Who we are
Our website address is: https://cannabismuseum-amsterdam.com.
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
When you fill in a contact form on our website (https://cannabismuseum-amsterdam.com) we collect your personal information. Your name, address and email are only used to contact you about your inquiry. This data is not sold or shared with any other company.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
On this website, we integrated a component of a web analysis service (with the anonymiser function). Web analysis can be defined as the collection, gathering, and analysis of data regarding the behaviour of visitors to websites. A web analysis service collects, inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimisation of a website and to carry out a cost-benefit analysis of internet advertising.
Who we share your data with
When registering with https://cannabismuseum-amsterdam.com, we store personal information about you on a Secure Server. We save information such as your full name, address, e-mail address, phone number, delivery address and credit card details. This data will only be shared with our payment service provider and only for the purposes of processing your order.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
Your contact information
If you have any privacy-specific concerns, or require a copy of your personal data, or would like to delete your account and erase your data, please feel free to contact us:
City Seeds Bank B.V.
Privacy Officer: Ashley Fisher
Oudezijds Voorburgwal 133H
+31 (0)20 620 86 19
How we protect your data
To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered, or destroyed.
If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional, generally accepted industry standards. Account-related information is shielded with a hashing method. This method transforms information into a generated hash. As a result, sensitive information is secured, and is even invisible to us. Moreover, our databases are exceptionally protected against unauthorised persons. For example, access to the database is only possible and permitted by approved IP addresses (e.g. at cannabismuseum-amsterdam.com headquarters). Other attempts and addresses are refused at all times.
Additionally, data has been anonymised as much as possible. Thus, the data cannot be directly linked to a specific consumer. With this data, however, we could perform market research and analysis. Furthermore, third-party stakeholders (e.g. mailing service) are screened prior to our collaboration, are GDPR compliant, and are provided with a processor agreement. Within cannabismuseum-amsterdam.com, employees are assigned different access permissions. The specific permission provides access only to the strictly needed information required to perform a task.
Digital security measures are subject to changes and must meet high requirements to guarantee the safety of online customers. Therefore, at cannabismuseum-amsterdam.com, we appointed a security manager. Periodical checking and improving of security measures (when necessary) is part of the function.
What data breach procedures we have in place
In the event of any data breach, you will be informed within 72 hours of the breach being detected.
An investigation will begin and security measure will be implemented to protect your personal data. This may include, changing your account password, informing the Credit Card processing company. Removal of the account.