Privacy and data statement

Blue Radix adds automated intelligence to daily decisions in the greenhouse to enable growers to meet their daily challenge: produce more food and flowers with fewer resources. Our solutions integrate deep into the ecosystem of greenhouses to work seamlessly with people and existing systems. Supported by highly skilled operators, trusted by growers worldwide.

For this to be successful, it is necessary that protection of personal data and confidential information be taken as a strict precondition for the development of new services and that your privacy is guaranteed by us at all times. Blue Radix considers privacy and the proper handling of data important. Your personal data and your confidential information are therefore carefully processed and secured. When processing personal data, Blue Radix adheres to the General Data Protection Regulation (hereinafter: “GDPR”) and the G4 Data Protocol.

Blue Radix processes (personal) data. We would like to inform you clearly about this. In this privacy and data statement we provide answers to the most important questions about the processing of personal data and your confidential information by Blue Radix. In this statement we explain how we process your data and what we do it for. We also tell you here what you can decide yourself about the use of your data. This privacy and data statement applies to every service from Blue Radix where personal data or your confidential information is processed. We explain that below.

Content

    1. What is the processing of (personal) data?
    2. Who is responsible for the processing of my (personal) data?
    3. From who does Blue radix processes the (personal) data?
    4. Which (personal) data does Blue Radix Process?
    5. What does Blue Radix process (personal) data for?
    6. Does Blue Radix also process special and / or criminal personal data?
    7. To whom does Blue Radix provide my (personal) data?
    8. Which rules apply to Blue Radix when processing (personal) data?
    9. What are my rights?
    10. Are my (personal) details safe at Blue Radix?
    11. Where can I report a data breach?
    12. Where can I go with a question or complaint?
    13. Can Blue Radix change this document?

Appendix 1. Overview of personal data at Blue Radix

Appendix 2. Storage policy with Blue Radix

Appendix 3. Overview of confidential information

Appendix 4. Blue Radix cookie statement

1. What is the processing of (personal) data?

Processing is: everything that can be done with personal data. For example, the collection, but also the storage, retrieval, use, connection and deletion of data from our records. This is therefore a very broad concept.

Personal data is all data that directly or indirectly says something about a natural person. For example your name and address, but also – in combination with it – your consumption data. 

“Confidential Information” is non-public information, including, but not limited to, data, know-how, products, product characteristics, procedures or equipment, company information, analysis, investigations, facilities, and manufacturing and trade secrets, in whatever form. Appendix 3 contains an overview of what is further understood by confidential information.

2. Who is responsible for the processing of my (personal) data?

Blue Radix B.V. is responsible for the processing of your personal data in the performance of its services in accordance with this privacy statement. Where we refer to Blue Radix in this privacy statement, we mean Blue Radix B.V.

Blue Radix has a Privacy officer who supervises compliance with the GDPR and to whom you can also turn with questions.

3. From who does Blue radix processes the (personal) data?

We process personal data of people with whom we have, want to have or have had a customer relationship. That is, for example, personal data from:

  • (former) customers;
  • people who show an interest in our services;
  • people who are connected to a company or organization with which we have, want to have or have had a customer relationship.

.
If a company or organization has a customer relationship with Blue Radix and provides us with contact details of its employees, that company or organization is required to inform these contacts. In this privacy statement these contact persons can see how we handle their personal data.

We may also process personal data of third parties with whom we have or have not had a customer relationship, for example to protect you and our interests. We can do this in the context of the fight against fraud. 

In addition, Blue Radix receives and processes confidential information from its customers.​​

4. Which (personal) data does Blue Radix Process?

Blue Radix has personal data if you have provided it to us and because you use our services and / or products. Blue Radix can also access this data by consulting public sources and / or by enriching data through third parties. Here you will find an overview of the categories of personal data that Blue Radix processes.

The GDPR does not prescribe any retention periods. How long personal data may be kept depends on the purpose for which this data is processed. You can find the Blue Radix storage policy here.

