Privacy Policy
This document is a translation of our Dutch Terms and Conditions. In case of discrepancies, the Dutch version prevails.
PRIVACY POLICY – UNIHOSTED B.V.
We highly value your privacy. We will therefore process and use your data securely, fully in accordance with the General Data Protection Regulation (GDPR). In this privacy policy, we explain what data we collect from you and why we do so. You can also read about your rights regarding this data processing. If you have any questions about your privacy, please contact us via [email protected].
Article 1 - Who are we?
UniHosted B.V. is a private limited company, located at Jacob van Lennepstraat 78H, (1053 HM) Amsterdam. We are registered in the Dutch Chamber of Commerce under number 95048219. We are the data controller for your personal data.
Article 2 - What data do we use?
Below is an overview of the data we process from you, the reasons for processing, the legal basis for processing, and how long we retain the data.
We process your name and/or that of your contact person, company name with associated Chamber of Commerce details, email, financial data, and possibly your address and VAT number. We use this data to provide you with optimal service during the term of our agreement and to manage your orders. We retain this data for up to 7 years after the termination of our agreement, for service provision and tax compliance. Our servers may also contain software-related information about your UniFi devices and connected devices. This information will not be used further.
For invoicing and financial administration, we process your name or that of your contact person, company name with associated Chamber of Commerce details and VAT number, invoice address, email, bank details, and outstanding balance. Without this data, we cannot process your payments. Under a legal obligation from the Dutch Tax Authority, we must retain this data for 7 years. After this period, we will delete or anonymize this data.
If you file a complaint about our service, we will process your (company) name, email, account number, and the content and communication related to your complaint to provide you with the best possible resolution. We process this data to ensure the optimal execution of the agreement. Data related to complaints will be deleted once you no longer use our software.
To make this website functional and optimized, we use analytics services. We have a commercial interest in analyzing and improving our service based on your browsing behavior and related data. We have chosen a Dutch provider that fully complies with the GDPR. Simple Analytics does not process any personal data from you as a website visitor.
To enable reviews of our services, we process your name, company name, photo or logo, and the content of your message. By posting your review via our platform or TrustPilot, this data becomes visible to us. We may publish service reviews on our website and social media channels for commercial purposes. We will delete them if they are no longer representative of our services or upon your request.
If you contact us via the Crisp chatbox, we process your name, email address, location, possible profile photo, and message. The information collected by the processor, Crisp, is anonymized and cannot be linked to you or your network. We retain these messages in your account until you stop using our service.
For your personal account, we process your email address and password. We cannot access your password but can reset it upon request. This is to prevent security fraud. We retain these account details until you delete your account.
Article 3 - How do we obtain this data?
We have obtained the above data from you as a customer, contact person, or website visitor because you provided it to us. Additionally, we may access your data because we offer hosting services to our customers. We provide a data processing agreement to our customers.
We make every effort to ensure that data on minors is only collected with parental consent. If you believe that we have collected personal data from a minor without consent, please contact us.
Article 4 - What rights do you have regarding your data?
The General Data Protection Regulation grants you several rights regarding the personal data you have allowed us to process.
- Access - You can request access to your data at any time.
- Modification - If you wish to modify, correct, supplement, or restrict your data based on access, you may submit a request. You can also modify some data in your personal account. You can delete your account yourself in your dashboard.
- Objection - You can object to the processing of your data if it is based on a legitimate interest assessment.
- Data portability - If you want to transfer your data to another provider, we will provide your data in a structured and commonly used format compatible with standard digital systems.
- Withdrawal - If we process your data based on your explicit consent, you have the right to withdraw this consent. However, this may affect the services we can provide you.
To exercise your rights, you can send a request, including a copy of your identification document (with your BSN and photo obscured), to [email protected]. We will process your request as soon as possible, but no later than 30 calendar days. If we cannot fulfill your request, we will explain the reason for the refusal.
Article 5 - Who receives your data?
We will not share your data with third parties unless necessary for business operations or required by law. Your data may be shared with processors and external advisors for the execution of the agreement. We conclude (sub)processor agreements with these third parties to optimally protect your privacy. We will not sell your data to third parties.
Article 6 - Final Provisions
We recommend that you review this privacy policy regularly, as we may make changes to our policies. If you have any questions about this statement or how we use your data, please email us at [email protected]. If you have a complaint about how we handle your data, please let us know. You can also contact the Dutch Data Protection Authority.