Privacy Policy
Learn how we collect, use, and protect your personal information while providing free EU cybersecurity compliance resources
Your Privacy Matters
At CompliantCode, we are committed to protecting your privacy while providing valuable EU cybersecurity compliance resources. This privacy policy explains how we collect, use, share, and protect your personal information in accordance with GDPR and other applicable privacy laws.
Information We Collect
Information You Provide
- Contact form submissions (name, email, message)
- Newsletter subscription email addresses
- Feedback and survey responses
- Any information you choose to share with us
Information Automatically Collected
- Cookie data (with your consent)
- IP address and general location
- Browser type and version
- Device information
- Pages visited and time spent
- Referring websites and search terms
Third-Party Information
- Google AdSense advertising data
- Analytics data from Google Analytics (if consented)
- Social media interactions (if you engage with our content)
- Public compliance information you reference
How We Use Your Information
Primary Uses
- Respond to your inquiries and provide support
- Send newsletters and compliance updates (with consent)
- Improve our website content and user experience
- Ensure website security and prevent abuse
- Comply with legal obligations
Advertising and Analytics
- Display relevant advertisements through Google AdSense
- Analyze website usage to improve content
- Measure advertising effectiveness
- Provide personalized content recommendations
- Generate revenue to support free resources
Legal Basis for Processing
- Consent - for cookies, newsletters, and marketing
- Legitimate interest - for website improvement and security
- Contract performance - when you request services
- Legal compliance - to meet regulatory requirements
Information Sharing and Disclosure
Third-Party Services
- Google AdSense - for displaying advertisements
- Google Analytics - for website analytics (if consented)
- Email service providers - for newsletters and communications
- Hosting providers - for website operation
- CDN providers - for content delivery
When We May Disclose Information
- With your explicit consent
- To comply with legal obligations or court orders
- To protect our rights, property, or safety
- In connection with a business transfer or merger
- To prevent fraud or security threats
We Do Not Sell Personal Information
- We never sell your personal information to third parties
- We do not rent or lease your data
- Advertising is through Google's network, not direct sales
- Your data is not used for purposes beyond what's stated here
Data Retention and Storage
Retention Periods
- Contact form data: 3 years from last contact
- Newsletter subscriptions: until you unsubscribe
- Analytics data: 26 months (Google Analytics default)
- Cookie data: varies by cookie type (see Cookie Policy)
- Legal compliance records: as required by law
Data Security
- SSL encryption for all data transmission
- Secure hosting with reputable providers
- Regular security updates and monitoring
- Limited access to personal information
- Data backup and recovery procedures
International Transfers
- Data may be processed in the US (Google services)
- Adequate protection through Privacy Shield successors
- Standard contractual clauses with processors
- Your consent for international transfers
- Right to object to international processing
Your Rights and Choices
GDPR Rights (EU Users)
- Right of access - request a copy of your data
- Right to rectification - correct inaccurate information
- Right to erasure - delete your personal data
- Right to restrict processing - limit how we use data
- Right to data portability - receive data in machine-readable format
- Right to object - stop processing for legitimate interests
- Right to withdraw consent - for consent-based processing
How to Exercise Your Rights
- Email us at privacy@compliantcode.nl
- Use the contact form with "Privacy Request" as subject
- Include specific details about your request
- We will respond within 30 days
- Identity verification may be required
Cookie and Tracking Choices
- Accept or reject cookies via our consent banner
- Change cookie preferences in your browser settings
- Opt out of Google Ads personalization
- Use browser "Do Not Track" settings
- Contact us to opt out of all non-essential tracking
Children's Privacy
Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn that we have collected information from a child under 16, we will delete it promptly. If you believe a child has provided us with personal information, please contact us immediately.
Changes to This Privacy Policy
We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will:
- • Post the updated policy on this page
- • Update the "Last Updated" date at the top
- • Notify you via email for material changes (if you're subscribed)
- • Provide notice through our website for significant changes
Contact Information
Have questions about your privacy rights or how we handle your data? Contact our privacy team for assistance with any privacy-related inquiries.
For EU data protection complaints, you may also contact your local supervisory authority.