In addition, we receive and process Confidential Information from customers for business purposes only as described in the Underlying Agreements or when developing algorithms, models, services or similar products / services

We only do this with your permission. You can also withdraw this permission at any time. After the withdrawal of the permission, we will immediately proceed to the deletion of the data. After the product improvement process, we will delete the data. We will inform you about this.

5. What does Blue Radix process (personal) data for?

Execution of the agreement between you and Blue Radix

a.To be able to enter into and establish a customer relationship with you

If you want to become a customer with us or if you want to purchase a new product or service, we need personal information.

We can also use the data we receive from you and record about you to make analyzes to determine whether you are eligible for a certain product.

b. To execute the agreement

If you are a customer with us, we want to provide a good service. We process your personal data to execute the agreement that we have concluded with you and to be able to deliver our services to you. We cannot provide services without using your data for this. For example, we use your name and (e-mail) address details for our records and to maintain contact with you. We also use your personal data for answering your questions and handling complaints and disputes. This also applies to the questions you ask us by e-mail or telephone. We do this in the context of (legal) evidence. This allows us to check our agreements with you at a later date. But we also need your data, for example, to make our services technically possible.

For example, if you do not pay your invoices (on time), even after we have sent you a reminder, we can transfer our claim on you for collection to a third party. This party will then receive from us your details that are required to collect the claim, such as your name, address details and the invoice in question.

Blue Radix offers part of its services through various apps. The personal data that Blue Radix processes can also be processed via these apps. The processing of personal data via the apps also falls under this privacy statement.

c. To enter into and execute agreements with suppliers and business customers

If you have contact with Blue Radix for your work, we can process your personal data. For example, to determine whether you can represent your company. Or to be able to maintain contact with the company you work for.

d. To meet legal obligations

Blue Radix may also be required by law to cooperate with a request to provide personal data of customers to competent governmental authorities, such as a supervisor, the municipality, the tax authorities or the police. The further processing of that data falls under the responsibility of those government agencies. We will only cooperate if we have determined that this request meets the legal requirements.

Because we have to comply with legal obligations, we also process your data in the context of audits.

e. For the development and improvement of our products and services

In order to serve you well, we are constantly working on the development and improvement of our products and services. In some cases we process personal data for this. We do this for quality purposes, among other things. For example if you ask a question about a product.

General visitor data is kept on the Blue Radix websites, such as the most consulted pages. The purpose of this is to optimize the websites. We can also use the data that we have recorded from you to perform analyzes. With the help of these analyzes we can, for example, optimize content and thus improve our online services.

To be able to make high-quality products, Blue Radix can ask you to use data that we already own for you for other purposes. We can also ask you to share new data that you own with us for a specific purpose.

We only do this with your explicit permission. You always remain the owner of the data that we use for this purpose. When requesting your permission, we explicitly state the purpose for which we want to use the data.

You can also withdraw this permission at any time. After the withdrawal of the permission, we will immediately proceed to the destruction of the data. After the product improvement process, we will destroy the data. We will inform you about this.

f. For our business operations

For management information and to determine our general strategy and policy.

g. For promotional and marketing purposes

Your personal data will be used by Blue Radix for promotional and / or marketing purposes. For example, to inform you about (new) relevant products and services from Blue Radix and / or activities and promotions that Blue Radix organizes in collaboration with carefully selected partners. Or to better respond to your wishes. This information can be provided via e-mail, telephone or post. If you do not want this information, you can unsubscribe via the unsubscribe option provided in these messages. You can also report this to Blue Radix via an e-mail to info@blue-radix.com quoting “Privacy”.

If you visit our website and / or Cropcontroller then we can link your use of our websites to the information known to us about you. We do this to improve our services to you and to show you relevant advertisements. We can also use the data for performing analyzes to put more targeted information on the sites for you. This allows Blue Radix to further improve its services and adapt it to your wishes. In addition, we combine your online surfing, search and customer behavior to make you relevant offers and recommendations online and / or offline, tailored to your preferences or interests and to optimize our campaigns. We do this on the basis of cookie techniques, techniques similar to cookies and tracking pixels. We will explain this further in our cookie statement.

h. For statistical and scientific purposes

We can also use the data that we have recorded about you to perform analyzes and conduct research. We can then use these analyzes for statistical and scientific purposes.

