1. Why does KPMG use my data?
2. Who is responsible for my data?
KPMG Staffing & Facility Services B.V. is responsible for processing your (personal) data. It usually shares this responsibility with the KPMG entity that primarily determines the purpose and means of the data processing. KPMG Staffing & Facility Services B.V. is a subsidiary of KPMG N.V. and is registered in the commercial register in the Netherlands under number 34153861.
Within the KPMG organisation, KPMG Staffing & Facility Services B.V. is charged as much as possible with compliance with privacy legislation, including the information obligation and the exercise of rights. If you have questions or complaints about the processing of your data, you can also contact KPMG Staffing & Facility Services B.V.
3. How will the data I provide myself be used?
3.1 How will my data be used when I register through the preference center?
For the purposes mentioned in section 1, KPMG i.a. uses the KPMG preference center. This is an online portal where interested parties can register to stay informed about certain self-selected topics via direct mailings. Such direct mailings may relate to our services, events and publications (e.g. newsletters, articles and white papers). In addition you can give us consent via the preference center to contact you directly (e.g. by telephone) about the services of KPMG in relation your self-selected topics.
To register for the KPMG preference center you will first have to provide your email address. We will use the provided email address to send you an email with a link through which you can confirm your email address. Clicking the link in this email will take you to a webpage with a form where you can provide certain data and indicate your preferences for certain topics. The data you provide, including the additional data that KPMG collects itself in this context (see section 5), will be used to send you (personalised) emails with information about the topics you’ve selected, including KPMG events in relation to these topics. If you consent to this by checking the relevant consent box, we will also use these data to contact you directly (e.g. by telephone) about the services of KPMG in relation to the topics you selected.
You can view and adjust your preferences at any time via the preference center. You can reach the preference center via the link in the email we send you as confirmation of your registration. Alternatively, you can access the preference center via the 'My Preferences' button included in every email we send you in relation to your preference center registration. Lastly, you can directly access the preference center via preference.kpmg.nl. In this case, as with your first registration via the preference center, you will first have to provide and confirm your email address by clicking on the link in the email you receive after providing the email address. Doing so will take you to a webpage with a form where you can view and change your preferences.
3.2 How will my data be used when I fill out a form to request specific content?
Existing KPMG client relations and persons who have registered via the preference center may receive emails with a link to obtain certain specific content. Clicking on this link takes you to a webpage with a form that allows you to request this content. In addition, via the KPMG website (www.kpmg.nl) or by clicking on advertisements on websites of third parties and social networks such as LinkedIn, you may arrive at a webpage with a form with which you can request certain specific KPMG content.
To the extent that we already have certain information about you, it is possible that this information has been pre-completed on the form. Whether this is the case i.a. depends your cookie settings. If certain information is pre-completed on the form, all you have to do is check, adjust and supplement this information where necessary. You can then submit your request by clicking on ‘submit’. Clicking ‘submit’ signifies that you give KPMG consent to use the information you’ve provided to send you the requested content by email. In addition, clicking ‘submit’ signifies that you give KPMG consent to send you a follow-up email within 30 days. For example, to give you the opportunity to consent to KPMG's further and/or additional use of your data for certain purposes.
In certain content request forms, you may be asked whether you would also like to give us consent to use the information you provide and the data that we collect ourselves in connection with this (see section 5):
You can give consent to use your data for these (additional) purposes by checking the corresponding check-boxes under the content request form before clicking on 'submit'. In that case, the aforementioned data will also be used for the selected additional purpose(s) on the basis of your consent. Insofar as you have previously given consent for the use of your data for any of these additional purposes, for example by registering through the preference center, this consent will remain valid and you will not have to give your consent again.
In some cases, the form to request specific KPMG content is hosted from the website of a third party such as LinkedIn or Facebook, instead of KPMG’s own website (kpmg.nl). You can check the url of the content request form to see by which party it is hosted. If you request KPMG content via a request form on the website of a third party, the data you provide will also be used by the third party, for example in relation to their (direct) advertisement activities and/or to optimize their systems. For more information on how these parties use your data, we refer to their privacy policies as available on their websites.
