privacy policy.

introduction.

At moment., we are committed to protecting your privacy and ensuring the security of your personal data. This privacy policy explains how we collect, use, store, and protect your information when you visit our website or interact with our services.

This policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

data controller information.

The data controller responsible for your personal data is:

what data we collect.

We may collect and process the following types of personal data:

.1 information you provide to us

• Contact Information: When you subscribe to our newsletter or contact us, we collect your email address and any other information you choose to provide.
• Communication Data: Records of correspondence when you contact us via email or through our website.

.2 information collected automatically

• Analytics Data: We use privacy-friendly analytics (Umami) to collect anonymized information about your visit, including pages viewed, time spent on site, and general geographic location (country level).
• Technical Data: Browser type, device information, IP address (anonymized), and referring website.
• Cookies: We use essential cookies for website functionality and analytics cookies to understand how visitors use our site.

how we use your data.

We process your personal data for the following purposes and legal bases under GDPR Article 6:

cookies and analytics.

what are cookies?

Cookies are small text files stored on your device when you visit a website. They help us provide you with a better experience and understand how our website is used.

cookies we use

• Essential Cookies: Required for the website to function properly, including session management and security features.
• Analytics Cookies: We use Umami, a privacy-friendly analytics tool that doesn't collect personal data or use tracking cookies. Umami is GDPR-compliant and doesn't require cookie consent.

analytics provider

We use Umami Analytics (cloud.umami.is) to understand how visitors interact with our website. Umami:

• Does not collect personal information
• Does not use cookies for tracking
• Anonymizes IP addresses
• Does not track users across websites
• Is fully GDPR-compliant

managing cookies

You can control and manage cookies through your browser settings. However, disabling essential cookies may affect the functionality of our website.

third-party services.

We may share your data with trusted third-party service providers who assist us in operating our website and conducting our business. These providers include:

• Analytics Provider: Umami Analytics for website analytics
• Hosting Provider: Our website hosting and infrastructure provider
• Email Service Provider: For managing newsletter subscriptions and communications

All third-party service providers are required to keep your data secure and use it only for the purposes we specify. We ensure that appropriate data processing agreements are in place.

We do not sell, trade, or rent your personal data to third parties for marketing purposes.

international data transfers.

We primarily store and process data within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Other legally recognized transfer mechanisms

your rights under GDPR.

Under the General Data Protection Regulation, you have the following rights regarding your personal data:

data retention.

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

• Newsletter Subscriptions: Until you unsubscribe or request deletion
• Contact Inquiries: Typically 2 years after last contact, unless ongoing business relationship
• Analytics Data: Anonymized data retained for up to 2 years
• Legal Obligations: We may retain certain data longer if required by law

After the retention period expires, we will securely delete or anonymize your personal data.

data security.

We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it against unauthorized access, alteration, disclosure, or destruction.

Our security measures include:

• Encryption of data in transit using SSL/TLS
• Regular security assessments and updates
• Access controls and authentication mechanisms
• Staff training on data protection principles
• Secure data backup procedures

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but will always notify you of any data breach as required by law.

children's privacy.

Our website is not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us so we can delete it.

changes to this privacy policy.

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will post the updated policy on this page and update the "Last updated" date at the top.

For significant changes, we will provide a more prominent notice, such as an email notification to newsletter subscribers or a notice on our homepage.

We encourage you to review this privacy policy periodically to stay informed about how we protect your data.

contact us.

If you have any questions, concerns, or requests regarding this privacy policy or our data practices, please contact us:

supervisory authority.

If you are located in the European Economic Area, you have the right to lodge a complaint with a data protection supervisory authority. In Belgium, the supervisory authority is: