Privacy Policy

Perceptum B.V.

Gooweg 14, 2203 AB Noordwijk, The Netherlands

Chamber of Commerce: 76903885 · VAT: NL860833306B01

Email: wijnand@perceptum.nl

Phone: +31 71 203 2103

For visitor statistics we use LiveView Analytics, a privacy-friendly analytics tool we built ourselves. This tool:

• Sets no cookies on your device
• Stores no personal data
• Does not track you across websites
• Shares no data with third parties

We see only anonymized data such as page views, referring sites, and country of origin. This data cannot be traced back to individual visitors.

When you fill in the contact form, we collect:

• Name (required)
• Email address (required)
• Phone number (optional)
• Company name (optional)
• Your message (required)

We use this data only to answer your question and possibly send a proposal. We do not share your data with third parties and do not retain it longer than necessary for this purpose.

For customers we process name, email address, company name, Chamber of Commerce number, address, and phone number for purposes of executing the agreement and tax administration. Content that your visitors leave through your website (form submissions, chat messages) we keep as long as you are our customer and need that data.

Retention periods: customer and invoice data we retain for seven years per Dutch tax obligations. Visitor content we delete within 90 days after termination — or sooner if you request it.

We do not sell data. We share only with parties we need to serve you, and only what they need:

• Hosting providers (Railway, Neon) — for running your website and our tools. Both have signed data processing agreements with us and are GDPR-compliant for EU data.
• Resend — for transactional email (alerts, notifications).
• Mollie — for payments, if you pay by invoice or direct debit.
• Google — only for what you have explicitly authorised through Google's OAuth (see below).

We do not share data with third parties for advertising or marketing purposes.

This section applies only when you enable our Local Presence service. Without that integration, nothing in this section applies to you.

When you connect your Google Business Profile to our service, we ask for your consent through Google's own OAuth screen for the business.manage scope. This gives us access to:

• Your business information on Google (name, address, phone number, opening hours, services)
• Your photos and posts on Google Business Profile
• Reviews that your customers leave about you on Google
• Statistics about how often your profile is viewed, called, or clicked

We request no access to other Google services (no Gmail, no Drive, no Calendar, no YouTube).

What we do with it: maintain profile information; draft posts that you approve individually before publication; draft replies to reviews that you approve individually; display statistics in your dashboard. We perform no bulk operations, no automated posts or replies, and we do not solicit reviews on your behalf (which violates Google policy).

How we store your access: the OAuth tokens that Google issues us are stored encrypted (pgcrypto). The encryption key is held in a separate secret manager.

How to revoke access: through your account at localpresence.perceptum.nl/settings with one click, or through Google's own permissions page at myaccount.google.com/permissions. We delete your OAuth tokens within 24 hours after revocation.

We comply with the Google API Services User Data Policy and the Google Business Profile API Policies.

We take appropriate technical and organisational measures to protect your data. All communication via HTTPS, all databases encrypted at rest, OAuth tokens encrypted with pgcrypto, access to production systems only through two-factor authentication. In the event of a data breach that poses a risk to your rights, we report it within 72 hours to the Dutch Data Protection Authority and to you.

Under the General Data Protection Regulation (GDPR) you have the right to:

• Request which data we hold about you (right of access)
• Have incorrect data corrected (right to rectification)
• Have data deleted to the extent legally permitted (right to be forgotten)
• Restrict processing or object
• Receive your data in a readable file or have it transferred (right to data portability)
• File a complaint with the Dutch Data Protection Authority

Send your request to wijnand@perceptum.nl. We respond within one business day.