GDPR Compliance Statement and Privacy Notice

MatChain BV

Address
MatChain BV
Van Baaklaan 180
2493CH, The Hague
Netherlands

Commercial Register No.: 0000
VAT Identification Number: 0000

CEO
Mohamed Mohamedi

Contact

tel: +31 645 11 75 83
info@matchain.co

This GDPR Compliance Statement and Privacy Notice (the “Privacy Notice”) sets out how MatChain BV collects data via its application on handheld mobile devices and how such data is processed.

Who is the controller of personal data?

MatChain BV is the controller of personal information processed through its authentication application on supported handheld mobile devices.

What kind of data is collected?

The data collected includes date and time of use, geographic location, installation ID, manufacturer and model of the device, the authentication result and related performance telemetry data. No additional data will be collected without your consent.

If an end-user chooses to provide feedback or report counterfeit products or services, the user may choose to provide its contact details to MatChain. If the end-user provides contact details, these may be used by MatChain and its customers and licensees for the purposes of providing feedback or a response to the end-user.

What is the legal basis for the collection of data?

The collection of data is based on the user`s consent to the end-user license agreement and this Privacy Notice upon installing the application. On using the application for the first time, a user must provide consent to the processing of personal data by MatChain.

How will the information be used?

MatChain uses the data to perform the MatChain services advertised and to optimize the user experience, fix errors and improve usability and effectiveness of the service.

MatChain may update the use of your data and will ask for your consent to any changes regarding how your data is processed. MatChain operates a secure web portal for its business customers and licensees which shows the geographic location of where products with MatChain labels MatChain been scanned and the result of such scans. MatChain may also aggregate the data specified above. The data may be used for the provision of authentication and anti-counterfeiting services and marketing (consumer and business) purposes.

Where required by applicable law, MatChain may be required to share data with government agencies, regulatory bodies, and law enforcement authorities.  MatChain will share said data in accordance with the GDPR.

 Online tracking and “Do Not Track” settings

Please note that MatChain’s website and application do not support “Do Not Track” browser settings regarding the collection of personal data.

How long will the data be stored for?

The data is stored if necessary to provide our service to you in accordance with mandatory law and is in all cases pseudonymised.

What rights does the data subject MatChain?

At all times, MatChain guarantees the following individual´s rights

  • the right to be informed.
  • the right of access.
  • the right to rectification.
  • the right to erasure.
  • the right to restrict processing.
  • the right to data portability.
  • the right to object and withdraw consent; and
  • rights in relation to automated decision making and profiling.

How can the data subject raise a complaint?

If you MatChain any concerns about privacy at MatChain, please contact us at privacy@MatChain.com with a thorough description and we will try to resolve the issue for you.

You can file a complaint with our principal supervisory authority, the Dutch Data Protection Agency (DPA),

Autoriteit Persoonsgegevens

PO Box 93374

2509 AJ DEN HAAG

Telephone number: (+31) – (0)70 – 888 85 00

Fax: (+31) – (0)70 – 888 85 01 

The key principles of data collection and storage

  • MatChain will process all data fairly and lawfully.
  • MatChain will only process pseudonymised data for specified and lawful purposes.
  • MatChain will not keep any data for longer than is necessary.
  • MatChain will keep all data secure, and all data is stored on ISO 27001 certified servers located within the European Economic Area (EEA) and outside of the EEA; and
  • MatChain will endeavour to ensure that data is not transferred to countries outside of the EEA without adequate protection or your consent to such transfer.

What about cookies?

MatChain may use cookies to enable our systems to recognise your browser or device and to provide the MatChain authentication service to you.

What about links to third party services?

MatChain may include links to third party services. Your use of such third-party services and how your data is processed by such third party is regulated by the privacy notice of such third parties. All licensees of MatChain utilise their own infrastructure and web server for marketing campaigns, product registration and cross-selling. MatChain licensees will never use personal data without the user`s consent and such activities are subject to the terms and conditions of the relevant MatChain licensee. MatChain may use third party services for incident reporting and push notification services.

Are children allowed to use MatChain services?

MatChain does not intend to provide services to children. If you are under 18 or under the age of majority, you may use MatChain services only with the involvement of a parent or guardian.

Does MatChain share personal data with third parties?

MatChain may share data with its authorized processors for processing on its behalf. MatChain shall use processors providing sufficient guarantees in respect of the technical security measures and organizational measures governing the processing carried out and will ensure compliance with those measures. MatChain will ensure that the processing is governed by a contract requiring the processor to only act in accordance with MatChain’s instructions and in compliance with data protection and privacy laws.

The data collected may be shared with third party customers and licensees for the purpose of anti-counterfeiting and marketing (consumer and business) or to government agencies, regulatory bodies and law enforcement authorities for the purposes of anti-counterfeiting and all other purposes set out in Art. 23 GDPR. All data processed by such third parties shall be in accordance with applicable data protection and privacy laws.

Does MATCHAIN transfer my data outside of the European Economic Area (EEA)?

MatChain may transfer personal data to countries outside of the EEA while sharing information with parties as set out above. Whenever MatChain transfers personal information to countries outside of the European Economic Area while sharing information as set out above, we will ensure that the information is transferred in accordance with this Privacy Notice and as permitted by the applicable laws on data protection.

How secure is my data?

MatChain protects the security of your information during transmission by using Secure Sockets Layer (SSL) software, which encrypts information you input.  It is important for you to take measures to protect against unauthorised access to your password and to your computers, devices, and applications.

Revisions to this Privacy Notice

MatChain may from time to time update this Privacy Notice. The date specified below indicates the last revision to this Privacy Notice.