close
Share with your friends

KPMG Privacy Policy Marketing

KPMG Privacy Policy Marketing

Preference center, marketing contacts, personalized content & events

Last updated: February 26, 2020

1.    Why does KPMG use my data?
In the context of marketing, KPMG develops various activities such as organizing events and creating and publishing content on topics that are of interest to our (potential) clients. We also like to keep interested parties informed of our services, events and publications (e.g. newsletters, articles and white papers). In that respect we consider it important that the services, events and publications we develop, and our contacts with our target groups in relation hereto, are as relevant as possible to our target group’s interests and preferences. In this context, KPMG on the one hand strives to develop services, events and publications that respond as well as possible to the interests of our target groups. On the other hand, KPMG strives to ensure that the information that we send to specific business relationships within our target groups such as you and the events for which we invite specific business relationships, correspond as closely as possible to their personal preferences. In order to achieve these objectives, KPMG uses your (personal) data. In this KPMG Privacy Policy Marketing you will read about this in more detail.


2.    Who is responsible for my data?
KPMG Staffing & Facility Services B.V. is responsible for processing your (personal) data. It usually shares this responsibility with the KPMG entity that primarily determines the purpose and means of the data processing. KPMG Staffing & Facility Services B.V. is a subsidiary of KPMG N.V. and is registered in the commercial register in the Netherlands under number 34153861.

Within the KPMG organisation, KPMG Staffing & Facility Services B.V. is charged as much as possible with compliance with privacy legislation, including the information obligation and the exercise of rights. If you have questions or complaints about the processing of your data, you can also contact KPMG Staffing & Facility Services B.V.
 

3.    How will the data I provide myself be used?

3.1  How will my data be used when I register through the preference center?

For the purposes mentioned in section 1, KPMG i.a. uses the KPMG preference center. This is an online portal where interested parties can register to stay informed about certain self-selected topics via direct mailings. Such direct mailings may relate to our services, events and publications (e.g. newsletters, articles and white papers). In addition you can give us consent via the preference center to contact you directly (e.g. by telephone) about the services of KPMG in relation your self-selected topics.

To register for the KPMG preference center you will first have to provide your email address. We will use the provided email address to send you an email with a link through which you can confirm your email address. Clicking the link in this email will take you to a webpage with a form where you can provide certain data and indicate your preferences for certain topics. The data you provide, including the additional data that KPMG collects itself in this context (see section 5), will be used to send you (personalised) emails with information about the topics you’ve selected, including KPMG events in relation to these topics. If you consent to this by checking the relevant consent box, we will also use these data to contact you directly (e.g. by telephone)  about the services of KPMG in relation to the topics you selected.

You can view and adjust your preferences at any time via the preference center. You can reach the preference center via the link in the email we send you as confirmation of your registration. Alternatively, you can access the preference center via the 'My Preferences' button included in every email we send you in relation to your preference center registration. Lastly, you can directly access the preference center via preference.kpmg.nl. In this case, as with your first registration via the preference center, you will first have to provide and confirm your email address by clicking on the link in the email you receive after providing the email address. Doing so will take you to a webpage with a form where you can view and change your preferences.

The use of your data as explained in this section takes place on the basis of your consent. However, we note that in that case, partly on the basis of our legitimate interests (as explained in section 1), KPMG may process additional data in the context of the emails or telephone contacts you receive in connection with your registration for the preference center. You can read more about this in section 5 of this KPMG Privacy Policy Marketing. 

3.2  How will my data be used when I fill out a form to request specific content?

Existing KPMG client relations and persons who have registered via the preference center may receive emails with a link to obtain certain specific content. Clicking on this link takes you to a webpage with a form that allows you to request this content. In addition, via the KPMG website (www.kpmg.nl) or by clicking on advertisements on websites of third parties and social networks such as LinkedIn, you may arrive at a webpage with a form with which you can request certain specific KPMG content.

To the extent that we already have certain information about you, it is possible that this information has been pre-completed on the form. Whether this is the case i.a. depends your cookie settings. If certain information is pre-completed on the form, all you have to do is check, adjust and supplement this information where necessary. You can then submit your request by clicking on ‘submit’. Clicking ‘submit’ signifies that you give KPMG consent to use the information you’ve provided to send you the requested content by email. In addition, clicking ‘submit’ signifies that you give KPMG consent to send you a follow-up email within 30 days. For example, to give you the opportunity to consent to KPMG's further and/or additional use of your data for certain purposes.

In certain content request forms, you may be asked whether you would also like to give us consent to use the information you provide and the data that we collect ourselves in connection with this (see section 5):

  • to send you personalized direct mailings, tailored to your interests and preferences, in relation to the subject matter of the requested content; and/or 
  • to inform you by email or telephone of the services that KPMG offers in relation to the subject matter of the requested content.

