Menu

Menu

Featured

Make it happen with PwC​

2026 Tax Plan

Doing Business in the Netherlands 2025

Menu

Menu

Menu

Menu

Menu

Menu

Featured

M&A Outlook 2026

Retail Monitor 2026

Menu

Menu

Menu

Featured

Make it happen with PwC​

Annual report 2024/2025

Committing to Net Zero by 2030

Loading Results

Privacy statement

1. Introduction

PwC NL is committed to protecting personal data. This Privacy Statement describes why and how we collect and use personal data and provides information about individuals’ rights. It applies to personal data provided to us, both by individuals themselves or by others such as companies and institutions we work with, who provide us, in that context with information about their employees or business relationships. We use personal data provided to us for the purposes described in this privacy statement, or as otherwise stated at the point of collection. 

Download the PDF

Summary of our Privacy Statement:

This Privacy Statement applies to PwC NL and PwC NL websites as described in the Scope section of this statement.

We process personal data in the following contexts:

  • PwC Visitors: We process personal data of visitors to ensure a safe and smooth visit to our offices.
  • PwC Client acceptance: We process personal data as part of our client engagement and acceptance procedures.
  • PwC Online: We process personal data of visitors to our websites and others who get in touch with us to administer and improve our website and communicate with others.
  • PwC Services: We process personal data to provide professional services to our clients (click here for information on our services).
  • PwC Suppliers: We process personal data to receive services of several third parties that support us in providing, running, and managing our services and business.
  • PwC Jobs: We process personal data to be able to conduct our recruitment activities.

Our legal basis for processing personal data varies depending on the specific purpose and context, but generally we rely on one or more of the following:

Consent, legitimate interests, legal obligation, public interest, or contract.

Please refer to the Personal data use chapter below for more information about the personal data we process, the purposes for which we process this personal data and our legal basis for doing so.

As a data subject, you have several privacy rights including the right of access, the right to rectification and to erasure, the right to object and the right to restrict the processing of your personal data. You also have data portability rights, the right to withdraw your consent at any time, and the right to submit a complaint with the supervisory authority. Please refer to Individuals’ rights and how to exercise them for more information.

For questions or complaints, you can contact our Data Protection Office by emailing nl_dataprotection@pwc.com. Please refer to Contact information for additional contact details.

Scope

This Privacy Statement applies exclusively to PwC NL* and the following PwC NL websites:

  • www.pwc.nl
  • www.werkenbijpwc.nl
  • actueel.pwc.nl

The PwC network is a worldwide network of independent member firms that operate locally in countries throughout the world. This Privacy Statement does not apply to websites administered by other PwC entities. We recommend visitors to those other websites to carefully read the corresponding privacy statements. For further details, please see Information on our organisation.

Our website may also link to other third-party sites that are not controlled by PwC NL and which do not operate under PwC NL's privacy practices. When you link to third party sites, PwC NL's privacy practices no longer apply. We encourage you to review each third party site's privacy policy before disclosing any personally identifiable information.

If you are an employee of PwC NL, including partners and the supervisory board, our partners and employee privacy policy applies in addition to this Privacy Statement. Please refer to our partners and employee privacy policy available on our intranet for information on why and how personal data is collected and processed in relation to your role with PwC NL.

*As far as they: (1) are a contracting party for the purpose of providing or receiving services, (2) posted a position for which you are applying, or (3) have a role or relationship with you, "PwC NL" (and "we", "us", or "our") refers to PricewaterhouseCoopers B.V. based in Amsterdam, and also to PricewaterhouseCoopers Accountants N.V., PricewaterhouseCoopers Belastingadviseurs N.V., PricewaterhouseCoopers Advisory N.V., PricewaterhouseCoopers Deelnemingen B.V., PricewaterhouseCoopers Compliance Services B.V., PricewaterhouseCoopers Pensions, Actuarial & Insurance Services B.V. and PricewaterhouseCoopers Academy Netherlands VOF.  

