GK Tech Studio

Privacy

Privacy Policy

Last updated: January 2025GDPR compliantAVG
GK Tech Studio respects your privacy. This policy explains what personal data is collected, why it is used and which rights you have under the GDPR and the Dutch AVG.

01Data controller

FieldInformation
ControllerNeamane Gelaas - GK Tech Studio
Emailhello@gktechstudio.nl
CityRotterdam, Netherlands
Legal frameworkGDPR (EU) 2016/679 / AVG (Netherlands)

02Data we collect and why

DataPurposeLegal basisRetention
Name and emailReply to contact requestsConsent12 months
Phone / WhatsAppDirect communicationConsent12 months
Navigation dataTraffic analysisConsent14 months
Project dataPrepare proposals and budgetsContract executionRelationship duration + 5 years
Billing dataTax and accounting obligationsLegal obligation7 years

GK Tech Studio does not intentionally collect data from children under the age of 16.

03Your GDPR rights

You can exercise the following rights regarding your personal data:

Access

Know what personal data is being processed.

Rectification

Correct inaccurate or incomplete data.

Erasure

Request deletion of your personal data.

Restriction

Restrict how your data is processed.

Portability

Receive your data in a structured format.

Objection

Object to certain processing activities.

To exercise these rights, write to hello@gktechstudio.nl. GK Tech Studio will respond within 30 days.

You may also lodge a complaint with the Autoriteit Persoonsgegevens in the Netherlands or the AEPD in Spain.

04Data transfers to third parties

GK Tech Studio does not sell personal data. Data may be processed by:

ProviderServiceCountrySafeguard
ResendTransactional emailUnited StatesEU standard clauses
VercelWebsite hostingUnited StatesDPA + EU clauses
Sanity.ioCMSUnited StatesDPA + EU clauses
Google AnalyticsTraffic analysisUnited StatesExplicit consent

05Data security

GK Tech Studio applies technical and organisational security measures to protect personal data, including:

  • HTTPS / TLS encrypted communications.
  • Restricted access to personal data.
  • Periodic review of security measures.
  • Data breach notification according to GDPR requirements.

We use cookies to improve your experience. See our Cookie Policy.