You can give consent to use your data for these (additional) purposes by checking the corresponding check-boxes under the content request form before clicking on 'submit'. In that case, the aforementioned data will also be used for the selected additional purpose(s) on the basis of your consent. Insofar as you have previously given consent for the use of your data for any of these additional purposes, for example by registering through the preference center, this consent will remain valid and you will not have to give your consent again.

Your data will be deleted within 30 days (after submitting the content request) unless you are an existing client of KPMG or you give or have given consent for any further and/or additional use of your data as set out in this KPMG Privacy Policy Marketing. In that case, your data will in principle be retained for a period of 1 year, as further explained in section 7.

The use of your data as explained in this section will always take place on the basis of your consent. We note however that KPMG, partly based on its legitimate interests (as explained in section 1), may process additional data in the context of the emails you receive after requesting certain content via a content request form. You can read more about this in section 5 of this KPMG Privacy Policy Marketing. 

In some cases, the form to request specific KPMG content is hosted from the website of a third party such as LinkedIn or Facebook, instead of KPMG’s own website (kpmg.nl). You can check the url of the content request form to see by which party it is hosted. If you request KPMG content via a request form on the website of a third party, the data you provide will also be used by the third party, for example in relation to their (direct) advertisement activities and/or to optimize their systems. For more information on how these parties use your data, we refer to their privacy policies as available on their websites.  

3.3  How will my data be used when I register for a KPMG event?

KPMG regularly organizes events for its business relations such as round table meetings, seminars, webinars, training sessions and other meetings. You may receive a direct invitation for an event by email, for example following a preference center registration. In such case you can register for the event via a link in the email. In many cases it is also possible to register for KPMG events either via a web advertisement or through the KPMG website without a direct invitation.

If you register for a KPMG event, you will have to provide the information that KPMG needs to organize, execute and evaluate the event. This may include your name, email address, organization, position, whether you need a parking space and your preferences with regard to certain parts of the event such as workshops or break-out sessions. In some cases you will be able to voluntarily provide some additional information, such as your telephone number or dietary requirements. The information that must be provided as a minimum is always indicated (by asterisks). To the extent that we already have certain information about you, it is possible that this information has been pre-completed on the form. Whether this is the case i.a. depends on your cookie settings. If certain information is pre-completed on the form, all you have to do is check, adjust and supplement this information where necessary. By then clicking on ‘submit’ your registration will be submitted. By doing so, you give KPMG consent to use the information you provided for purposes of organizing, executing and evaluating the event. In this context your details will be used:

  • to register you for the event;
  • to verify whether you fall within the target group of the relevant event;
  • to make the planning of the event, for example by classifying you for certain presentations, workshops, break-out sessions, etc;
  • to ensure that you have a parking space;
  • to create a name badge for you;
  • to provide catering in accordance with your dietary requirements;
  • to send you information about the event by email, both prior to and after the event. For example, confirmation of your registration, information about the program and any changes thereof, information about the speakers, the presentation(s), the workshops and the break-out sessions during the event, etc.;
  • to remind you of the event by text message; and
  • to send you an evaluation of the event by email after the event has taken place.

If you register for a KPMG event, you may be asked whether you would also like to give us consent to use the information you provide and the data that we collect ourselves in connection with this (see section 5):

  • to send you personalized direct mailings, tailored to your interests and preferences, in relation to the subject matter of the requested content; and/or 
  • to inform you by email or telephone of the services that KPMG offers in relation to the subject matter of the requested content.

You can give consent to use your data for these additional purposes by checking the corresponding checkboxes under the subscription form before clicking on 'submit'. In that case, the aforementioned data will also be used for the selected additional purpose(s) on the basis of your consent. Insofar as you have previously given consent for the use of your data for any of these additional purposes, for example by registering through the preference center, this consent will remain valid and you will not have to give your consent again.

KPMG sometimes uses a voting system during events which works via a web page you can access via your smartphone. In such case, the answers provided by you will be used in the manner explained prior to or during the event. In most cases, the answers of the participants are analyzed (live) and presented during the event. Sometimes the system is also used to enable participants to ask questions to the speakers during the event or to interact with the participants in other ways. The use of your data via the voting system is based on your consent which you give by accessing the relevant web page on your smartphone. If you do not consent to the use of your data via the voting system, you can choose not to access the relevant web page. Within 30 days after the end of the event, the data processed via the voting system will be deleted or anonymized in such a way that the data can no longer be traced back to you.

