The RvA takes the utmost care and restraint in providing personal data to third parties.
The process of accreditation may entail that the RvA shares data, including personal data, with third parties under its responsibility. These third parties are often individuals who, on the basis of their specific expertise, are called upon by the RvA to carry out accreditation assessment on behalf of the RvA.
The RvA uses third party services to perform its services and processing (personal) data. These suppliers are engaged for, for example, ICT support and phone-services. These suppliers are not allowed to use the personal data for other or own purposes, they are contractually obliged to handle your personal data with care, and they are bound by duty of confidentiality, and meet the requirements arising from the GDPR (AVG). A data processing agreement is concluded with all suppliers.
Furthermore, personal data may be shared with third parties in case of a legal obligation to do so, for example by order of the police, or data for the implementation of tax- and pension law.