2. Personal data use

Visitors to our offices

We process personal data of visitors to our offices. This involves collecting and processing the following categories of personal data:

  • Contact details: including name, address, phone number and e-mail address.
  • Time and date of entry/exit: we require visitors to our offices to sign in at reception and we keep a record of visitors for 90 days.
  • Appointment details: including time and date of the appointment.
  • License plate: some PwC offices use license plate registration.
  • Internet traffic: we monitor traffic on our guest Wi-Fi-networks using industry standard intrusion detection systems. Information includes source and destination addresses the user is connecting from and to. We cannot inspect any encrypted web pages and therefore do not have access to any information (personal or otherwise) that the user might share via these web pages.
  • CCTV footage: There are signs in our office showing that CCTV is in operation. The images captured are securely stored and only accessed on a need-to-know basis (e.g. to investigate an incident).

Legal basis

  • Consent: We obtain a visitor’s explicit consent if we need to process any sensitive data to facilitate a visit.
  • Legitimate interests: We process visitor personal data to pursue our legitimate interests to ensure the security and safety of our personnel and members of the public, preventing and detecting crime and establishing, exercising and defending legal claims.

Purposes visitor data

Purpose Description Categories of personal data Legal basis
Security and safety To ensure the security of our premises and the safety of everyone on-site through access control systems, CCTV, and network security measures. Contact details; time and date of entry/exit; appointment details; CCTV footage. Legitimate interest.
Visitor management To manage and confirm appointments, identify, and register visitors, coordinate logistical aspects such as parking and facility use, and manage events or meetings. Contact details; time and date of entry/exit; appointment details; license plate. Legitimate interest; consent.
Communication and support To contact you in cases of emergency, respond to inquiries, complaints, or disputes, provide necessary information, and facilitate networking opportunities. Contact details; appointment details. Legitimate interest; consent.
Compliance and reporting To comply with legal requirements and report any incidents that may occur. Contact details; time and date of entry/exit; appointment details; CCTV footage. Legitimate interest.

PwC client acceptance procedures

We may collect and hold personal data as part of our client engagement and acceptance procedures. As part of our client engagement and acceptance, we carry out searches using publicly available sources (such as internet searches and sanctions lists) to identify politically exposed persons and heightened risk individuals and organisations and check that there are no issues that would prevent us from working with a particular client (such as sanctions, criminal convictions (including in respect of company directors), conduct or other reputational issues).

Our customer due diligence (CDD) check involves collecting and processing the following categories of personal data:

  • Contact details: including name, address, phone number and e-mail address.
  • Job details: including employment history, job title and employer’s name.
  • Identification information: including date of birth, nationality, and a copy of a passport.
  • Financial details: including bank account details, credit history, financial statements, salary and other income and investments, benefits, tax status.
  • Compliance information: including records of regulatory compliance checks and criminal records such as sanction lists and newspaper articles or any other publicly accessible media linking a person to criminal, civil or administrative proceedings.

Note that when we perform CDD, we may process sensitive categories of personal data including data about criminal convictions and offences, where legally permitted.

Legal basis

  • Legal obligation: We are required to process certain personal data to comply with legal and regulatory obligations, including anti-money laundering (AML) regulations.
  • Legitimate interests: We process CDD personal data to pursue our legitimate interests to ensure the security of our financial transactions, prevent fraud and manage risks associated with our business activities.

Purposes CDD data  

Purpose Description Categories of personal data Legal basis
Compliance and legal obligations To comply with legal and regulatory obligations, including anti-money laundering (AML) and counter-terrorism financing (CTF) regulations. Contact details; job details; identification information; financial details; compliance information. Legal obligation; legitimate interests.
Risk management and quality control To prevent conflicts of interest, control risks, and assess the quality of our services and operations. Contact details; job details; identification information; financial details; compliance information. Legal obligation; legitimate interests.
Customer relationship management To maintain a financial administration and for other essential administrative support services. Contact details; job details; financial details. Legal obligation;
legitimate interests.

PwC online

We process personal data of visitors to our in-scope websites Scope and others who get in touch with us with a question, complaint, comment or feedback. This involves collecting and processing the following categories of personal data:

  • Information you provide: information provided to us when people visit our websites, register for updates, comment on our social media posts, or send an email through our websites. Such as name, title, company address, email address, telephone number, inquiry content and content of comments.
  • Information we generate: we may capture limited personal data about a website visit automatically via the use of cookies and analytics tools on our website. Please refer to Cookies for more information about our use of cookies.

