Vitraa - Professionele Zorg en Begeleiding

1. Who are we?

Vitraa is a healthcare organization that offers sheltered and supported living to young people and young adults. We process personal data of clients, employees, and other involved parties securely and take our responsibility seriously. Contact details: Vitraa, Hoogstraat 217, 3131 BB Vlaardingen

2. What personal data do we process?

We process personal data necessary for our services. This may include:

Clients:

Name, address, and contact details
Date of birth and BSN
Medical and care-related data
Financial and administrative data
Data about guidance and progress
Reports of interviews and evaluations

Employees and applicants:

Name, address, and contact details
Date of birth and BSN
Education, work experience, and references
Employment contract and salary data
Certificate of Conduct (VOG)
Performance reviews and evaluations

Website visitors:

IP address
Cookies and usage data
Any contact forms

3. Why do we process this data?

We process personal data solely for the following purposes:

Providing care and guidance to clients
Complying with legal obligations (e.g. WLZ, Wtza)
Managing personnel administration and employment contracts
Improving our website and services
Answering contact requests and care applications
Performing internal analyses and quality controls

4. How do we secure your data?

We take appropriate technical and organizational measures to protect your personal data against loss, abuse, or unauthorized access. Vitraa complies with applicable standards, including NEN 7510 for information security in healthcare. Our employees are regularly trained in privacy protection and data security.

Encryption of sensitive data
Access control and authorization management
Regular security audits and checks
Limited retention periods and safe destruction of data

5. Sharing of personal data with third parties

We only share personal data if necessary, for example with:

Health insurers and government agencies (if legally required)
Municipalities and care offices in the context of WLZ or Wmo
External service providers who support us (e.g. IT management)

We conclude data processing agreements with parties who process data on our behalf to ensure that your privacy is safeguarded. Data is not sold or shared for commercial purposes.

6. How long do we keep personal data?

We do not not keep personal data longer than necessary. Legal retention periods may vary, for example:

Client data: 15 years after end of care (WGBO)
Employee files: 7 years after end of employment (tax laws)
Application data: maximum 6 months after rejection

7. Your rights

You have various rights as a data subject under the GDPR, including:

The right to access, rectification, or erasure of your data
The right to object to the processing of your personal data
The right to request restriction of processing
The right to data portability
The right to lodge a complaint with the Data Protection Authority

You can submit a request via info@vitraa.nl. We will respond to your request within 30 days.

8. Cookies and tracking

Our website uses functional and analytical cookies to improve user experience. Cookies help us understand how visitors use the website so we can optimize our services. You can manage your cookie preferences via your browser settings.

9. Minors

Our services are primarily aimed at young adults aged 18 and over. If we process personal data of minors, this is only done with the permission of the parent(s) or legal guardian(s), in accordance with applicable laws and regulations.

10. Changes to this privacy policy

We may update this privacy statement if necessary due to new legislation or changes in our services. The most current version can always be found on www.vitraa.nl. We advise you to consult this statement regularly. Do you have questions about this privacy statement? Feel free to contact us at info@vitraa.nl.

Privacy Policy Vitraa