Privacy statement parkingfacilities
Privacy statement “Parking in the parking lots and in the parking garages of the TU Delft Campus”
TU Delft handles personal data with the utmost care and acts in accordance with the law, including the General Data Protection Regulation (GDPR). TU Delft processes personal data in the context of a Parking Management System. In this privacy statement you can read how your personal data is processed, how your data is protected and how you can exercise the rights you have under the GDPR.
The Parking Management System is an initiative of TU Delft and is implemented by the Campus Real Estate & Facility Management (CRE&FM) directorate. CRE&FM is part of Delft University of Technology (TU Delft). TU Delft is responsible for the personal data collected and further processed in the context of CRE&FM. This means that TU Delft is the lawful data processor.
What are your personal data used for and on what legal basis?
In the context of CRE, TU Delft processes personal data for the following purposes: parking in the parking lots and in the parking garages of TU Delft, to monitor the use of parking spaces and to evaluate the need for parking spaces. The legal basis for this processing is that the data subject has given his or her consent to the processing of his or her personal data for one or more specific purposes, the driver of the car must be identified to access the car park, the driver gives his or her consent with entering the parking lot.
Which personal data does TU Delft process?
Processes the following personal data in the context of TU Delft:
In case of a subscription holder (campus card, company card or registration number):
- Name - TU Delft collects this personal data from TU Delft/Company
- Netid/email - TU Delft collects this personal data from TU Delft/Company and/or
- Car registration - TU Delft collects this personal data from the person concerned
The season ticket holder can enter the parking lot/garage based on the campus card, company card or registration number, if this has been selected. The license plate can be added and removed by the subscriber. The car registration data will be removed from the parking transaction data once the parking transaction is completed.
In the case of a visitor:
- Car registration - TU Delft collects this personal data from the person concerned
A visitor can enter by identifying himself with a debit card. The number of the debit card is used as an identifier for the parking action and linked to the car registration number. When the parking action has been paid at the payment terminal or via the app, the visitor can exit based on his license plate. The car registration data will be removed from the parking transaction data once the parking transaction is completed.
The intercom systems with built-in cameras are used for communication with the user. Image and sound from these systems are not stored.
The security cameras that provide an overview of the entrance /exit and payment terminals fall under the “Delft University of Technology Camera Surveillance Regulations”. The images can be viewed in real time by Campus Security and the Parking Management. The images are not kept longer than necessary, with a maximum period of 28 calendar days.
Who receives the data?
TU Delft stores the personal data in the Parking Management System. TU Delft has entered into a processing agreement with the supplier of this application to guarantee confidential and careful handling of personal data. Employees of TU Delft and other persons who work under the supervision of TU Delft only have access to the personal data if this is strictly necessary for the performance of their duties.
Location of processing and transfer outside the EEA
The above personal data is processed within the European Economic Area (EEA).
How long are your personal data stored?
TU Delft stores the personal data for the duration of the subscription. After this period, TU Delft will ensure that all personal data is deleted. The car registration data will be removed from the parking transaction data once the parking transaction is completed.
How is your personal data protected?
TU Delft takes appropriate technical and organizational measures to protect your personal data, including the use of the latest security technology. TU Delft reports (attempted) abuse to the police.
What privacy rights do you have and how can you exercise them?
Under the GDPR you have various rights that you can exercise. For example, you have the right to request access to or correction of your personal data processed by TU Delft or to delete your personal data. If you want to make use of your privacy rights, please send your request to TU Delft ( privacy-tud@tudelft.nl ) and clearly state which right you want to make use of. If you submit a request, keep in mind that TU Delft is legally obliged to verify your identity. This is to ensure that no one else has access to your personal information.
Your privacy rights are:
- Right of access: you can request TU Delft to inspect the personal data being processed and/or information about the processing.
- Right to rectification: if your personal data is incorrect or incomplete, you can request TU Delft to correct or supplement the personal data
- Right to erasue: you can request TU Delft to erase your personal data. Please note that in some cases TU Delft has legal obligations to store personal data for a certain period. In that case, TU Delft will reject your request.
- Right to restriction of processing: in certain cases, you can request TU Delft to restrict the processing of your personal data.
- Right to data portability: in certain cases, you can request TU Delft to transfer your personal data to another controller.
- Right to object: in certain cases, you can object to the processing of your personal data.
Questions or complaints
If you have any questions or comments after reading this privacy statement, please send an email to privacy-tud@tudelft.nl. The data protection officer (DPO) of TU Delft can be reached via the e-mail address fg@tudelft.nl . If you have complaints about the processing of your personal data, you can address them to the DPO of TU Delft via the above e-mail address, but you can also submit a complaint to the Dutch Data Protection Authority ( https://www.autoriteitpersoonsgegevens.nl ).
This privacy statement was last updated in August 2022.
You can find the generic privacy statement of TU Delft here .