top of page

Noory Privacy Statement

This privacy statement was last updated on
7 August, 2024
Introduction

This privacy statement explains how we collect, use, and store personal data you provide to us when using the services offered through noory.com.
This statement is regularly updated. If changes are made, we will inform you and list the applied changes. We also recommend that you carefully read and understand any other notices you receive from us regarding the collection or processing of your data.
To comply with the conditions set out in this privacy statement, we must be able to rely on the accuracy of the personal data we collect about you. Therefore, we kindly ask you to notify us of any changes to your personal data during our contractual relationship.
When processing personal data, we commit to complying with the obligations prescribed by the GDPR and all other applicable data protection laws and regulations.

 

What is personal data?

According to Regulation 2016/679 on data protection (also known as the "General Data Protection Regulation" or "GDPR"), 'personal data' refers to data related to an identified or identifiable natural person.
An identifiable person is someone who can be identified, directly or indirectly, using an identifier such as a name, location data, or specific health data. This statement also provides information about our security procedures, your privacy rights (including how you can access your personal data), and the protections the law provides.
Your privacy rights, as described in this privacy statement, apply to all personal data we collect based on your explicit consent or because it is necessary for the performance of the contract we have with you. We may collect your personal data when you communicate with us, for example, when you use Verdi Food services or contact customer support.

 

Content
  1. Who are we?

  2. What data do we collect about you?

  3. For what purposes will your personal data be used and on what basis?

  4. Your legal rights

  5. Your legal rights – additional information

  6. Data retention & security

  7. Third parties receiving personal data

  8. Closure

1. Who are we?

'We' are Verdi Food B.V., active under our trade name 'Verdify' (hereinafter referred to as 'Verdi Food'). We are located at Villafloraweg 1, 5928SZ, Venlo, the Netherlands and we are registered in the trade register under number 70122296. Our websites are https://www.verdify.co.ukhttps://www.noory.com and https://www.swapmeals.com 

Verdi Food wants to offer customers meal inspiration that is tailored to their personal health status or health goals. For this, we offer a service that compiles personalised meal recipes according to your nutritional needs based on your Noory profile. To provide this service, we collect and use your personal data that you provide during your visit to our website(s) or mobile App.

Your privacy rights, as set out in this privacy statement, apply to all of the personal data we collect, based on your expressed consent or because this is necessary for the performance of the contract we have entered with you. We may collect your personal data if you communicate with Verdi Food, for example if you use Verdi Food's services or if you contact customer support. We have appointed a Data Protection Officer (DPO) who is responsible for monitoring questions related to this privacy statement and your privacy rights. For questions about this privacy statement and your privacy rights, please contact our DPO using the contact details below. We stress that the DPO has a duty of confidentiality with regard to questions and/or issues that you submit to the DPO. Contact details DPO: privacy@verdifood.com

2. What data do we collect about you?

We collect the following personal data, specifically:

  • Basic data: this includes information such as your name, email address and, if provided, your phone number.

  • Authentication data: we collect your email address and password. We collect this data to create and manage your account and to communicate with you about our services.

  • Technical data: through cookies or similar techniques, we collect your IP address, cookie ID, web browser, time zone and location, the web pages you have visited on our website and the promotions you have viewed or clicked through. This data helps us personalize your user experience, improve our services, and identify security risks.

  • Health data: we collect your dietary data and other health data you provide. If you create a nutrition profile, we will collect information about your dietary preferences and dietary restrictions, ingredients you wish to avoid, food allergies, diets, your recipe preferences and dietary advice for the family ("dietary data"). In addition, we collect the following information about you in the context of your health or condition: birth date, gender, body dimensions (height, weight, and BMI), activity level and, if applicable, a possible pregnancy and whether you are lactating ('other health data').

  • Product availability data: we collect information about your country of residence to determine the availability of our products and services in your region and comply with local laws and regulations.

3. For what purposes will your personal data be used and on what basis?

We process your identity and account data to fulfill a contract with you (Article 6(1)(b) GDPR). This data includes your name, email address, phone number, username, and password. They are essential for creating and managing your account with Auth0, allowing you access to, and use of, our services.

To comply with our legal tax obligations (Article 6(1)(c) GDPR), we process specific personal data for tax purposes. This data may include your country of residence, tax identification number, or similar identification data, depending on the applicable laws and regulations in your jurisdiction.

We process your other personal data as indicated above for the following purposes, provided you have given your consent (Article 6(1)(a) GDPR):

  • Creating and offering a personalised, online nutrition profile for the presentation of a selection of recipes based on your nutritional profile;

  • Displaying ingredients in collaboration with local supermarkets: With your consent, we may use your location data to provide information about ingredients available at supermarkets we work with. This allows us to make personalised suggestions based on your dietary preferences.

