Company Details

Lagant Management Consultants BV
KvK 51684365
VAT: NL 850126678 B01
IBAN: NL25 RABO 0156 2470 11
BIC: RABONL2U

26 Stationsplein
3818 LE Amersfoort
The Netherlands

+31 (0)413 224 106
Planning: ln.tnagal@gninnalp

Email address

a. | In the context of a concluded agreement, we can make you offers about similar products and services, provided that you have not objected to them. The possibility to file an objection is stated at the time of providing your data. In addition, in every communication you will be offered the opportunity to object under the same conditions to further use of your e-mail address.

b. | When collecting your e-mail address for reasons other than in the context of a concluded agreement, it will not be used for the transmission of unsolicited communications if you have not given your consent.

PO Box

We use your postal address only to send information and/or articles that you have requested.

Phone number

Unless you have indicated that you do not appreciate this, we may contact you by telephone to inform you about products and services. With every call you will be informed of the possibility to oppose this and to register in the do-not-call-me register.

Other personal data

We only process other personal data (by means of cookies, reading peripherals or otherwise) if:

1.the data processing is necessary for:

a.the execution of an agreement concluded with you;
b. the proper fulfillment of a public-law task;
c. the promotion of our legitimate interest (unless your interest or fundamental rights and freedoms prevail over this interest), or;

2. you have consented to the processing when collecting this.

In any case, we do not store your data longer than is necessary for the processing of the purposes for which it was collected.

Special personal data

The information collected is only used internally and is not passed on to other organizations.

Transferring and receiving data security

We have put in place the necessary security measures to prevent the loss, unauthorized use or alteration of information we receive on our site.

Security storage of data / Security criteria

a. | We take technical and organizational measures to prevent data loss or unlawful processing (such as attacks). We therefore guarantee an appropriate security level and have our site tested periodically.

b. | All systems in which (sensitive) personal data are processed are equipped with antivirus software and the latest security-related patches of all other important software, as issued by the suppliers of this software.

Access your data

Upon request, we will inform visitors to our website about the personal data processed by them. Any incorrect data can be corrected, supplemented or removed. If you wish to access this information, or wish to correct your personal data, please contact us at the address below.

Contact the legal affairs department

If you wish to respond to our Privacy Policy, please contact us:

At the following telephone number:
+ 31 (0)85 489 43 43

At the following address:
26 Stationsplein
3818 LE Amersfoort
The Netherlands
Attn Legal Affairs Department

This privacy policy can be changed at any time. We will publish these changes here.

Privacy policy

Below we inform you that the service provider Lagant Management Consultants BV (located in: Netherlands, Stationsplein 26, 3818 LE, Amersfoort, Company registration number: 51684365) processes your personal data in the following manner and for the following purposes.

When processing data, we act in accordance with applicable law – in particular Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).

This Privacy Statement applies to the following website: https://lagant.nl

We reserve the right to change this Statement at any time; any changes will be effective upon posting.

Identification of the controller

• Name: Lagant Management Consultants BV
• Business address: Netherlands, Stationsplein 26, 3818 LE, Amersfoort
• Email: ln.tnagal@ofni
• Phone: +31 (0)41 322 4106

Legal bases for data processing

1. Compliance with an agreement (GDPR art. 6(1)(b))
2. Comply with a legal obligation (GDPR art. 6(1)(c))
3. Legitimate interest of the controller or a third party (GDPR art. 6(1)(f))
4. Consent of the data subject (GDPR art. 6(1)(a))
5. Public interest or exercise of public authority (GDPR art. 6(1)(e))
6. Comply with administrative and fiscal obligations (e.g. GDPR Art. 6(1)(c), other relevant national law)
7. Defense, institution or substantiation of legal claims (GDPR art. 6(1)(f))

Data processed during the use of the website:

Information about the hosting provider

The data is processed and stored by the following hosting provider for the operation of the service.

• Hosting Provider Name: Blauwe Nacht
• Address: Carol Vogesgracht 12, 1336 KE, Almere
• Email: ln.thcanewualb@ollah
• Website: https://blauwenacht.nl

Data processors

We use external service providers (processors) to perform certain tasks related to data processing. These processors may only process the data based on the agreement they have concluded with us and in accordance with the applicable laws and regulations.

