Stichting PYM and its full operational entities or affiliates (for the purposes of this policy - "PYM", "we", "our", "us") are committed to protecting your privacy and ensuring that you continue to trust PYM with your personal data.

This privacy policy applies to the PYM website www.pym.nu and governs the privacy of its users (for the purposes of this policy - "visitors", "customers", "you", "your") who choose to use the website. It describes how we handle your personal data. Please read this carefully.

By continuing to visit our website or use our services, or by providing us with your personal data when registering for events or other services, you accept the collection and processing of your personal data as described in this privacy policy. If you do not agree with this privacy policy, please do not use the PYM website and do not provide us with personal data.

How do we collect your data?
When you use or interact with us via our website or services, we may collect your personal data and other information, which is provided to us voluntarily or via automated means as visitors navigate our site.

One or more of the following means may collect this data:

• Information you provide by filling in the registration forms on our website.
• We may ask you to complete or participate in surveys.
• If you register for PYM events, we may ask you for certain personal data.
• If you apply and submit a job application to us.
• If you contact us, we may record your correspondence with us.

What kind of data do we collect?
Personal data: this is data that says something about you such as your name, address, email address, telephone number, age, your bank account number, and your IP address. It also includes your employer/organization, job title, and any other data or information that may not be personal data but could become personal data if combined with other non-personal information.

Additionally, user-provided information may include the purpose of your investments, investment objectives, sectors and geographic locations of interest for impact investing, and any other information you provide about your investments. We may also periodically provide this information to external contractors and partners for purposes consistent with our mission.

How do we use the data we collect?
We use the collected data for the following purposes based on your consent and/or our legitimate basis:

• If you subscribe to our newsletters/invitations, to send you newsletters to keep you informed about the impact world and to send invitations and manage events organized by us.
• To fulfill our obligations arising from contracts between you and us.
• To notify you at our discretion of any changes or additions to our services.
• To ensure that the content of our site is useful and presented in the most effective way for you and your computer. To better tailor the website experience to the interests of visitors, users, or customers and to display content based on user functionality.
• To provide you with information, products, or services that you request from us.
• To send surveys to support our research and analyze the use of, interest in, our products, services, or content offered by us.
• To send you emails, follow-up questions about your participation in an event.
• For promotions of our services and new services being introduced that may be of interest or useful to you.
• To communicate with visitors and customers via email, phone, mail, and/or mobile devices about products or services that may be of interest and are offered by us, our affiliated companies.
• To enhance your experience at our events (physical or virtual) and to communicate with other visitors during or after sessions at the Impact Days and other events.

When do we share your personal data with others?
PYM takes the privacy of our users very seriously and we do not sell, rent, or provide your personally identifiable information to third parties, except as described in this privacy policy.
Sometimes it is necessary to provide your personal data to third parties who perform services on behalf of PYM. We only work with service providers who comply with the GDPR.

• We may share your information with our third parties to provide services listed on our website.
• We share your information on virtual event platforms during our virtual events.
  We use Google Analytics to track the number of visits to our site and to improve our website.
• We may share your information with our other visitors during a virtual event/conference to enhance the experience and interaction between visitors.
• We may store your personal data at locations (servers or databases at hosting providers) outside the direct control of PYM.
• We may also transfer or assign such information as necessary in the event of a change of external service provider, divestitures, mergers, or dissolution.
• We may only share your personal data with third parties who provide supporting services to facilitate your transactions with PYM, only to the extent necessary for processing your payments, refunding your payments, or handling complaints and questions regarding such payments and refunds.
• For payment purposes, your browser may be redirected to another external service provider. This redirection process will not be obvious to you. These third-party websites automatically receive your IP address when this happens, and they may also collect information about your interaction with our website, including computer and connection information, standard weblog information. Such information does not individually identify you.

Legal matters
We may share your personal data with third parties as permitted by, or to reasonably comply with, applicable laws and regulations or legal requests; to protect against fraud, security, or other issues; the safety or vital interests of a natural person; to cooperate with law enforcement or regulatory authorities and to protect the rights or property of PYM.
Please note that PYM is not responsible for the collection, use, and disclosure policies and practices (including data security practices) of other organizations or any other company, including app developers, app providers, social media platform providers, operating system providers, wireless service providers, or device manufacturers, including any personal information you disclose to other organizations through or in connection with the applications.

Disclosures
We may provide non-identifiable personal information to our third parties/contractors for the purpose of delivering and maintaining our services. We make reasonable efforts to limit the use of such shared information solely for this purpose and to take other appropriate confidentiality and security measures.

International transfer of personal data:
The hosting facilities for our website are located in the EU. Any transfer of data to countries outside the EU will be protected by appropriate safeguards, namely the use of standard data protection clauses adopted or approved by the European Commission.
We may send your personal data outside the jurisdiction where it was collected or originated. When personal data is transferred or accessed outside a specific jurisdiction, we ensure that appropriate safeguards are in place to comply with applicable data protection regulations.
You acknowledge that personal data you submit for publication via our site or services may be available worldwide via the internet. We cannot prevent the use (or misuse) of such Personal Data by others.

Cookie policy
To make our website work properly, we sometimes place small data/text files, called cookies, on your device.