We do not collect more personal data than is necessary for the purposes stated above. If we do not save the data for those purposes, we can save the data for archive purposes. This means that the data is only used for legal proceedings or for historical, statistical or scientific purpose.

Links to other sites

Some links to websites of other parties are included on the Blue Radix website. Blue Radix is ​​not responsible for the way in which these parties handle your data. Therefore, check whether the site you visited contains a privacy statement. If so, read this to see if you can agree with the privacy policy of the party in question. 

6. Does Blue Radix also process special and / or criminal personal data?

Special personal data are data on health, data on religious or philosophical beliefs, ethnic data or data on race, political views, membership of a trade union, biometric data for the unique identification of a person, genetic data and data relating to a person’s sexual behavior or sexual orientation. Blue Radix does not process special personal data, unless this is permitted by law. Are you asking us to record special personal data about you or do you make this data public? Then we only process this data if this is necessary for our services.

Another category of data concerns criminal data. This concerns the processing of personal data concerning criminal convictions and offenses or related security measures. It is also about personal data concerning a prohibition imposed by the court as a result of unlawful or annoying behavior. Blue Radix can also process this data if permitted by law or in the context of investigations into criminal offenses or in case of annoying and / or (previously shown) aggressive behavior. 

7. To whom does Blue Radix provide my (personal) data?

Blue Radix can provide you with personal data and confidential information to service providers that we engage in our business operations or for the performance of our services and who process this data on our behalf. For example, Blue Radix can engage service providers for IT support. Blue Radix only provides data providers that are necessary for the service provision. Blue Radix obliges the service providers with whom Blue Radix shares personal data and confidential information to use these exclusively in the context of the relevant service to Blue Radix or to comply with legal obligations. The service providers may also act solely on the instructions of Blue Radix. Blue Radix requires these service providers to adequately protect the data technically and organizationally and to keep it confidential.

The starting point of Blue Radix is ​​to engage service providers in countries within the EER where an appropriate level of protection applies. However, it is possible that Blue Radix engages service providers are located around the world. This can therefore entail transfer to third parties in countries that do not have the same level of protection of personal data as the Netherlands. However, Blue Radix only does this if an appropriate level of protection can be offered by these third parties in accordance with the regulations of the Dutch Data Protection Authority (“AP”). Your personal data may be subject to investigation by competent national authorities of the countries where such data is located due to the processing process both during and after processing.

In addition, Blue Radix may be (legally) required to provide your personal data and confidential information to government agencies, regulators, the police or, for example, to professional advisers (such as an administrator or lawyer). If this is the case, Blue Radix will inform you of this.

Your personal data will not be sold or rented to third parties without your permission, which will then be further processed for your own purposes.

Confidential information will only be published after we have received approval from you.

8. Which rules apply to Blue Radix when processing (personal) data?

When processing personal data in the Netherlands, Blue Radix is ​​bound by, among other things:

  • The General Data Protection Regulation (“GDPR”)
  • The Telecommunications Act

.
We also support and comply with the G4 Data Protocol of Glass 4.0.

9. What are my rights?

You have a number of rights with regard to the personal data that Blue Radix has received from you. These rights are explained below. Rights are not absolute, there are always exceptions that prevent us from responding to your request. If so, we will explain that to you.

If your Blue Radix sends a request about one of these rights, Blue Radix will respond to this within four weeks. You can submit your request by e-mail to info@blue-radix.com, quoting “Privacy”. In the request you must specify as much as possible to which personal data your request relates. You must also provide your request with your name, address and telephone number. Making a request is free of charge, unless you make unfounded or excessive requests.

