privacy Policy

When Do We Process Your Personal Data?
1. To respond to inquiries from businesses
If you contact us via phone, email, or our website form, we may collect the following data to assist you:
- Name
- Business email address
- Your message
Legal Basis: Legitimate Interest.

2. To send quotes and proposals to businesses
To provide quotes or proposals, we collect the following data:
- Business name
- Name of representative
- Business email address
- Phone number
- Financial information (e.g., VAT number, payment details)
Legal Basis: Legitimate Interest.

3. To fulfill agreements and manage partnerships
If you enter into an agreement with us, we may collect the following data:
- Business name
- Name of representative
- Business email address
- Phone number
- Financial information
Legal Basis: Performance of a Contract.

4. To handle invoicing and payments
We process payments and manage invoicing using financial details such as:
- Business name
- Representative’s name
- Business email address
- Phone number
- VAT number
- Payment details
Legal Basis: Legal Obligation.

5. To conduct online research and find reliable partners
We perform online research to identify potential business partners. Data collected may include:
- Publicly available business information
- Online profiles and activity (e.g., LinkedIn, business directories)
Legal Basis: Legitimate Interest.

6. To use online systems for business operations
We use several online systems for project management, financial administration, and marketing, including:
- ClickUp (project management)
- Moneybird (invoicing and bookkeeping)
- Metricool (social media analytics)
- HubSpot (CRM and business contact management)
- Instagram, Facebook, TikTok, Pinterest (marketing and engagement)

These systems process data relevant to their functions under secure agreements.
Legal Basis: Legitimate Interest and Consent.

7. Use of Website Analytics and Advertising Technologies
To analyze website traffic and improve marketing efforts, we use:
- Google Analytics: Tracks visitor behavior to optimize our website. Data is anonymized where possible.
- Meta Pixel (Facebook Pixel): Helps us measure the effectiveness of ads on Facebook and Instagram by tracking user interactions on our site.
- Cookiebot: Manages cookie consent and ensures GDPR compliance for tracking technologies.

Users can manage their consent preferences through our cookie settings pop-up.
Legal Basis: Consent.

Sharing Data with Partners
We work with various suppliers and partners to deliver our services, including those who:
- Send newsletters
- Manage invoicing and payments
- Host our website and systems
- Provide marketing and analytics tools

We have data processing agreements with all sub-processors to ensure the security of your data. For partners outside the European Economic Area (EEA), we ensure compliance with GDPR through appropriate safeguards, such as Standard Contractual Clauses.

Sharing Data with Third Parties
We do not sell or share your data with third parties outside A la Eve unless required by law or for the purposes outlined in this policy.

Data Security
A la Eve has implemented technical and organizational measures to protect your personal data from unauthorized access, misuse, or loss. All parties processing your data (e.g., staff, subcontractors) sign confidentiality agreements or data processing agreements.

Retention Periods
We retain your data only as long as necessary for the purposes outlined in this policy:
- Business contact data: Deleted two years after our last interaction.
- Emails: Deleted after one year unless relevant to ongoing agreements or disputes.
- Invoices and financial records: Retained for the legally required period of seven years.
- Newsletter data: You can unsubscribe at any time, and your data will be removed.

Your Rights
You have the right to:
- Access, correct, or delete your personal data.
- Withdraw consent for data processing.
- Object to data processing.
- Request data portability.
- You can submit such requests to thijs@alaeve.nl. To verify your identity, please include a copy of your ID with sensitive information (photo, MRZ, passport number) blacked out. We will respond within four weeks.

Reporting a Data Breach
In the unlikely event of a data breach, A la Eve complies with mandatory reporting requirements and will notify the Dutch Data Protection Authority within 72 hours, if necessary. If you discover a breach, please report it to thijs@alaeve.nl within 24 hours.

Liability
This privacy policy applies solely to the data A la Eve processes as outlined above. A la Eve accepts no responsibility for the content or functionality of third-party websites or services.

Changes to This Policy
We may update this privacy policy to reflect new legal or business developments. Changes will be communicated via our newsletter or website. Continued use of our services after changes are published implies acceptance.

Contact
If you have any questions or concerns, please contact us:

A la Eve
Oranjestraat 31
7902 CA Hoogeveen, Netherlands
Email: thijs@alaeve.nl