1. Identity
This is the privacy statement of Nuclear Research and consultancy Group v.o.f., registered in the Trade Register at the Chamber of Commerce under number 37082135 (“NRG”)
2. General
NRG respects the privacy of all data subjects from whom we collect personal data and will only use personal data in accordance with the purposes and methods of data processing as described in this privacy statement. This privacy statement applies to all processing of personal data by NRG.
This privacy statement applies exclusively to the processing of personal data by NRG. NRG is not responsible for the privacy policy of other sites that can be reached via a link on the NRG or NDRIS website. NRG does not collect any information associated with the use of our websites nrg.eu and ndris.nl. If you access the websites of third parties through our websites, these third parties may be able to place cookies. We, therefore, recommend that if you access the websites of third parties through our websites, you should always consult the privacy statement and disclaimer of those other websites.
NRG processes personal data in a manner that is in accordance with the requirements of Dutch privacy legislation. As of 25 May 2018, this is the General Data Protection Regulation (AVG).
NRG provides appropriate security for the personal data that it possesses, in line with the applicable legal requirements.
We do not transfer your data to third parties without your prior consent, unless such transfer is necessary in the context of the purpose for which you provided us with your personal data, in the performance of the agreement with you or if we are obliged to do so on the basis of laws or regulations.
3. Processing purposes
NRG gathers personal data for various purposes, such as providing information to you, conducting correspondence with you, providing quotes to or executing agreements with the organization for whom you work or represent you, handling job applications, the processing of training applications and the registration of visitors and the monitoring of access control to our locations. NRG only uses your personal data for the purpose for which you provided the data or while performing of a statutory task.
We will not process your personal data for any purpose other than the ones listed below, unless prior consent on your part or based on a statutory obligation.
3.1 Information requests
When you contact us, we store the information that you provided us with, e.g. your name, mailing address, e-mail, type of request and any other possible information that you sent us. The information that you leave behind in one of the forms will not made available to third parties.
3.2 Registration for training
When you register for training or education via our website, we store the information you have provided us, such as your name, mailing address, e-mail, education, obtained certification and any other information that you sent us. The information that you leave behind in one of the registration forms is only made available to third parties insofar as this is necessary for the implementation of the training, examination and issuance of obtained certificates.
3.3 (Open) applications
If you apply for a job at NRG or if you respond to a job opening that may or may not have been posted on an NRG website, you may provide us with information about yourself, such as your resume. We use that information to process your application or response and keep this information for up to two months after your application has been processed. NRG wants to keep your information for a maximum of six months for future vacancies. At the filling in of the application form your permission will be asked. You can request us to delete your personal data at any time after two months.
3.4 Camera surveillance, visitor registration and access control
NRG processes personal data in the context of camera surveillance, visitor registration and access control. NRG is obliged to do so based on legislation and regulations. For these purposes, NRG processes name, address, email, passport number and passport validity date.
3.5 NDRIS
NRG processes personal data in the context of the implementation of its activities within the National Dose Registration and Information System (NDRIS).
NRG manages the National Dose Registration and Information System (NDRIS) on behalf of the Minister of Social Affairs and Employment. NDRIS is the Dutch system for the registration of the radiation dose by radiological workers. In addition to what is included in this privacy statement, the processing of personal data by NDRIS is also subject to the NDRIS Privacy Protection Regulations.
3.6 Business relationships
NRG processes the personal data of data subjects who work for companies with which we do business with, for keeping up the business relationship, for making proposals and/or providing information about our services, products and other activities and for closing and maintaining agreements. For this purpose, NRG processes the following personal data: name, contact details and position of contact persons. NRG is allowed to share this personal data or pass it through to third parties if this is deemed necessary to achieve the objectives of the business relationship, for example to subcontractors who provide services on behalf of NRG. NRG will share or pass on personal data to third parties if NRG is legally obliged to do so or becomes obliged on the basis of a court decision.
If you represent a client or supplier of NRG, you can provide personal data on behalf of the client or supplier. NRG can use the information that you provide in this manner in order to enter into or to execute a transaction with you.
3.7 Research purposes
You agree that we may use (confidential) information and personal data received from you or on your behalf, provided that it is anonymized and not traceable, in the context of compiling and maintaining best practices, statistics, research purposes and/or benchmarking.
4. Retention period
NRG does not store your personal data for longer than necessary for the purpose of data processing or to the extent that this is necessary for compliance with our legal obligations.
5. Rights of data subjects
If you want to know which of your personal data is processed by NRG, you can submit a written request. NRG will process your request within 4 weeks. If it appears that your data is incorrect, incomplete or irrelevant, you can make an additional request to have your data changed or supplemented. You can also request the removal of your personal data. You can submit your request by sending an email to privacy@nrg.eu.
If you have a complaint about the processing of your personal data or regarding the response to your request, we would appreciate it if you informed us about it. You can do this via privacy@nrg.eu. You have the right to file a complaint with the Dutch Data Protection Authority about our processing of your personal data and you can contact the Dutch Data Protection Authority in this regard.
6. Data protection officer
NRG has appointed a data protection officer. You can contact the officer via privacy@nrg.eu.
7. Amendments privacy statement
NRG reserves the right to amend this privacy statement. Adjustments will be published on this website. Therefore, please be advised to regularly consult this privacy statement.