Privacy without the fine print. GDPR-compliant, written for humans.

We are an IT company specialising in consultancy, system administration, and software development. We are the data controller within the meaning of the General Data Protection Regulation (GDPR) for the personal data we process.

If you have any questions about this privacy statement or the way we handle your data, please contact us via the contact page.

We process the following categories of personal data:

• Name and contact details: first name, last name, business email address, phone number, and company name.
• Invoice and payment details: business address, Chamber of Commerce number, VAT number, and payment information necessary for invoicing.
• Technical data: IP addresses, log files from systems we manage, timestamps, and other technical metadata arising from our services.
• Website behaviour: page visits, click behaviour, and session data recorded via cookies and similar technologies on our website.

We process personal data solely for the following purposes and on the basis of the corresponding legal ground:

• Performance of the agreement: to deliver our services, handle assignments, and communicate with you as a client or contact person (legal basis: performance of contract).
• Invoicing and administration: to prepare and send invoices and maintain our financial records (legal basis: legal obligation and performance of contract).
• Technical management: to monitor, secure, and optimise systems we manage on behalf of clients (legal basis: performance of contract and legitimate interest).
• Website improvement: to analyse website traffic and improve the user experience (legal basis: legitimate interest).
• Legal obligations: when laws or regulations require us to process or retain data.

Our website uses cookies and similar technologies to ensure the proper functioning of the website and to analyse its use. We distinguish between the following categories:

• Functional cookies: strictly necessary for the correct operation of the website, such as session cookies. No consent is required for these cookies.
• Analytical cookies: we may collect anonymised or pseudonymised analytics data to understand and improve website usage. Where personal data is processed, your consent will be requested in advance.

You can manage cookies via your browser settings. Please note that disabling certain cookies may affect the functionality of the website.

We work with trusted third parties (processors) for parts of our service delivery. Data processing agreements compliant with the GDPR have been concluded with all processors. We use, among others:

• Microsoft (Azure / Microsoft 365): for cloud storage, email, collaboration tools, and infrastructure. Microsoft is certified under the EU-US Data Privacy Framework and implements appropriate safeguards for transfers outside the EEA.
• Accounting software (e.g. Exact or Moneybird): for processing invoice and payment data for our financial administration. These parties are established in the EEA or offer appropriate safeguards for data transfers.

We do not share personal data with other third parties unless this is necessary for the performance of the agreement or where we are legally obliged to do so.

In principle, we process personal data within the European Economic Area (EEA). Where data is transferred to parties outside the EEA, we ensure this only takes place on the basis of appropriate safeguards, such as Standard Contractual Clauses (SCCs) established by the European Commission, or on the basis of an adequacy decision.

We do not retain personal data for longer than necessary for the purposes for which it was collected, unless a longer retention period is required by law. The following periods apply as a baseline:

• Client and contract data: for the duration of the agreement and up to seven years thereafter (statutory tax retention obligation).
• Invoice and payment data: seven years, in accordance with the statutory tax retention obligation.
• Technical log data: a maximum of twelve months, unless longer retention is necessary for security investigations or legal obligations.
• Website behaviour data: a maximum of thirteen months after the cookie is placed or the session is recorded.

Under the GDPR, you have the following rights regarding your personal data:

• Right of access: you can request which data we process about you.
• Right to rectification: you can have inaccurate or incomplete data corrected.
• Right to erasure: you can request deletion of your data, unless we have a legal obligation to retain it.
• Right to restriction of processing: you can have the processing of your data restricted in certain situations.
• Right to data portability: you can receive your data in a structured, commonly used format.
• Right to object: you can object to processing based on legitimate interest.
• Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing prior to withdrawal.

You can submit your request via the contact page. We will respond within four weeks. If you believe we are not respecting your rights properly, you have the right to lodge a complaint with the Dutch Data Protection Authority (www.autoriteitpersoonsgegevens.nl).

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or disclosure. This includes encryption of data in transit (TLS/HTTPS), access security with multi-factor authentication, regular backups, and security audits.

In the event of a data breach that is likely to result in a high risk to your rights and freedoms, we will notify you as soon as possible, in accordance with our statutory notification obligation.

We reserve the right to amend this privacy statement. The most current version is always available on our website. For significant changes, active clients will be notified by email. The date of the last amendment is shown at the top of this page.

Do you have questions, comments, or would you like to exercise your rights? Please contact us via the contact page. We are happy to help.