• UserMaven – EU
  Purpose: analytics.
  Scope of data processed: device, behavior, IP address.
• Google Analytics - USA
  Purpose: analytics.
  Scope of data processed: device, behavior, IP address.
• Cloudflare - USA
  Purpose: technical.
  Scope of processed data: IP address.
• Mollie –NL
  Purpose: analytics.
  Scope of data processed: email, name, device, behavior, IP address, address, payment information.

Remarketing activities

In the context of the marketing activities of the service provider, cooperation with external partners may occur (e.g. for the display of advertisements). We only transfer data to these partners if the data subject has given express consent to this.

• Google Ads – 1600 Amphitheater Parkway, Mountain View, CA 94043, USA; “Google”
  Processed data: email, device, behavior, IP address, phone number, browser, purchase history, search terms.
• YouTube ads – 901 Cherry Ave, San Bruno, CA 94066, USA; “Google LLC”
  Processed data: email, device, behavior, IP address, phone number, browser, purchase history, search terms.

Cookies

While surfing the website, so-called cookies may be stored on the user's computer. These cookies contain technical information and are primarily intended to enable comfortable and personalized surfing. However, the site may also use cookies for analytical, remarketing or media purposes.

Essential

Essential cookies and services provide basic functionality and are necessary for the correct functioning of the website. These cookies and services do not require user consent under the GDPR.

Required

These cookies and services are necessary for the correct functioning of the website, but their use requires user consent. This may include payment gateways, captcha services and integrated booking services.

Analysis

Statistics cookies collect usage information, which gives us insight into how our visitors interact with our website.

Marketing

Marketing services are used by third-party advertisers or publishers to display personalized ads. They do this by tracking visitors across websites.

Media

These cookies and services are necessary to display certain media elements, such as embedded videos, maps, social media posts, etc.

Other services

This category includes all cookies, domains and services that do not fall into the other specific categories or are not clearly categorized.

Cookies used on this site

Users can manage or disable the use of cookies through their browser settings; however, this may affect certain functionality of the website.

Data of minors

Our service is not specifically aimed at persons under the age of 16. If we nevertheless collect and process data from minors, this will only be done when the law prescribes this (consent or permission from parent/guardian).

Parents and guardians may at any time request the modification or deletion of data relating to them or minors under their supervision.

Contact forms

The forms on the website collect data that the user voluntarily provides, which we use to contact you or handle requests.

• e-mail
• your name
• device
• fear behavior
• IP address
• telephone number
• address
• location
• browser
• payment information
• purchase history
• search terms
• device fingerprint

Newsletter and marketing communications

By subscribing to our newsletter or other marketing communications, you consent to receive notifications (offers, news, etc.) via the contact details you provided. You may unsubscribe or withdraw your consent at any time.

Data processed when registering for the newsletter

• e-mail
• your name
• fear behavior
• IP address
• purchase history

Retention periods

We retain data only for the necessary duration or the period prescribed by applicable law. After that, the data is deleted or anonymized.

Transfer of data to third parties

We will only pass on your data to third parties if you have given your express consent to do so, or if this is required by law or by a decision of an authorised body.

Automated decision-making, profiling

In some cases, the service provider may use automated decision-making systems or profiling (e.g. for marketing purposes or risk assessment). The essence of such processes is to draw certain conclusions without human intervention, but you have the right to challenge or supplement this at any time.

• Akismet Anti-Spam – Purpose: Spam detection.

If you believe that the automated decision leads to an incorrect result, you have the right to request human intervention and object to the decision.

Security measures

When processing data, both the controller and the processors shall implement organizational and technical protective measures, taking into account modern technological possibilities and the characteristics of data processing (purpose, scope, circumstances) and the changing level of risk to natural persons. The aim is to ensure the protection of data in proportion to the risks.

These measures may include, for example, encrypting data, ensuring the availability, confidentiality and integrity of systems and services, and ensuring sufficient resilience. We pay particular attention to restoring the availability of and access to data as quickly as possible in the event of physical or technical problems.

By regularly evaluating and testing the security measures, we ensure that the safeguards are not just theoretical, but in practice provide an appropriate level of protection. We store data in a way that does not provide unauthorized access; paper documents are therefore stored in a closed, secure environment, while electronic data can only be accessed by persons with correctly defined access rights.

We also ensure that data can be irrevocably deleted when the retention period has expired or when other reasons require deletion. Paper documents are destroyed using special paper shredders or via an external partner who specializes in document destruction. When decommissioning or disposing of electronic data carriers, we also ensure that the data is permanently deleted.

