Privacy Policy

Last Updated: September 30, 2025

Belastbaar ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our website and services.

1. Information We Collect

1.1 Information You Provide

We collect information that you voluntarily provide when using our services, including:

Account information (name, email address)
Tax calculation inputs (salary, municipality, personal circumstances)
Saved tax scenarios and preferences
Communications with our support team

1.2 Automatically Collected Information

When you visit our website, we automatically collect:

Device information (browser type, operating system)
Usage data (pages visited, time spent, interactions)
IP address and general location data
Cookies and similar tracking technologies

2. How We Use Your Information

We use your personal information for the following purposes:

To provide and maintain our tax calculation services
To personalize your experience and save your preferences
To communicate with you about service updates and improvements
To analyze and improve our website performance
To comply with legal obligations and protect our rights
To detect and prevent fraud or security issues

3. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on:

Consent: When you agree to specific data processing (e.g., analytics cookies)
Contract Performance: To provide our tax calculation services
Legitimate Interests: To improve our services and prevent fraud
Legal Obligation: To comply with Dutch tax and financial regulations

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

Service Providers: Cloud hosting, analytics, and email services (with data processing agreements)
Legal Requirements: When required by Dutch law or to protect our legal rights
Business Transfers: In case of merger, acquisition, or asset sale (with notice to users)

Third-Party Services

We use the following third-party services that may collect data:

Google Analytics: For website analytics (anonymized IP addresses)
Hosting Providers: For secure data storage within the EU

5. Your Rights (GDPR)

Under GDPR and Dutch data protection law, you have the following rights:

Right to Access: Request a copy of your personal data
Right to Rectification: Correct inaccurate or incomplete data
Right to Erasure: Request deletion of your personal data ("right to be forgotten")
Right to Restriction: Limit how we process your data
Right to Data Portability: Receive your data in a structured format
Right to Object: Object to processing based on legitimate interests
Right to Withdraw Consent: Withdraw consent at any time
Right to Lodge a Complaint: File a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens)

Exercising Your Rights

To exercise any of these rights, please contact us at privacy@belastbaar.com. We will respond within one month.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

Encryption of data in transit (HTTPS/TLS) and at rest
Regular security assessments and updates
Access controls and authentication mechanisms
Secure data centers within the European Union
Employee training on data protection

7. Data Retention

We retain your personal data only as long as necessary:

Account Data: Until you delete your account or request deletion
Tax Calculations: Retained for your convenience until you delete them
Analytics Data: Anonymized and retained for up to 26 months
Legal Requirements: As required by Dutch law (typically 7 years for financial records)

8. Cookies and Tracking

We use cookies and similar technologies to:

Remember your preferences and settings
Analyze website traffic and user behavior
Provide personalized content and features

Cookie Management

You can manage cookie preferences through our cookie banner or browser settings. Disabling certain cookies may affect website functionality.

9. International Data Transfers

Your data is primarily stored and processed within the European Union. If we transfer data outside the EU, we ensure:

Adequate level of protection (adequacy decisions)
Standard Contractual Clauses (SCCs) approved by the EU Commission
Appropriate safeguards in accordance with GDPR

10. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children. If we become aware of such collection, we will delete the information immediately.

11. Changes to Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

Posting a notice on our website
Sending an email notification (for material changes)
Updating the "Last Updated" date at the top of this policy

12. Contact Information

For questions about this Privacy Policy or to exercise your rights, contact us:

Email: privacy@belastbaar.com
Data Protection Officer: dpo@belastbaar.com
Address: Belastbaar, Amsterdam, Netherlands

Supervisory Authority

You have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens):

Website: autoriteitpersoonsgegevens.nl
Address: Bezuidenhoutseweg 30, 2594 AV Den Haag

This Privacy Policy has been prepared in accordance with the General Data Protection Regulation (GDPR) and Dutch data protection law.

Privacy Policy

Last Updated: September 30, 2025

1. Information We Collect

1.1 Information You Provide

We collect information that you voluntarily provide when using our services, including:

Account information (name, email address)
Tax calculation inputs (salary, municipality, personal circumstances)
Saved tax scenarios and preferences
Communications with our support team

1.2 Automatically Collected Information

When you visit our website, we automatically collect:

Device information (browser type, operating system)
Usage data (pages visited, time spent, interactions)
IP address and general location data
Cookies and similar tracking technologies

2. How We Use Your Information

We use your personal information for the following purposes:

To provide and maintain our tax calculation services
To personalize your experience and save your preferences
To communicate with you about service updates and improvements
To analyze and improve our website performance
To comply with legal obligations and protect our rights
To detect and prevent fraud or security issues

3. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on:

Consent: When you agree to specific data processing (e.g., analytics cookies)
Contract Performance: To provide our tax calculation services
Legitimate Interests: To improve our services and prevent fraud
Legal Obligation: To comply with Dutch tax and financial regulations

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

Service Providers: Cloud hosting, analytics, and email services (with data processing agreements)
Legal Requirements: When required by Dutch law or to protect our legal rights
Business Transfers: In case of merger, acquisition, or asset sale (with notice to users)

Third-Party Services

We use the following third-party services that may collect data:

Google Analytics: For website analytics (anonymized IP addresses)
Hosting Providers: For secure data storage within the EU

5. Your Rights (GDPR)

Under GDPR and Dutch data protection law, you have the following rights:

Right to Access: Request a copy of your personal data
Right to Rectification: Correct inaccurate or incomplete data
Right to Erasure: Request deletion of your personal data ("right to be forgotten")
Right to Restriction: Limit how we process your data
Right to Data Portability: Receive your data in a structured format
Right to Object: Object to processing based on legitimate interests
Right to Withdraw Consent: Withdraw consent at any time
Right to Lodge a Complaint: File a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens)

Exercising Your Rights

To exercise any of these rights, please contact us at privacy@belastbaar.com. We will respond within one month.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

Encryption of data in transit (HTTPS/TLS) and at rest
Regular security assessments and updates
Access controls and authentication mechanisms
Secure data centers within the European Union
Employee training on data protection

7. Data Retention

We retain your personal data only as long as necessary:

Account Data: Until you delete your account or request deletion
Tax Calculations: Retained for your convenience until you delete them
Analytics Data: Anonymized and retained for up to 26 months
Legal Requirements: As required by Dutch law (typically 7 years for financial records)

8. Cookies and Tracking

We use cookies and similar technologies to:

Remember your preferences and settings
Analyze website traffic and user behavior
Provide personalized content and features

Cookie Management

You can manage cookie preferences through our cookie banner or browser settings. Disabling certain cookies may affect website functionality.

9. International Data Transfers

Your data is primarily stored and processed within the European Union. If we transfer data outside the EU, we ensure:

Adequate level of protection (adequacy decisions)
Standard Contractual Clauses (SCCs) approved by the EU Commission
Appropriate safeguards in accordance with GDPR

10. Children's Privacy

11. Changes to Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

Posting a notice on our website
Sending an email notification (for material changes)
Updating the "Last Updated" date at the top of this policy

12. Contact Information

For questions about this Privacy Policy or to exercise your rights, contact us:

Email: privacy@belastbaar.com
Data Protection Officer: dpo@belastbaar.com
Address: Belastbaar, Amsterdam, Netherlands

Supervisory Authority

You have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens):

Website: autoriteitpersoonsgegevens.nl
Address: Bezuidenhoutseweg 30, 2594 AV Den Haag

This Privacy Policy has been prepared in accordance with the General Data Protection Regulation (GDPR) and Dutch data protection law.

Privacy Policy

1. Information We Collect

1.1 Information You Provide

1.2 Automatically Collected Information

2. How We Use Your Information

3. Legal Basis for Processing (GDPR)

4. Data Sharing and Disclosure

Third-Party Services

5. Your Rights (GDPR)

Exercising Your Rights

6. Data Security

7. Data Retention

8. Cookies and Tracking

Cookie Management

9. International Data Transfers

10. Children's Privacy

11. Changes to Privacy Policy

12. Contact Information

Supervisory Authority

Cookie Settings

Privacy Policy

1. Information We Collect

1.1 Information You Provide

1.2 Automatically Collected Information

2. How We Use Your Information

3. Legal Basis for Processing (GDPR)

4. Data Sharing and Disclosure

Third-Party Services

5. Your Rights (GDPR)

Exercising Your Rights

6. Data Security

7. Data Retention

8. Cookies and Tracking

Cookie Management

9. International Data Transfers

10. Children's Privacy

11. Changes to Privacy Policy

12. Contact Information

Supervisory Authority

Cookie Settings