Privacy Policy
Last update: 1 September 2024
ABOUT THIS PRIVACY POLICY
This Privacy Policy describes (i) how we collect, treat and store your personal data; (ii) the rights you can exercise in relation to your personal data; and (iii) the measures we take to protect it and to secure your personal data.
1. SILVERFIN IS THE DATA CONTROLLER
2.SILVERFIN’S PROCESSING ACTIVITIES
Which personal data we collect, store and otherwise process and the purpose for which we process this data may differ depending on your relation with Silverfin. In particular, we identify five different scenarios:
- You are browsing on our Website;
- You (wish to) receive updates and newsletters relating to Silverfin services and products (incl. the Silverfin Platform);
- You are a prospect and/or seeking a commercial relationship with Silverfin;
- Your company is an active Silverfin customer and/or you are an authorized user of the Silverfin Platform; or,
- You are | your company is a partner or a supplier of Silverfin.
2.1 You are browsing on our Website
Contacting Silverfin via the contact form on the Website
Purpose: | To answer any questions you may have and/or to initiate a conversation | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Phone number | |
❑ Company name | ❑ Country | |
❑ Nature of inquiry | ❑ Voluntarily provided information | |
Legal ground: | Consent | |
Retention period: | Until one (1) year following your contact with Silverfin |
Cookies
2.2. You (wish to) receive updates and newsletters relating to Silverfin services and products
The Silverfin newsletter | update
Purpose: | Providing more information on (new features of) the Silverfin Platform, our Service or related products/services | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ||
Legal ground: | Consent or, if you happen to be a customer or partner of Silverfin, legitimate interest | |
Retention period: | Until you have objected to the processing of your personal data for this purpose (cfr. Section 7 - “Right to object”) |
2.3 You are a prospect and/or seeking a commercial relationship with Silverfin
Requesting a personal demo
Purpose: | To schedule your personal demo of the Silverfin Platform | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Phone number | |
❑ Company name | ❑ Country | |
❑ Type of industry | ❑ Preferred Language | |
Legal ground: | Consent | |
Retention period: | Until you have requested to no longer be contacted by Silverfin or until one (1) year following your latest contact with Silverfin, whichever comes first ( + verification period of six months) |
General communication with Silverfin & prospecting by Silverfin
Purpose: | To have quality conversations (via mail, telephone or business social media channels) in which Silverfin provides more information on its Service and the Silverfin Platform | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Phone number | |
❑ Company name | ❑ Country | |
❑ Type of industry | ❑ Preferred Language | |
❑ Social media / business channel | ❑ Voluntarily provided information | |
Legal ground: | Legitimate interest | |
Retention period: | Until you have requested to no longer be contacted by Silverfin or until one (1) year following your latest contact with Silverfin, whichever comes first ( + verification period of six months) |
Registering for | attending a Silverfin (network) event
Purpose: | To have an overview of the participants to the event (e.g. Fast Forward; webinar | seminar; contest) as well as to have a follow-up communication after the event | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Company | |
Legal ground: | Consent | |
Retention period: | Until you have requested to no longer be contacted by Silverfin or until one (1) year following your latest contact with Silverfin, whichever comes first ( + verification period of six months) |
2.4 Your company is an active Silverfin customer
General communication and (technical) support
Purpose: | To enable communication with & to provide support to customers | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Preferred Language | |
❑ Job function | ❑ Voluntarily provided information | |
❑ Phone number | ||
Legal ground: | Necessary for the performance of the agreement | |
Retention period: | Until one (1) year following the termination of the commercial relationship between your company and Silverfin |
Billing
Purpose: | To prepare invoices for the Service | use of the Silverfin Platform | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Preferred Language | |
❑ Address | ❑ VAT-number | |
❑ Job function | ||
Legal ground: | Necessary for the performance of the agreement | |
Retention period: | Until one (1) following the termination of the commercial relationship between your company and Silverfin |
Quotes | proposals
Purpose: | To draw up (additional) quotes | proposals | |
Personal data: | ❑ First name | ❑ Company |
❑ Last name | ❑ Email address | |
❑ Address | ❑ VAT-number | |
Legal ground: | Legitimate interest | |
Retention period: | Until one (1) year following the termination of the commercial relationship between your company and Silverfin |
Purpose: | To set up your Silverfin Platform account | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Phone number | |
❑ Company | ❑ Login | |
Legal ground: | Necessary for the performance of the agreement | |
Retention period: | Until one (1) year following the termination of the commercial relationship between your company and Silverfin |
2.5. You are | your company is a partner or supplier of Silverfin
General communication and provision of services
Purpose: | To communicate with you in the scope of our commercial relationship | |
Personal data: | ❑ First name | ❑ Email address |
❑ Last name | ❑ Phone number | |
❑ Company | ❑ Preferred Language | |
❑ Job function | ❑ Voluntarily provided information | |
Legal ground: | Necessary for the performance of the agreement | |
Retention period: | For the duration of your commercial relationship with Silverfin and in any event accordance with any (data processing) agreements concluded with Silverfin |
Billing
Purpose: | To pay your invoices for the services provided (incl. corresponding communication) | |
Personal data: | ❑ First name | ❑ Company |
❑ Last name | ❑ Email Address | |
❑ Address | ❑ VAT-number | |
❑ Job function | ||
Legal ground: | Necessary for the performance of the agreement | |
Retention period: | For the duration of your commercial relationship with Silverfin and in any event accordance with any (data processing) agreements concluded with Silverfin |
3. LEGAL GROUNDS
4. RETENTION PERIODS
5. DISCLOSURE OF PERSONAL DATA TO THIRD PARTIES
Name | Territory | Implemented Safeguards |
---|---|---|
Silverfin Software Ltd. | United Kingdom (London) | European Commission adequacy decision for UK |
Silverfin Software B.V. | The Netherlands (Amsterdam) | N/A (within EEA) |
Silverfin Software ApS | Denmark (Copenhagen) | N/A (within EEA) |
5.2 Other third parties
Silverfin shall not disclose your personal data to other third parties, unless it is necessary to achieve the purposes described in this Privacy Policy. In this respect, (some of) your personal data may be disclosed to:
- Payment providers (e.g. to process the payment or detect/prevent money laundering or fraud)
- Software and cloud providers (to facilitate hosting of (the data in) the Silverfin Platform | Service); and,
- Freelancers or other service providers (e.g. to help develop the Silverfin Platform | Service)
Of course we have made sure that the necessary contracts or similar legal binding acts are in place to ensure that these third parties treat your personal data in accordance with the Privacy Legislation (e.g. Article 28 GDPR).