We ask that you do not provide us with any sensitive data when using our website.

Please note that information you share on public-facing blogs, forums, crowdsourcing or other applications and services implemented on our PwC NL website, may be accessible to other users of these applications and services.

Legal basis

  • Consent: In some cases, we obtain a visitor’s explicit consent. For example, when website visitors subscribe to our newsletter. Should visitors choose to unsubscribe from mailing lists or any registrations, we will provide instructions on the appropriate webpage, in our communication to the individual, or the individual may contact us by email to nl_dataprotection@pwc.com.
  • Legitimate interests: We process personal data to pursue our legitimate interests, including to ensure our websites operate smoothly and are secure, to improve our user experience by understanding how our visitors interact with our websites, to measure the effectiveness of our marketing campaigns and conduct sentiment analyses of responses to our communications, and to respond to inquiries.

Purposes PwC online data  

Purpose Description Categories of personal data Legal basis
Administering and managing our website To enable the safe access to and navigation of our (careers) websites and monitor website performance, including to confirm and authenticate your identity and prevent unauthorised access to restricted areas of the site or premium content. Information we generate: IP address, browser type and version, device type and operating system, log files, user preferences and settings, error logs. Legitimate interest.
Marketing and communications To manage newsletter subscriptions, send (requested) materials, provide (prospective) clients with information that we think will be of interest about us and our services (such as industry updates and insights, other services that may be relevant and invitations to events), and to ask for further information. Information you provide to us: Client business contact details, inquiry details. Consent; legitimate interest.
Analytics and website improvement To conduct data analysis and benchmarking to develop our businesses and services and improve the functionality of our websites.

Information we generate: Website usage data, anonymized IP address, browser type and version, device type and operating system, aggregated website visitor data

Information you provide to us: User feedback and comments to PwC related social media posts.

 Consent; legitimate interest.

PwC services

Given the diversity of the services we provide to individual clients, we process categories of personal information, as appropriate for the services we are providing. Generally, our policy is to collect only the personal information necessary for agreed purposes, and we ask our clients only to share personal information when it is needed for those purposes.

We collect personal data from our clients or from a third party acting on the instructions of the relevant client. When we need to process personal information relating to individuals other than our clients to provide our services, we ask our clients to provide the necessary information to other data subjects concerned, such as family members, regarding its use.

As appropriate for the services we are providing, we collect and process the following categories of personal data:

  • Contact details: including name, date of birth, gender, country of residence, employer name and address, contact title, phone number and e-mail address.
  • Family details: including marital status, dependents, and other household information
  • Job details: including business activities, role, grade, experience and performance information, and other information about management and employees.
  • Customer relationship management (CRM) including data from PwC email (sender name, recipient name, date and time) and calendar (organiser name, participant name, date and time of event) systems concerning interactions between PwC users and contacts or third parties.
  • Financial details: including salary and payroll details and other financial-related details such as income, investments and other financial interests, benefits, tax status.
  • Special categories of data: for certain services or activities, and when permitted by law (e.g. under a public interest condition or with an individual’s explicit consent), we may process special categories of personal data, such as information about race or ethnic origin; political opinions; religious or philosophical beliefs; trade union membership; health; genetic data; biometric data; sexual life or sexual orientation.
  • Criminal data: for certain services or activities, and when permitted by law, we may process criminal data. For example, in the case of a person-oriented or background investigation (including an investigation into fraud or the circumstances of a certain event, or the functioning, action or omission of action by a (legal) person. PwC has received a permit from the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, AP) for this purpose.

We may provide a separate privacy statement in connection with certain services provided to those individuals, and where we do so, such privacy statement will apply to our processing of personal information in the performance of those services.

