Introduction

BlueStone (“we,” “us,” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) and other relevant laws in the European Union.

1. Data Controller

BlueStone
Koelmalaan 350
1812 PS Alkmaar

Email: hello@bluestone.com
Phone: +31 72 303 4081

For the purposes of the GDPR, BlueStone is the data controller of the personal data collected.

2. What Personal Data We Collect

• We collect the following types of personal data:
  Identification Information: Name, date of birth, nationality, gender, and photo.

• Contact Information: Email address, phone number, physical address.

• Employment Data: Employment history, payroll data, bank account details, social security number, and tax identification number.

• Contractual Data: Details of your employment contract and agreements with BlueStone or its clients.

• Digital Data: IP address, browser type, operating system, device identifiers, and browsing activities collected through cookies or similar technologies.

3. How We Collect Your Data

We collect data in the following ways:

• Directly from You: When you provide us with your personal information via forms, contracts, or during communications. Automatically: Through cookies, server logs, and similar technologies when you interact with our website or use the MyBlueStone app.

• From Third Parties: We may receive personal data from clients, service providers, or government authorities as part of employment or compliance with legal obligations.

4. Legal Basis for Processing Personal Data

We process your personal data based on the following legal grounds:

• Performance of a Contract: We process data necessary to perform our obligations under employment contracts.

• Legal Obligations: We are required by law to process certain data for tax, social security, and other regulatory purposes.

• Legitimate Interests: We process data to improve our services, prevent fraud, and protect the security of our systems.

• Consent: In certain cases, we process data based on your consent, which you may withdraw at any time.

5. How We Use Your Personal Data

We use your personal data for the following purposes:

• Employment and Payroll Services: Managing employment contracts, processing payroll, fulfilling tax and social security obligations.

• Client Management: Communicating with clients and providing our services in compliance with contractual obligations.

• Regulatory Compliance: Complying with legal requirements, including immigration laws (IND requirements), audits, and reporting.

• Improvement of Services: Enhancing our website, apps, and other services through user feedback and analytics.

6. Sharing of Personal Data

We may share your personal data with:

• Clients: To provide payroll and employment services.

• Service Providers: For hosting, IT support, payroll processing, and other operational services.

• Regulatory Authorities: In compliance with tax, social security, or immigration laws.

• Auditors and Certification Bodies: To comply with regulatory or contractual obligations (e.g., annual audits).

• Legal Authorities: If required to do so by law, court order, or other legal processes.

7. International Data Transfers

In some cases, we may transfer your personal data outside the European Economic Area (EEA) to countries that do not provide the same level of data protection as the EU. In such cases, we ensure appropriate safeguards are in place, such as standard contractual clauses or reliance on Privacy Shield certification, to protect your data.

8. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including complying with legal, accounting, or reporting obligations. The retention periods are as follows:

• Employment Data: Retained for the duration of employment and up to [insert number of years] years after employment ends.

• Payroll Data: Retained for [insert number of years] years to comply with tax and social security regulations.

• Digital Data: Retained for [insert number of months/years] based on cookie and website use policies.

9. Your Rights

As a data subject, you have the following rights under the GDPR:

• Right of Access: You can request access to your personal data and obtain a copy.

• Right to Rectification: You can request the correction of any inaccurate or incomplete personal data.

• Right to Erasure (“Right to be Forgotten”): You can request the deletion of your personal data under certain conditions.

• Right to Restriction: You can request that we limit the processing of your personal data in specific cases.

• Right to Data Portability: You can request that your personal data be transferred to another organization or provided to you in a structured format.

• Right to Object: You can object to the processing of your personal data based on legitimate interests or for direct marketing purposes.

• Right to Withdraw Consent: You can withdraw consent at any time, where processing is based on consent.

To exercise your rights, please get in touch with us at hello@bluestone.nl

10. Data Security

We take appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, alteration, or destruction. These measures include encryption, access control, and regular security audits.

11. Cookies and Tracking Technologies

We use cookies and similar technologies on our website to improve user experience and analyze website traffic. You can manage your cookie preferences via your browser settings. For more information, please refer to our [Cookie Policy].

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. Any updates will be posted on our website, and we encourage you to review the policy periodically.

13. Contact Us

If you have any questions or concerns about this Privacy Policy or how we handle your personal data, don't hesitate to get in touch with us at:

BlueStone
Koelmalaan 350, 1812 PS Alkmaar
Email: hello@bluestone.com
Phone: +31 72 303 4081