Venroys Privacy Policy
Last updated: [insert date]
Welcome to Venroys ("we", "us", "our"). We highly value your privacy and the protection of your personal data. In this privacy policy, we explain what personal data we collect, why we collect it, how long we keep it, and what rights you have as a data subject.
1. Who is responsible for processing?
Company name: [Venroys B.V. / official name]
Address: [Street + number], [Postal code] [City], Netherlands
Chamber of Commerce number: [KvK number]
Email: privacy@venroys.nl
Phone: [+31 (0) …]
Data Protection Officer (DPO): [Name + contact] (if applicable)
2. Personal Data We Process
Depending on your interaction with our webshop, we process the following categories of data:
| Category | Examples |
|---|---|
| Identification & Contact Information | Name, address, email, phone, account ID |
| Payment Information | IBAN, credit card or PayPal token, transaction ID, invoice data |
| Order Information | Products, quantities, shipping method, return information |
| Login & Profile Information | Username, hashed password, wishlist |
| Marketing & Communication Preferences | Newsletter subscription, cookie consent |
| Technical Information | IP address, browser type, device ID, session logs |
| Behavioral Data | Click & scroll behavior, viewed products, search history |
We do not process special categories of personal data (such as health information) unless you voluntarily provide them, for example in an order note.
3. Purposes and Legal Bases
| Purpose | Legal Basis (GDPR) | Details |
|---|---|---|
| Account creation & authentication | Performance of contract (Art. 6b) | To manage your login and enable purchases. |
| Order fulfillment & delivery | Performance of contract (Art. 6b) | Confirmation, shipping, payment, and returns. |
| Customer service | Legitimate interest (Art. 6f) | To handle questions, complaints, and warranty requests. |
| Marketing (newsletter, personalized offers) | Consent (Art. 6a) | Only if you explicitly opt-in. You can unsubscribe anytime. |
| Website analysis & improvement | Legitimate interest (Art. 6f) | To measure performance and optimize our shop. |
| Legal obligations | Legal requirement (Art. 6c) | e.g., fiscal retention obligations and fraud prevention. |
4. Cookies & Similar Technologies
We use functional, analytical, and marketing cookies. For non-essential cookies, we always ask for your consent via our cookie banner. More details can be found in the Cookie Policy.
5. Sharing With Third Parties
We only share your data with:
- Payment providers (e.g., Mollie, PayPal) for payment processing.
- Logistics partners (e.g., PostNL, DHL) for shipping and returns.
- IT service providers for hosting, email, and maintenance.
- Marketing & analytics partners (only with consent).
- Government authorities if legally required (e.g., Dutch Tax Authorities).
We have processor agreements in place in accordance with Art. 28 GDPR.
6. Data Retention
| Data Category | Retention Period |
|---|---|
| Invoice & Transaction Data | 7 years (legal obligation) |
| Customer Account | Up to 2 years after last activity or upon request |
| Marketing Data | Until consent withdrawal or max 2 years of inactivity |
| Log & Analytics Data | 14 months (Google Analytics standard) |
7. Security
We take appropriate technical and organizational measures, including:
- SSL/TLS encryption
- Hashed storage of passwords (bcrypt)
- Access control and two-factor authentication for employees
- Regular penetration tests and backups
8. Your Rights
You have the right to:
- Request access to your personal data.
- Request correction or deletion.
- Request processing limitation or object to processing.
- Receive data in machine-readable format (data portability).
- Withdraw consent at any time.
- File a complaint with the Dutch Data Protection Authority (www.autoriteitpersoonsgegevens.nl).
Send an email to privacy@venroys.nl with a copy of your ID (BSN/photo redacted) so we can verify that the request was made by you.
9. Minors
Our webshop is not intended for children under 16 years. We do not knowingly process data of minors without parental consent.
10. Automated Decision-Making
We do not use automated decision-making or profiling that has legal consequences for you.
11. Changes
We may update this privacy policy. The “Last updated” date at the top always reflects the latest changes. Material changes will be communicated via email or website.
12. Contact
If you have questions or comments, feel free to contact us:
Venroys B.V.
[Street + number]
[Postal code] [City]
Netherlands
Email: privacy@venroys.nl
Phone: [+31 (0) …]
Thank you for trusting Venroys. We protect your data with care.