Legal basis

  • Consent: We obtain consent of data subjects to process their special category data if we cannot rely on a relevant public interest condition.
  • Fulfilment of an agreement: Some of the processing of personal data is necessary for the performance of an agreement with the data subject, or to take steps at the request of the data subject prior to entering into an agreement. This is the case when we process data to perform the engagement letter (contract) to which our personal client (the data subject) is a party.
  • Legal obligation: As with any provider of professional services, we are subject to legal, regulatory, and professional obligations. In some cases, we have a legal obligation to provide services in a certain way, such as a statutory audit. We also need to keep certain records to demonstrate that our services are provided in compliance with those obligations and those records may contain personal data.
  • Legitimate interests: Some of the processing is necessary to pursue our legitimate interests to:
    • provide professional services (and the legitimate interest of our client in receiving professional services as part of running their organisation);
    • administer, manage and develop our business and services;
    • manage and maintain our relationship with (prospective) clients;
    • perform analytics to assess and improve the quality of our business and services;
    • ensure network and information security to protect our information and that of our clients;
    • comply with any requirement of law, regulation or a professional body of which we are a member.

Purposes PwC services data  

Purpose Description Categories of personal data Legal basis
Providing the professional services To provide professional services to our clients. As appropriate for the professional service we are providing contact details; family details; job details; CRM data; financial data; special categories of data; criminal data. Consent; fulfilment of an agreement; legal obligation; legitimate interests.
Administering, managing and developing our business and services Develop our businesses and services (such as identifying client needs and improvements in service delivery), to maintain and use IT systems, to conduct surveys (e.g. benchmarking) or quizzes, to host or facilitate the hosting of events, and to administer and manage our website and systems and applications.  Contact details; job details CRM data; financial data. Consent; fulfilment of an agreement; legitimate interests.
Manage relationships To manage and maintain relationships with (prospective) clients and analyse and evaluate the strength of interactions with contacts via our CRM system, based on aspects including interaction frequency, duration, recentness and response time. Contact details; job details; CRM data. Fulfilment of an agreement; legitimate interests; consent.
Perform analytics Where agreed with our clients to conduct analyses to better understand a particular issue, industry or sector, provide insights back to our clients, to improve our business, service delivery and offerings and to develop new PwC technologies. To the extent that the information that we receive while providing professional services contains personal data, we will de-identify the data prior to using the information for these purposes. Legitimate interest.
Security, quality, and risk management activities To monitor network and information security, for example by performing automated scans to identify harmful emails like phishing emails, and to manage risks to our business and monitor the quality of our services by detecting, investigating and resolving security threats. We have policies and procedures in place to monitor the quality of our services and manage risks in relation to client engagements. Contact details and CRM data, including automated scans to identify harmful emails and personal data stored on the relevant client file]. Fulfilment of an agreement; legal obligation; legitimate interests.
Complying with any requirement of law, regulation, or a professional body of which we are a member To fulfil legal, regulatory and professional obligations as a professional services provider. Specifically, subject to these obligations and as described in the Retention section, we need to keep certain records to demonstrate that our services are provided in compliance with those obligations and those records may contain personal data. Contact details, CRM data, financial data. Legal obligation; legitimate interests.

PwC suppliers

Our use of suppliers involves collecting and processing the following categories of personal data of our suppliers (including subcontractors and individuals associated with our suppliers and subcontractors):

  • Business contact details: including name, employer name and address, contact title, phone number and e-mail address.
  • Communications: Supplier communications with PwC NL.

Legal basis

  • Fulfilment of an agreement: Some of the processing of personal data is necessary for the performance of an agreement with the data subject, or to take steps at the request of the data subject prior to entering into an agreement. This is the case when we process data to manage our relationship with an individual supplier who directly signed the supplier agreement with us.
  • Legal obligation: As with any provider of professional services, we are subject to legal, regulatory, and professional obligations. We need to keep certain records to demonstrate that our services are provided in compliance with those obligations and those records may contain personal data.
  • Legitimate interests: The processing is necessary to pursue our legitimate interests to receive supplier services, maintain supplier relationships, administering and developing our business and services, provide professional services to our clients, and maintaining and using IT systems.

