Privacy statement

This is the Privacy Statement (hereinafter also referred to as "Statement") of DXRS B.V., also trading under the name naext. In this Statement, we explain who we are, which personal data we process about you, why we collect this data, and what we do with it, in a simple and understandable way. Personal data refers to any information or set of information that can directly or indirectly identify you, particularly through an identifier, such as first and last name, email address, date of birth, etc.

This Statement may be amended from time to time. The most up-to-date version of this Statement can always be found on our website at www.naext.ai/privacy-stetement. We recommend you regularly check this Statement to stay informed of any changes.

When does this Privacy Statement apply?

This Statement outlines how we collect and use your personal data, for example, when you:

  • Visit or use our website(s) (naext.ai, naextlevel.org) or social media channels;
  • Subscribe to our newsletter;
  • Attend a naext.level event
  • Purchase our products and/or services;
  • Supply goods and/or services to us;
  • Apply for a job or internship at naext; and/or
  • Contact us for any other reason.

This Statement only applies to you if we are considered the 'data controller' of your personal data under the General Data Protection Regulation (GDPR). This means that naext determines the purpose (the why) and the means (the how) of the processing. If we process your personal data on behalf of another data controller, as a ‘processor’, the privacy statement of that data controller will apply.

Who is naext?

At naext, we build an accessible world. Naturally. We provide intuitive technology that empowers everyone to navigate their world with confidence and ease. With our spatial computing platform at the core, we develop contextual extended reality applications and experiences such as navigation, field service and asset management .In this Statement, "we," "us," or "naext" refers to the data controllers of your personal data, including the affiliated company with which you have, had, or may have a (business) relationship, or any entity that determines what personal data is collected and how it is used. References to naext specifically refer to DXRS B.V. (Dutch Chamber of Commerce number 86266403).

Consent

We process different types of personal data based on different legal grounds. If the processing of personal data is based on your consent, you have the right to withdraw your consent at any time.

What types of personal data do we process,and why?

1.  Personal data of newsletter subscribers

When you subscribe to our newsletter, we may collect the following personal data:

Categories of personal  data
Including
a) Contact details
E-mail address

The purpose and legal basis on which we process the aforementioned categories of personal data of newsletter subscribers is:

Purpose
Legal basis
a)  Sending newsletters, updates about naext.level  events, updates about developments within naext and marketing communications
Consent; Article 6(1)(a)  GDPR

If you no longer wish to receive our newsletter, you can easily unsubscribe via the 'unsubscribe' button at the bottom of the newsletter or by sending an email to privacy@naext.ai. Please note that it may take a few days before your data is completely removed from our systems.

2. Personal data of attendees to a naext.level event

When you attend one of our naext.level events, we may collect the following personal data:

Categories of personal data
Examples
a)  Contact details
First and last name, email addresses and phone number
b) Visual data
Photographs or video recordings made during the event

The purposes and legal basis on which we process the aforementioned categories of personal data of attendees of naext.level events are:

Purpose
Legal basis
a)  To communicate with attendees, provide event information, and handle registration
Consent; Article 6(1)(a) GDPR
b) For promotional purposes including via our website and social media
Consent; Article 6(1)(a) GDPR

Please note that if naext cannot process your contact details, we may be unable to provide you with essential event information or updates, which could affect your event experience or participation.

Additionally, if you withdraw consent for the use of photos or videos, naext will cease using your image in any future promotional materials. Please be aware that any materials already published or distributed prior to your withdrawal may continue to be used.

3. Personal data of (employees of) customers

When you, as (an employee of) one of our customers, interact with naext, we may collect the following personal data:

Categories of personal  data
Examples
a) Contact details
First and last name, (business) phone numbers, and email addresses
b) Company information
Company name, department, job title, and business address
c) Communication details
Content of email communications, chat messages, or other contact interactions

The purposes and legal basis on which we process the aforementioned categories of personal data of (employees of) customers are:

Purpose
Legal basis
a)
b)
c)
To communicate with customers and provide requested information, products, or services
Legitimate interest of naext to maintain business relationships; Article 6(1)(f) GDPR
To respond to inquiries, provide support, and resolve any issues
Necessary for the performance of the contract between the supplier/partner and naext; Article 6(1)(b) GDPR

