Privacy and cookie statement

This Privacy and Cookie Statement was last changed on February 13, 2019.

Dear visitor,

You can order our books via our webshop ( ), part of ICTRecht BV (hereinafter: ICTRecht). We have drawn up this Privacy and Cookie Statement specifically for the webshop to make it clear to you that we take privacy and all personal data with which we come into contact within ICTRecht very seriously. For this reason, the personal data we collect is carefully processed and secured. We comply with privacy legislation, such as the General Data Protection Regulation (GDPR).

In this statement we would like to inform you well about our privacy and cookie policy. If you have any questions or would like more information, please contact ICTRecht: 020-6631941 or


When you place an order with us, we use your personal data to process it properly. We may then provide your name and address details to our delivery service ( PostNL ) to have the order delivered to you. We may also receive information about your payment from your bank or credit card company, which we pass on to the parties that are our payment partner ( iDeal ). We use the following personal data to process your order:

  • name and address details;
  • Billing address;
  • E-mail address;
  • Phone number (optional);
  • Payment details;
  • IP address.

We need this information because of the contract we conclude with you. We store this information until your order has been completed. We keep your invoice data for up to 7 years because we are legally obliged to do so (fiscal retention obligation). If you choose to subscribe to the newsletter when placing an order, we will keep your data for as long as necessary for that purpose: see below for more information.

You can subscribe to our newsletter. This means you will receive a monthly email with information, news and developments in the field of ICT and law and you will stay informed about ICTRecht products, services and offers. You can cancel this subscription at any time. Every newsletter contains an unsubscribe link.

Your email address will only be added to the list of subscribers with your express permission. This data will be retained until you cancel the subscription. We will then keep your email address on our block list so that you cannot be accidentally added again afterwards. This is a standard feature of our mail service provider MailChimp .

You can contact us by e-mail or telephone to ask us questions about your order or to make other (information) requests. In order to accept your contact request (execution of the agreement), we use your name, company name, (business) email address and (optional) your telephone number. You can also include information in the message itself, where you may include other personal data. We keep this information for a maximum of one year after we last contacted you, so that we can continue the contact well-informed.

Provision to other companies or institutions (third parties)

We do not pass on your personal data to other companies or institutions, unless we are legally obliged to do so (for example if the police require this in the event of a suspicion of a crime), if we have agreed this with you or if this is necessary for the execution of the agreement, if you have given permission for this or if we have a legitimate interest in doing so. To execute the agreement, we in any case use the services of:

  • ICT suppliers;
  • Supplier of telecommunications services;
  • Our delivery service ( PostNL );
  • Our payment partner ( iDeal );
  • Our hosted e-commerce platform ( Shopify );
  • The party that sends our newsletters ( MailChimp );
  • The parties that supply cookies (see below)

We have concluded a processing agreement with these parties.

We also provide your data to government authorities when we have a legal obligation to do so.

We use cookies through our webshop. A cookie is a simple file that is sent with pages from this website and is stored by your browser on the hard drive of your device (PC, tablet or smartphone) so that you can be recognized. We only use functional and analytical cookies.

  • Functional cookies are cookies that are technically necessary for a website to function;
  • Analytical cookies are cookies that collect information about the quality or effectiveness of a website in order to subsequently improve it.

We have made agreements with other companies that place cookies about the use of cookies and the information extracted. However, we do not have full control over what they do with the cookies. So also read their privacy statements if you find this important and possibly the various informative links.

Shopify International Ltd.

We use Shopify to enable the functionalities of our webshop and to analyze how our webshop is used. Cookies are placed for these purposes. The information is transferred to and by Shopify on servers of the Irish affiliate Shopify International Ltd.

Shopify uses this information to track how our website is used, to provide us with reports about the website and to enable our webshop to work as visitors may expect. We have the data pseudonymised as much as possible. Among other things, the IP address is pseudonymised before this data is sent to Shopify. Shopify is not permitted to provide this data to third parties or use it for other services. The maximum storage period of the cookies used through this service has been set by us at 24 months. This means that after this period the data can no longer be read. The processing of your personal data via Shopify Analytics is based on our legitimate interest to obtain general statistics of our website visitors.