Purposes supplier data  

Purpose Description Categories of personal data Legal basis
Ordering and receiving services To receive services from our suppliers. Business contact details; communications. Fulfilment of agreement; legitimate interest.
Internal management activities To administer, manage and develop our business and services and maintain and use IT systems. Business contact details. Fulfilment of agreement; legal obligation; legitimate interest.
Provide professional services to our clients To deliver professional services to our clients (for example, where our supplier is providing people to work with us as part of a PwC NL team providing professional services to our clients). Business contact details. Fulfilment of agreement; legitimate interest.
Maintaining contacts Administering and managing our relationship with suppliers and the relevant individuals. Business contact details; communications. Fulfilment of agreement; legitimate interest.
Disputes and audits Handling of disputes and exercising audits. Business contact details; communications. Legal obligation; legitimate interest.

PwC jobs/ Recruitment

We process personal data in connection with our recruitment activities. This involves the following categories of personal data:

  • Contact details: including name, gender, address, phone number and e-mail address.
  • CV details: including experience, academic and professional qualifications, areas of interest and extracurricular activities such as study association.
  • References: including references, referrer information and verification information about previous work experience and qualifications.
  • Interview details: Information obtained from job interviews and assessments.
  • Offer details: offer details in case of a successful application.
  • Pre-employment screening (PES-check): Including identification documents and, depending on the role, a full background and (criminal) records check. We may process sensitive data about criminal records as part of this background check.
  • Log-in credentials: log-in details for the recruitment application system.

*Note that you do not have to provide a BSN or social security number when you apply for a job.

Legal basis

  • Legal obligation: As with any provider of professional services, we are subject to legal, regulatory, and professional obligations. We need to process some personal data of applicants to comply with our legal obligation to ensure an individual is eligible to work in the Netherlands and to comply with government and public sector clearance requirements.
  • Legitimate interests: The processing is necessary for the purposes of our legitimate interests to attract and hire new talent, process and manage job applications and perform background checks. We have ensured that our legitimate interests do not override your rights and freedoms.
  • Consent: We obtain your consent when we process your personal data to conduct e.g. certain statistical analyses.

Purposes PwC jobs  

Purpose Description Categories of personal data Legal basis
Marketing and communication To promote career opportunities at PwC NL and communicate with potential candidates. This includes participating in events, marketing activities, and using recruiters to reach out to talent. Contact details; CV details. Legitimate interests.
Process and manage applications To identify, attract, evaluate, and hire talent. This includes sourcing candidates from our existing talent pool and other publicly available sources, managing applications and conducting interviews and assessments. Contact details; CV details; references; interview details; offer details; log-in credentials. Fulfilment of an agreement; legal obligation; legitimate interests.
Background checks To conduct appropriate (PES) background checks to ensure an individual is eligible to work in the Netherlands and to comply with clearance requirements. Pre-employment screening information. Legal obligation; fulfilment of an agreement.
Analytics To conduct statistical analyses and create reports, including for example conducting a demographic analysis of candidates, reports on our recruitment activities, and analysis of candidate sourcing channels. Contact details. Consent; legitimate interest.

3. How we obtain your information

We obtain your personal data in various ways:

  • Information you provide: Some personal data is obtained directly from you. This includes information you provide when you contact us through our website, apply for a job, or send us inquiries.
  • Information we obtain from third parties: We can also obtain personal data from other individuals or external parties. This includes other PwC member firms, our clients or suppliers that you work for, third parties acting on the instructions of the relevant client, for example, but not limited to: holders of public registers, credit information agencies.
  • Information we generate: We may capture limited personal data about a website visit automatically, by cookies and analytics tools. Please refer to Cookies for more information about our use of cookies.

4. Data sharing and transfers

We will only share personal data with others when we are legally permitted to do so. When we share data with others, we put contractual arrangements and security mechanisms in place as appropriate to protect the data and to comply with our data protection, confidentiality, and security standards.

We are part of a global network of member firms and, like other professional service providers, we use third parties located in other countries to help us run our business. As a result, personal data may be transferred outside the countries where we and our clients are located. This includes countries outside the European Economic Area (EEA). We have taken steps to ensure all personal data is provided with adequate protection and that all transfers of personal data outside the EEA are done lawfully.

We take the protection of all data we hold seriously. That is why we have taken appropriate technical and organizational measures to guarantee a risk-adjusted security level. We adhere to internationally recognised security standards and our information security management system relating to client confidential data is independently certified as complying with the requirements of ISO/IEC 27001:2022. We have a framework of policies, procedures and training in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the data we hold secure.

