DRC Database handles your personal data carefully and attaches great importance to the privacy of its Subscribers. We, therefore, process personal data with the utmost care and comply with all requirements of the General Data Protection Regulation (GDPR). In this Privacy Policy, we inform you about the processing of personal data that takes place via the website

Contact information

DRC Database is located at Kenaupark 16, 2011 MT in Haarlem and is registered under registration number 34391267 in the Commercial Register of the Chamber of Commerce. You can reach us by email via

Processing Personal Data


DRC Database processes personal data of Subscribers and website visitors for the following purposes: 1. For Subscriber administration; 2. To be able to communicate with Subscribers and other stakeholders; 3. To handle any complaints or feedback; 4. For making payments and collecting receivables; 5. To send service e-mails; 6. To send commercial communications such as online newsletters and invitations to our events; 7. To comply with any legal obligations in relation financial records.

Categories of personal data

DRC Database collects personal data that is either provided by the Subscriber on his or her initiative or personal data sourced from public sources. We collect and process the following personal data:

– Contact information of Subscribers or their legal representatives, including their name, title, function, telephone and fax number, Chamber of Commerce registration number, website, email address, (office) address, VAT number and other company and contact information;
– Identification details such as gender, date of birth, place of birth, nationality;
– Correspondence and other forms of communications;
– Financial information, including bank account number, VAT number and payment history;
– Technical details of the equipment used to visit the website (, such as IP address, MAC address and software used and, depending on the settings for cookie preferences, surfing behavior on the website, including mouse and clicking behaviour and the duration and time of visits to our website; and
– Contact details of participants in events organised by DRC Database of one of our Partners.

DRC Database respects Subscriber’s privacy in any possible way and will do this in conformity with the laws with respect to privacy matters. It is important that the information DRC Database holds is accurate, up-todate and relevant. It is also important that the information is used only for the reason it was collected. DRC Database is monitored to ensure that your personal information is kept secure and accessed appropriately.

DRC Database protect Subscriber’s rights to the fullest and prevents any misuse of personal information. The information privacy principles are strict privacy safeguards that DRC Database must obey when gathering, processing and disclosing information about you. As a general rule, we do not collect personal information about Subscriber when visiting this site. Subscriber can generally visit this site without telling us who Subscriber is, unless Subscriber chooses to provide such information.

Legal grounds

DRC Database only processes the abovementioned personal data on the following grounds (as referred to in Article 6 of the GDPR):

– Processing is necessary for the performance of a contract (purposes 1, 2, 3, 4, 5, 6 and 7);
– The data subject has given consent for the processing of his/her personal data (purpose 6)
– Processing is necessary for compliance with a legal obligation to which DRC Database is subject (purposes 1 and 7); or
– Processing is necessary for the purpose of the legitimate interest pursued by DRC Database (purposes 5 and 6) The importance of informing existing clients about our services and events.

We use our clients’ contact information to send service emails and send commercial information, such as newsletters and event invitations. You can always opt out of commercial information emails or set your preferences by using the unsubscribe option included in each message or by sending an email to

In addition, we use contact details of relationships other than our clients to send commercial information, such as newsletters and event invitations only if they have given prior consent. Consent can always be revoked by using the opt-out option contained in each message or by sending an email to

Subscriber’s personal information will not be disclosed unless the law permits it or Subscriber’s permission is given. While DRC Database provides a secure environment, Subscriber should be aware there are inherent risks associated with the transmission of information via the Internet.

Subscriber should also be aware that this website contains links to other sites. DRC Database is not responsible for the content and the privacy practices of other websites and DRC Database encourages Subscriber to read each site’s privacy policies.

DRC Database operates this website with outsourced technical assistance. When visiting this site, a record of your visit is logged. Information is recorded for statistical purposes and is used by DRC Database to monitor the use of the site, discover what information is most and least used and to make the site more useful to visitors.

If at any time Subscriber believes we have not adhered to the principles referred to in this privacy statement or have any other comments on these principles, please contact DRC Database.


DRC Database takes all reasonable and appropriate security measures to protect all data subjects from unauthorized access, modification, disclosure or loss of personal data. We comply with the security measures in force. Those who have access to your personal data on behalf of DRC Database have a duty of confidentiality.

If despite the security measures, there is a security incident that is likely to adversely affect your privacy, we will inform you of the incident as soon as possible. We will also inform you about the measures that are being taken to limit the consequences and prevent a recurrence in the future.

Retention periods

DRC Database does not store personal data for longer than necessary for the purposes for which they have been collected and processed or as is required under laws and regulations. The retention period of files (all relevant correspondence, agreements and procedural documents, not being shadow documents in criminal cases) is five years from the date of the final notice to the client or to become irrevocable from a judgment to which the proceedings were concerned. After the deadline, the files are destroyed. Certain categories of personal data are subject to a statutory administrative obligation of at least 7 years after the end of a fiscal year. Some personal data are kept longer in files if there is an (expected) dispute or legal procedure.


DRC Database only uses technical, functional and analytical cookies that do not invade your privacy. A cookie is a small text file that is stored on your computer, tablet or smartphone during the first visit to this website.

The cookies we use are necessary for the technical operation of the website and your ease of use. You can refuse to use cookies by changing the corresponding settings in your browser. In addition, you can also delete any information previously stored through your browser’s settings.

However, we would like to point out that in this case you may not be able to use all the possibilities of this website. By using this website, you give permission for the processing of the information by DRC Database .

Your rights

Each data subject may exercise certain rights with regard to his or her personal data. This gives you the right to access, rectify and delete personal data. You may also object to the use of your data or ask for this use to be restricted. In some cases, you can request your data and transfer it to another party (data portability). Your requests to exercise these rights by sending an email to

You also have the right not to be subjected to automated decision-making. This does not occur at DRC Database .

Apart from the abovementioned rights, you always have the right to file a complaint with the Dutch Data Protection Authority (“Autoriteit Persoonsgegevens”).

Circumstances may arise where DRC Database cannot or cannot fully implement your request as a data subject because of the obligation of confidentiality of lawyers and statutory retention periods.

Changes to this Privacy Statement|

This privacy policy may be changed. It is therefore advisable to consult this privacy statement regularly. The current version of the privacy policy was last amended on 19 January 2021.