We may also make video and/or audio recordings during an event. If this is the case, KPMG will always inform you about this in advance, including about the (internal and/or external) use-purposes of the recordings. In most cases we use the recordings in publications about the event on KPMG websites or social media. If recordings (images and/or sound) are made during a specific event, you will be asked whether you give consent for this when you register or at the registration desk for the event. KPMG may designate specific areas for participants of an event who do not want to be recorded, for example the back seats, in order to allow us to ensure that these persons are not recorded involuntarily.

If you have registered for an event, KPMG may use your data to send you an event evaluation request via email. The main objective of such evaluations is to analyse whether and how KPMG can improve its events and align them better with the interests and preferences of its target groups and specific business relationships such as you. If you are requested by email to evaluate an event, we will inform you about any potential specific objectives of the evaluation. Because we use your email address to send event evaluation requests, the data collected in relation hereto are not anonymous. However, insofar as possible in view of the evaluation objectives, any further processing of the collected evaluation data is done on an anonymous basis. To this end, the (directly) identifying variables, such as the email addresses of the people who returned an evaluation, are deleted. Participating in event evaluations is voluntary. By completing and returning an evaluation you consent to the use of your evaluation data for (the aforementioned) evaluation purposes.

The use of your data as explained in this section will always take place on the basis of your consent. We note however that KPMG, partly based on its legitimate interests (as explained in section 1), may process additional data in the context of your participation in KPMG events. You can read more about this in section 5 of this KPMG Privacy Policy Marketing. 

The data that KPMG processes in the context of events is not retained longer (in a non-anonymous form) than is necessary for the aforementioned use purposes. Specifically, your data will be deleted or anonymized in such a way that the data can no longer be traced back to you within 30 days, unless you are an existing client of KPMG or you give or have given consent for any further and/or additional use of your data as set out in this KPMG Privacy Policy Marketing. In that case, your data will in principle be retained for a period of 1 year, as further explained in section 7. The 30-day retention period starts as soon as the event and the associated activities such as evaluations have been completed.

 

4.    Could the data I provide be included in KPMG's relationship management system?
If you voluntarily provide certain data to KPMG as explained in section 3, we will in principle also store these data in our relationship management system (CRM). If we already have your data in our relationship management system because of other processing activities (for example, ongoing services or sales calls), we will add the data you provide to these existing data. In this way we ensure a uniform, up-to-date and accurate view of you as a KPMG business relation. KPMG has a legitimate interest in having a correct view of its business relations. In view of i.a. the limited impact of this processing activity on you and your privacy, this legitimate interest is sufficiently strong to serve as a basis for this processing activity. The CRM-related use of your data is therefore based on the legitimate interests of KPMG.

 

5.    What data does KPMG collect in addition to the data I provide myself?
In addition to the data you provide yourself as explained in section 3, KPMG also collects and uses data that you have not provided yourself. This concerns data about the (digital) context in which you provide your data to us, data about subsequent direct contacts (including emails) and data about your participation in KPMG events. You can read more about this in this section.

If you go to the preference center, or if you access a webpage with a form to request specific content or to register for an event, KPMG may collect information on how you arrived on this webpage. For example by clicking on an advertisement or on a link in a direct mailing you received. KPMG can also collect information on how you use these types of direct mailings. For example, whether and when you open these emails, whether and when you clicked on links in these emails and whether and how long you have visited the corresponding webpage. By collecting these data, we get a better picture of your personal interests and preferences and those of the target group to which you belong. Whether certain content is frequently or rarely requested, for example, provides insight into whether this type of content is relevant for a specific target group. Similarly your own personal interest in a certain topic may be apparent because you request and/or open a lot or little content about this topic. All these additional data are stored in conjunction with the information that you have provided to us yourself (see section 3).

KPMG always uses these data in combination with the data that you have provided yourself. As explained in section 1, KPMG uses these data primarily to develop services, events and publications that best meet the interests of our target groups. In addition, KPMG uses these data to provide specific business relations within our target groups, such as you, with information that is most interesting to them and that best suits their preferences. More precisely, the data are used by KPMG as follows:

  • To identify the interests of (potential) clients, to improve our services and to identify possible prospective clients that are of interest to us. For example, based on the data you provide, such as company name and position, and the data we collect ourselves about your use of our content, we can determine which content is relevant for which target group. This enables us to create services and content that are relevant to our various target groups;
  • In sofar as you have given consent to use your data to inform you about our services, events or publications by email and/or telephone (see section 3), we also use these data to tailor these contacts as much as possible to your personal interests and preferences. For this we use an algorithm. This algorithm helps us automatically determine whether certain content and information may be of interest to you and whether it will be provided to you or not. The algorithm determines this, for example, on the basis of the frequency, type (such as email, website visit, download of content, event registration/participation or personal contact), duration, recency and response time of your (interactions with/use of) content and other information from KPMG. In addition, the algorithm can also be used to personalise the direct mailings you receive and to tailor them to your specific interests and preferences. In such emails we may for example point to specific information or parts of the content that the collected data suggests may be of interest to you; and
  • To analyse and evaluate the quality of the interactions between us and our business relations and for testing and development purposes of said algorithm. In order to be able to (continue to) respond as effectively as possible to the interests of our target groups and specific (business) relationships, it is important to continuously improve the algorithm.

