processes personal data are:
A. Educational administration and support: recruitment & selection of new students, list of participants, attendance sheet, student administration, internal and external information provision, recording results, the issue of certificates, diplomas and degrees, the contracting and execution of agreements with students, customer engagement, relationship management and marketing, health, safety and security, organisational analysis, development and management reports, support for accreditation investigations, advice and supervision, handling disputes and the ability to conduct audits.
B. Personnel matters: determining salary entitlements, implementing employment contracts, regulating benefit claims in connection with the termination of employment contracts, internal and external audits and in connection with occupational health care.
C. Business operations and finance: financial administration, management of the purchasing systems and payment systems, implementation and management of procedures for IT, legal affairs and other business operations. Recruitment & selection of new employees and job candidates, personnel management, internal and external information provision, recording results, the issue of certificates, diplomas and degrees, the contracting and execution of agreements with employees, customers, consumers, suppliers and business partners, customer engagement, relationship management, marketing and market surveys, health, safety and security, organisational analysis, development and management reports, settlement of complaints.
D. Facilities: access and management systems.
E. General processes: Web content management, library system, physical and digital archiving, complaints procedure and objections and appeals.
Erasmus Academie processes personal data via its various websites, such as personal data acquired via contact forms. This takes place on the basis of permission or on the grounds of the justified interests of Erasmus Academie. All processes in which personal data are processed are recorded in a register of processing activities. This gives Erasmus Academie a complete and up-to-date overview of all data processing processes.
Whose personal data does Erasmus Academie gather?
In the processes referred to above, Erasmus Academie gathers data from different categories of data subjects. These are:
• Students / course participants
• Prospective students
• Employees and job applicants
• External parties, including temporary agency workers
• Visitors to the website(s)
Which personal data does Erasmus Academie gather?
Different personal data are gathered in each process. The most common data are:
• Name and address details (NAW data);
• bank account numbers (IBAN numbers);
• telephone numbers;
• dates of birth;
• gender data;
• e-mail addresses;
• interaction data (e.g. cookies or information received when you contact us.)
• Images (photographs and videos)
• Course information, study progress and study results
• Surfing and clicking behaviour
Erasmus Academie gathers (personal) data directly from you, and where applicable, Erasmus Academie also receives personal data from third parties, in as far as this is in compliance with the law.
Granting and withdrawal of permission
Erasmus Academie offers various activities that can only be performed by making use of your personal data. These could include your e-mail address, in order to send newsletters, promotional e-mails. Your data are used only if you give your explicit permission for this. You will always be informed of the purposes for which your data are used, which data are involved and to which parties these are provided. If you grant Erasmus Academie permission to use personal data, you can always withdraw this permission at a later date.
How does Erasmus Academie ensure confidential handling of personal data?
Erasmus Academie treats personal data as confidential. Erasmus Academie takes appropriate technical and organisational measures to protect personal data. Erasmus Academie shares personal data only in accordance with this Privacy Statement and with third parties only if this is warranted and takes place with care.
Sharing data with third parties
On the instructions of Erasmus Academie, third parties may provide certain parts of the services for the execution of an agreement. Erasmus Academie contracts agreements with these processors in order to ensure that personal data are handled confidentially and with due care (e.g. by completing a questionnaire). These agreements are contracted in ‘processor’s agreements'.
Your personal data will not be leased, sold or shared in any other way with or provided to third parties. Erasmus Academie may share your (personal) data with third parties if, for example, you have personally granted permission for this or if this is necessary for the execution of the agreement.
Erasmus Academie provides personal data to enforcement authorities or fraud control organisations if this is necessary in order to comply with a statutory obligation.
Passing on your data outside the EU
Erasmus Academie does not provide personal data to countries outside the EU.
For how long are data stored?
Erasmus Academie stores your personal data in compliance with the GDPR. The data are not stored for longer than is strictly necessary in order to realise the objectives for which the data are gathered.
Click here to submit a request for viewing, changes or corrections.
You also have the right to submit a complaint concerning the use of your data to the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).
Erasmus Academie uses appropriate security technology for optimal protection of your personal data against unauthorised access or unauthorised use. We report (attempts at) abuse. Erasmus Academie also takes organisational measures to protect personal data against unauthorised access.
Cookies and clicking behaviour
General visitor data, such as the most commonly requested pages, are recorded on our website. The purpose of collecting this general information on visits to the website is to optimise the design of the website for you. Erasmus Academie uses different tools for the optimal functioning of the website and to improve its user-friendliness, and in order to retrieve active feedback from users. Read more about the cookies that the EUR uses here.
Third party privacy policies
Do you still have any specific questions or comments regarding our privacy statement after reading this information? Then please feel free to contact us. You can send an e-mail to email@example.com. The EUR data protection officer can also be contacted via the e-mail address: firstname.lastname@example.org.