  • Sending nurture e-mails: We use your contact details to send you email messages such as updates on our latest features, reminders, and helpful content, to keep you informed and engaged with our services.

  • Contacting for non-marketing purposes: We may use your personal data to respond to questions, feedback, or issues related to our services. This enables us to provide the necessary support and improve your experience.
     

4. Your legal rights

Under data protection laws, you have various rights that you can exercise. These include:


Right of access: You have the right to request access to your personal data that we have collected. This allows you to verify the information we process about you and ensure its lawful processing.


Right to rectification: If you find that the personal data we process about you is incorrect or incomplete, you can request us to correct it. We will verify the accuracy of the new data before making changes to our systems.


Right to erasure ('Right to be forgotten'): You have the right to request us to delete or erase your personal data if there is no longer a legal basis for processing it, for example, if you withdraw your consent. However, in some cases, we may be required to retain your data due to legal obligations or other legitimate purposes.


Right to restrict processing: You can also request to restrict the processing of your personal data in certain situations, such as when you dispute the accuracy of the data or if the processing is unlawful. During the restriction, we will only process your data with your consent or for specific legal purposes.


Right to data portability: You have the right to receive the personal data we have collected about you in a structured, commonly used, and machine-readable format, so you can transfer it to another data controller.


5. Your rights – additional information

Right to withdraw consent
If the processing of your personal data is based on your prior, explicit consent, you will have the right to withdraw your explicit consent. Withdrawal of your expressed consent will not affect the lawfulness of the processing based on your explicit consent before the withdrawal. Withdrawing consent is as easy as giving consent. If you have indicated that you want to receive our marketing messages, you will, for example, be given an opt-out option. If you no longer wish to give us permission to process certain personal data in your nutrition profile, you can delete it yourself in your nutrition profile.

In principle, this is free of charge
You do not have to pay a fee to access your personal data (or to exercise other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or exaggerated. We may also refuse to comply with your request in this case.

Verification of your identity
We may need to ask you for specific information that will allow us to confirm your identity and ensure your right to access your personal data or exercise your other rights. This is a security measure to ensure that personal data is not disclosed to a person who does not have the right to receive this data. We may also contact you for further information regarding your request to speed up our response.

6. Data retention & security

We retain your personal data only for as long as necessary to achieve the purposes for which it was collected, particularly to comply with legal, accounting, or reporting requirements. When determining the appropriate retention period, we consider various factors, including the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure of your data, the purposes of processing, and whether these purposes can be achieved by other means than retaining your data.

Our applications (websites) are secure, up-to-date, and comply with the latest security guidelines. Your personal data is securely stored on Google Cloud Platform (Google Ireland Limited) servers located within the European Union. These security measures are designed to protect your personal data from loss, unauthorized use, access, alteration, disclosure, or destruction.

We adhere to strict security procedures and company systems to ensure that your personal data is used only for the intended purpose and accessible to authorized employees, agents, contractors, and other third parties who need such information for business reasons. The access of these parties to personal data is limited to the necessary level for performing their duties, and all involved parties are bound by strict confidentiality obligations.

7. Third parties receiving personal data

We share your personal data with third parties with whom we work to provide our products and services – only and to the extent necessary for the proper functioning of Verdi Food, with regard to the aforementioned purposes. Your personal data will not be shared with third parties for advertising or promotional purposes. In order to comply with our contractual obligations, we work specifically with:

  • Genzai B.V. for building our website and its functionalities.

  • Google Ireland Limited for the secure storage of your personal data.

  • Auth0 Inc. for access and user management, authentication, and data security with data storage in the EU region.

  • Brevo, France, for sending emails to our users.

  • Zendesk Inc. for answering questions of users. 

  • Pinterest Europe Limited and Meta Platforms Ireland Limited for tracking and optimising conversions and campaign performance. 

 

We have imposed the same data protection and confidentiality obligations set out in this privacy statement on the third parties we work with. If and when we attract other third parties to provide our services, we will inform you about this, insofar as it concerns the sharing of your personal data. We will only enter into cooperation with a third party if this party can demonstrate that appropriate security measures have been taken and confidentiality can be guaranteed.

8. Closure
 

You can contact the Privacy Officer by sending a written message to the above-mentioned postal address of Verdi Food B.V. or by emailing privacy@verdifood.com.

Additionally, you always have the right to lodge a complaint with the Dutch Data Protection Authority, a Dutch authority overseeing data protection. You can reach the Dutch Data Protection Authority via the website https://www.autoriteitpersoonsgegevens.nl.

We want to emphasize that if we need to collect personal data about you in the context of a contract we have concluded with you and you choose not to provide (some of) this personal data, we may not be able to perform or enter into the contract. In such a case, we reserve the right to cancel the parts of the contract that we cannot fulfill, and we will inform you if this is the case.

bottom of page