Before we can meet your request, we are required by law to identify you. There are various options for making a copy of your identity document without copying your passport photo and the citizen service number (BSN). See, for example, https://www.rijksoverheid.nl/onderwerpen/identiteitsfraude/vraag-en-antwoord/veilige-kopie-identiteitsbewijs

Right to view your personal data

As a customer you have the right to view your personal data. This means that you can request from Blue Radix which personal data is processed about you and for what purposes that data is used.

Right to correction or deletion of your personal data

As a customer you have the right to have your personal data corrected if this data is incorrect. You can also request Blue Radix to delete your data. Blue Radix can only meet this requirement if it is not obliged to store your data or if it no longer needs the data to be able to provide services to you. If the data processing is based on permission, deletion of your data is not fully possible in all cases. In that case we will have to keep the original permission as proof that there has ever been permission.

Right to object and to restrict use

As a Blue Radix customer, you have a number of legal options to prevent further use of your data. Even if you have given permission at an earlier stage, you can object to further use of your data or withdraw your permission. You can only object free of charge to the use of your personal data if your personal data is used for purposes other than necessary for the implementation of an agreement or necessary for the fulfillment of a legal obligation. If you think that the processing of your data by Blue Radix is ​​unlawful or if Blue Radix no longer needs your data, but you want this data not to be deleted, you can make a request to limit the processing. Your data will then be saved but will in principle not be used. The request for limitation can also be made if you are still waiting for a check of your data or for a response to your opposition to use.

Right to data transferability (also known as the right to data portability)

You can make a request to Blue Radix to obtain the data that Blue Radix has from you yourself (electronically) or to request Blue Radix as the controller to transfer it to another controller.

The right to data transferability only applies to personal data collected on the basis of consent or based on an agreement.

In addition, it may only concern personal data provided by and related to you. This includes both personal data that you have actively and knowingly provided (such as your e-mail address when entering into an agreement with Blue Radix), as well as personal information that has been provided through the use of a service (for example, information collected about you via cookies. In addition to personal information about yourself, this also includes pseudonymized information and information from third parties that are related to you. Derived data (for example, an interest profile built up by registering visitor behavior) explicitly does not fall under related data.

Right to object to profiling

Profiling is any form of automated processing of personal data, whereby certain personal aspects of you are evaluated on the basis of personal data. The purpose of this is, for example, to analyze or predict personal preferences, interests and visitor behavior.

At Blue Radix, no automated decision-making based on profiling takes place if legal consequences are involved for you or if the decision affects you to a considerable extent, unless this:

  • is necessary for entering into or executing an agreement with you;

  • is permitted under Dutch law (for example, investigating tax fraud); or

  • is based on your explicit permission.

If automated decision-making takes place on the basis of one of the above grounds, we will specifically inform you about this. You have the right to human intervention, but also to explain your point of view and challenge the decision. In addition, you have the right to ask us for an explanation about the conclusion of the decision.

You can also object to the use of your personal data for profiling. If you specifically object to the use of your personal data for profiling with regard to direct marketing, then Blue Radix will no longer use your personal data for such purposes.

10. Are my personal and confidential data safe at Blue Radix?

Your personal data and confidential information is stored carefully and no longer than is necessary for the purpose for which it was processed. Within Blue Radix, your personal data can only be used by employees who, given their position, must have access to it. Our employees have a confidentiality obligation. Do we want to use data for a purpose other than that for which it was originally processed? Then we can only do that if there is a close relationship between the two goals.

Blue Radix takes appropriate technical and organizational measures to protect your personal data against destruction (accidental or unlawful), loss, misuse, forgery, unauthorized access or distribution or any other form of unlawful processing of your personal data. Blue Radix can, for example, use encryptions, access codes and pseudonymization of personal data. In addition, Blue Radix makes a trade-off between the risks, the technical possibilities and the implementation costs. 