In addition, we might transfer your personal data:
- to competent authorities: for instance, because (i) we are obliged to provide your personal data under law or in the scope of (future) legal proceedings, or (ii) this is necessary to safeguard our rights; or,
- in M&A context: meaning, if Silverfin or the majority of its assets, is taken over by a third party, in which case your personal data – which Silverfin has collected – may be one of the transferred assets.
6. CROSS-BORDER PROCESSING OF PERSONAL DATA
In case any of the above mentioned third parties or other recipients are located in a country outside the European Economic Area, Silverfin will ensure that one or more of the listed EU-approved safeguards are in place:
- European Commission adequacy decision;
- Data transfer agreement (cfr. the Standard Contractual Clauses as provided in the European Commission Implementing Decision (EU) 2021/914 of 4 June 2021, including the performance of a transfer impact assessment);
- Binding corporate rules; or,
- Certification mechanisms.
7. YOUR PRIVACY RIGHTS
Access: | you can ask for confirmation of whether or not personal data that relates to you is being processed. If so, you can ask us to give you copies of your personal data. We may charge you a small fee for this service; |
Rectification: | you can ask us to correct | complete any information you believe is inaccurate | incomplete; |
Erasure: | you can ask us to erase your personal data, under certain conditions. Please be aware that in this context certain services will no longer be accessible and/or can no longer be provided. |
Objection: | You can object to us processing your personal data, under certain conditions. |
Restriction of processing: | you can ask us to restrict the processing of your personal data, unless we have legitimate interests for the processing of your personal data that prevail over your interests |
Data portability: | you can ask us to transfer your personal data to another organization, or directly to you in a commonly used structured format readable by automatic device, under certain conditions. |
8. SECURITY
Silverfin undertakes to take reasonable, physical, technological and organizational precautions in order to avoid (i) unauthorised access to your personal information, and (ii) loss, abuse or alteration of your personal data. Please consult Silverfin’s “Technical and organizational measures” below for more information on the security measures taken.
Notwithstanding Silverfin’s Security Policy, the checks it carries out and the actions it proposes in this context, an infallible level of security cannot be guaranteed. Since no method of transmission or forwarding over the internet, or any method of electronic storage is 100% secure, we are not in a position to guarantee absolute security.
Finally, the security of your account will also partly depend on the confidentiality and complexity of your password. Silverfin will never ask for your password, meaning that you will never be required to communicate it personally. Silverfin therefore strongly advises you, if you observe that someone has accessed your account, to immediately change your password and contact us.
9. UPDATES
We are entitled to update this Privacy Policy by posting a new version on the Website whereby we will indicate the revision date at the top of this Privacy Policy. As such, it is strongly recommended to regularly consult the Website and the page displaying the Privacy Policy, to make sure that you are aware of any changes.
10. NOTIFICATIONS AND QUESTIONS
11. COMPLAINTS?
You are not satisfied with the manner in which we collect, store or otherwise treat or secure your personal data? We are sorry to hear that, and are prepared to take all measures to remedy this situation. Please do contact us as specified above.
Relevant links to related documents
TECHNICAL AND ORGANIZATIONAL MEASURES
1. MANAGEMENT DIRECTION FOR INFORMATION SECURITY
2. HUMAN RESOURCE SECURITY
3. ACCESS CONTROL
4. COMMUNICATIONS SECURITY
5. OPERATIONS SECURITY
❑ performing security assessment of the application and underlying infrastructure on a regular basis;
❑ implementing vendor patches or fixes; and,
❑ developing a remediation plan for critical vulnerabilities.
6. THIRD-PARTY SUPPLIER MANAGEMENT
7. RESILIENCE
8. AUDIT AND COMPLIANCE
Questions