Privacy Policy
Introduction
At Hottinga Leadership (https://walterhottinga.nl), we respect your privacy and are committed to safeguarding your personal data. This Privacy Policy outlines how we collect, use, and protect your information in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Who We Are
The data controller responsible for processing your data is:
Hottinga Leadership
Albatrospad 10
1021TR Amsterdam
Netherlands
Email: [contact@walterhottinga.nl]
We ensure that any contractors and third-party service providers we work with comply with data protection laws and meet security standards.
What Data We Collect and Why
Personal and Sensitive Data
In the course of our coaching, training, and consulting services, we may collect personal and sensitive information, including:
- Basic identification details, such as name and contact information
- Sensitive data necessary for personalized coaching (e.g., health information or professional background)
- Notes or assessments recorded in physical notebooks or digital organizational tools such as Todoist and Workflowy
- Information shared during training sessions to support a safe, respectful, and effective learning environment
This data is collected to tailor our services to meet your needs, facilitate communication, and fulfill contractual obligations.
Automatically Collected Data
When visiting our website, we collect basic technical information for analytics and performance, including:
- IP address, browser type, device information, and website navigation patterns
- Interaction data (e.g., time spent on pages, clicks) used for optimizing the site
Legal Basis for Processing
We process data based on:
- Contractual Necessity: Required for providing our services
- Consent: For collecting sensitive data where required
- Legitimate Interest: To improve service delivery and support communication
- Legal Obligation: Where necessary to comply with legal requirements
Third-Party Services and Data Sharing
We use third-party services to enhance our operations, communication, and website functionality. These services are carefully vetted for GDPR compliance.
Our third-party partners include:
- Gmail and Google Meet: We use Gmail and Google Meet (services provided by Google) to manage email communication and conduct virtual coaching and training sessions. Learn more about Google’s Privacy Policy.
- Social Media (notably LinkedIn): For professional networking and sharing insights, we maintain a presence on LinkedIn and may interact with users through this platform. No personal information is shared on social media without consent. Please refer to LinkedIn’s Privacy Policy.
- Todoist and Workflowy: We use Todoist and Workflowy to organize and manage tasks related to coaching and consulting securely. Please see the Todoist Privacy Policy and the Workflowy Privacy Policy.
- Google Analytics: For understanding website usage patterns, we utilize Google Analytics. Learn more in Google’s Privacy Policy.
- MailChimp: For email communication and updates, we use MailChimp. Read more about their practices in MailChimp’s Privacy Policy.
- Cookiebot: We use Cookiebot, provided by Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark, to manage cookie consent on our website, ensuring GDPR compliance. Learn more in the Cookiebot Privacy Policy.
Data Shared During Training Sessions
We may organize training sessions in collaboration with other trainers and coaches, and we may hire external venues and hotels for events. Personal data necessary for organizing and delivering these sessions (e.g., name, dietary requirements, and accommodation needs) may be shared securely with these partners, who are required to comply with data protection standards.
Respecting Participant Privacy During Training
To foster a safe, respectful environment, we uphold strict confidentiality standards:
- Confidentiality: Information shared by participants during training (e.g., personal experiences, feedback) is private and should not be shared outside the training.
- No Photography or Identification Without Consent: To maintain privacy, photos, names, or identifiable details should not be shared publicly or on social media without explicit consent from all participants involved. This ensures a comfortable and safe space for all attendees.
Data Protection and Security
We employ robust security measures to protect your data:
- Encryption: All data transmitted through our website is encrypted using SSL.
- Secure Storage: Data is securely stored in compliance with GDPR, using access-restricted cloud services and physical protection for handwritten notes and notebooks, which are kept in a secure location.
- Access Control: Personal data is accessible only to authorized personnel and is password-protected on all digital devices. Physical notebooks containing sensitive data are stored in secure, accessible-only-to-authorized-personnel locations.
Cookie Policy
Use of Cookies
We use cookies to enhance the functionality of our website and improve your experience. Cookies allow us to understand how visitors interact with our site, which enables us to optimize content and performance.
Cookiebot Integration
Our website integrates Cookiebot to manage cookie consent and ensure GDPR compliance. Cookiebot allows users to consent to or decline cookie use based on their preferences. The data processed by Cookiebot may be sent to Cybot and stored to facilitate user preferences.
For more on Cookiebot’s data practices, please see their Privacy Policy.
Managing Cookies
You can manage or disable cookies through the Cookiebot banner or in your browser settings. However, disabling cookies may impact certain website functionalities.
Your Rights Regarding Your Data
You have the following rights concerning your data:
- Right to Access: Request a copy of the personal data we hold.
- Right to Rectification: Correct or update inaccurate information.
- Right to Erasure: Request deletion of personal data when legally permitted.
- Right to Restrict Processing: Temporarily limit processing of your data.
- Right to Data Portability: Receive data in a portable format for transfer.
- Right to Object: Object to certain processing activities based on legitimate interest.
To exercise these rights, please contact us at [contact@walterhottinga.nl]. We may ask for verification to confirm your identity.
Data Retention and Deletion
We retain personal data only for as long as necessary to fulfill the purposes described in this policy. Once data is no longer needed, it is securely deleted unless required by law.
Governing Law and Jurisdiction
This Privacy Policy and any related disputes are governed by and construed in accordance with Dutch law. By accessing or using our services, you agree that any disputes arising from this Privacy Policy will be resolved in the courts of the Netherlands.
We comply with local data protection laws when required, but note that our primary legal jurisdiction remains the Netherlands.
Updates to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or compliance requirements. Please review this page occasionally. By continuing to use our services, you accept these terms.
Contact Information
For questions or requests related to this Privacy Policy, please contact us at [contact@walterhottinga.nl].
This privacy policy reflects our commitment to transparency, security, and respect for the personal and sensitive information you entrust to us, enabling a safe and supportive experience in all aspects of our services. Thank you for your trust.