Legal obligations

NS is required to comply with a number of legal obligations. This may require us to process your personal information, such as your contact details or transaction information.

The principle behind the processing of the information is: compliance with a legal obligation.

We are required to comply with certain legal obligations, such as those pertaining to tax or railway legislation.

It is also possible that investigative agencies, such as the police or the FIOD, may request information from us. We are then legally obliged to cooperate with such requests. In these cases, we always carefully investigate whether the request is within the investigative agency's jurisdiction, and monitor that procedural privacy protections are observed.

Finally, we are also legally required to institute a whistleblower's regulation, which may involve us processing personal information.

We contract third parties to provide IT services. These third parties process our information solely for our own internal use, and for no other purpose. We have made agreements with these parties pertaining to the processing of personal information.

We are required to provide your information to investigative agencies, such as the police, in the context of investigation and prevention of criminal activities.

We will not provide your personal information to persons or legal entities outside the European Economic Community unless we are legally obliged to do so.

We will store this information as long as necessary to comply with the legal obligation. The legal obligation may require us to store the information for a statutory period of time, in which case we will store the information for the full term of the statutory period.