What are cookies?
A cookie is a small text file that a website stores on your computer or mobile device when you visit the website. When you visit our website, we may send one or more cookies - small data/text files - to your computer or mobile device to uniquely identify your browser, remember certain information on the website, and help PYM help you log in faster and navigate our website.

How and why do we use cookies?

• To keep track of your preferences, e.g. language, time zone, and time-outs after periods of inactivity.
• To enhance the security of our website by ‘authenticating’ you when you log in to our website.
• To analyze trends for managing our website, track user movements within the website, and collect demographic information about our user base.
• To conduct research and analysis to improve our website and our products and services.
• We may receive reports based on the cookies on both an individual and aggregated basis.
  A cookie can provide us with anonymous information about how you browse our website.

We do not use cookies that collect personal information about you.

Types of cookies we use
Persistent cookie - a persistent cookie may remain on your computer after you close your browser, so your browser can use it on subsequent visits to our website. Persistent cookies can be deleted by following your web browser’s instructions.
Session cookie - contains an encrypted, unique identification. It is temporarily linked to your account and disappears after you close your browser; session cookies allow us to uniquely identify you when you are logged in to our website and to process your requests. You can reset your web browser to refuse all cookies or to indicate when a cookie is being sent.
Authentication cookie - identifies you when you visit our website and while you navigate. Personalization cookie - stores information about your preferences to personalize our website for your use.
Status cookie - determines the status if you are logged in or out of our website.
Security cookie - a security measure used to protect our website and services in general.
Analytics cookie - we use Google Analytics to analyze the use of our website.

Managing cookies
You can disable or delete cookie data used by browser add-ons, either by changing the settings of the add-on or by visiting the manufacturer’s website. Please note that if you refuse the use of cookies, you may experience reduced functionality and, for websites that use authentication-related cookies, refusing cookies may prevent you from using the website at all. Use the links below to get the latest information on blocking and deleting cookies via these links:
Chrome: https://support.google.com/chrome/answer/95647?hl=en
Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-websitepreferences
Opera: http://www.opera.com/help/tutorials/security/cookies/
Internet Explorer: https://support.microsoft.com/en-gb/help/17442/windows-internetexplorer-delete-manage-cookies
Safari: https://support.apple.com/kb/PH2141

However, some features of our website may not function properly if the ability to accept cookies is disabled.

Security and what we do to protect your data
To protect your data as best as possible, we invest in our systems, procedures, and people. Our server is well protected to safeguard your personal data from loss, destruction, corruption, or theft. Access to any document containing your personal data is password-protected and we only allow necessary persons access to such documents. In addition, we have a strict privacy policy to ensure that all our employees handle your personal data with care.

However, it cannot be guaranteed that these security measures will prevent any unauthorized interception of or access to your personal information and you hereby agree not to hold PYM liable for the use of your personal information that has been obtained in an unauthorized manner.

How long do we keep your data?
We retain personal data for as long as necessary to achieve the specific purpose. After this period, your personal data will be deleted from our systems to the best of our ability.

The law does not specify specific retention periods for personal data. However, other legislation may specify minimum retention periods. If this is the case, we are required to observe these periods. Such legislation includes tax laws or laws specifically applicable to financial institutions. Another reason we may retain your data longer is if we become involved in a lawsuit or other legal proceedings.

What rights do you have?
GDPR gives you a number of rights regarding your personal data. You can exercise these rights by sending an email to info@pym.nu. We will respond without undue delay, in any case within one month. It includes the following rights:

• Right to information and access to the personal information being used
• Right to consent
• Right to withdraw consent
• Right to object to direct marketing
• Right to rectification and erasure - You can ask us to correct any errors or delete your personal information (in whole or in part) that we hold
• Right to object to or restrict our processing of your information
• Request a copy of your personal data

Unsubscribe: you can unsubscribe from receiving email communications or SMS messages from us at any time by sending us an email at info@pym.nu or by clicking “Unsubscribe” on our website.

Changes to the privacy policy
We reserve the full right and at our sole discretion to amend, update, modify, or adapt this privacy policy at any time, with or without prior notice to the user. The revised privacy policy will take effect immediately once posted on our website. If material changes are made, you will be informed/ or notified at our discretion via one of the following methods - on our website, by newsletter, by blog post, by email, or by another method we deem appropriate for such information. You are required to visit our website regularly to review our privacy policy and to get more information about any revisions. If you visit another site referred to on our website, it is subject to the privacy policy of such sites.

Links to other websites
We are not responsible for the privacy policies of sites linked to or from our website or any site you use to access our website. Please refer to the respective privacy policies of these sites for more information about their privacy policies and for instructions on how to opt out of certain practices. Our privacy policy does not apply to, and we have no control over the activities of, such other websites.

Questions or complaints?
If you have any questions about this privacy policy or if you believe that PYM is not adhering to this published privacy policy, please contact us by email at info@pym.nu.

By visiting our website, you and PYM agree that all matters relating to your access to or use of this website shall be governed by and construed in accordance with the laws of the Netherlands, without giving effect to the principles of conflicts of law. All disputes relating to this privacy policy will also be settled under Dutch law.