PRIVACY POLICY

This Privacy Policy informs you about the personal data we (Mosa Meat B.V.) collect from you, how we process it, and for what purposes we use it. This Privacy Policy also informs you about your privacy rights and how the law protects you. Mosa Meat respects your privacy and we are committed to the careful, safe and lawful processing of your personal data.

We can collect and process personal data when you are an employee, trainee, job applicant, customer, agent, supplier, contractor, visitor of our website or when you interact with us in any other way. We use personal data to enable and improve our interaction(s) and business relationship with you, and to provide and improve our services. This Privacy Policy is not applicable to business related data and/or data on companies. This Privacy Policy may be amended from time to time.

Collecting and using your personal data

Personally identifiable information

We process personal data that has been provided by you or a third party. Personally identifiable information may include, but is not limited to:

  • name/address

  • company particulars

  • email address and telephone number

  • information that is stated on an ID certificate, such as date of birth and citizen service number (BSN)

  • possibilities of performing work in relation to health, as provided by the company doctor

  • login details for your account on our external or internal websites

  • financial particulars, such as IBAN

  • customer particulars provided through the customer account or contact form on our website

  • CV and motivation letter

  • registration of working hours and commuting reports for our employees

  • information from an assessment carried out as part of an application procedure

  • data processed in security camera images around our offices and production departments

  • data processed in photos

  • data from public sources such as the chamber of commerce and the land registry

  • technical data, such as the IP address and your digital browsing behaviour on our external or internal websites

Service usage data

Website usage data is collected automatically when using our website mosameat.com.

Website usage data may include information such as your device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our website that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When you access the website by or through a mobile device, we may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data. We may also collect information that your browser sends whenever you visit our website or when you access the website by or through a mobile device

We use Cookies and similar tracking technologies to track the activity on our website and store certain information. Tracking technologies that can be used are beacons, tags, and scripts to collect and track information and to improve and analyse our website.

Service Providers

Service Providers we use may have access to your personal data. These third-party vendors collect, store, use, process and transfer information about your activity on our website in accordance with their Privacy Policies. These include:

  • Analytics: we may use third-party Service providers to monitor and analyse the use of our internal and external websites. For example, Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our website. This data is shared with other Google services. Google may use the collected data to contextualise and personalise the ads of its own advertising network. You can opt-out of having made your activity on the website available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js and dc.js) from sharing information with Google Analytics about visits activity. For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy.

  • HR: We may provide personal information to third parties, such as government agencies on the basis of a legal obligation (tax, insurance, statistics, company doctor), but also to service providers who assist us in specific tasks or the execution of agreements. Examples include the payroll administrator, employment services, pension and insurance company, IT service providers or consultants. Mosa Meat has concluded processing agreements with these third parties, which include provisions on the security of personal data.

  • Email Marketing: we may use your personal data to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt-out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send or by contacting us. Mailchimp is an email marketing sending service provided by The Rocket Science Group LLC. For more information on the privacy practices of Mailchimp, please visit their Privacy policy: https://mailchimp.com/legal/privacy/.

  • Payments: We may provide paid products and/or services within the website. In that case, we may use third-party services for payment processing (e.g. payment processors). We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information. Stripe's Privacy Policy can be viewed at https://stripe.com/us/privacy.

We do not always process all of the above data. Which personal data we process in a specific case depends on your individual relationship with Mosa Meat and, of course, the purpose of the data processing.

Purposes and legal grounds for processing personal data under GDPR

We may process personal data under the following conditions:

  • Consent: You have given your consent for processing personal data for one or more specific purposes.

  • Performance of a contract: Provision of personal data is necessary for the performance of an agreement with you and/or for any pre-contractual obligations thereof.

  • Legal obligations: Processing personal data is necessary for compliance with a legal obligation (including tax legislation) to which Mosa Meat is subject.

  • Vital interests: Processing personal data is necessary in order to protect your vital interests or of another natural person.

  • Public interests: Processing personal data is related to a task that is carried out in the public interest or in the exercise of official authority vested in Mosa Meat.

  • Legitimate interests: Processing personal data is necessary for the purposes of the legitimate interests pursued by Mosa Meat.

Below are some examples of how these conditions apply to our activities:

  • HR and recruitment: We collect and process personal data for recruitment, completing job applications, and the hiring of employees. Once we have hired someone, the personal data is required for the performance of the employment contract, such as for the development and assessment of the employees and the salary administration.

  • Account management and maintaining contact: contact details can be processed to maintain contact with customers, suppliers and other business relationships. These contact details can be used, for example, for sending a newsletter. Personal data may also be obtained and processed through activities on social media, including by posting photographs. The processing of personal data in this context is necessary for the representation of the interests of Mosa Meat.

  • Improvement of products and services: We may process personal data in order to improve our products and services. Examples include data entered on (digital) forms. Customer data may also be processed into statistical data that is used to provide insights into the quality and effectiveness of our products and services. As much as possible, we will process this data anonymously or encrypted.

