The dutch cybersecurity platform for higher education and research, dcypher, respects your privacy. Information will be kept for no longer than is necessary for the purpose for which it was collected, and will not be used for purposes that are not compatible with the original purpose. dcypher processes personal data in accordance with the General Data Protection Regulation (GDPR). When processing personal data, dcypher follows the principles of subsidiarity and proportionality. As regards subsidiarity, dcypher will consider whether the objectives served by the processing of data could also be achieved in other ways, using less personal data or using less sensitive personal data to infringe less on the privacy of the data subject(s). The processing of personal data should also be proportionate to the intended purpose. As such, dcypher collects no more data than is required for the intended purpose.
Rights of data subjects
Due to the arrival of the GDPR, the processing of personal data is subject to new rules. NWO handles the data of data subjects and (former) employees securely and carefully. Data subjects have the right to access, amend, delete or limit the data dcypher holds about them, or to transfer their personal data to someone else.
Right to access
Would you like to know which of your personal data dcypher processes? You may request a summary from the Legal Department of NWO at any time. We will explain inter alia why we use your personal data, how long we hold your personal data and what you can do if there are inaccuracies in your personal data.
Needless to say, dcypher must be completely certain that we are providing the personal data to the right person. As such, we ask you to send us a copy of your passport or other identification along with your access request. When doing so, dcypher asks you to obscure your social security number and photograph.
Correcting or supplementing your data (rectification)
If there are errors or omissions in the personal data held by dcypher about you, you may submit a request for rectification.
Deleting your personal data (right to be forgotten)
In certain circumstances, you may request that we delete your data from our systems. dcypher cannot delete your data in situations where we process your personal data in furtherance of our statutory obligations.
Transferring your data (data portability)
If you wish, you may request a copy of the data we hold about you. You may transfer your data yourself, or have us transfer your data to a third party.
Temporarily halting the processing of your personal data (restriction)
If you wish to temporarily halt the processing of your data, you may submit a request to the Legal Department of NWO.
Objecting to the processing of your data
At dcypher, data subjects may, due to reasons related to their specific situation, exercise the right to object to the processing of personal data held about them. You may submit an objection to the Legal Department of NWO. If such an objection is received, dcypher will cease processing your personal data unless overriding legitimate grounds dictate otherwise.
How do we use your data for the dcypher newsletter?
We use your data for no other purpose than sending you the dcypher newsletter. We do not share your data with third parties without your permission. We have entered into a processing agreement with the provider of the newsletter system. You can unsubscribe at any time by clicking on the link at the bottom of the dcypher newsletter. Your data will be removed from our system immediately.