4. Personal data of (employees of) our suppliers

When you, as an (employee of a) supplier, provide products and/or services to naext, we may collect the following personal data:

Categories of personal  data
Examples
a) Contact details
First and last name, address, phone numbers, email addresses, date of birth, and gender
b) Company information
Company name, department, job title, and business address
c) Transaction details
Information related to purchases, orders, or contracts, including payment and invoice details

The purposes and legal basis on which we process the aforementioned categories of personal data of (employees of) suppliers are:

Purpose
Legal basis
a)
b)
To communicate with suppliers and coordinate product or service deliveries
Necessary for the performance of the contract between the supplier and naext; Article 6(1)(b) GDPR
a)
b)
c)
Maintaining our financial records
Necessary to comply with legal obligations under Article 52(4) AWR; Article 6(1)(c) GDPR
To process orders and manage payments
Necessary for the performance of the contract between the supplier and naext; Article 6(1)(b) GDPR

5. Personal data of job and internships applicants

When you apply for or have applied for a position at naext, we may collect the following personal data:

Categories of personal  data
Examples
a) Contact details
First and last name, address, phone numbers, email addresses, date of birth, nationality, and gender
b) Information relevant to the role applied for
Curriculum Vitae (CV), application letter, references, or results of a competency test

The purposes and legal basis on which we process the aforementioned categories of personal data of applicants are:

Purpose
Legal basis
a)
To verify the identity of the applicant and contact them regarding the application process
Necessary for the performance of the contract between the applicant and naext; Article 6(1)(b) GDPR
b)
Assessing the suitability of the applicant for the vacant position
Legitimate interest of naext to assess whether the applicant is suitable for the vacant position; Article 6(1)(f) GDPR

6. Personal data of individuals who contact us

If you do not fall under any of the above categories but contact us, for example via email, phone, or one of our social media channels, we may collect the following personal data:

Categories of personal  data
Examples
a) Personal identification details
First name, last name
b) Contact details
E-mail, phone number
c) Communication details
Content of email communications, chat messages, or other contact interactions

The purposes and legal basis on which we process the aforementioned categories of personal data of persons who contact us are:

Purpose
Legal basis
a)
b)
c)
To maintain contact and communicate regarding any questions or other information
Legitimate interest of naext to communicate with individuals who contact us; Article 6(1)(f) GDPR

Cookies

When you visit or use our website, the website collects information automatically sent to us by your computer, mobile phone, or other devices. In principle, only functional cookies are used on our website, which do not process personal data and are essential for the proper functioning of the website. These cookies enable basic functions, such as navigating pages and accessing secure areas of the website. We use the following cookies on our website:

Purpose
Domain
Cookie type
Description
__cf_bm
Third-party
30 minutes
This cookie is used to distinguish between humans and bots. This is beneficial for the website, in order to make valid reports on the use of their website.

Leadinfo

We use the lead generation service provided by Leadinfo B.V., Rotterdam, The Netherlands, which recognizes visits of companies to our website based on IP addresses and shows us related publicly available information, such as company names or addresses. In addition, Leadinfo places two first-party cookies for providing transparency on how our visitors use our website and the tool processes domains from provided form inputs (e.g. “leadinfo.com”) to correlate IP addresses with companies and to enhance its services. For additional information, please visit www.leadinfo.com. On this page: www.leadinfo.com/en/opt-out you have an opt-out option. In the event of an opt-out, your data will no longer be used by Leadinfo.

Do we use automated decision-making?

We do not make decisions based solely on automated processing, including profiling, that have legal effects or otherwise significantly affect you. This refers to decisions made entirely by computer programs or systems, without any human intervention (for example, by one of our employees).

What choices do you have on social media?

naext is active on social media platforms such as LinkedIn. From our social media pages, we receive visitor statistics. While naext and our social media service providers are jointly responsible for these visitor statistics, the relevant social media service provider is your primary contact and handles requests to exercise your rights and any complaints you may have. Where necessary, we will assist the social media provider in responding to your requests or complaints. For more information about the personal data we receive from social media providers and how to adjust your settings, please consult the websites and privacy policies of the relevant social media providers.