3.3 How will my data be used when I register for a KPMG event?
KPMG regularly organizes events for its business relations such as round table meetings, seminars, webinars, training sessions and other meetings. You may receive a direct invitation for an event by email, for example following a preference center registration. In such case you can register for the event via a link in the email. In many cases it is also possible to register for KPMG events either via a web advertisement or through the KPMG website without a direct invitation.
If you register for a KPMG event, you will have to provide the information that KPMG needs to organize, execute and evaluate the event. This may include your name, email address, organization, position, whether you need a parking space and your preferences with regard to certain parts of the event such as workshops or break-out sessions. In some cases you will be able to voluntarily provide some additional information, such as your telephone number or dietary requirements. The information that must be provided as a minimum is always indicated (by asterisks). To the extent that we already have certain information about you, it is possible that this information has been pre-completed on the form. Whether this is the case i.a. depends on your cookie settings. If certain information is pre-completed on the form, all you have to do is check, adjust and supplement this information where necessary. By then clicking on ‘submit’ your registration will be submitted. By doing so, you give KPMG consent to use the information you provided for purposes of organizing, executing and evaluating the event. In this context your details will be used:
If you register for a KPMG event, you may be asked whether you would also like to give us consent to use the information you provide and the data that we collect ourselves in connection with this (see section 5):
You can give consent to use your data for these additional purposes by checking the corresponding checkboxes under the subscription form before clicking on 'submit'. In that case, the aforementioned data will also be used for the selected additional purpose(s) on the basis of your consent. Insofar as you have previously given consent for the use of your data for any of these additional purposes, for example by registering through the preference center, this consent will remain valid and you will not have to give your consent again.
KPMG sometimes uses a voting system during events which works via a web page you can access via your smartphone. In such case, the answers provided by you will be used in the manner explained prior to or during the event. In most cases, the answers of the participants are analyzed (live) and presented during the event. Sometimes the system is also used to enable participants to ask questions to the speakers during the event or to interact with the participants in other ways. The use of your data via the voting system is based on your consent which you give by accessing the relevant web page on your smartphone. If you do not consent to the use of your data via the voting system, you can choose not to access the relevant web page. Within 30 days after the end of the event, the data processed via the voting system will be deleted or anonymized in such a way that the data can no longer be traced back to you.
We may also make video and/or audio recordings during an event. If this is the case, KPMG will always inform you about this in advance, including about the (internal and/or external) use-purposes of the recordings. In most cases we use the recordings in publications about the event on KPMG websites or social media. If recordings (images and/or sound) are made during a specific event, you will be asked whether you give consent for this when you register or at the registration desk for the event. KPMG may designate specific areas for participants of an event who do not want to be recorded, for example the back seats, in order to allow us to ensure that these persons are not recorded involuntarily.
If you have registered for an event, KPMG may use your data to send you an event evaluation request via email. The main objective of such evaluations is to analyse whether and how KPMG can improve its events and align them better with the interests and preferences of its target groups and specific business relationships such as you. If you are requested by email to evaluate an event, we will inform you about any potential specific objectives of the evaluation. Because we use your email address to send event evaluation requests, the data collected in relation hereto are not anonymous. However, insofar as possible in view of the evaluation objectives, any further processing of the collected evaluation data is done on an anonymous basis. To this end, the (directly) identifying variables, such as the email addresses of the people who returned an evaluation, are deleted. Participating in event evaluations is voluntary. By completing and returning an evaluation you consent to the use of your evaluation data for (the aforementioned) evaluation purposes.
4. Could the data I provide be included in KPMG's relationship management system?
If you voluntarily provide certain data to KPMG as explained in section 3, we will in principle also store these data in our relationship management system (CRM). If we already have your data in our relationship management system because of other processing activities (for example, ongoing services or sales calls), we will add the data you provide to these existing data. In this way we ensure a uniform, up-to-date and accurate view of you as a KPMG business relation. KPMG has a legitimate interest in having a correct view of its business relations. In view of i.a. the limited impact of this processing activity on you and your privacy, this legitimate interest is sufficiently strong to serve as a basis for this processing activity. The CRM-related use of your data is therefore based on the legitimate interests of KPMG.
