What to expect from our services with regards to (personal) data protection?’

Introduction

Thank you for reading this document on the explanation of processing of personal data by Goin’. Incoming students download Goin’ in order to get connect with other students, make friends and get information to be better prepared for their arrival at your university. After installation of the app, students will have to create a profile that includes personal data. In this document, we will explain to you why this data should be protected, which data we collect and how we protect it, in order to give you a better overview of what Goin’ actually does.

Why does data have to be protected? A small introduction to the GDPR

All businesses and organisations in the European Union have to conform to The General Data Protection Regulation (GDPR, in the Netherlands also referred to as “AVG”). The GDPR consists of a number of rules for the (automated) processing of personal data. This EU regulation requires companies such as Goin’ to process personal data of consumers carefully and responsibly.

Goin’s role in the processing of personal data

Goin’ processes the personal data of the students you invite to the Goin’ platform. Goin’ is responsible for the processing of personal data when they use our platform. For the purposes of application of the GDPR, Goin’ acts as a controller with regard to this processing of personal data, as it determines the purposes and means of processing. Goin’ exercises overall control of the personal data being processed and is ultimately in charge of and responsible for the processing. In the role of controller, Goin’ is (without limitation) responsible for the lawful processing of data. Additionally, we must ensure that this data is only processed for the purpose for which it is obtained and that appropriate technical and organizational measures are in place to integrate the necessary safgeguards into the processing. We are also responsible for ensuring that the users of Goin’ can exercise their privacy rights.

What personal data do we process?

When your students create a profile, they give their login credentials and basic details, including name, e-mail address, date of birth, city of origin, gender, nationality and study (discipline and year). It is also possible for them to share additional information, such as interests and profile pictures. Moreover, students’ communication in chats with each other are transferred. This is encrypted. Lastly, when students participate in surveys or respond to questions about our services, we collect information on their activity in order to improve the application (such as frequency and duration of visits).

We do not share any personal data on students with you. In this way, allowing your students to use our services does not require extensive obligations on your side as to data processing. However, we can share aggregated user statistics with you to give you an insight into how your students use our platform.

How does Goin’ protect this data?

Goin’ is situated in the Netherlands, this is also where the personal data of the students is stored. The data is stored with Transip in Amsterdam. Transip is a well-known party with all the required ISO certificates and NEN certificates, holding the same level of security as required for protection of patient data in healthcare. In principle we will not process personal data of students outside of the European Economic Area, unless this is necessary in connection with our services. If we do so, we will ensure that appropriate safeguards are adopted, so that the processing of personal data remains lawful.

We take appropriate measures to ensure that all personal data is kept secure including security measures to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way, for the duration of the students’ use of our platform.

How long will Goin’ store this data?

Goin’ will store this data for as long as the student’s profile is active. After deleting a profile, it will be removed from our systems within 60 days.

Final comments

Goin’ tries to be as transparent as possible about the use of the data of students. Goin’ is committed to keeping the personal data of your students safe. If, after reading this information sheet, you have any questions, please do not hesitate to contact us.

Best wishes,

Team Goin’