Where we transfer personal data outside of the EEA to a country not determined by the European Commission as providing an adequate level of protection for personal data, the transfers will be under an agreement which covers the EEA requirements for the transfer of personal data outside the EEA, such as by the European Commission approved standard contractual clauses. If you have any questions about the way in which we transfer your personal data to countries outside the EEA and on which basis, you can contact our Data Protection Office by emailing nl_dataprotection@pwc.com.

Personal data held by us may be transferred to:
  • Other PwC-member firms
    • For details of our PwC-member firm locations, please click here.
    • PwC NL may share personal data with other PwC-member firms where necessary for administrative purposes and to provide professional services to our clients (e.g. when providing services involving advice from PwC-member firms in different territories).
    • If you are an applicant, we may share your personal data with PwC member firms if you apply for a position that involves working with other PwC member firms, or if we assist these firms with their recruitment and employment activities. For example, if they are recruiting for a role that matches your interests and experience.
    • PwC NL stores personal data on our or other PwC-member firm servers.
    • Our business contacts are visible to and used by other PwC-member firms to learn more about a contact, client or opportunity they have an interest in (please see the Business contacts section of this Privacy Statement for more information about our processing of this type of data).
  • Third party organisations that provide applications/functionality, data processing or IT services to us
    • We use third parties to support us in providing our services, to help provide, run, and manage our internal IT systems, and to support our recruitment process. Examples of these services include cloud-based software as a service, identity management, website hosting and management, data analysis, data backup, security and storage services.
    • Some of our third-party suppliers operate globally, and as a result, personal data may be processed outside the European Economic Area (EEA) by these companies.
  • Third party organisations that otherwise assist us in providing goods, or information
    • On certain client engagements, we may engage or otherwise work with other providers to help us provide professional services to our clients.
    • Some of these organisations operate globally, and as a result, personal data may be processed outside the European Economic Area (EEA) by these organisations.
  • Our clients
    • Where we need to process personal data to provide professional services to our clients, we may share personal data in our deliverables (such as the reports we create). Some of our clients operate globally, and as a result, personal data may be processed outside the European Economic Area (EEA) by our clients.
  • Auditors, insurers and professional advisers
    • We may provide personal data to our external auditor(s) to the extent necessary for the audit(s). We have business insurance policies in place, and we may need to share personal data with the insurers. We use other professional advisors, such as law firms, where necessary to establish, exercise or defend our legal rights and obtain advice in connection with the running of our business. Personal data may be shared with these advisors, if necessary, in connection with the products and services that we have requested to deliver.
  • Law enforcement or other government and regulatory agencies or to other third parties as required by, and in accordance with, applicable law or regulations.
    • For example, we are required to keep records of our recruitment processes when we offer a job to a worker from outside the EU and apply for a work permit or visa on their behalf. The Ministry of the Interior has authority to access this personal data to check that we are complying with applicable law and regulation. We will only disclose personal data to such a request if this is permitted based on applicable laws and regulations.
    • We may disclose CCTV images to law enforcement bodies as requested and permitted by data protection law.

5. Retention

We only retain personal data for as long as necessary for the purposes described in chapter Personal data use. We determine our specific retention periods based on the nature of the personal data, the purposes for which we process this data, the data subjects that the personal data relates to, and their reasonable expectations.

For example:

  • PwC NL generally removes data on job applicants after a maximum period of 4 weeks after the end of the selection procedure. If an applicant decides to join our talent pool, we retain application data for a period of 1 year. If an application is successful, we will retain relevant personal data in the application file as part of your employee record.
  • CCTV recordings are typically automatically overwritten after a short period of time (4 weeks) unless an issue is identified that requires investigation (such as a theft or other incident).
  • We retain business contact data for the duration of our relationship with our clients, suppliers, or other business contacts. In the absence of specific legal, regulatory, or contractual requirements, our baseline retention period for records and other documentary evidence created in the provision of services is 7 years.
  • We may process personal data for longer periods where extended retention periods are required by law or regulation and to establish, exercise or defend our legal rights.

