Privacy Policy

Effective Date: Aug 1st, 2024

Matermorphosis (“we,” “us,” or “our”) is committed to protecting your privacy and ensuring the secure processing of your personal data. This Privacy Policy explains how we collect, use, process, and protect your email data in compliance with the General Data Protection Regulation (GDPR).

1. Data Controller Information

The data controller responsible for your personal data is:
Matermorphosis
Email: Babette@theoryy.org

If you have any questions about this policy or your data, please contact us using the details above.

2. Types of Data Collected

We may process the following email-related data:

  • Email Addresses: Provided when you sign up for our programs, subscribe to newsletters, or contact us.

  • Email Content: Includes communications between you and us, such as inquiries or feedback.

  • Metadata: Technical information related to emails, including timestamps and IP addresses.

3. Purpose of Processing

We process your email data for the following purposes:

  • To provide information about our online programs.

  • To communicate with you about registrations, updates, and other service-related matters.

  • To respond to inquiries or feedback.

  • To comply with legal obligations or protect our legitimate interests, such as ensuring security and preventing fraud.

4. Legal Basis for Processing

The lawful bases for processing your email data under the GDPR include:

  • Consent: For example, when you subscribe to our newsletters or opt-in for promotional emails.

  • Contractual Necessity: To fulfill obligations related to your registration or participation in our online programs.

  • Legal Obligation: To comply with Dutch and EU legal requirements.

  • Legitimate Interests: For purposes such as improving our services, securing our systems, and maintaining business operations.

5. Data Sharing and Transfers

We may share your email data with trusted third parties, such as:

  • Service Providers: Vendors that assist us with email hosting, marketing, and customer support.

  • Legal Authorities: When required by law or to protect our rights.

If email data is transferred outside the European Economic Area (EEA), we ensure it is protected by appropriate safeguards, such as Standard Contractual Clauses (SCCs) or equivalent mechanisms.

6. Data Retention

Your email data will be retained for only as long as necessary for the purposes outlined in this policy or as required by law:

  • Email correspondence related to inquiries or services is retained for 2 years.

  • Metadata for security and auditing purposes is retained for 2 years.
    If you unsubscribe from our communications, your email address will be removed promptly.

7. Your Rights Under GDPR

As a data subject under the GDPR, you have the following rights regarding your email data:

  • Access: Request a copy of the personal data we hold about you.

  • Rectification: Request corrections to inaccurate or incomplete data.

  • Erasure: Request deletion of your data (“right to be forgotten”), subject to legal or contractual obligations.

  • Restriction: Request the limitation of processing under certain conditions.

  • Portability: Request a copy of your data in a structured, machine-readable format.

  • Objection: Object to processing based on legitimate interests or direct marketing purposes.

  • Withdraw Consent: If processing is based on consent, you can withdraw it at any time.

To exercise these rights, please contact us at [Insert Contact Email].

8. Data Security

We take appropriate technical and organizational measures to protect your email data from unauthorized access, disclosure, alteration, or destruction. These measures include secure servers, encrypted communications, and regular security assessments.

9. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. The latest version will always be available on our website, and material changes will be communicated to you directly when necessary.

10. Complaints

If you have concerns about our handling of your email data, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens):

Autoriteit Persoonsgegevens
Website: https://autoriteitpersoonsgegevens.nl

We encourage you to contact us first to resolve any concerns directly.

Thank you for trusting Matermorphosis with your data.