Terms & Conditions and Privacy Policy

Terms & Conditions and Privacy Policy

Terms & Conditions

The Rotterdam City Card (hereafter: the ‘City Card) is a product provided by Stichting Rotterdam Partners . The purpose of these General Terms & Conditions is to set out the contractual relationship between you, the City Card holder, and Rotterdam Partners. By subscribing to and/or using the City Card, you agree to be bound by these General Terms & Conditions (hereafter: the ‘Terms & Conditions’).


Using the City Card

Your City Card will be activated when it is used for the first time. Once activated, it is valid 6 months.

The City Card is strictly personal. This means that once you have activated your City Card, it cannot be transferred to another person. It is also not permitted to share the City Card with another person or persons. The promotions and discounts offered in association with the City Card cannot be combined with other promotions and/or discounts. Each voucher can only be used once.


Museums and attractions

The City Card grants you access at a discounted rate to the affiliated museums and attractions in Rotterdam for the period of validity of your City Card. The City Card can only be used once at each museum or attraction. For some museums and attractions you must book a time slot online in advance. You are responsible for booking a time slot yourself. The website and City Card inform you about the museums and attractions for which you need to book a time slot.

Affiliated museums and attractions may make a surcharge for special exhibitions. If a surcharge is applicable, this information will be clearly communicated in advance via our website and the City Card. Any such surcharges will not be reimbursed by Rotterdam Partners.


Privacy Statement


Stichting Rotterdam Partners

This privacy statement has been prepared by Stichting Rotterdam Partners. Our contact details are:

Address: Korte Hoogstraat 31, Rotterdam (3011GK)

Phone: 010-7900140

Email: info@rotterdampartners.nl

Chamber of Commerce (KvK): 24313403


Data Controller

We determine the purposes and means for which, and on the basis of which, personal data is used within our business activities. Therefore, we are considered the data controller within the meaning of the General Data Protection Regulation (GDPR).


Data Protection Officer

We have appointed an internal data protection officer who is involved in all matters related to the protection of personal data. The contact details of the data protection officer are:

Name: Mrs. J. Pietersma

Company: Stichting Rotterdam Partners

Visiting Address: Korte Hoogstraat 31, Rotterdam (3011GK)

Mailing Address: PO Box 23514, Rotterdam (3001 KM)

Phone (general): 010-7900140

Email (direct): privacy@rotterdampartners.nl


Information Duty

We have the obligation to inform individuals whose personal data we process about the how and why of those processing activities. We fulfill this obligation through this privacy statement.



This privacy statement was drafted in February 2024. We may amend this statement in the future. If we make changes to this privacy statement, the amended privacy statement will be posted on our corporate website (www.rotterdampartners.nl) as well as on all Rotterdam Partners affiliated websites, indicating the date on which the changes take effect. If there are changes that may significantly affect you personally, we will do our best to inform you directly.


What Personal Data Do We Process and Why?

These are the data we ask from you, receive, or that you can add yourself if you wish:

First and last name, email address, country of origin. We use this information to register your City Card and choose the language of the product.

Travel companions and age group: we use this to determine eligibility for a different type of access card when ordering admission tickets, such as a child ticket or a group ticket.

Visits: if you have created an account in My environment, we link the locations where your City Card has been scanned during the validity check to the card for visit registration. We register these visits to ensure that the location pays a fee to the charity for your visit.


On What Basis Can We Process Your Personal Data?

ROTTERDAM PARTNERS must be able to base the use of your personal data on legal grounds. One of these is that we need this personal data to enter into an agreement with you and to perform it. This applies when creating an account for the City Card. This also applies if you use offers or want to participate in events.

Additionally, we may use your personal data if we have a legitimate interest in doing so. For example, we analyze your data to improve our services. Based on our legitimate marketing interest, we create profiles so that we can personalize our offers on our website. We do this by combining personal data from different sources, such as your data from the secure environment of My City Card, your browsing behavior on our website, clicking on favorites, your bookings, reservations, and information requests. We do not process sensitive data such as location data. Moreover, you can always object to this profiling based on our legitimate interest (see “Objection”).

The last basis we can rely on is consent. For example, we only send you our electronic newsletter if you have expressly indicated that you want to receive it.

Finally, not all the data we process can be traced back to you. For research into visits in the city over a certain period, for example, we use anonymized data.


How Long Do We Keep Your Personal Data?

We delete your data 6 months after the last scan is performed.

Exceptions to this are the data that we must keep longer because the law obliges us to do so. For example, fiscal laws and regulations oblige us to keep certain financial data for 7 years.


With Whom Do We Share Your Personal Data?

We will not give your personal data to third parties without your permission, unless we are legally obliged to do so. There are a few exceptions.

For example, an external party is involved in the activities of Rotterdam Partners, which is why it plays a role in the processing of personal data. These are the so-called “processors.” A processing agreement has been concluded with these processors, specifying exactly which personal data may be processed for which purpose. For the individuals whose personal data is processed (the “data subjects”), Rotterdam Partners always serves as the point of contact regarding the processing of personal data.

Additionally, it may be that you have given us permission to share your browsing behavior and preferences with third parties. In that case, it is possible that we provide you with information or offers when you visit a third-party website. We only share your IP address in this case.


What Do We Do to Secure Your Personal Data?

To minimize the risk of misuse and unauthorized access to your personal data, we take appropriate security measures. For example, we ensure that only necessary persons have access to the data, that access to the data is protected, and that we regularly test our security measures.

The information on My City Card is not directly accessible, neither for employees at Rotterdam Partners nor for attractions where your City Card is used. The data of your City Card is not publicly visible, only for you within your profile, meaning the secure environment of My City Card after you have logged in.

Testing typically takes place once every two years, unless significant adjustments or developments necessitate an earlier or different test.


Processing Based on Your Consent

If we process your personal data based on your explicit consent (legal basis), you have the right to withdraw this consent at any time. If you wish to withdraw your consent, we will no longer process your personal data for the purpose for which you withdraw your consent. However, withdrawing your consent does not affect the lawfulness of the processing of your personal data prior to the withdrawal of your consent.


Automated Decision-Making

We do not use fully automated decision-making processes concerning you.


Exercising Your Rights

Under the laws and regulations concerning the protection of personal data, you have been granted certain rights. For example, you have the right to access the personal data we process about you. Additionally, you can request to adjust, delete, or restrict the use of your personal data by us.

If we process your personal data based on your consent, you are also entitled to withdraw your consent. In that case, we must stop processing your personal data. It is also possible to object to the processing of your personal data.

You can exercise any of your rights by sending an email to privacy@rotterdampartners.nl. Upon receipt of your email, we will send you a confirmation of receipt, including when we will inform you at the latest about the outcome of your request. This does not happen automatically, so please be aware of this.

Submitting a request is free. However, if your request is clearly unfounded or excessive, we may decide not to process your request and/or ask you for a fee of €25 per request.

For more information about your rights regarding your personal data, we refer you to the website of the Dutch Data Protection Authority. Sample letters for exercising your rights are also published on this website.