6. Individuals’ rights and how to exercise them

The laws on the protection of personal data give you the following rights about your personal data:

  • Right of access: You have the right to obtain a confirmation as to whether PwC NL processes personal data about you or not, and, if this is the case, to receive a copy of your personal data and certain other information about how and why we process your personal data.
  • Right to rectification and to erasure: You can request for your personal data to be amended or rectified where it is inaccurate (for example, if you change your name or address) and to have incomplete personal data completed. You can also ask us to delete your personal data.
  • Right to object and right to restrict: In certain cases, you have the right to object to the processing or to ask for a restriction of the processing.
  • Right to data portability: You have a right to request PwC NL to send you your personal data in a machine-readable form so that you can transmit those data to another organisation (or ask us to transmit the data directly if technically feasible).
  • Right to withdraw consent: If we process personal data based on your consent, you have a right to withdraw your consent at any time. To stop receiving an email from a PwC NL marketing list, please click on the unsubscribe link in the relevant email.
  • Complaints: We hope that you won’t ever need to, but if you want to complain about our use of personal data, please send an email or letter with the details of your complaint using our Contact information set out below. You can contact our Data Protection Officer directly via nl_dataprotection@pwc.com. You also have the right to lodge a complaint with the supervisory authority in your country of residence, place of work or the country in which an alleged infringement of data protection law has occurred within the EU. The Autoriteit Persoonsgegevens (“AP”) is the Dutch data protection regulator/supervisory authority. For further information on your rights and how to complain to the AP, please refer to the website of the AP.
  • How to exercise your rights: If you want to exercise your rights, please send us a request using the Contactform General Data Protection Regulation (GDPR) .

7. Cookies

We use small text files called cookies that are installed on your hard drive so that you can properly access our website. Most websites that you visit use cookies. If you do not want cookies placed on your hard drive, most browsers offer the option to exclude them. If you use this option, you may not be able to use the registration process on this website and you may possibly be unable to use certain functions on this website. If you allow our website to place cookies on your hard drive, you can remove these at the end of your visit to our website.

Types of cookies
  • Session cookies: these cookies are placed on your computer’s hard drive and remain there during your visit to the website. These cookies are erased when you leave the website.
  • Persistent cookies: these cookies are placed on your computer’s hard drive and remain there during your visit to the website, but also after your visit to the website.
  • Performance cookies: these cookies collect information about your use of the website, such as the web pages you have visited and any error messages; these cookies do not collect information that can be traced back to an individual – the information collected from all users is merged and it is anonymous. This type of cookie is used to improve the functioning of the website.
  • Functionality cookies: these enable the website to record the choices you have made on the website or ensure that special options are available (such as allow you to provide comments on the website or via a blog).

Before you can use the websites to which this privacy statement applies, you will be informed by means of a pop-up and if required your permission will be requested for the use of cookies on the website. The consent can be changed or withdrawn at any time, on the cookie section of this website. There you can also find an overview of cookies that are used on the relevant website(s).

The PwC NL website may contain functionality [of third parties] to enable visitors to share information via social media. These social media applications may collect and use information about your usage of the PwC NL website [via the use of cookies or other technologies]. Please note that these third parties may process your data for their own purposes, for example to show targeted advertisements to you. To the extent these parties process your personal data for their own purposes, their own privacy and cookie policies apply.  

8. Contact information

If you have any questions about this Privacy Statement or how and why we process personal data, please contact us at:

  • Email: nl_dataprotection@pwc.com
  • or by regular mail:
    PricewaterhouseCoopers B.V.
    f.a.o. Data Protection Office (Westgate II 10G)
    Postbus 90351
    1066 JR AMSTERDAM
    Nederland

9. Changes to this Privacy Statement

We recognise that transparency is an ongoing responsibility, so we keep this Privacy Statement under regular review. If we want to make any substantial changes to the way we process personal data, for example, if we intend to collect new types of personal data or process the data for new purposes, we will give notice in advance where we can, including here on our website.'

This Privacy Statement was last updated in May 2026 

Contact us

Data Protection Office

OGC, PwC Netherlands

Email
Follow us

© 2015 - 2026 PwC. PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.