DHA will only use your data if you give permission or if DHA needs your data to provide services to you or if this has already happened. DHA does not sell your personal information to third parties. DHA only makes the data available to third parties that are involved in the execution of an agreement between DHA and you. If and when DHA processes your data in any other way, this requires your (explicit) consent. The management of DHA is responsible for the processing of all personal data.
Policy: this concerns the policy with regard to the processing of personal data by DHA.
Data subject: an individual and natural person to whom personal data relates.
Responsible: the management of DHA that determines the purpose of and the means for the processing of personal data.
Processor: a (third) party engaged by DHA who processes personal data on behalf of DHA.
Personal data: any information relating to an identified or identifiable natural person.
Processing: any action or set of actions with regard to personal data.
Third: any other person, other than the data subject, the controller or processor, or any person who falls under the direct authority of the controller or processor and is authorized to process personal data.
Data breach: personal data that falls into the hands of third parties who do not (may) have access to that data.
1. What data does DHA process
General personal data
Personal data that we collect from you for the performance of our work, for example; first name, last name, date of birth, place of birth, gender, address details, postal address, telephone numbers, e-mail addresses, bank account numbers. This is, for example, data that you leave behind when you visit our website, when you visit our location or when we contact you to, for example, issue a quote.
Data related to telephone contacts
Any personal data collected from you when you call us to request or provide information or provide services.
Offline personal data
All personal data collected from you during a 'live' or face-to-face conversation, such as at a trade fair or promotion.
Other personal data
Any personal data collected from you when you contact us by email, fill in the contact form on our website or when you visit our location. Any information that you provide to create ID cards, when you work at DHA, when providing information related to a VOG or personal data that we have collected from you in another way.
2. For what purpose does DHA process these personal data
DHA only processes the aforementioned personal data for the performance of its activities and to guarantee the safety of all visitors and employees at Den Helder Airport.
Disclosure of your personal data to third parties
We are required in limited circumstances to disclose your personal information to unrelated third parties;
4. Legal basis of the processing
The data referred to in Article 1 is processed by DHA on the basis of one of the following legal bases:
5. DHA does not sell your data
DHA does not sell or provide your personal data to third parties and only makes this information available to third parties that are involved in providing the agreed services. Our employees and hired third parties are obliged to respect the confidentiality of your information.
6. Retention of data
DHA stores your personal data for as long as necessary or as permitted by law. We will delete your personal data at your request. A copy of this data can be kept in backups.
The security of your data is also important. We ensure that your data is processed securely. We close our offices and cabinets every day. Our computers are protected with passwords, our passwords are regularly replaced.
Keep in mind that no security is 100% safe and DHA cannot guarantee 100% security.
8. Data breach
Every complaint or report regarding the processing of personal data within DHA is an incident. The best-known form of such an incident is a data breach. If personal data falls into the hands of third parties who are not allowed access to that data, we speak of a data breach. Any data leaks are processed and resolved in accordance with the legal standard.
Incidents can be reported to the Personal Data Incidents Reporting Center (Dutch Data Protection Authority - reporting desk) or to the DHA data processing officer. A record will be kept of every incident and its handling. An incident can be reported by a data subject, a processor or a third party.
Incidents are forwarded to the responsible department or person as much as possible and then dealt with in the correct manner. If the personal data of the person (s) concerned or the business processes, finances or good name of DHA are seriously endangered, the management will in any case be informed. In the event of serious data leaks, these will be handled in accordance with the specific provisions on data leaks included in the relevant legislation and regulations.
11. Your rights with regard to your personal data