Privacy policy
We respect the privacy of all users and ensure that all your personal data are treated confidentially.
We process your personal data which you supply when by using our services, or anonymous data
about the usage of our website. Below is an overview of the personal data that we process:
company or personal name,
billing address,
delivery address,
phonenumbers and email addresses,
bank account number,
VAT number,
contacts,
invoices,
payment details.
Our website does not intend to collect data about website visitors younger than 16 years. We do not
collect sensitive information. We have security cameras in our physical store and we keep the
recordings for several days, after which they are permanently deleted.
We only collect data that we need for the fulfilment and improvement of our services, more
specifically for:
processing your payments,
sending newsletters,
contacting you if needed for the fulfilment of your order,
offering you the ability to register for our services,
sending ordered items to you,
fulfilling our legal obligations,
keeping anonymous usage information of our website.
We do not take decisions based on automated processing of information that can have significant
personal consequences. These are decisions taken by computer programmes or systems without
human intervention (by for instance a Kruis Gereedschappen employee).

Name, address and invoices are kept for seven years to fulfill our legal obligation and cannot be
deleted. Other information such as email address and telephone number are also stored for seven
years, but these can be deleted if you wish. Emails and other communications are stored for a limited
time, usually these are removed after about a year, but they do not have a fixed storage time.

We do not sell your data to third parties and only provide them if necessary for the fulfilment of our
agreement with you, or to fulfill our legal obligations. If we share your data with third parties, we
ensure the same level of security and confidentiality of your data. We remain responsible for these
processing operations.

We use functional cookies on our website. A cookie is a small text file that is stored in the browser of
your computer, tablet or smartphone. We use cookies with a purely technical functionality, the
operation of the basket depends on this.

We might ask you for a review after your order is processed through our partner . We share your
name, email address and order number with them to verify that your review is legitimate.

You have the right to view, correct or delete your personal data. You also have the right to withdraw
or object to the processing of your personal data. You also have the right to transfer your data. This
means you can request of us that we send the personal information we hold about you in a computer
file to you or another organisation nominated by you. ou can request access, correction, deletion or
transfer of your personal data or request withdrawal of permission or objection to the processing of
your personal information, by sending a message to info@kruis.nl . To ensure that the request is
genuine, we require a copy of your ID. In this copy, please black out the MRZ (machine readable zone,
the number strip at the bottom of your passport), passport number and Citizen Service Number. This
is to protect your privacy. We will respond as soon as possible and definitely within four weeks.

We take the protection of your data seriously and have taken appropriate measures against abuse,
loss, unauthorized access or unwanted disclosure and to prevent unauthorized modification. If you
feel your data are not properly secured or there are indications of abuse, please contact our
customer service via  tatu_parts@tutamail.com . We have taken the following measures to protect
your personal data:
physical security of our servers with a class 4 alarm system,
confidentiality statements issued by all our employees,
security software, such as a virus scanner and firewall,
TLS / SSL secured internet connection for all communication,
DKIM and SPF to allow you to verify our emails,
RFC2898 encryption of passwords, making them unreadable to us.