SKOR Privacy Statement

Privacy Statement

DSC B.V., trading under the name SKOR – Version 2026-01-01.

1. Who are we?

DSC B.V., trading under the name SKOR (hereinafter: “SKOR”, “we”, “us”), is the data controller for the processing of personal data as described in this privacy statement.

• Address: Bedrijvenpark Twente 448, 7602KM Almelo, Netherlands
• Chamber of Commerce: 08164201 | VAT no: 818 498 377 B01
• Email: info@skor.nl | Tel: +31 088 008 1100
• Website: skor.nl

2. Who is this statement for?

This statement applies to contacts of (potential) business customers, suppliers, consultants and other relations, visitors to our website(s) and recipients of our communications (such as email or WhatsApp).

3. What data do we process?

Depending on your relationship with SKOR and the channel, we may process the following categories of personal data:

• Identification and contact details (name, position, company name, business email address, phone number)
• Correspondence and file data (quotes, orders, service requests, project information)
• Financial and invoicing data (to the extent necessary for the agreement)
• Website and communication data (IP address, cookie IDs – see our cookie statement, email interactions, WhatsApp timestamps/delivery status)
• Attachments you share with us (e.g., drawings, photos, specification documents)
• Application data (CV, cover letter, references) if you apply for a job with us

4. Purposes and legal bases (Art. 6 GDPR)

• Performance of a contract and pre-contractual phase (Art. 6(1)(b)): quotation requests, deliveries, installation, service, customer support
• Legal obligations (Art. 6(1)(c)): fiscal retention obligations, product safety
• Legitimate interest (Art. 6(1)(f)): relationship management, CRM, service improvement, security, marketing to existing customers
• Consent (Art. 6(1)(a)): newsletter/marketing via email or WhatsApp, cookies requiring consent

5. Marketing (email & WhatsApp) and opt-in/opt-out

We will only send you marketing communications if this is consistent with our existing customer relationship or if you have given your consent. You can always unsubscribe free of charge via the unsubscribe link in emails or by sending "STOP" via WhatsApp (see paragraph 10).

6. Sharing with third parties (recipients)

We only share personal data with third parties if necessary for our services, based on a data processing agreement or if legally obliged. Categories of recipients include:

• IT and hosting service providers, email and CRM platforms
• Logistics partners and installation partners
• Payment and accounting providers
• Marketing service providers (only within GDPR framework)
• Government authorities if legally obliged

7. Transfer outside the EEA

Some suppliers are located outside the European Economic Area (EEA) or use sub-processors outside the EEA. In such cases, we ensure appropriate safeguards, such as the Standard Contractual Clauses (SCCs) approved by the European Commission and additional measures where necessary.

8. Retention periods

• Contract and customer files: maximum 7 years after the end of the relationship (fiscal retention obligation may require longer)
• Service and support correspondence: 12–24 months after last contact, unless longer needed due to warranty/dispute
• Marketing opt-ins/outs: as long as consent is active, plus 2 years after last interaction (only proof of consent/unsubscription)
• Application data: 4 weeks after completion of the procedure or 1 year with consent
• Log files and security logs: in accordance with internal policy and necessity

9. Security

We take appropriate technical and organizational measures to secure personal data against loss or unlawful processing. Access is limited to employees and processors who need this data, according to the 'least privilege' principle.

10. Communication via WhatsApp Business

We use WhatsApp Business for service communication and – after consent – for marketing. In doing so, name, phone number, message content, attachments, timestamps, and (visible) profile information are processed. For WhatsApp, we use Meta Platforms and potentially a WhatsApp Business Solution Provider (BSP): Name of WhatsApp Business Solution Provider (if applicable). This may involve transfer outside the EEA. We apply appropriate safeguards (SCCs).

• Service messages fall under performance of contract/legitimate interest
• Marketing via WhatsApp only after explicit opt-in; you can always withdraw consent by sending "STOP"
• Do not share special categories of personal data via WhatsApp; use an alternative channel for sensitive information

11. Your privacy rights

• Right to access, rectification and erasure
• Right to restriction of processing and data portability
• Right to object (including to direct marketing)
• Right to withdraw consent

You can submit your request via info@skor.nl or by post (see our contact details). We may request additional information for verification purposes.

12. Complaints and supervisory authority

Do you have a complaint about the processing of your personal data? Please contact us first. If you cannot resolve the issue with us, you can submit a complaint to the Dutch Data Protection Authority (www.autoriteitpersoonsgegevens.nl).

13. Minors

Our products and services are aimed at business customers (B2B). We do not intend to process data of minors.

14. Changes

We may amend this privacy statement. The most current version can always be found at skor.nl/privacyverklaring. The version date is stated at the top.

15. Contact

• DSC B.V. trading under the name SKOR attn. Privacy
• Address: Bedrijvenpark Twente 448, 7602KM Almelo, Netherlands
• Email: info@skor.nl | Tel: +31 088 008 1100
• Website: skor.nl