Clingendael and the GDPR
As of 25 May 2018, the new EU General Data Protection Regulation (GDPR) will apply within the EU. Clingendael is aware and on schedule to be compliant with the new GDPR and is working hard to ensure the proper handling of all data that is use for Clingendael’s core activities. During the implementation period Clingendael is evaluating and updating its data privacy management system according to the requirements of the GDPR. We have established our data protection guidelines covering all relevant parts of the regulations and we are working closely with our partners and customers to make sure they are compliant and aware.
The core concept of the new law is personal data. Personal data refers to any information that can be traced back to a person. This information could be your name, address or location, but it could also be bank account numbers, telephone numbers or special diets. As of 25 May 2018, personal data also includes cookies.
Extraordinary (sensitive) personal data
Sensitive information, such as race, religion or health, is called extraordinary personal data. This data has an extra layer of legal protection.
How we deal with personal data
When dealing with personal data, the Clingendael Institute adheres to the GDPR guidelines:
- We collect as little personal data as possible
- We ask your permission for the use of your data
- We explain why we need your data (i.e. for an event, training, research purposes, or - in case of cookies - for enhancing your user experience)
- We explain that we will not use your personal data for any other purpose
- We make sure no personal data falls into unauthorized hands
- We destroy or anonymize personal data once the activity has been completed
The Clingendael Institute
P.O. Box 93080
2509 AB The Hague