Visitor Privacy Notice

Last updated on November 2, 2023

1. Introduction

We at ATG Europe, including our subsidiaries are committed to respect your privacy. This Privacy Notice describes our privacy practices regarding the collection and use of your personal data when your visit our company premises, our Headquarter in Noordwijk, the Netherlands.

During a visit to ATG Europe, visitors are required to wear a visitor badge at all times, which will be provided to the visitor upon arrival. Visitor badges and tags (if applicable) have to be handed over to reception or the host when leaving ATG Europe premises.

2. Collection of personal data

We collect basic personal information from you in our visitors’ database which includes: name, company name, reason of visit, date and time, as well as the number of any tag (key) possibly provided to the visitor. We ask all visitors to sign in and out at reception and show a form of ID. The ID is for verification purposes only, we do not record this information. Video footage is also being record on our CCTV system installed outside the ATG HQ building (see link to CCTV Privacy Notice here).

3. Purpose for processing your personal data

We collect, use and may disclose information to ensure the security of the people, property and ATG classified information located on the company’s premises or accessible from the company’s premises. This is done to prevent loss, fraud, thefts, injuries, terrorism and other events of such kind on the company’s premises.

4. Legal basis

The processing of personal data mentioned in this notice takes place on the basis of section (f) of Article 6, paragraph 1 of the GDPR. The processing is necessary for the protection of the legitimate interest of ATG Europe. This interest is the access control to verify your access authorisation and to protect the site and the people who work at ATG Europe. You as a visitor decide if you disclose such personal data. If you do not disclose such information, ATG Europe may refuse you access to the site.

5. Disclosure to Third Parties

We do NOT transfer your personal data to other persons or organizations or share it with others, unless required or permitted by law. In the event of security incidents, the typical recipient of such data would be law enforcement authorities.

6. Security

Your personal data is maintained in a secure manner. Only authorized employees and IT security personnel have access to them. ATG Europe has implemented technical, physical, contractual and organizational safeguards with a view to protecting the security of personal data from loss, damage or unauthorized use, disclosure, alteration or access, having regard to the nature of data, and the risks to which they are exposed by virtue of human action or natural environment.

7. Retention of personal data

We will only keep your personal data for as long as is reasonably necessary for the purposes outlined above. The data of ATG Europe visitors will be kept for 6 months after the last day of visit. However, if a security incident has been recorded, we may keep the data until the incident has been resolved.

Where we process data as part of a business partner database, we aim to communicate with the named contact persons at least every two years to ensure the accuracy of the information we hold or delete the data, as necessary.

8. Your rights

We take reasonable steps that are designed to keep personal data accurate, complete, and up-to-date for the purposes for which it is collected and used. We have also implemented measures that are designed to ensure that our processing of personal data complies with this Privacy Notice and applicable law.

Visitors have the right to:
• request access to their personal data for the purposes of reviewing, modifying, or requesting deletion of the data
• request a copy of the personal data we have collected and to have any inaccuracies corrected
• request that we delete or restrict processing their personal data
• object to processing of their personal data
• withdraw consent for processing if it is carried out (only) based on consent
• request portability of their personal data.
Upon request, ATG Europe can confirm what information we hold and how it is processed. If ATG Europe does hold personal data about the visitor, they can request the following information:
• Purpose of the processing
• Categories of personal data
• Recipient(s) of the information, including recipients in third countries or international organizations and appropriate safeguards for these international transfers
• How long the personal data will be stored
• The data subject’s right to request rectification or erasure, restriction or objection, relative to their personal data being processed
• The right to lodge a complaint with a supervisory authority and a method for doing so
• Where the personal data are not collected from the data subject, any available information as to their source
• The existence of automated decision-making (currently there is none taking place at ATG Europe).

If you would like to make a request related to your personal data, please contact us at datasecurity@atg-europe.com. In order to access personal data, ATG has implemented security measures to sufficiently identify the person making the request based primarily on data we already have.
Any person whose data we process may have the right to lodge a complaint with a competent data protection authority. For more information, if located in the European Economic Area (EEA), please contact the local data protection authority.

9. Contact

If you have any questions relating to visitor sign-in or how we use your data, you should ask at Reception at reception@atg-europe.com

ATG Europe B.V.
Huygensstraat 34
2201 DK Noordwijk (ZH)
The Netherlands
datasecurity@atg-europe.com.

ATG Europe reserves the right to modify this Privacy Notice.