Privacy policy

1. Introduction

Welcome to Tegelmonsters.nl (“we,” “us,” or “our”). This privacy statement has been drawn up in accordance with the General Data Protection Regulation (GDPR) and Dutch privacy legislation.

2. Controller

Tegelmonsters.nl is the controller within the meaning of the GDPR for the processing of your personal data.

Company details:

  • Name: [Company Name]
  • Chamber of Commerce number: [Chamber of Commerce number]
  • Business address: [Address]
  • Email: [Email Address]
  • Phone Number: [Phone Number]

3. What Personal Data We Process

3.1 Personal data that you actively provide:

  • Name, address, place of residence
  • Email address
  • Phone number
  • Payment details
  • Communication preferences
  • Order history

3.2 Automatically collected data:

  • IP address
  • Browser data
  • device type
  • Date and time of website visit
  • Click and surfing behavior
  • Cookies and similar technologies

4. Basis and Purposes of Processing

We process your personal data on the basis of the following principles from the GDPR:

  1. Execution of the agreement
  2. Legal obligation
  3. Legitimate interest
  4. Permission for the use of cookies

4.1 Purposes:

  • Processing and delivering your orders
  • Processing payments
  • Providing customer service
  • Compliance with legal obligations
  • Improving our services
  • Sending newsletters (only with explicit permission)
  • Preventing fraud

5. Retention Periods

We do not retain your personal data for longer than necessary for the purposes for which they were collected:

  • Order data: 7 years (legal retention obligation for administration)
  • Customer account data: up to 2 years after last activity
  • Newsletter data: until consent is withdrawn
  • Cookies: maximum 2 years

6. Sharing of Personal Data

6.1 Processors

We only share your data with processors who have concluded a processing agreement with us:

  • Delivery services
  • Payment service providers
  • Website hosting provider
  • Email service provider

6.2 Transfer outside the EEA

If we transfer data to parties outside the European Economic Area (EEA), we will ensure appropriate safeguards in accordance with the GDPR.

7. Cookies

We use the following types of cookies:

  • Necessary cookies
  • Analytical cookies
  • Marketing cookies (only with consent)

You can always adjust your cookie preferences via our cookie banner or your browser settings.

8. Your Rights under the GDPR

You have the following rights:

  • Right of access
  • Right to rectification
  • Right to be forgotten
  • Right to limit processing
  • Right to data portability
  • Right to object
  • Right not to be subject to automated decision-making

To exercise these rights, you can contact us at [email address].

9. Security

We have taken appropriate technical and organizational measures to protect your personal data, including:

  • SSL encryption of our website
  • Access restriction to personal data
  • Regular security checks
  • Processor agreements with third parties

10. Complaints

You have the right to file a complaint with the Dutch Data Protection Authority if you believe that we are not handling your personal data correctly. You can contact the AP via: https://autoriteitpersoonsgegevens.nl

11. Changes to this Privacy Statement

We reserve the right to amend this privacy statement. Amendments will be published on this website. Therefore, consult this statement regularly.