  • Security: In order to guarantee the security of our offices and production locations, personal data can be processed by means of, for example, security camera images and access control. This data processing is necessary to protect the vital interests (security) of our employees, sites, products and visitors, and may be necessary for the representation of the legitimate interests of Mosa Meat.

In any case, we will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.

Your Rights under the GDPR (General Data Protection Regulation)

We undertake to respect the confidentiality of your personal data and to guarantee you can exercise your rights.

You have the right under this Privacy Policy, and by law if you are within the EU, to:

  • Request access to your personal data. The right to access, update or delete the information we have on you. Insofar as this is required by the GDPR, you can access, update or request deletion of your personal data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you. This also enables you to receive a copy of the personal data we hold about you.

  • Request correction of the personal data that we hold about you. You have the right to have any incomplete or inaccurate information we hold about you corrected.

  • Object to processing of your personal data. This right exists where we are relying on a legitimate interest as the legal basis for our processing and there is something about your particular situation, which makes you want to object to our processing of your personal data on this ground. You also have the right to object where we are processing your personal data for direct marketing purposes.

  • Request erasure of your personal data. You have the right to ask us to delete or remove personal data when there is no legal basis for us to continue processing it, for example if personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.

  • Request the transfer of your personal data. We will provide to you, or to a third-party you have chosen, your personal data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.

  • Withdraw your consent. You have the right to withdraw your consent on using your personal data. If you withdraw your consent, we may not be able to provide you with access to certain specific services or interactions.

Exercising of Your GDPR Data Protection Rights

You may exercise your rights of access, rectification, cancellation and opposition by contacting us. Please note that we may ask you to verify your identity before responding to such requests. If you make a request, We will try our best to respond to you as soon as possible.

You have the right to complain to a Data Protection Authority about our collection and use of your personal data. For more information, if you are in the European Economic Area (EEA), please contact your local data protection authority in the EEA. In the Netherlands the data protection authority is: Autoriteit Persoonsgegevens (www.autoriteitpersoonsgegevens.nl).

Retention of Your Personal Data

We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your personal data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

We will also retain usage data for internal analysis purposes or for generating statistical data. In these cases, the data will be anonymised as much as possible and only data that is necessary for the other purpose will be stored and processed. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our services, or we are legally obligated to retain this data for longer time periods.

For HR purposes Mosa Meat observes the following retention periods for personal data:

  • 1 year after leaving the company

    • Application letter, curriculum vitae, references

  • 2 years after leaving the company

    • Labor contract (including additions)

    • All correspondence about promotions and dismissal

    • Reports of progress meetings and assessments

    • All reports regarding illness (UWV etc.)

    • Reports about others issues/problems

  • 5 years after leaving the company

    • Wage tax statement and copy of ID

  • 7 years after leaving the company

    • Personal details

    • Start date

    • Payroll administration

    • Terms of employment

    • Travel distance home/office

After this period, the personal data will be deleted, unless the retention of the personal data is necessary for a specific purpose, such as a legal dispute.

Transfer of your personal data

Your information, including personal data, is processed at Mosa Meat's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those from your jurisdiction.

Mosa Meat will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and the GDPR. No transfer of your personal data will take place to an organisation or a country unless there are adequate controls in place including the security of Your data and other personal information.

Disclosure of your personal data

Business Transactions

If Mosa Meat is involved in a merger, acquisition or asset sale, Your personal data may be transferred. We will provide notice before your personal data is transferred and becomes subject to a different Privacy Policy.

Law enforcement

Under certain circumstances, we may be required to disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Other legal requirements

We may disclose your personal data in the good faith belief that such action is necessary to:

  • Comply with a legal obligation

  • Protect and defend the rights or property of the Company

  • Prevent or investigate possible wrongdoing in connection with the Service

  • Protect the personal safety of Users of the Service or the public

  • Protect against legal liability

Security of Your Personal Data

The security of your personal data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. In our opinion and based on our risk assessment, we have taken adequate safeguards to ensure the security of your personal data. In our assessment we have considered the risks of accidental or unlawful destruction or accidental loss, damage, alteration, unauthorised disclosure or access, and other forms of unlawful processing (including, but not limited to unnecessary collection) or further processing. Measures include strong password policies, encryption of data at rest and in transit, multi-factor authentication, role based access, strict firewall policies, regular penetration testing of our systems, and incident logging and timely response procedures. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

Data breaches

On discovering a (suspected) data breach, we will inform you as soon as possible about which privacy rights have probably been violated and must be reported in accordance with the General Data Protection Regulation. In addition, we are obliged to remedy or limit the consequences of the breaches as soon as possible. We will provide you with the necessary information regarding this upon request.

As far as possible and required, a notification will only be made to the Dutch Data Protection Authority (or an authority in another Member State). In accordance with the General Data Protection Regulation, we record all data breaches that have occurred.

Contact Us

If you have any questions about this Privacy Policy, you can contact our Privacy Coordinator Tim van de Rijdt by email: privacy@mosameat.com.

Address:

Mosa Meat B.V.
Watermolen 28
6229 PM Maastricht
The Netherlands