Insinto takes your privacy very seriously and treats all your personal information with great care. Insinto always acts in accordance with the European directive (General Data Protection Regulation) and legislature regarding privacy protection. This document sets out Insinto’s Privacy Statement in regards to the use of employee data collected by the use of an Insinto survey. If you are a customer that has participated in a customer satisfaction survey created by Insinto you can read how we handle your personal data in a separate privacy statement:
Insinto recommends that you read this Privacy Statement carefully. Insinto is entitled to amend this privacy statement in the future, for instance if the services rendered by Insinto change. In case Insinto changes its privacy statement, such shall be published on its website. Therefore, it is recommended to regularly check this page.
This privacy statement was last amended on 13-3-2019
Table of contents
|1. Who is Insinto?|
|2. What information does Insinto collect and process?|
|3. For what purposes will Insinto use information about you?|
|4. How does Insinto protect your personal information and where is the data stored?|
|5. Data storage|
|6. What are your rights?|
1. Who is Insinto?
Insinto is the limited liability company Insinto B.V., having its statutory seat in Haarlem, the Netherlands and its office at (2011NB) at the Nieuwe Gracht 3, registered with the Dutch Chamber of Commerce under file number 70351465
The service Insinto offers mainly consists of distributing online surveys to employees or customers. These online surveys can be enriched with various other data sources which Insinto deems valuable in the context of their research such as, but not limited to order/sales data, retention data and operational data (such as delivery dates). Insinto analyses the answers resulting therefrom and researches the relationships between what happens in the workplace and customer satisfaction in regards to organizational performance. This information is subsequently processed into a research report which can be used to improve overall business performance and customer satisfaction.
2. What information does Insinto collect and process?
Insinto processes personal data obtained from different sources in order to adequately conduct its research and draw up research reports. This data is obtained from both your employer and you, by submitting your answers to Insinto’s survey. The research conducted by Insinto and reports resulting therefrom are always anonymous, which means that your employer never gets to know your personal survey results, nor are research reports traceable to an individual employee.
Your employer provides Insinto with the following personal data about you, which is processed by Insinto to conduct its research as accurately as possible.
In order to provide access to our online survey, Insinto sends you a direct web link via e-mail. For this purpose, your employer provides Insinto with your e-mail address. Your e-mail address will never be included in any research report or distributed to any external party.
Department and Sub-Department
In order to accurately analyze local business results, your survey answers shall be allocated to the department you work in. These data are provided by your employer and shall at all times be aggregated in any research report, so your employer will never see individual research data or survey results.
Age, gender, experience
In order to accurately analyze and review employees’ performance data, your employer provides Insinto with your age, gender and years of experience at your current firm. In a research report, Insinto shall at all times aggregate this data to age and experience clusters for the groups of at least 10 respondents. Therefore, your survey results can never be traced back to you from any research report on the basis of these data.
Employee performance data
In order to conduct its research, Insinto is provided with personal performance data of the employees. This information shall be aggregated to department level before being incorporated into a research report and is therefore never deducible to an individual employee. Such data concerns, among other things, customer satisfaction data, conversion percentages, absenteeism and (average) expenditure per customer.
The reports drawn up by Insinto on the basis of the survey respondents’ results, are never deducible to a single respondent: the survey results of at least 10 respondents are used to compose a report. Therefore, a research report – so the output your employer sees – never contains personal data. However, the individual survey results Insinto processes to compose such reports may be traced back to a single employee. Insinto handles these survey results with the greatest degree of care and shall make sure that no third party gains access to individual survey results.
3. For what purposes will Insinto use information about you?
Insinto may use your personal data for the following purposes:
Insinto will not use your data for the following purposes:
4. How does Insinto protect your personal information and where is the data stored?
Insinto takes appropriate technical and organizational measures to protect your (personal) information against loss or any form of unlawful use. In particular, your personal data are encrypted and stored on a local network that is secured by means of state of the art protection measures. At Insinto, a strictly limited amount of people have access to the survey data, on a need to know basis.
Your personal data is stored in the EU and shall not be transferred outside of the EU.
5. Data storage
Insinto saves the personal data for a maximum of five years after which the data is anonymized/ aggregated and can be used for internal research purposes, benchmarking purposes, meta-analysis, scientific purposes or white papers.
6. What are your rights?
Under the European General Data Protection Regulation you have a number of rights with regard to your data and the processing thereof:
You may access part of your personal information and make any necessary changes in your account. If you would like to see an overview of all personal data Insinto has obtained about you, you may exercise your right of access by submitting a request to Insinto.
If you wish to make changes to the personal information that you have seen as a result of a request for access and you are unable to make the changes yourself in your account, you may request that Insinto makes these changes for you. You may request that Insinto modifies, corrects, supplements, erases or shields your information.
Restriction of processing of personal data
You also have the right, under certain conditions, to ask Insinto to restrict the processing of your personal data.
Right to object
If processing of your data takes place on the grounds of ‘legitimate interest’ by Insinto or a third party, you have the right to object to that processing.
Portability of data
You have the right to obtain your personal data from Insinto. Insinto will provide this in a structured and commonly used format, which can easily be opened using commonly used digital systems.
When the legal basis for a particular processing is your explicit consent, you have the right to withdraw that consent. This does not affect past processing, but does mean that we will no longer be allowed to process this data in the future. It may also result in Insinto no longer being able to provide you with certain services.
Response from Insinto
A request can be sent to privacy@Insinto.nl. Insinto will comply with your request as soon as possible and in any case no later than one (1) month after Insinto has received such a request. If Insinto rejects your request, we will indicate in our reply why the request was rejected.
If you have any questions or complaints about how your data is being processed, please do not hesitate to contact us via e-mail: privacy@Insinto.nl. Furthermore, you always have the right to contact the competent national data protection authority. In The Netherlands, this is the Autoriteit Persoonsgegevens.