1. General
MijnMitz.nl/en processes personal data. Personal data means any data that can be traced back to you as an individual. In this statement, we specify what data is involved, the purposes for which we use it, and your rights in connection with this data processing.
MijnMitz.nl/en is the website where you can select, update and manage your consent settings for the electronic exchange of your medical data between caregivers. We call this your ‘consent profile’. Your consent profile is the entirety of your consent settings regarding the exchange of medical data between caregivers through an electronic exchange system. Through MijnMitz.nl, you can also see which care providers are following your consent settings and which care providers have reviewed your consent settings to determine whether they can share your relevant medical data.
MijnMitz.nl/en does not process medical data. Your medical data is only processed by your caregiver. If you want to know what personal data your care provider holds, please contact them directly.
The care providers have jointly created a foundation to make Mitz possible: Stichting GVvZ (foundation for shared healthcare communication facilities). Stichting GVvZ is the data controller for the registration and management of consent settings in MijnMitz. Stichting VZVZ Servicecentrum (vzvz.nl) manages the website MijnMitz.nl/en on behalf of Stichting GVvZ.
MijnMitz.nl/en is intended to be used by citizens. At a citizen's request, a caregiver can assist the citizen in registering their consent settings. In that case, the care provider will update the consent settings for the citizen.
Health insurers do not have access to the portal, nor to the data processed in MijnMitz.nl/en.
If Stichting VZVZ Servicecentrum uses sub-processors, a processor agreement will be concluded with them that meets the requirements of Article 28 (3) of the General Data Protection Regulation (GDPR).
2. Data collection
MijnMitz.nl/en processes the following personal data:
- Your contact information: your name (optional) and email address (required)
- Your consent profile in which you register your consent settings.
Through MijnMitz, you can perform the following actions:
Register and update consent settings
When you select or update consent settings and click ‘Submit consent settings’, your consent settings are processed in Mitz's consent register.
You can update or revoke your consent settings at any time.
Sign up to receive notifications
When you sign in to MijnMitz, you are asked to enter your email address. This is necessary to inform you of important changes. Your email address is used to send you automatic notifications of activity on MijnMitz. You can then sign in to MijnMitz to see exactly what happened.
You can also opt to receive certain notifications by email. You can subscribe to the following notifications:
- A caregiver has reviewed your consent settings. A caregiver has started or stopped monitoring your consent settings in the context of treating you.
- A caregiver has updated your consent settings at your request (i.e., always with your permission).
- You have turned 16 and can select and update your own consent settings without approval from a parent or guardian.
- Something has changed in MijnMitz. This could be the addition of new consent options, for example.
You can unsubscribe from these notifications or change your email address at any time.
The use of Mitz is subject to our terms of service. To use Mitz, you must agree to these terms. This tells Mitz that you agree to the processing of your data in Mitz and that you understand the ground rules for the use of Mitz.
You can fill out a contact form on the Mitz website to get in touch with Mitz's customer contact centre (info@mijnmitz.nl). The form requires you to fill in at least your name and email address. The information you enter in the contact form is processed by the customer contact centre to properly serve you.
The customer contact centre is also available by phone. We record phone calls to the customer contact centre for training and quality purposes. This helps us train our customer contact centre staff and improves the quality of our service to you.
3. Retention period
The data you provide will be retained:
- As long as hou have a consent profile
- As long as you are signed up to receive email notifications (notification service). If you opt out of notifications, you will no longer receive email messages from us, except for the automatic notifications sent to ensure data security (see above) and emails we are required to send to comply with our duty of disclosure.
- As long as necessary to adequately answer your question (‘contact form’).
Activities on MijnMitz are logged according to the NEN 7513 standard. This logging data is retained in accordance with the prescribed period.
