Privacy Policy

Last updated: 24 September 2025

This privacy policy explains how Agentic Solutions uses personal data when you visit agenticsolutions.nl or contact us. We handle your data with care and secure it appropriately. If you have questions or want to exercise your rights, email stijn@agenticsolutions.nl. We update this policy when needed and post the new date above.

Who we are

Agentic Solutions, Schoolstraat 18, 5866AX Swolgen, Netherlands. KvK 95487182. We are the controller for our website, marketing, sales, support, invoicing, and account management. When clients send us data so we can deliver services, we act as a processor under a Data Processing Agreement; in those cases the client is the controller.

What this policy covers

This policy applies to all personal data we process in connection with our websites and services. It covers website visitors, prospects, private and business customers, and partner contacts. Personal data means any information that identifies or can identify you, such as a name, email address, IP address, account data, or usage data.

Data we collect

We collect identification and contact details (such as name, email address, phone number and company), addresses (billing, shipping or business), transaction and invoice data, limited payment information handled by our payment provider, technical data (such as IP address, device and browser information, and logs), cookie and usage data, and client-supplied content that we process on a client’s instructions.

How we collect it

You share data with us when you use our forms, email or call us, sign a contract, or use our services. We also collect data automatically through our website and systems. When clients send us data so we can provide services, we process it only as instructed by the client.

Why we use your data and our legal bases

We use your data to run and secure our website and systems, to answer questions and manage sales, to deliver services you request, to process payments and meet bookkeeping and tax obligations, and to improve our services. We rely on one or more of the following legal bases: performance of a contract or pre-contract steps, compliance with legal obligations, our legitimate interests (such as IT security, service improvement, and B2B communications), and your consent where required. You can withdraw consent at any time, and you can object to processing based on our legitimate interests, including direct marketing.

Cookies and similar technologies

We use essential cookies to operate the site. These do not require consent. We ask for your consent before placing non-essential cookies, such as analytics or marketing cookies. You can accept, refuse, or change your choices at any time via the “Cookie settings” link on our site. Our Cookie Policy lists each cookie, its provider, purpose, and lifespan.

Sharing your data

We do not sell personal data. We share data only with service providers who help us operate our business, such as hosting, email, communications, analytics, consent management, payments, and professional advisors where necessary. These providers act under contract and only on our instructions.

International transfers

We aim to store and process data within the European Economic Area. If data is transferred outside the EEA, we use an approved safeguard such as the EU–US Data Privacy Framework participation or the European Commission’s Standard Contractual Clauses, plus additional measures where appropriate. You can ask for details of relevant safeguards.

Retention

We keep data only as long as needed for the purposes above or as required by law. Customer, contract, and invoice records are retained for seven years to meet Dutch tax rules, and certain VAT or immovable-property records for ten years. Support and sales enquiries are kept for up to twenty-four months after our last interaction. Security logs are kept for between six and twenty-four months depending on necessity. Client-provided data processed as a processor is retained, returned, or deleted as agreed in the DPA.

Security

We apply technical and organisational measures including access controls, encryption in transit, least-privilege access, logging, backups, and vulnerability management. Access to personal data is limited to authorised personnel with a business need. We review and improve our controls regularly.

Your rights

You can request access to your data and ask us to correct inaccurate or incomplete data. You can ask us to delete your data, restrict how we use it, or transfer it to another organisation. You can object to processing based on our legitimate interests, including direct marketing. You can withdraw consent at any time. You can ask whether we make decisions based solely on automated processing and obtain meaningful information about such processing if it occurs.

Automated decision-making

We do not make decisions based solely on automated processing that produce legal or similarly significant effects. If this changes, we will explain the logic involved, the significance and expected consequences, and your related rights.

How to exercise your rights or complain

Email stijn@agenticsolutions.nl to submit a request. We may ask for information to verify your identity. We respond within thirty days, with extensions where permitted for complex or multiple requests. You can lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) and you can seek a judicial remedy.

Changes to this policy

We will update this policy when needed and publish the new version with a new date.