11. Where can I report a data breach?

Blue Radix believes it is very important that the data is secure. If, for example, data has been lost or is accessible where this should not be possible, do you want to inform us as soon as possible? Then we can, where necessary, contact the parties involved and inform the regulator about this. You can do this via info@blue-radix.com  State in your e-mail your name, possibly the organization for which you work, your telephone number and a brief description of the data breach. Blue Radix adheres to the Data breach reporting obligation. This means that we report a serious data breach of personal data to the Dutch Data Protection Authority within 72 hours after the data breach has been established. Have you discovered a (possible) data breach? Report this to us as quickly as possible, but in any case within 24 hours after you have discovered the data breach. 

12. Where can I go with a question or complaint?

For questions or complaints about the processing of personal data by Blue Radix you can send us an e-mail stating “Privacy”. You can also contact the Data Protection Officer (“DPO”) with questions or complaints. In that case you can directly contact our DPO, which can be reached via info@blue-radix.com. You can also contact the Dutch Data Protection Authority directly to submit a complaint. 

13. Can Blue Radix change this document?

Yes, our privacy statement may change from time to time. We adjust the privacy statement if, for example, there is new data processing. And if these changes are also important to you, we will draw your attention to this or we will make the changes known to you in a striking way. You can always find the most current version of our privacy statement on www.Blue-radix.com

Appendix 1. Overview of personal data at Blue Radix

Blue Radix processes the following personal data:

  • Name and address data
  • Technical connection data
  • Contract details
  • ID data (we ask for identity verification but do not store it)
  • Complaints
  • Online: navigation, connections
  • Profiles 

Appendix 2. Storage policy with Blue Radix

Blue Radix hanteert de volgende bewaartermijnen:

Commercial marketing activities

We do not process data longer than necessary for the purpose.

Contracting: services

Up to 7 years for tax authorities

Possibly 20 years for legal proceedings

Bankruptcies, long-term files

We do not process data longer than necessary for the purpose.

Usage data collection

Up to 7 years for tax authorities

Possibly 20 years for legal proceedings

Invoicing

Up to 7 years for tax authorities

Possibly 20 years for legal proceedings

Provision of information – Sending news

We do not process data longer than necessary for the purpose.

Service provision

Up to 7 years for tax authorities

Exchange customer information between customers

We do not process data longer than necessary for the purpose.

Improvement and development of products and services

We do not process data longer than necessary for the purpose.

 

Appendix 3. Confidential information

Confidential Information includes, but is not limited to:

a)  Company information, business strategy, finance, operational aspects, human resources, technology, products, product plans, services, service providers, customer lists, information about customers or potential customers or suppliers (names, addresses, telephone numbers, contacts, medical information and bank information), the agreements made with a customer or supplier, administration, advertising, sales and marketing, planning, current activities, personnel information and data, and the acquisition or removal of a company or business unit thereof, or a proposed expansion or reduction of activities related to your business;

b)  Proprietary information, data, data, formulas, processes and technical processes, practices, techniques, ideas, methods, models, plans, strategies, designs, photos, drawings, specifications, software, inventions, patents, discoveries, technology, hardware configuration information, samples, research, research and development, technical literature and data or other material that is attributable to or appears from discussions about the activities of your company.

c)  Customers and details of their specific needs and companies and the agreements made with them;

d)  Details of the employees and officers of your company and of the allowances and other benefits that have been or will be paid to them;

e)  Cost estimates, profit margins, discounts, prices, payment and credit policies and other financial information and procedures and systems for the foregoing, whether it be your business, an Affiliate or a client, customer, supplier, agent or business relationship;

f)  Existing and future operating systems, software applications and methods or production, manufacture, processing or treatment;

g)  Notes, extracts, analyzes or materials provided by or on behalf of Blue Radix B.V. whether its Affiliate Enterprises have been manufactured and copied or derived from Confidential Information, clearly marked as “confidential,” or that it is said to be confidential;

h)  All information for which you have a duty of confidentiality towards a third party, including but not limited to customers, suppliers, agents, business partners or other persons.

i)  Data / data supplied by Blue Radix B.V. are collected or aggregated through the use of sensors, robots, cameras, machines or computers, whether or not these devices are owned by you.

Appendix 4. Blue Radix cookie statement

 

Datum van publicatie: 01-08-2019