Protection of paper documents

For data that is stored in paper form, we provide physical security, including safe, dry storage and lockable areas. Only authorized employees have access to the relevant documents. If paper documents are also digitized, the same rules apply as for digitally processed documents. Anyone working with data may not leave the work area until they have ensured that the entrusted materials are locked and inaccessible to unauthorized persons.

The building and areas where paper documents are stored are equipped with appropriate fire and property protection systems, which reduce the possibility of physical damage.

IT security

The computers and mobile devices involved in the data processing are equipped with appropriate anti-virus protection and access control. In order to protect the electronically stored information, we use up-to-date backup and archiving solutions, and ensure that these backups are available when necessary.

Only authorized persons with defined access rights can connect to the central server. The computers used for work, as well as the data stored on them, are protected by passwords and other protection measures against unauthorized access.

Incident management and data breach reporting

If an event occurs that exposes personal data to unauthorized access, damage or loss, we will take immediate measures to further protect this data and limit the damage. If the situation suggests that the incident may pose a high risk to the rights and freedoms of individuals, we will inform the individuals concerned without undue delay and clearly explain the nature of the incident and the measures we have taken or intend to take to resolve it.

We may refrain from directly notifying data subjects if we have previously implemented security measures (e.g. encryption) that make the personal data unintelligible to unauthorized persons, or if we significantly reduce the risk by taking additional steps. In certain cases, public notification instead of individual notification may be sufficient if individual notification would involve a disproportionate effort.

According to the applicable regulations, if a data breach occurs that is likely to result in a risk to the rights and freedoms of natural persons, the controller shall notify the incident to the competent supervisory authority within 72 hours of becoming aware of it. If the notification is made outside this period, the reasons for the delay must also be provided.

User rights

As a data subject (user), you have the following rights with regard to the processing of your personal data:

• Right of access (GDPR art. 15)
  You have the right to know whether we process data about you, and if so, what details. You can request information about the purpose, legal basis and other relevant circumstances of the data processing.
• Right to rectification (GDPR art. 16)
  You have the right to request that incorrect or incomplete data be corrected or supplemented.
• Right to erasure (“right to be forgotten”) (GDPR art. 17)
  If the data is no longer needed, or if there are legal reasons to delete it, you can request that it be deleted as soon as possible.
• Right to limit processing (GDPR art. 18)
  In certain cases, you can request that we only store the data without further processing it (e.g. if you dispute the accuracy of the data but do not want it to be deleted immediately).
• Right to data portability (GDPR art. 20)
  You have the right to receive the data stored by us in a machine-readable format or to request that we transfer it to another service provider, if technically feasible.
• Right to object (GDPR art. 21)
  You may object to the further processing of your personal data if you believe that our legitimate interests (or another legal ground) do not sufficiently justify such processing.
• Right not to be subject solely to automated decision-making (GDPR art. 22)
  You may request not to be subject to a decision based solely on automated processing (including profiling) and to obtain human intervention in such procedures.

To exercise these rights, you can contact us (email: ln.tnagal@ofni). We aim to respond to incoming requests as quickly as possible. We will usually respond within one month of receiving your request, but in some cases – for example, complex requests – this period may be extended by a further two months. We will inform you of the reasons for the extension within this initial one-month period.

If we cannot honor your request, we will also inform you of this within the specified period and give you the reason for this. In this case, you can file a complaint with the supervisory authority or use legal remedies in court.

Complaints procedure, legal remedies

If you believe that your personal data has been misused, you can file an official complaint using the following contact details:

• Email: ln.tnagal@ofni
• Postal address: Netherlands, Stationsplein 26, 3818 LE, Amersfoort

We carefully investigate the complaints received and will inform you about the outcome of our investigation and the measures taken. If there is no specific legal term for handling complaints, we evaluate at least once every three years to what extent our complaints procedure and our process meet the purpose of the data processing and the applicable legislation.

You also have the right to lodge a complaint with the competent supervisory authority:

• Authority Name: Personal Data Authority
• Address: Bezuidenhoutseweg 30, 2594 AV The Hague, Netherlands
• Phone: +31-70-888-8500
• Email: ln.snevegegsnoosreptietirotua@ofni

Date of last update: 08/05/2025