Privacybeleid

Laatst bijgewerkt: March 2026

Last updated: March 2026

Version: 1.0

Contact: legal@fitin.tech

This Privacy Policy explains how Fitin tech collects, uses, and protects your personal data when you use our platform or contact us. We are committed to handling your data responsibly and in compliance with the General Data Protection Regulation (GDPR).

1. Who we are

Fitin tech is a sole proprietorship (eenmanszaak) owned by Bram van de Wiel, registered with the Dutch Chamber of Commerce (KVK) and based in Weesp, the Netherlands.

For any privacy-related questions, please contact us at legal@fitin.tech.

2. What data we collect

We only collect personal data that is necessary for providing our services. This includes:

Account and contact information

  • Your name and job title

  • Business email address

  • Company name and industry

  • Phone number

  • Billing address and payment details

Platform usage data

  • Login credentials and session information

  • Regions and locations you search or compare

  • Index weighting preferences and saved settings

  • IP address, browser type, and device information

  • Error and performance logs

Communications

  • Emails and messages you send to us

  • Support requests and feedback

  • Preferences you share when signing up or contacting us

What we do not collect

We do not process special categories of personal data (such as health data, political opinions, or biometric data). We do not knowingly collect data from anyone under the age of 16.

3. How we use your data

We use your data only for specific, legitimate purposes:

  • To provide and maintain access to the fitin.tech platform

  • To process payments and manage your subscription

  • To respond to support requests and improve our service

  • To send relevant product updates or commercial communications (with your consent, or where we have a legitimate interest as a B2B service provider)

  • To comply with legal obligations, including tax and accounting requirements

  • To improve our platform based on aggregated, anonymised usage patterns

We rely on the following legal bases under GDPR Article 6: performance of a contract, legitimate interests, legal obligation, and, for marketing, consent or legitimate interests in a B2B context.

4. How long we keep your data

We keep your data for as long as necessary for the purpose it was collected:

  • Active account data: for the duration of your subscription, plus 12 months after termination

  • Billing and payment records: 7 years (statutory Dutch accounting obligation)

  • Support and communication history: up to 2 years after resolution

  • Usage logs: up to 12 months

  • Anonymised analytics: indefinitely (no longer attributable to any individual)

When data is no longer needed, we securely delete or irreversibly anonymise it.

5. Who we share your data with

We do not sell your data. We share it only where necessary:

Service providers (processors)

We work with trusted third-party providers for hosting, payments, authentication, and analytics. All processors are bound by a Data Processing Agreement (DPA) in line with GDPR Article 28. They may only process your data for the purposes we specify.

Transfers outside the EEA

If any data is transferred to countries outside the European Economic Area, we ensure adequate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.

Legal requirements

We may disclose your data to public authorities or regulators where required by law.

6. Security

We take data security seriously. Our measures include encryption of data in transit and at rest, role-based access controls, two-factor authentication, and regular security reviews. In the event of a data breach that poses a high risk to affected individuals, we will notify the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) and those affected as required by GDPR Articles 33–34.

7. Your rights

As a data subject under GDPR, you have the right to:

  • Access: request a copy of the personal data we hold about you

  • Rectification: ask us to correct inaccurate or incomplete data

  • Erasure: request deletion of your data (‘right to be forgotten’)

  • Restriction: ask us to limit how we process your data

  • Portability: receive your data in a structured, machine-readable format

  • Object: object to processing based on legitimate interests

  • Withdraw consent: where processing is based on consent, you can withdraw it at any time

To exercise any of these rights, email us at legal@fitin.tech. We will respond within 30 days. We may need to verify your identity before processing your request.

If you believe your data is not being handled correctly, you can file a complaint with the Dutch Data Protection Authority at autoriteitpersoonsgegevens.nl.

8. Cookies

fitin.tech uses cookies and similar technologies. We distinguish between:

  • Functional cookies: essential for the platform to work (e.g. session management). No consent required.

  • Analytical cookies: used to understand how the platform is used, in anonymised form or with your consent.

  • Marketing cookies: currently not used by Fitin tech.

On your first visit, we ask for your consent for non-essential cookies. You can update your preferences at any time via the cookie settings on our site. +Hier nog verwijzen naar Cookie Policy?

9. Changes to this policy

We may update this policy from time to time. The latest version is always available at fitin.tech/privacy. If we make material changes that affect your rights, we will notify active users by email before the changes take effect.

10. Contact

For any questions about this policy or how we handle your data:

Fitin tech - (KVK: 42007072)

legal@fitin.tech

Weesp, the Netherlands