For more information, please read Shopify's privacy policy and its addendum .

Shopify has a Privacy Shield Certification that complies with the US Department of Commerce's Privacy Shield Principles regarding the collection, use, and retention of personal information from countries in the European Union and subject to enforcement by the Federal Trade Commission. This means that they indicate that they meet the stated privacy requirements. For example, certified companies may not simply pass on data to third parties and must place a privacy statement on their website. For more information about the Privacy Shield, please consult the website .

Click behavior and visitor data

When using our website we obtain general visitor data. Using functional cookies, the website remembers that you are logged in for the duration of the session. Functional cookies also remember what is placed in the shopping cart and make this process possible. Furthermore, the analytical cookies process the IP address of your computer, the time of request and data that your browser sends. We use this data for statistical analyzes of visiting and clicking behavior on the website. We also optimize the operation of the website. We try to pseudonymize or anonymize this data as much as possible and it is not provided to third parties who could use it for their own purposes.

We use this data because of our legitimate interest in monitoring and improving our website. We do not need permission, because there is no or very minor infringement of your privacy through the use of cookies. The cookies are automatically deleted from your device after a maximum of 6 months. We store anonymized data (which no longer contains personal data) for as long as it is relevant to us.

We do not ask for prior permission for the cookies we use, because we only use functional and analytical cookies. These cookies do not, or only slightly, infringe on privacy.

Enabling and disabling cookies

You can set your browser to only accept the storage of cookies if you agree. For more information about this, please refer to your web browser manual. Please note : many websites do not work optimally if cookies are disabled.

Retention periods and deletion of cookies

Most cookies have an expiration date. This means that they expire automatically after a certain period and no longer record data from your site visit. You can also choose to manually delete the cookies before the expiry date has expired. For more information about this, please consult your browser manual.

We take appropriate security measures to limit misuse of and unauthorized access to your personal data. In this way we ensure that only the necessary persons have access to your data, that access to your personal data is protected and that our security measures are regularly checked. We take, among other things, the following security measures:

  • logical access control on our laptops and systems, using passwords;
  • physical measures for access security, including access chips and camera security in our office building;
  • encryption (scrambling) of digital files;
  • organizational measures for access security;
  • securing network connections via Transport Layer Security (TLS) technology;
  • purpose-related access restrictions and data storage within the EU.

We work digitally as much as possible: old papers go through the shredder and digital documents are secured.


Of course, we are also happy to help you if you have any complaints about the processing of your personal data by us. Under privacy legislation, you have the right to file a complaint with the Dutch Data Protection Authority against our processing of your personal data. You can contact the Dutch Data Protection Authority for this.


ICTRecht has the right to make changes to this Privacy and Cookie Statement. Changes will be published on our website. Therefore, check this Privacy and Cookie Statement regularly so that you are aware of any changes.


If you have a relationship with our company, you have the option to view your personal data upon written request. If the overview we provide contains inaccuracies, you can request us in writing to change the data or have it removed. If you have any questions or would like to know what personal data we have about you, you can always contact us. See contact details below.

Under the GDPR you also have the following rights :

  • receive an explanation about what personal data we have and what we do with it;
  • access to the precise personal data we have;
  • having errors corrected or additions to inaccuracies or omissions;
  • having personal data deleted;
  • withdrawing consent;
  • object to a particular use;
  • to have data transferred to a third party;
  • limit processing of data (temporarily or otherwise).

If you want to make use of this, please make sure that you always clearly indicate who you are, so that we can be sure that we do not change or delete data of the wrong person.

In principle, we will comply with your request within 30 days. However, this period may be extended for reasons related to the specific rights of data subjects or the complexity of the request. If we extend this period, we will inform you in a timely manner.

In addition, you can inform us in writing if you do not want to be contacted with information about our products and services by reporting this to one of the following addresses:

Amsterdam branch

Jollemanhof 12
1019 GW Amsterdam
Telephone: 020 663 1941
Chamber of Commerce: 34216164
VAT: NL859169820B01