Human capital & corporate risk
Nederlands Login

Privacy Statement

Kröller Boom Assurantiën B.V.

Kröller Boom believes that privacy and in particular data protection should be given the highest priority. In this statement, we provide further explanation of how we handle and secure personal data.

Kröller Boom can be seen as a Data Controller with respect to the processing of personal data, in the context of the General Data Protection Regulation (AVG) and the Code of Conduct for Processing Personal Data by Financial Institutions. The business purpose of Kröller Boom is to advise on insurance solutions for risks and the processing of personal data flows from that. The processing of personal data is not an end in itself for Kröller Boom.

With regard to the processing of personal data that takes place in the context of its services, Kröller Boom entirely independently determines the purposes of processing and the means used for that purpose. Kröller Boom hereby aligns itself with the circular of the Association of Insurers regarding the positions of Providers and Advisers/Advisers within the meaning of the General Data Protection Regulation.

As the Controller, Kröller Boom has drawn up a privacy policy including privacy regulations that describe the manner in which personal data are handled with the utmost care.

Kröller Boom processes the data for the purpose of entering into, executing and servicing your insurance agreement or financial service, for statistical analyses, for being able to comply with legal obligations and for ensuring the security and integrity of the financial sector.

Kröller Boom has taken and maintains all applicable technical, physical, administrative and organizational measures against theft, unauthorized or unlawful acquisition, access, processing and accidental loss, destruction, alteration or damage of the data as required by law. Kröller Boom also makes these measures a requirement when entering into and maintaining cooperation with third parties.

Since both you and Kröller Boom are Processors, entering into a Processor Agreement is not possible and not required by law. An exception is our service with respect to the Implementation of the Sickness Benefits Act. We do enter into a Processor Agreement with customers for whom we perform these services.

Because we can both be seen as chain partners in our regular services, there is an interest in good mutual communication regarding personal data. Accordingly, we have implemented specific guidelines in our operations on how we will inform you in the event of a suspected data breach. Thus, you will be informed immediately by your contact person or our management about this suspicion and you will be informed several times during the first 72 hours about the further investigation of the possible data breach.

We assume that by means of this statement we have additionally informed you of the position of Kröller Boom and yourself in the context of data protection legislation.