privacy policy

§ 1. Privacy Policy

1.1 Data Controller

The data controller for the purposes of the GDPR is:

wolespac

Hendrik Ravesteijnplei 4, 2282GS, Rijswijk The Netherlands

Chamber of Commerce (KvK) no. 82535388, VAT (BTW) no. NL003695076B63

1.2 Personal Data Collected

We collect and process the following personal data when you book or attend a Workshop:

• Full name

• Email address and telephone number

• Postal address (for invoicing)

• Any dietary or allergy information you volunteer (for on-site refreshments)

1.3 Purpose and Legal Basis of Processing

Your data are used for:

• Managing your booking, sending confirmations and invoices, and processing payments.

• Communicating updates or changes to Workshop dates and times.

• Marketing activities, such as newsletters and promotional offers.

• Compliance with legal obligations (e.g. tax and accounting) under Dutch law.

We process your data on the following legal bases:

• Performance of a contract (GDPR Art. 6(1)(b)).

• Legitimate interests (GDPR Art. 6(1)(f)), e.g. to improve our services and ensure safety during Workshops.

1.4 Data Retention

We retain your personal data for up to 5 years after your last Workshop attendance, unless a longer period is required by law. This retention period allows us to handle any follow-up inquiries or legal claims related to your participation.

1.5 Cookies and Tracking

Our website uses cookies and similar technologies to:

• Remember your session and form inputs.

• Analyze site traffic and performance.

By using our site, you consent to these cookies. You can manage or disable cookies via your browser settings, but this may affect site functionality.

1.6 Disclosure to Third Parties

We may share your data with:

• Payment processors (e.g. PayPal) solely to complete transactions.

• Hosting providers and IT support, under strict confidentiality agreements.

• Professional advisors (e.g. accountants, legal counsel) where required.

All third parties process your data only for the purposes we specify and under GDPR-compliant contracts.

1.7 Data Subject Rights

Under the GDPR, you have the right to:

1. Access your personal data.

2. Rectify inaccuracies.

3. Erase data (“right to be forgotten”), where no legal obligation prevents it.

4. Restrict or object to certain processing (e.g. marketing).

5. Data portability (receive your data in a structured, machine-readable format).

1.8 Data Breach Notification

In the unlikely event of a personal data breach, we will:

1. Assess and contain the breach immediately.

2. Notify affected individuals without undue delay if there is a high risk to their rights and freedoms.

3. Inform the Dutch Data Protection Authority if required by law.

1.9 Photography and Videography

By attending you consent to being filmed or photographed for marketing purposes. If you wish to opt out, notify us in writing at least 48 hours before the Workshop.

1.10 Contact Information

For questions or to exercise your data-subject rights, please contact:

wolespac

Hendrik Ravesteijnplein 4, 2282GS Rijswijk

Email: wolespac@gmail.com