Privacy Policy
How we handle your personal data
Last updated: February 2026
1. Introduction
AppMakelaar B.V., registered in Rotterdam, the Netherlands (Chamber of Commerce: 12345678), is responsible for the processing of personal data as set out in this privacy statement. We respect your privacy and ensure that your personal data is treated confidentially in accordance with the General Data Protection Regulation (GDPR).
2. Data We Collect
We collect personal data that you provide to us through contact forms, email, or phone, including: name, company name, email address, phone number, and project-related information. Additionally, we automatically collect technical data such as IP address, browser type, and browsing behavior through cookies and similar technologies.
3. Purpose of Data Processing
We use your data for: handling your inquiry or assignment, providing our services, invoicing and accounting, improving our website and services, and complying with legal obligations. We process your data exclusively on the basis of legitimate interest, performance of a contract, or your explicit consent.
4. Retention Period
We retain your personal data no longer than strictly necessary for the purpose for which it was collected. Financial data is retained for 7 years in accordance with legal requirements. Project-related data is deleted 2 years after project completion, unless otherwise agreed.
5. Sharing with Third Parties
We share your data with third parties only when necessary for the execution of our services, such as with our technology partners and hosting providers. We enter into data processing agreements with these parties. We never sell your data to third parties.
6. Security & International Transfers
We take appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse. This includes encrypted data transfer (TLS/SSL), access control, and regular security audits. Your business data as a client is stored and processed exclusively within the European Union. However, certain AI-powered features — specifically the website chatbot — may process conversation data using AI infrastructure located outside the EU (see Section 11 for details). Where such transfers occur, we rely on Standard Contractual Clauses (SCCs) and other appropriate safeguards in accordance with GDPR Articles 44–49.
7. Your Rights
You have the right to access, rectify, delete, restrict processing, data portability, and object to the processing of your personal data. You can submit a request to privacy@appmakelaar.nl. We will respond within 30 days. If you have a complaint, you can contact the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).
8. Cookies
Our website uses functional cookies that are necessary for the proper functioning of the site. Analytical cookies are only placed with your consent. You can adjust your cookie preferences at any time through your browser settings.
9. Contact
For questions about this privacy policy, please contact: AppMakelaar B.V., Wijnhaven 107, 3011 WN Rotterdam, The Netherlands. Email: privacy@appmakelaar.nl. Phone: +31 (0)10 123 4567.
10. AI-Powered Services
AppMakelaar offers AI-powered services, including our AI Workforce and the AI chatbot on our website. These services process data you provide to us to assist you. For the AI Workforce: processing is based on the contract we enter into with you (Article 6(1)(b) GDPR). Your business data is used exclusively for service delivery to your organization and is not used to train AI models. For the chatbot: processing is based on your consent (Article 6(1)(a) GDPR). Chat conversations are retained for 90 days unless you request earlier deletion. The chatbot is AI-powered; no automated decisions with legal effects are made (Article 22 GDPR). You have the right to request a transcript of your chat conversation or to request deletion at any time.
11. EU Hosting & Data Transfers
All AppMakelaar client business data is stored within data centers in the European Union. For regulated industries, we offer dedicated single-tenant deployments and on-premise options. Important: the AI chatbot on our website uses third-party AI infrastructure that may be located outside the EU to generate responses. When you use the chatbot, the messages you send are transmitted to this infrastructure for processing. No personal data beyond what you voluntarily provide in the conversation is shared. We have implemented Standard Contractual Clauses (SCCs) and other appropriate safeguards for these transfers in accordance with GDPR Articles 44–49. This is disclosed in the chatbot consent dialog before you begin a conversation. Your active business data as a client — including project files, invoices, and account information — is processed and stored exclusively on EU infrastructure and is never sent to non-EU AI providers.
12. AI Chatbot Transparency
The chatbot on our website is powered by artificial intelligence. We are transparent about its use in accordance with the EU AI Act. The chatbot: - Is clearly identified as an AI assistant - Stores conversations for service improvement - Does not share conversation data with third parties - Does not make promises or commitments on behalf of AppMakelaar The responses it generates are informational in nature and do not constitute legal, financial, or other professional advice. For binding information, please refer to our official documentation or a conversation with our team.