KPMG has legitimate interests to use your data as described in this section for the purposes described in this section. The use of your data as explained in this section is therefore based on the legitimate interests of KPMG (as explained above). In view of i.a. the limited impact of this use of your data on you and your privacy, these legitimate interests of KPMG are sufficiently strong to serve as the basis for the use of your data as explained in this section.

The data you do not provide yourself but that KPMG collects independently will never be kept longer than the data you provide yourself. If you have not given any consent for the further and/or additional use of your data, the data that KPMG has collected itself will therefore also be deleted within a maximum of 30 days (see section 3.2 and 3.3). If you have given consent for continued use of your data for one or more purposes (see section 3), the same retention period will apply to the data that KPMG has collected independently. See Section 7 for more information on this.

 

6.    How can I revoke my consent?
Insofar as the use of your data according to this KPMG Privacy Policy Marketing is based on your consent, you can revoke your consent at any time. You can do so by using the unsubscribe option that will appear in every email we send you in the context of this KPMG Privacy Policy Marketing. In addition, you can unsubscribe for direct mailings or other direct contacts (e.g. by phone) by going to the preference center.

You can revoke your consent per specific use-purpose. If you revoke your consent for a certain use-purpose, KPMG will in principle immediately cease to use your personal data for this use-purpose. Revoking your consent does not affect the legality of the processing based on your consent that took place before you revoked your consent.

If you deregister for an event, we will ask you when deregistering or afterwards by email to inform us of the reason for deregistering so that we can include it in our evaluation of the event. In this respect it is necessary to keep your data for a maximum of 30 days after the event, including any associated activities such as evaluation of the event, have been completed.
 

7.    How long will my data be stored?
We aim to ensure that your personal data is not kept longer than necessary for the purpose for which the personal data were collected. In that respect, all personal data to which this KPMG Privacy Policy Marketing relates is subject to a retention period of 1 year, unless your data will be deleted earlier pursuant to this KPMG Privacy Policy Marketing, for example if you revoke your consent in the meantime. This means that all your data will be deleted if they have not been actively updated or used by you or by KPMG for a period of one year. 

 

8.    How are my data protected?
KPMG has reasonable security policies and procedures in place to protect personal data against unauthorised destruction, loss, alteration and improper disclosure. Despite KPMG’s best efforts, however, security cannot be absolutely guaranteed against all threats. 

 

9.    Who has access to my data?
Access to your data is limited to those who are involved on behalf of KPMG in the processing of the data for the purposes mentioned in this KPMG Privacy Policy Marketing and qualified other individuals whose access is justified and permitted in compliance with the applicable privacy legislation. Individuals who have access to the personal data are at a minimum required to maintain the confidentiality of such information.

For the processing of your data as referred to in this KPMG Privacy Policy Marketing, we may use the services of third parties, such as with respect to IT and other (administrative) support functions for sending direct mailings. We currently use the services of Salesforce.com EMEA Limited for these processing activities. Appropriate arrangements will be made with such third parties in order to ensure a correct and secure data processing in compliance with applicable legislation.

 

10.  What rights do I have with regard to my data and how can I exercise them?
You have various rights with regard to your data. You can exercise these rights if certain conditions are met. Firstly, you are legally entitled to request information about your data processed by KPMG. Furthermore you may request KPMG for access to your personal data, to transfer your personal data to you (data portability), to rectify or erase your personal data, or to restrict the processing of your personal data. If you intend to exercise these rights, or in case of other questions or comments on the processing of your personal data, please contact us at privacy@kpmg.nl. Furthermore, KPMG has a data protection officer who can be contacted via FG@kpmg.nl

 

11.  Can I make a complaint about the handling of my data?
If you believe that the processing of your personal data infringes the applicable privacy legislation, you have the right to lodge a complaint with a supervisory authority in your country (in the Netherlands this is the Dutch Data Protection Authority). In case of questions or complaints, you can also contact privacy@kpmg.nl or FG@kpmg.nl.

 

12.  Where can I read more about the use of my data?
More details on how KPMG collects, uses, shares and protects personal data can be found in our Online Privacy Statement.

 

Where in this Privacy Policy Marketing ‘KPMG’, ‘we’, ‘our’ and ‘us’ is mentioned, it refers to KPMG N.V. and its subsidiaries.