Privacy statement

The privacy statement below applies to all website visits, transactions and agreements regarding Villa Meddo, Hilgeloweg 2 14, 7140 BG in Winterswijk Meddo, (hereinafter referred to as VM)

Basis for processing personal data

VM processes your ordinary personal data according to the legal bases of the GDPR. On the basis of this regulation, we can rely on (one of) the following grounds:

Consent of the person concerned (newsletters, agreements)
Necessity for the performance of an agreement
Necessary for compliance with our legal obligations
Representing legitimate interests (processing agreement/personnel administration)
Purposes of Processing

VM processes your personal data for:

The execution of agreements, transactions and services
Relationship management
Product and service development
Administrative actions
Entering into one or more commitments with VM or one of its business units, instructing VM or one of its business units to carry out one or more of the above actions implies providing (your) personal data.

Save data

VM processes your data in a VM database. This is secured according to European standards.

By providing (your) personal data to us for these purposes, you give permission to process it for those purposes. We will keep your data for as long as necessary for the processing of our agreement and then according to legal retention periods in our archives. We will not store your data longer than necessary.

When visiting our websites, no personal data will be collected by us without your permission. We do record data that does not contain personal information. This is to gain insight into the way in which our websites are used (cookies).

Provision to third parties

Your personal data will not be provided to third parties without your explicit consent, provided this is necessary to execute a relevant agreement, provide a specific service or when required by law. Your personal data will never be provided to third parties outside the EU. The required processing agreements have been concluded with the "third parties" that VM uses to provide its services in accordance with the GDPR.

Data security

VM uses careful security procedures to protect the processed data, including to prevent unauthorized persons from gaining unintentional access to this data.

VM uses an internet company for its websites, this company has secured the servers in accordance with the applicable European security standards.


VM uses cookies on its websites:

In order to design the websites as well as possible according to the wishes of the users and to improve the service, we collect and analyze information related to the use of these websites, such as domain name, the number of hits, which pages have been visited, previous visits. sites and the duration of a user session. We analyze this data for trends and statistics. This data can be collected via cookies. The cookies consist of a standard internet technology that does not identify persons and only recognize computers. You can set your computer so that no cookies are accepted. The cookies used do not contain any personal data and are only used to make it easy for you on the VM websites.

Links to other websites

Our internet pages contain links to other websites. VM is not responsible for the privacy policy of websites that are not covered by VM. In this situation, we refer you to the privacy statement of the relevant website.

Data breach notification obligation

In the event of a data breach, VM will immediately report this to our internet agency, which will further report its data to the Dutch Data Protection Authority in accordance with the GDPR. A data leak is a breach of the security of personal data (hack). All those involved will also be informed about the data leak and an urgent assessment will be made of the risk involved in the resulting data leak.

Right Access, rectification, deletion and objection

You may ask VM to inspect the data stored about you. You can also request VM to change, supplement or delete this data. You can do this by contacting us at

After receiving your request, it will be checked against legal standards before deleting the data. You can object to the processing of your data or you can withdraw your consent to process data. After objection, VM will check whether your objection does not jeopardize the processing of the purposes.

If you have any complaints about the processing of personal data, you can address your complaint


VM reserves the right to make changes to this privacy statement, for example due to new legal developments or online services. The most recent privacy statement can be found on our website