Franchisees beware of data breaches (at the franchisor)

By mr. A.W. DolphijnPublished On: 21-06-2016Categories: Statements & current affairs

In franchise relationships, the processing of, for example, customer data of the franchisee is often reserved for the franchisor. It is not inconceivable that a franchisee is nevertheless responsible for data breaches of such personal data at the franchisor.

The obligation to report data breaches has recently entered into force, as part of the expansion of the Personal Data Protection Act. Violation of the rules is subject to a fine regime. A fine may also follow if data leaks are properly reported.

According to the law, there is an obligation to report to the Dutch Data Protection Authority if there is a security incident. This could include the loss of a USB stick, theft of hardware or a hacker breaking into the automation system. There must also be a loss of personal data or a (suspected) unlawful processing thereof. Unlawful processing includes, among other things, adjusting and/or changing personal data and unauthorized access to, or disclosure thereof. This concerns, for example, usernames and passwords, work performance and financial data that could lead to damage to honor and good name, (identity) fraud, discrimination or, for example, financial damage.

Franchisees have often stored personal data of their employees, customers or prospects on the franchisor’s network. A franchisee may also be required to do so under the franchise agreement. For example, customer data can be an important resource for the franchisor to, for example, align their marketing strategy. In that context, a franchisor can be qualified as a so-called processor.

Despite the engagement of a processor, such as a franchisor, the franchisee remains responsible for proper compliance with the Personal Data Protection Act and therefore also the data breach notification obligation.

The franchisor is obliged to follow the instructions of the franchisee and to comply with the principles regarding the processing of personal data. This is, for example, the obligation of careful and proportionate processing and having a specific purpose and legal basis for the processing.

It is important to be aware of this issue when drafting and concluding franchise agreements. A careful provision about the method of processing, processing and storage of personal data is advisable. For example, it could be agreed that the franchisor indemnifies the franchisee against fines for any form of data breach that occurs at the franchisor.

mr. AW Dolphijn – Franchise lawyer

Ludwig & Van Dam Franchise attorneys, franchise legal advice.

Do you want to respond? Go to dolphijn@ludwigvandam.nl

Other messages

Judge anticipates Franchise Act: no mandatory formula change (without threshold value)
Gallery
Statements & current affairs

Judge anticipates Franchise Act: no mandatory formula change (without threshold value)

The District Court of Amsterdam ruled that a Blokker franchisee is not obliged to renovate the store in accordance with the latest formula principles, as instructed by Blokker.

By Alex Dolphijn|05-10-2020|Categories: Statements & current affairs|

Interview Mr. J. Sterk and mr. C. Rutten in Franchise+: “Call to the automotive sector: prepare yourself well for the new Franchise Act” dated October 2, 2020
Gallery
Franchise Knowledge Center / National Franchise and Formula Letter Publications

Interview Mr. J. Sterk and mr. C. Rutten in Franchise+: “Call to the automotive sector: prepare yourself well for the new Franchise Act” dated October 2, 2020

The new Franchise Act has a broad effect, also in the automotive sector. But are people aware of it enough?

By Jeroen Sterk|02-10-2020|Categories: Franchise Knowledge Center / National Franchise and Formula Letter Publications|

Article The National Franchise Guide – “Corona discount of 50% on the rent” – mr. AW Dolphijn – dated September 15, 2020
Gallery
Statements & current affairs

Article The National Franchise Guide – “Corona discount of 50% on the rent” – mr. AW Dolphijn – dated September 15, 2020

Disappointing turnover due to the corona crisis may mean that the rent is halved, even if the rent is partly turnover-related.

By Alex Dolphijn|15-09-2020|Categories: Statements & current affairs|

Article Franchise+ – “Franchisor uses “derivative formula” (without his knowledge)” – mr. AW Dolphijn – dated September 9, 2020
Gallery
Statements & current affairs

Article Franchise+ – “Franchisor uses “derivative formula” (without his knowledge)” – mr. AW Dolphijn – dated September 9, 2020

Many franchisors will not be aware of the fact that they use a "derived formula" as referred to in the Franchise Act.

By Alex Dolphijn|09-09-2020|Categories: Statements & current affairs|

Article Franchise+ – “Obligations and rights of the starting franchisee” – mr. AW Dolphijn – dd
Gallery
Columns

Article Franchise+ – “Obligations and rights of the starting franchisee” – mr. AW Dolphijn – dd

What should you pay attention to as a starting franchisee, what are your obligations and what are your rights when concluding the franchise agreement?

By Alex Dolphijn|06-09-2020|Categories: Columns|

Article Mr. C. Damen – Three conditions for the right to customer compensation for the agent upon termination of the agency agreement – dated August 26, 2020
Gallery
Statements & current affairs

Article Mr. C. Damen – Three conditions for the right to customer compensation for the agent upon termination of the agency agreement – dated August 26, 2020

In the agency relationship between an agent and a client (the principal), the parties record their cooperation agreements in an agency agreement. When the principal enters into the agency agreement

By mr. C. Damen|26-08-2020|Categories: Statements & current affairs|