Privacy Statement
By using our website and products you agree to the use of your information as described in this Privacy Statement. We process personal information solely in accordance with the European General Data Protection Regulation. (GDPR) We only use data provided explicitly and voluntarily by people visiting our website and information entered by (end)customers of Nmbrs products.

Types of personal data processed.
The following personal data is processed through our website:

  • Identification data
  • Corporate information
  • (Corporate) Contact information (telephone number(s),e-mail addresses etc)
  • Account information and passwords
  • IP-address  

In the case that your employer uses Nmbrs products, we process your personal information for the performance of a contract with your employer, or parties working on behalf of your employer. To provide Nmbrs products and services to you, we employ suppliers and (sub)processors. Personal information is only shared with (a selection of) these parties if it is necessary for the performance of our products and services and a lawful basis for processing is present. Nmbrs only employs (sub)processors that ensure your personal information is adequately protected and processed within territories that provide adequate protection levels as obligated by the GDPR. An overview of these parties, or ‘(sub)processors’ is made available at When browsing the website you can provide your personal information to request information or services, to receive newsletters, to sign up for an event or to purchase Nmbrs® products and enter into a contract. When you provide personal data through the website, your data may be used by Nmbrs to inform you about relevant products and services of Nmbrs. Participants in a discussion forum shall, by registration, grant permission for the registration of their data and grant permission for publication on the Internet of the contribution made by them. 

We will never share your personal information with parties other than those listed, without your explicit consent, unless it is required by law or court order.

Furthermore your personal data is used to improve the quality of our products and services, but only when you are no longer identifiable from that data, by means of aggregation and anonymisation.

The following personal data is processed within our products and services: 


Identification data

Occupational data

Residence data

Education & schooling data

Social Security number (in Dutch: BSN)

Leave and absenteeism data

Contact information (telephone number(s), 

e-mail addresses etc.)

Performance appraisal data

Family composition

Bank account information

Financial / payroll data

Employment contract (mutation) data









Personal data protection
At Nmbrs, we take your privacy seriously. As such we have implemented technical and organizational measures to ensure your data is protected. Agreements are in place between your employer and Nmbrs, and between us and our suppliers and (sub)processors, specifically with regard to personal data protection. Processing activities, risks and controls are analyzed and monitored continuously and systematically in all phases of our product- and services lifecycle. A breach notification procedure and process is in place to enable timely and adequate steps can be taken by Nmbrs and our customers. Personal data is processed for the duration of the contract and providing products and services. A dataretention policy is in place to ensure this. A framework is in place to govern personal data protection from an organizational perspective. The Governance, Risk and Compliance manager oversees compliance throughout Nmbrs and ensure internal awareness. GDPR-compliance for Nmbrs is not a one-time-effort, but a continuous effort.

More information about information security, assurance and breach notification at Nmbrs can be found at and

Integration with third parties
Customers can integrate third party products and services with Nmbrs products and services. These third party integrations are initiated by and at the risk of the customer. Nmbrs has no involvement with the delivery of products and services between customer and their integration partners. Nmbrs accepts no responsibility and/or liability for the exchange of data between those parties.

Rights of data subjects
We have established suitable procedures to enable you to find out if your personal data is being processed by Nmbrs and, if so, what such personal data comprises. To enable you to utilize your rights as a data subject:

  • Right of access and rectification
  • Right to erasure or “right to be forgotten”
  • Right to restriction
  • Right to data portability 

A more in-depth description of your rights as a data subject, you can take a look at

Contact information
A request for access, information or other use of the rights mentioned above, can be done by contacting We will respond to these requests in accordance with the data protection agreements and particularly in accordance with the statutory time limits.

If you are an employee whose employer uses Nmbrs products and services, your request to utilize one the rights mentioned above will be forwarded to your employer as obligated by the data processing agreement between Nmbrs and your employer.

 If you would like to know more about how we process and protect personal data at Nmbrs, please contact us by sending an e-mail to

Typing and spelling errors reserved. Nmbrs® reserves the right to change this Privacy Statement. Therefore, we encourage you to consult this page so that you are always aware of the latest version. This privacy statement was last modified in May 2018. We will inform you timely when important changes will be made to this Privacy Statement.