5. What data does KPMG collect in addition to the data I provide myself?
In addition to the data you provide yourself as explained in section 3, KPMG also collects and uses data that you have not provided yourself. This concerns data about the (digital) context in which you provide your data to us, data about subsequent direct contacts (including emails) and data about your participation in KPMG events. You can read more about this in this section.
If you go to the preference center, or if you access a webpage with a form to request specific content or to register for an event, KPMG may collect information on how you arrived on this webpage. For example by clicking on an advertisement or on a link in a direct mailing you received. KPMG can also collect information on how you use these types of direct mailings. For example, whether and when you open these emails, whether and when you clicked on links in these emails and whether and how long you have visited the corresponding webpage. By collecting these data, we get a better picture of your personal interests and preferences and those of the target group to which you belong. Whether certain content is frequently or rarely requested, for example, provides insight into whether this type of content is relevant for a specific target group. Similarly your own personal interest in a certain topic may be apparent because you request and/or open a lot or little content about this topic. All these additional data are stored in conjunction with the information that you have provided to us yourself (see section 3).
KPMG always uses these data in combination with the data that you have provided yourself. As explained in section 1, KPMG uses these data primarily to develop services, events and publications that best meet the interests of our target groups. In addition, KPMG uses these data to provide specific business relations within our target groups, such as you, with information that is most interesting to them and that best suits their preferences. More precisely, the data are used by KPMG as follows:
KPMG has legitimate interests to use your data as described in this section for the purposes described in this section. The use of your data as explained in this section is therefore based on the legitimate interests of KPMG (as explained above). In view of i.a. the limited impact of this use of your data on you and your privacy, these legitimate interests of KPMG are sufficiently strong to serve as the basis for the use of your data as explained in this section.
The data you do not provide yourself but that KPMG collects independently will never be kept longer than the data you provide yourself. If you have not given any consent for the further and/or additional use of your data, the data that KPMG has collected itself will therefore also be deleted within a maximum of 30 days (see section 3.2 and 3.3). If you have given consent for continued use of your data for one or more purposes (see section 3), the same retention period will apply to the data that KPMG has collected independently. See Section 7 for more information on this.
6. How can I revoke my consent?
You can revoke your consent per specific use-purpose. If you revoke your consent for a certain use-purpose, KPMG will in principle immediately cease to use your personal data for this use-purpose. Revoking your consent does not affect the legality of the processing based on your consent that took place before you revoked your consent.
If you deregister for an event, we will ask you when deregistering or afterwards by email to inform us of the reason for deregistering so that we can include it in our evaluation of the event. In this respect it is necessary to keep your data for a maximum of 30 days after the event, including any associated activities such as evaluation of the event, have been completed.
7. How long will my data be stored?
8. How are my data protected?
KPMG has reasonable security policies and procedures in place to protect personal data against unauthorised destruction, loss, alteration and improper disclosure. Despite KPMG’s best efforts, however, security cannot be absolutely guaranteed against all threats.
9. Who has access to my data?
10. What rights do I have with regard to my data and how can I exercise them?
You have various rights with regard to your data. You can exercise these rights if certain conditions are met. Firstly, you are legally entitled to request information about your data processed by KPMG. Furthermore you may request KPMG for access to your personal data, to transfer your personal data to you (data portability), to rectify or erase your personal data, or to restrict the processing of your personal data. If you intend to exercise these rights, or in case of other questions or comments on the processing of your personal data, please contact us at firstname.lastname@example.org. Furthermore, KPMG has a data protection officer who can be contacted via FG@kpmg.nl.
11. Can I make a complaint about the handling of my data?
If you believe that the processing of your personal data infringes the applicable privacy legislation, you have the right to lodge a complaint with a supervisory authority in your country (in the Netherlands this is the Dutch Data Protection Authority). In case of questions or complaints, you can also contact email@example.com or FG@kpmg.nl.
12. Where can I read more about the use of my data?
More details on how KPMG collects, uses, shares and protects personal data can be found in our Online Privacy Statement.