The Privacy Agreement serves as a crucial legal instrument for organizations operating under Dutch jurisdiction that process personal data. This document is essential when establishing a formal relationship between a data controller and data subject, ensuring compliance with both the EU General Data Protection Regulation (GDPR) and the Dutch Implementation Act GDPR (UAVG). The agreement should be implemented when collecting, processing, or storing personal data, particularly in scenarios involving ongoing data processing activities. It covers essential elements such as data processing purposes, security measures, data subject rights, breach notification procedures, and data retention policies. The Privacy Agreement is particularly relevant in the context of Dutch business operations, where strict privacy laws and regulatory oversight by the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) necessitate comprehensive documentation of data processing practices.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
Alternatively...
1. Parties: Identification of the data controller and the individual or entity whose data is being processed
2. Background: Context of the agreement and the relationship between the parties
3. Definitions: Key terms used in the agreement, including GDPR-specific terminology
4. Purpose of Processing: Clear description of why personal data is being collected and processed
5. Types of Personal Data: Specific categories of personal data that will be collected and processed
6. Data Subject Rights: Enumeration of all GDPR rights available to the data subject
7. Security Measures: Technical and organizational measures implemented to protect personal data
8. Data Retention: Period for which personal data will be stored and criteria for determination
9. Data Transfers: Information about any international transfers of data and safeguards
10. Breach Notification: Procedures for handling and reporting data breaches
11. Termination: Conditions and process for terminating the agreement
12. Governing Law: Specification of Dutch law as governing law and jurisdiction
1. Special Categories of Data: Additional provisions for processing sensitive personal data - include when processing health, biometric, or other sensitive data
2. Children's Data: Special provisions for processing children's personal data - include when services may involve minors
3. Automated Decision Making: Provisions regarding automated processing and profiling - include when using AI or automated systems
4. Direct Marketing: Specific provisions for marketing communications - include when data will be used for marketing
5. Cookie Policy: Details about the use of cookies and similar technologies - include for online services
6. Third Party Processors: Provisions regarding the use of sub-processors - include when third parties will process data
1. Schedule 1 - Processing Activities: Detailed list of specific data processing activities and purposes
2. Schedule 2 - Technical Security Measures: Detailed description of security measures and protocols
3. Schedule 3 - Data Retention Schedule: Detailed retention periods for different categories of data
4. Appendix A - Data Subject Request Procedure: Step-by-step procedure for handling data subject requests
5. Appendix B - Breach Response Plan: Detailed protocol for responding to data breaches
6. Appendix C - Transfer Mechanisms: Details of safeguards for international data transfers if applicable
Authors
Find the document you need
Cookies Notice
A Dutch law-compliant notice explaining website cookie usage and user rights under GDPR and local requirements.
Download
Privacy Notice
A Dutch law-compliant Privacy Notice that outlines how an organization handles personal data under GDPR and local privacy requirements.
Download
Cookie Notice Text
A mandatory legal notice for Dutch websites explaining cookie usage and user rights under EU GDPR and Dutch data protection laws.
Download
Contact Form Privacy Policy
A Dutch law-compliant privacy policy for website contact forms that outlines personal data handling practices under GDPR requirements.
Download
Cookie Consent Policy
A Dutch law-compliant Cookie Consent Policy outlining website cookie usage and user rights under GDPR and Dutch data protection regulations.
Download
Privacy Policy Agreement
A Dutch law-compliant privacy policy document outlining personal data handling practices in accordance with GDPR and local requirements.
Download
Privacy Agreement
Dutch law-governed privacy agreement establishing data processing terms and GDPR compliance requirements between parties.
Download
Genie’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your data is private:
We do not train on your data; Genie’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
