Privacy Policy

Vlisco commits to being open, fair and transparent to its external relations about the processing of personal data. In that respect, Vlisco highly values providing you with exact information as to what personal data Vlisco collects and what the purposes are for which it will use such personal data. This privacy statement provides as structured a description thereof as possible. Vlisco warrants the careful collection, use and deletion of personal data, in compliance with laws and regulations.

As an external relation, you have the right to access your registered data as well as to receive a copy thereof. In addition, you have the right:

• to rectify your personal data (if you have good reason to do so);
• to erasure/to be forgotten. Based on this right, you may request that Vlisco erases your data if:

Vlisco collects a limited amount of data on its website users, which Vlisco uses to improve its website and to manage its services. Such data include information about the way in which you use the Vlisco websites, the frequency with which you visit such websites, and the most popular times to visit the Vlisco websites. For further details, please refer to annex 1.

If you have contacted us on the website to submit a question or to subscribe to a newsletter, Vlisco will use, among other things, your name, email address, telephone number and address to answer your question or to send you email newsletters of Vlisco or its subsidiaries.

Vlisco solely processes personal data with your prior consent, as required by the General Data Protection Regulation (GDPR).

Vlisco does not provide your data to third parties. In certain cases, however, Vlisco makes use of the services of third parties who process data under its responsibility, such as sending mailings and analysing the use of the website. In order to safeguard your privacy, Vlisco has entered into data processor agreements with such third parties.

Vlisco will not retain your data any longer than is necessary to realise the purposes referred to in this privacy statement. The data will be retained until such time as you unsubscribe or 28 days after answering your question.

For purposes of making purchases at the webshop, Vlisco registers your name, email address, telephone number, address, data about your order and payment data. These data are used to deliver your order, to send an invoice, to settle payment and for communication about the order.

For purposes of making purchases at a Vlisco store, the necessary data, such as your name, email address and address will be registered only if you indicate that you wish to receive email offers and/or wish to reclaim VAT.

Vlisco processes personal data solely with your prior consent, if this is necessary to complete your order and/or if there is a legal obligation for purposes of a VAT refund, as also required by the General Data Protection Regulation.

Vlisco does not provide your data to third parties. In certain cases, however, Vlisco makes use of the services of third parties who process data under its responsibility, such as handling payments via the webshop and dispatch of goods purchased.

Vlisco will not retain your data any longer than is necessary to realise the purposes referred to in this privacy statement. Your purchase data will be retained for a period of 7 years in line with the retention obligation for tax purposes. The other data will be deleted as soon as you unsubscribe or at your request.

Vlisco collects business contact data, such as your name, email address, telephone number and company data. Such data are used to maintain a business relationship with you with a view to the delivery and invoicing of your orders and to bring offers to your attention.

In addition, Vlisco may require a copy ID and an ‘Ultimate Beneficial Owner’ (“UBO”) statement from you for purposes of the Dutch Anti-Money Laundering and Anti-Terrorist Financing Act [Wet ter voorkoming van witwassen en financieren van terrorisme (“Wwtf”)].

Vlisco processes personal data solely with your prior consent, if this is necessary to handle your order and/or if Vlisco is under a legal obligation to do so for purposes of a VAT refund, as also required by the General Data Protection Regulation (GDPR).

Vlisco does not provide your data to third parties. In certain cases, however, Vlisco makes use of the services of third parties who process data under its responsibility, such as dispatch of goods purchased and management of contact data. In order to safeguard your privacy, Vlisco has entered into data processor agreements with such third parties.

Vlisco will not retain your data any longer than is necessary to realise the purposes referred to in this privacy statement. Your company’s order data will be retained for a period of 7 years in line with the retention obligation for tax purposes. The data required for purposes of the Wwtf will also be retained in accordance with the statutory period of 7 years. The other personal data will be deleted as soon as you unsubscribe or at your request.

Vlisco collects business contact data, such as your name, email address, telephone number and company data. Such data are used to maintain a business relationship with you with a view to the provision of goods and services.

In the event of engaging private individuals, the following additional data may be collected: copy ID, bank data, performance, assessment and training data (for temporary agency workers only) data on assets made available by Vlisco (for temporary agency workers only), presence and absence data (including business travel and lodging), logs of activities in ICT systems and CCCT footage. The data will be used for purposes of performance of the agreement and to comply with a legal obligation.

Vlisco solely processes personal data if necessary for the performance of agreements, if there is a legal obligation to do so (such as the retention obligation for tax purposes, the Foreign Nationals Employment Act [Wet Arbeid Vreemdelingen], and the Compulsory Identification Act [Wet op de Identificatieplicht]), and/or where Vlisco has a legitimate interest (to protect its goods and its persons), as also required by the General Data Protection Regulation (GDPR).

In principle, Vlisco does not share your data with others. It only does so if this is necessary for purposes of performance of Vlisco’s services or if there is a legal obligation to do so. In such event, Vlisco will share the data with:

• Vlisco’s own employees

Vlisco will share the data with employees where the purpose of processing is in line with their positions. These may be employees of branches outside the EEA. In such event, Vlisco has implemented appropriate measures to safeguard your privacy. For example, access to personal data is restricted on a need-to-know basis, formal arrangements are made with the relevant branches, processing activities are recorded, data are encrypted, and the security of the relevant branches is periodically tested.

• Service providers working for Vlisco

Vlisco works with various service providers, including contractors that build and administer our ICT systems. Proper arrangements are made with such service providers as to their obligations and powers, which are contractually recorded in data processor agreements.

Vlisco will not retain your data any longer than is necessary to realise the purposes referred to in this privacy statement. The following retention periods will apply:

• Statutory retention periods, e.g. for transactions with your company. These will be retained for a period of 7 years in line with the retention obligation for tax purposes.
• CCTV footage may be retained up to 28 days, after which it will be destroyed, unless there is a good reason to retain the footage for a longer period (e.g. if it is relevant to a police investigation).

Vlisco reserves the right to change or modify this privacy statement, for example if the processing method or the regulation is changed. In case of a significant amendment, Vlisco will notify you.