Privacy Statement Police Data Act (Wpg)

The municipality of Hilversum employs special law enforcement officers (BOAs) to monitor and maintain public order.

What do you need to know

When BOAs perform investigative tasks during their work, the Police Data Act (Wpg) applicable. Think of things like urinating in public, incorrectly offering waste, drinking alcohol on public roads and dogs running loose. Just like the General Data Protection Regulation (GDPR) the Wpg sets requirements for the processing of data
This privacy statement applies to all police data that the municipality of Hilversum collects and processes for the purpose of criminal enforcement by municipal enforcement officers employed by the municipality.
In this privacy statement we explain how the municipality of Hilversum handles your police data, what your rights are and how you can exercise these rights.

Collecting police data

Which police data we process about you depends on the criminal offense you are suspected of. In addition, our police officers also process police data from witnesses, victims and other third parties to the extent necessary in the context of their investigative tasks. We may process the following categories of police data about you:

Personal data (including name and address, nationality data, date of birth, place of birth, actual place of residence)
Contact details (including telephone number)
Identity data (including BSN, place of issue, date of issue, type of ID)
Data relating to the criminal offense (including offense category, offense description, type of offense, place of commission, date and times, license plate number, insurance details and other data relating to the vehicle)
Image and sound material (including camera images, photos)

Use of police data

We process police data for various purposes. Think about:

Stopping, arresting and/or questioning a suspect
Tracking down suspects of criminal offences
Drawing up a report in the context of a criminal investigation
Handling, administering and financially settling payments related to official reports

Legal basis

Police data may not be processed simply. A so-called processing basis is required for this. The basis on which the boas process data is to fulfill a legal obligation. More specifically, the boas process police data on the basis of:

The Police Data Act and the Police Data Decree
The Police Data Decree on Extraordinary Investigative Officers
Sector-specific legislation as referred to in Appendix 1 of the Regulations on domain lists for special investigating officers (see domain I. Public space)

Retention period of police data

Police data have a fixed statutory retention period in accordance with the Wpg
The majority of the data processed by our BOAs is processed for up to 1 year after the first processing date for the purpose of carrying out daily police tasks.
In the 4 years after that, the police data can only be consulted and processed with a specific search query. For example, by searching for a name, address or license plate number.
After this period, the police data will be retained for another 5 years. The data will then only be available to a very limited extent, for example with a view to handling complaints by the Dutch Data Protection Authority or accountability in audits. After that, the data will usually be permanently destroyed.

Sharing police data

Your data will only be shared with other organizations or persons if this is necessary for the implementation of a law, task or process.
In the case of an investigation, it is sometimes necessary for a boa to share police data with third parties. For example, to the police or the Public Prosecution Service following an incident, to the Regional Information and Expertise Centres (RIECs) regarding the fight against undermining crime. Or to our partners of the Gooi en Vechtstreek Care and Safety House within the framework of the person-oriented approach (PGA) and the Top-X approach (prioritizing people who cause an exceptional amount of nuisance or require a great deal of attention due to (criminal) behavior)
In addition, we sometimes share personal data with processors who process personal data on behalf of and for the municipality. These processors are, for example, cloud and hosting parties and IT service providers. A processing agreement has been concluded with these processors, in which the mutual rights and obligations for the processing are recorded.
Police data will not be transferred to countries outside the European Economic Area

Exercising rights

If the municipality processes your personal data, you have certain rights under the Wpg. These rights are intended to give you the opportunity to maintain control over your data. You have the right to:

To view the police data that the municipality processes about you
To supplement and/or improve your police data
Have your police data deleted
To request a restriction of the processing of your data
To file a complaint with the Dutch Data Protection Authority if you believe that your personal data is being processed in violation of the Wpg
For more information on how to exercise your rights, please visit our general privacy statement .

Please note: the above rights are not absolute. This means that we do not have to comply with a request in all cases, for example if one of the legal grounds for exception applies. For example, we have the right to reject your request for:

Avoidance of obstruction of judicial investigations or proceedings
Avoidance of adverse effects on the prevention, detection, investigation or prosecution of criminal offences or the execution of criminal penalties
Protection of public safety
Protection of the rights and freedoms of third parties
Protection of national security
In the event of a manifestly unfounded or excessive request

Learn more

More information about the careful handling of police data can be found on the website of the Dutch Data Protection Authority
If you would like to know more about this privacy statement, your rights or our further handling of your personal data, please contact us via privacy@hilversum.nl

Questions or complaints

Despite our careful approach, you may have a complaint about the way we handle your personal data. In that case, you can submit a complaint via the municipality's complaints handling procedure. More information about submitting complaints can be found on our complaints page.

Have we handled your complaint and do you disagree with the outcome or how your complaint was handled? Then you can always send us an file a complaint with the Dutch Data Protection Authority.

Data protection officer

The municipality of Hilversum has appointed an independent, external supervisor. This data protection officer (FG) supervises and advises on the protection of your personal and police data. The FG is registered with the Dutch Data Protection Authority. If your question or complaint has not been answered (sufficiently), you can contact the FG via the e-mail address: fg@hilversum.nl.

Privacy statement change

This privacy statement can be changed by the municipality of Hilversum at any time, without prior notice. Changes take effect from the moment they are published. We therefore recommend that you regularly consult this privacy statement so that you are aware of the changes. This page is continuously updated.

also look at

General privacy statement of the municipality of Hilversum