The purpose of Free to go is to capture and verify an identity in order to enter an agreement and/or a transaction for the period that the agreement or a transaction takes place.
No paper copies of ID’s but a digital file which the individual concerned has access to and can administer his or her own personal data.
In addition, there is only a limited access to the personal data for staff members of the organizations and/or companies where the personal data are provided.
Free to go only processes personal data if the relevant person, directly or indirectly, has given permission for this. The person concerned is informed in advance, directly or indirectly, about the purpose of processing the personal data.
Free to go will exclusively collect, record, store and manage the personal information for its purpose. Biometric personal data will not be saved.
The one responsible (organization and/or company with which the contract or transaction is completed) has to send a notification to the Data Protection Authority as referred to in Art. 27 e.v. Data Protection Act.
Over a personal login every person can access and manage his or her own personal data. If a person believes that personal data of him or her is not correct, or is irrelevant for this registration, or is unfinished, or it conflicts with the regulation or the data protection act, than you can request at 24 ID Check a change or removal.
Free to go has the following technical measures taken to ensure the security and confidentiality of data which is housed in the 24 ID Check application.
All traffic between Free to go-terminal/work area and the 24 ID Check application are SSL encrypted, so no sensitive information revealed from possibly bugged network traffic can be revealed.
Users authenticate themselves through their e-mail address and chosen password;
Before accessing the data, users need to authenticate themselves in all cases;
The passwords of Free to go users are stored encrypted by means of a 1-way hashing in combination with salts, so that the login data only can be verified and never can led back to their original value.
Access to the information in the Free to go Backend will only be granted via web interfaces;
Only verified users who have a specific assigned role, will have access to the required data.
Privacy sensitive information, such as BSN-numbers (social security numbers) on personal documents are made unrecognizable for storage;
The module with images of ID documents is exclusively accessible and visible for verified users who have a specific assigned role to the requested data.
All access and actions concerning Free to go accounts are stored in an audit log.
The application is protected in terms of cross-site vulnerabilities such as XSS and CSRF;
All user input is explicitly filtered to protect against vulnerabilities like SQL injection;
To protect session cookies are encrypted and marked against session hijackings;
All document information collected by the Free to go software on the terminal / workstation, is destroyed after forwarding it to the Free to go backend;
All communication with the Free to go backend runs on a VPN connection, specifically set up for the Free to go software.
The storage of your data is divided into two groups:
For personal data we use a retention period of 7 years from the last use.
For identification we use a retention period of 7 years from the last use.
After digitalization ID documents, an authentication will be executed. The BSN-nummer (social security number) will be checked, than shielded and not stored.
The obtained data can be verified or enriched with external data sources through web services over a secure VPN connection.
All images and data are encrypted and stored separately. Data storage using certified information security ISO 27001. Limited general account information visible in transactions.
Applicable privacy laws
The applicable privacy laws are the European Directive 95/46 / EC of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data ("the Directive") and the Data Protection Act July 6, 2000, laying down the rules for the protection of personal data (the "Data protection Act");
Every act or combination of actions with regard to personal information as decribed in Art. 1 sub b WBP;
Kijk op de kaart voor 1 van onze scan locaties. Is er geen in de buurt? Neem dan contact op met ons op zodat we kunnen kijken of we op korte termijn iets voor je kunnen regelen.
Bel met 033-2455055 of stuur ons een bericht.
Bekijk onze voertuigen. Altijd een passende auto bij jouw behoefte!