Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your personal information.

Last updated:

1. Data Controller Information

The data controller responsible for your personal data is:

Xorvalenryozai
Van Weerden Poelmanweg 4-6
3768 MN Soest, Netherlands
Phone: +31 6 23753042
Email: talk@xorvalenryozai.world

2. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Contact Information: Name, email address when you contact us through our contact form
  • Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform
  • Usage Data: Information about how you use our website, including pages visited and time spent on pages
  • Cookie Data: Data collected through cookies and similar technologies as described in our Cookie Policy

3. Purposes of Processing

We process your personal data for the following purposes:

  • To respond to your inquiries and provide customer support
  • To improve our website and user experience
  • To analyze website traffic and usage patterns
  • To comply with legal obligations
  • To protect our legitimate business interests

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

  • Consent: When you have given explicit consent for specific processing activities
  • Contractual necessity: When processing is necessary to fulfill a contract with you
  • Legitimate interests: When processing is necessary for our legitimate business interests, provided these interests do not override your fundamental rights
  • Legal obligation: When processing is necessary to comply with applicable laws

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Contact form submissions: 2 years from the date of submission
  • Analytics data: 26 months
  • Cookie consent records: 1 year

After these periods, your data will be securely deleted or anonymized.

6. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right of access: Request copies of your personal data
  • Right to rectification: Request correction of inaccurate or incomplete data
  • Right to erasure: Request deletion of your personal data under certain conditions
  • Right to restrict processing: Request limitation of how we use your data
  • Right to data portability: Request transfer of your data to another organization
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw your consent at any time for consent-based processing

To exercise any of these rights, please contact us using the details provided above.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using SSL/TLS
  • Regular security assessments and updates
  • Access controls limiting who can view personal data
  • Secure data storage practices

8. Third-Party Sharing

We may share your personal data with the following categories of third parties:

  • Analytics service providers (with your consent)
  • Hosting and infrastructure providers
  • Legal and regulatory authorities when required by law

We do not sell your personal data to third parties.

9. International Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

10. Data Processors and Service Providers

Where we use third-party service providers (for example, hosting, security, analytics, and communication tools), they process personal data only on our documented instructions and under contractual safeguards required by GDPR.

We review these providers periodically and require them to implement appropriate security and confidentiality measures.

11. Automated Decision-Making

We do not use your personal data for solely automated decision-making, including profiling, that produces legal effects or similarly significant effects for you.

12. Children's Privacy

This website is intended for a general audience and is not directed to children under 16. We do not knowingly collect personal data from children under 16 without valid parental consent.

If you believe that a child has provided personal data, please contact us so we can take appropriate steps.

13. How to Exercise Your Rights

You can submit a rights request by contacting us using the details in this policy and describing your request clearly.

  • We may ask for additional information to verify your identity before processing your request.
  • We generally respond within one month, as required by GDPR.
  • If your request is complex, this period may be extended by up to two additional months. If so, we will inform you.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

15. Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.

Authority website: autoriteitpersoonsgegevens.nl.

16. Contact Us

For any questions about this Privacy Policy or our data practices, please contact us at:

Email: talk@xorvalenryozai.world
Phone: +31 6 23753042
Address: Van Weerden Poelmanweg 4-6, 3768 MN Soest, Netherlands