4. Overview of data processing, basis for processing and data retention periods
The table below clearly shows what personal data we process for what purpose, and for how long it is stored:
| Purpose | Personal data | Basis for processing | Retention period |
|---|---|---|---|
When you send us a message: Answering your questions/ comments |
| Consent | Maximum 90 days |
When you call us: The conversation is recorded for training and quality purposes |
| Consent | 30 days |
| Select or update consent settings via DigiD |
| Consent/ agreement Law (BSN) | As long as you have an active profile with Mitz |
| Subscribe to notifications |
| Consent | As long as you are subscribed |
5. Cookies
The Mitz informational website uses cookies to maintain ease of use on our website. What cookies are and what we use them for are explained in more detail below.
What is a cookie?
A cookie is a small, temporary file sent with pages of this website and stored by your browser on the hard drive of your computer or mobile device. The information stored may be sent back to our server the next time you visit the website. This alleviates the need to enter the same information repeatedly and helps us continuously improve the user-friendliness of our website. Cookies have been standard practice on websites around the world for many years.
We distinguish between functional and non-functional cookies:
- We always set functional cookies, as they are necessary for the website to work properly. For example, they ensure that when you fill out a form, you do not have to fill in all the information again on your next visit.
- In addition to functional cookies, we also set analytical cookies by default. This is an example of a non-essential cookie, as it is not necessary for the proper operation of the website. We only use analytical cookies with little to no impact on the privacy of website visitors. These are processed exclusively in-house, without the use of Google Analytics. Data processing is based on the legitimate interest of the controller (Article 6.1(f) of the GDPR).
Tracking cookies are another type of cookie. Mitz does not use tracking cookies on this website.
What does MijnMitz.nl/en use functionele cookies for?
Mitz uses functional cookies to store status information within a session. This is necessary for handling forms. Without functional cookies, these parts of the website may not work properly.
What does MijnMitz.nl/en use analytical cookies for?
Mitz uses analytical cookies to collect statistics on how the website is used. For example, this provides insight into how many visitors view certain areas of the website and what route they take on the website. Where do they re-enter, and where do they leave? This anonymous data enables Mitz to improve the website functionality and ease of use. Mitz does not use this data for any other purpose and does not disclose it to third parties.
More information about cookies
For more general information about cookies, visit Consuwijzer.nl and Veiliginternetten.nl. Those websites also explain how to disable all cookies (for all websites) through your browser settings.
6. Right of access, rectification and erasure
Stichting VZVZ Servicecentrum works in accordance with the GDPR and the NEN 7510, NEN 7512 and NEN 7513 standards. You have the right to erase, rectify or access your personal data processed by MijnMitz.nl/en.
You can delete your personal profile and any consent settings you have registered in MijnMitz. To do so, sign in to MijnMitz and click Profile. On the My Data page, click “I want to delete my data”.
If you need assistance with this, please submit a request via the contact form on the website or send your request to info@mijnmitz.nl.
7. Hyperlinks to other websites
MijnMitz.nl/en may contain hyperlinks to other websites, such as DigiD. By clicking on the link, you will leave the MijnMitz.nl/en website.
VZVZ has no control over other websites and is not liable for the operation, content or services of third-party websites.
8. Security
MijnMitz.nl/en is a secure website. You can identify this in your browser by the protocol "https" and a closed lock icon.
9. Email only
To minimise the amount of personal data we collect, Mitz only communicates with you by email. Emails from Mitz will be sent from info@mijnmitz.nl. This helps you verify that the message is from Mitz. There are various options to communicate with our customer contact centre, as described above.
10. Complaints, questions and suggestions
If you have any complaints, questions or suggestions regarding data processing by Mitz on the MijnMitz.nl/en website, let us know via the contact form.
Stichting VZVZ Servicecentrum has a Data Protection Officer (DPO). Complaints about Mitz can be directly addressed to the DPO: fg@vzvz.nl. You also have the right to file your complaint directly with the Dutch Data Protection Authority (DPA).
11. Changes to this privacy statement
This privacy statement may change from time to time as necessitated by new developments. We encourage you to review the privacy statement regularly to stay abreast of such changes. The date of the latest change is always displayed here.
Version 1.1 - 23 May 2024