Privacy statement Visser Schaap & Kreijger advocaten
- General
This statement explains how our firm, Visser Schaap & Kreijger, handles the personal data we process. In doing so, we comply with the General Data Protection Regulation (“GDPR”).
Visser Schaap & Kreijger is the data controller within the meaning of the GDPR. We are located at Concertgebouwplein 19, 1071 LM, Amsterdam. Our current contact details can be found on our website www.ipmc.nl.
This statement was updated on 10 June 2026. Any changes will be published on this website. We recommend that you consult it regularly.
- Processing of personal data
Purpose
We process personal data in the course of running and administering our law firm and in providing and improving our legal services, maintaining relationships with suppliers, external service providers and others, for the recruitment and selection of staff and student interns, for our communications not related to specific cases, such as invitations to meetings and updates on current developments, and whenever we are required to do so by law.
Personal data
In doing so, we process, among other things:
- Name and contact details (address, email address, telephone numbers)
- All information we process when handling matters
- Personal data that you provide to us, such as contact details, job applications, CVs, etc.
- Where required by law, we may request further identifying details (obligation to identify clients). We will inform you of this when accepting an assignment.
Legal basis
Under the GDPR, personal data may only be processed on a specific legal basis. Depending on the personal data, processing by Visser Schaap & Kreijger is based on the performance of a service agreement (e.g. contact details and information for the case file), a legal obligation, a legitimate interest or consent.
Retention period
We do not retain personal data for longer than is necessary for the purposes for which we have processed it. This means that the retention period is not the same for all personal data. In addition, under the law or the rules of the Bar Association, we are required to retain certain data for a minimum period, such as the retention obligation for records and for information from files.
Security
We have taken appropriate technical and organisational measures to ensure a level of security for personal data that is commensurate with the risk. Where Visser Schaap & Kreijger uses the services of third parties, such as an IT supplier, we will set out agreements regarding adequate security measures in a data processing agreement as part of our personal data protection measures.
Where is the data processed?
Visser Schaap & Kreijger processes your data within the EU. Where we engage third parties who, as data processors, process data outside the EU, the data processing agreements concluded with them provide for an appropriate level of protection.
- Disclosure of personal data
Visser Schaap & Kreijger will only share your personal data with third parties to the extent necessary for the provision of services, taking into account the purposes mentioned above, or with supervisory authorities, courts or any other public authority, to the extent that there is a legal obligation to do so.
Where required by the GDPR, we enter into a data processing agreement with third parties who process personal data on behalf of and at the request of Visser Schaap & Kreijger, thereby obliging that third party to comply with the GDPR as well.
Third parties engaged by Visser Schaap & Kreijger who provide services as data controllers are themselves responsible for compliance with the GDPR in relation to the (further) processing of your personal data. This includes, for example, an accountant, a solicitor, or other third parties engaged for the purpose of obtaining a second opinion or an expert report.
- Website and cookies
Click behaviour and visitor data
General visitor data is collected on our website (www.ipmc.nl). The time of the visit and the data sent by your browser are recorded. This data is used for statistical analyses of visitor and click behaviour on our website and to optimise the functioning of our website. This data is not shared with third parties and is always anonymised as much as possible.
We do not use Google Analytics to track how users use our website. We use Plausible’s privacy-first analytics tool; this complies with the high privacy standards set out in the GDPR, CCPA and PECR.
Use of cookies
We do not use cookies.
Our website also contains links to our lawyers’ LinkedIn pages. Visser Schaap & Kreijger does not monitor and is not responsible for the processing of your personal data by and via such third parties. The use of these platforms is therefore at your own risk. Before using these third-party services, it is advisable to first read the privacy statements of those third parties.
- Your rights regarding personal data
Under the GDPR, you have a number of rights. You may ask us whether we process your personal data and what data we process, and/or have it corrected (we may ask for identification). Under certain conditions, you may ask us to restrict the use of personal data, or to erase it entirely. We would, however, point out that this right is not unconditional, and that we are sometimes also obliged to retain data.
You can send a request to access, correct, restrict or delete your personal data, or to withdraw previously given consent, using the contact details above. You will receive a further response from us within four weeks of us receiving your request.
- Questions and complaints
If you have any questions or complaints, please call us on 020-723 8900 or email us atinfo@ipmc.nl . You are, of course, also welcome to contact your usual point of contact at our office directly. You may also contact the Dutch Data Protection Authority at any time at www.autoriteitpersoonsgegevens.nl.