Privacy Policy
Effective Date: 30-05-2025
Last Updated: 29-05-2025
Who We Are
Our website address is https://initez.nl. This site is operated and maintained by Vince Smits, based in the Netherlands.
For privacy-related inquiries, you can contact us at privacy@initez.nl. If necessary, our Data Protection Officer (DPO) can be reached at dpo@initez.nl.
Where required by law, we will also provide our registered business address and company registration number.
What Personal Data We Collect and Why
We collect various categories of personal data from users and visitors for the following purposes:
1. Personal Information
- Examples: Name, email address, contact details, account preferences.
- Purpose: To provide and manage services, communicate with users, and personalize user experiences.
2. Transactional Data
- Examples: Purchase history, payment details (processed via third-party gateways).
- Purpose: To process transactions, provide order confirmations, and maintain financial records.
3. Technical Data
- Examples: IP address, browser type, device data, cookies.
- Purpose: To enhance website functionality, ensure security, and perform analytics.
4. Sensitive Personal Data (if applicable)
- Examples: Health-related information or other sensitive data provided voluntarily.
- Purpose: Only collected when necessary for specific services, with explicit consent.
Legal Basis for Processing
- Consent (where applicable)
- Contractual necessity
- Legitimate interests
- Legal obligations
Comments
When users leave comments on our site, we collect:
- Data entered in the comments form
- Visitor’s IP address and browser user agent string
This helps with spam detection and comment moderation.
Media Uploads
If you upload media files (e.g., images), please avoid embedding location data (EXIF GPS), as this data may be accessible to other users.
Contact Forms
Data collected via contact forms may include:
- Your name, email address, and message content
This data is retained indefinitely for customer service purposes and is not used for marketing unless you have given explicit consent.
Cookies
Our site uses cookies to improve user experience and gather usage statistics.
| Type | Purpose | Duration |
|---|---|---|
| Comment Cookies | Saves user details for future comments | 1 year |
| Login Cookies | Maintains login session | 2 days (or 2 weeks if “Remember Me” is checked) |
| Screen Preference Cookies | Saves user interface settings | 1 year |
| Edit/Publish Cookies | Stores post-editing data | 1 day |
More information on cookie management is available in your browser settings.
Analytics
We may use third-party analytics services to monitor and improve website performance. Any data collected is anonymized unless otherwise specified.
If we enable analytics that collect personal data, users will be clearly informed and given opt-out options.
Data Sharing
We only share data with third parties when necessary to deliver our services. These may include:
- Cloud service providers
- Payment processors
- IT service providers
All third parties are required to comply with relevant data protection regulations. Where applicable, we will link to their privacy policies.
Note: By default, WordPress does not share personal data with third parties.
Data Retention
| Data Type | Retention Period |
|---|---|
| Contact Form Entries | Indefinitely |
| Analytics Data | Indefinitely |
| Customer Purchase Records | Indefinitely |
| Comments and Metadata | Indefinitely |
You can request deletion of your personal data at any time (see Your Rights below).
Your Rights
You have the following rights under the GDPR and related regulations:
- Access your personal data
- Rectify incorrect data
- Request deletion of your data
- Withdraw consent at any time
- Object to certain types of data processing
To exercise these rights, contact us at gdpr@initez.nl.
International Data Transfers
We may transfer data outside the EU/EEA for purposes such as hosting or cloud storage. In such cases, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses (SCCs)
- Binding Corporate Rules (BCRs)
Data Security
We implement technical and organizational measures to protect your data, including:
- HTTPS encryption
- Two-factor authentication
- Role-based access controls
- Staff training on data protection
We may also conduct Privacy Impact Assessments (PIAs) when introducing new data processing activities.
Data Breach Procedures
In the event of a data breach, we have procedures in place to:
- Assess the breach
- Notify affected individuals (if necessary)
- Report to the appropriate data protection authority
Third-Party Data Sources
If we receive personal data from third parties (e.g., partners or advertisers), we will disclose the nature and purpose of such data. We ensure such data is handled in compliance with our privacy policy and relevant laws.
Automated Decision-Making & Profiling
If we use any form of automated decision-making (e.g., AI-driven features or user profiling), we will:
- Provide clear information about the logic involved
- Explain the significance and consequences
- Respect your rights to opt out or request human intervention
Industry-Specific Compliance
If subject to additional privacy regulations (e.g., medical, financial, or educational), we will disclose such compliance obligations in this section.
Contact Information
For general privacy inquiries, contact:
📧 privacy@initez.nl
To exercise your data rights (e.g., access, deletion):
📧 gdpr@initez.nl
To contact our Data Protection Officer (DPO):
📧 dpo@initez.nl