With whom do we share personal data?

We do not sell your personal data to third parties. Nor will we share your personal data except with your consent, where legally required, or in a limited number of cases described below. To achieve the purposes described in this Statement, we may share your personal data with the following entities:

  • Affiliated companies within naext: due to our organizational structure, your personal data may be shared within certain affiliated companies of naext. Only employees who need access to your information will have access to these personal data.
  • Partners: naext.level events are co-organized by partners, such as 3EALITY, Amsterdam UMC, XPLORO, and Envision. To facilitate this collaboration, we may share the personal data we collect from visitors of naext.level events with our partners.
  • External service providers: some processing activities are outsourced to trusted third parties who perform certain tasks on our behalf, such as IT services, consultancy, delivery services, payment processors, providers of electronic communication platforms, and marketing services.
  • Professional advisors and others: your personal data may also be shared with professional advisors, such as banks, insurance companies, auditors, lawyers, accountants, and other experts.
  • Other parties in business transactions: occasionally, your personal data may be shared in the context of business transactions, such as the sale of parts of our business, or in reorganizations, mergers, joint ventures, or other forms of acquisition of our company, assets, or shares, including in the event of bankruptcy or similar proceedings.

If personal data is shared with a third party, we will, where necessary, enter into a (data processing) agreement with this third party that meets all the requirements set by the General Data Protection Regulation.

What security measures do we apply?

To protect your personal data, we will take appropriate measures in accordance with the applicable data security laws. This also means that we require our service providers to take appropriate measures to protect the confidentiality and security of your data. Unfortunately, no data transmission or storage system can be guaranteed 100% secure. Depending on the state of technology, the costs of implementation, and the nature of the data to be protected, we take technical and organizational measures to prevent risks such as destruction, loss, alteration, unauthorized disclosure of, or access to your data. If you have reason to believe that your interaction with us or your data is no longer being handled securely, please contact us immediately.

How long do we retain personal data?

We do not retain your personal data longer than necessary for the purposes for which it is processed unless the data needs to be retained longer to comply with legal obligations, such as a legal retention period. For more information about these purposes, please refer to the section "What personal data do we process, for what purposes, and on what legal basis?" The criteria used to determine our retention periods include:

  • How long is the personal data needed to provide our services to you or to run our business?
  • Did you sign up for a naext.level event? In that case, we will retain your contact details 1 month after the event took place.
  • Have you applied for a position at naext? In that case, we will retain your data for up to 4 weeks after the end of the application process unless you are hired by us or you consent to the data being retained longer.
  • Are we subject to a legal, contractual, or similar obligation to retain your data? Examples include laws that mandate data retention in the relevant jurisdiction, a government order to retain data relevant to an investigation, or data that needs to be retained for legal proceedings or to protect against a potential claim.

What responsibilities do you have?

We would like to remind you that it is your responsibility to ensure that the data you provide to us is accurate, complete, and up-to-date to the best of your knowledge. Additionally, if you share data of others with us, it is your responsibility to collect that data in accordance with local legal requirements. This means you must inform such individuals about the content of this Statement and obtain their prior consent.

What rights do you have regarding your personal data?

You have the right to request access (including a copy), rectification, and/or deletion of your personal data, restriction of processing concerning you, and the right to object to processing or to request the transfer of the personal data you have provided to us. You can do this by contacting us using the contact information below.

We will do our best to process your request in a timely and free manner unless it would require a disproportionate effort. To prevent abuse, we may ask you to adequately identify yourself before processing your request. There may be circumstances where we cannot fully comply with your request, for example, due to legal retention periods. If such circumstances arise, we will inform you. We will generally respond within one month of receiving your request.

Do you have questions, comments, or complaints?

If you have any questions, comments, or complaints following this Statement, we would be happy to assist you. You can reach us via email or phone using the contact information provided below. Additionally, you have the right to file a complaint with the Dutch Data Protection Authority or, if you reside or work in another country, with the relevant privacy regulator in that country.

Contact information

For questions or requests regarding the protection of your personal data at naext or regarding this Statement in general, you can contact us via the following methods:

Contact information

Email: privacy@naext.ai

Phone: +31 40 7009704