Privacy Policy

Prodaft determines the purposes and means of processing your personal data by acting as the “controller" defined in Article 4/(7) of the GDPR. Details of our company are given below:

Prodaft is obliged to create and manage the data filing system and to take administrative and technical measures regarding data security. Within this scope, our Company can have the personal data processed by third parties that are defined as " processor" in Article 4/(8) of the GDPR.

Your personal data which are your first name, last name, e-mail address, company name, phone number and purpose for which you get in touch with our Company are processed by Prodaft.

Your personal data is collected automatically and electronically by Prodaft via your submissions which are made through online forms on our website, within the scope of the legal reasons and processing purposes explained below.

The personal data collected by Prodaft is processed to satisfy your claims or your request for information for our services and/or any other issue for which you wanted to get in touch with our Company under general principles envisaged in Article 5 of the GDPR, and under legal conditions stipulated in Article 6/1-(b), which is laid down as “processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract”. Unless you provide us with this information, we may not be able to help you with your submission.

The personal data collected by Prodaft are not transferred to any third party except if there is any legal obligation arising out of any national/international legislation for such a transfer.

Your personal data is stored for 2 (two) years starting from the date your claim, request, and/or any other submission made to us by online forms is satisfied. Once this period is expired, we will erase your data by deleting it irreversibly.

The data subject, according to the GDPR has the following rights.

The right to access – You have the right to learn whether your personal data is processed, and access to:

The right to rectification – You have the right to request us to correct/complete any information you believe is inaccurate/incomplete.

The right to rectification – You have the right to request us to correct/complete any information you believe is inaccurate/incomplete.

The right to erasure – You have the right to request that Our Company erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that Our Company restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to request that Our Company restrict the processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that Our Company transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you would like to exercise any of these rights, please contact us via the information given above, in the section “1. Controller”.

You also have the right to lodge a complaint with a supervisory authority: You have the right to file a complaint concerning our processing of your personal data with your national data protection authority. The EU Commission has a list here: http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm. The data protection authority for the Netherlands is Autoriteit Persoonsgegevens (https://autoriteitpersoonsgegevens.nl/nl), information of which can be found below: