Privacy Policy

Introduction

Wanderlane B.V. ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website wanderlane.world, use our construction services, or interact with us in any capacity. This policy complies with the General Data Protection Regulation (GDPR) and applicable data protection laws in the Netherlands and the European Union.

As a Data Controller under GDPR, Wanderlane is responsible for ensuring your personal data is processed lawfully, fairly, and transparently. By using our services or website, you acknowledge that you have read and understood this Privacy Policy.

Data Collection

The data we collect includes personal information that you provide directly to us, information we collect automatically through our website, and information we may receive from third parties. We collect this data to provide our construction services, improve our website functionality, and communicate with our clients effectively.

Personal Information You Provide: When you contact us, request a quote, or engage our services, we may collect your name, email address, phone number, postal address, project details, budget information, and any other information you choose to provide.

Automatically Collected Information: When you visit our website, we automatically collect certain information including your IP address, browser type, device information, pages visited, time spent on pages, referring website, and other usage data through cookies and similar technologies.

Business Information: For commercial clients, we may also collect business name, registration numbers, VAT information, and other business-related data necessary for contract execution and compliance purposes.

How We Use Your Information

We use the personal data we collect for various purposes based on different legal bases under GDPR. Here's how we use your information and the legal basis for each use:

Service Provision (Contract Performance): We use your data to provide construction services, process your requests, prepare quotes, manage projects, communicate about your project status, and fulfill our contractual obligations.

Business Operations (Legitimate Interest): We use your information to improve our services, analyze website usage, conduct market research, manage our business operations, and develop new services that better meet client needs.

Legal Compliance (Legal Obligation): We process your data to comply with applicable laws, regulations, legal processes, and regulatory requirements in the construction industry.

Marketing Communications (Consent): With your explicit consent, we may use your contact information to send you updates about our services, construction tips, industry news, and promotional materials. You can withdraw consent at any time.

Legal Basis for Processing

Under GDPR, we must have a legal basis for processing your personal data. The legal bases we rely on include:

• Contract: Processing necessary for the performance of a contract with you or to take steps before entering into a contract.
• Legitimate Interest: Processing necessary for our legitimate business interests, provided these interests don't override your fundamental rights and freedoms.
• Legal Obligation: Processing necessary to comply with legal obligations, such as tax requirements or construction industry regulations.
• Consent: Processing based on your freely given, specific, informed, and unambiguous consent, which you may withdraw at any time.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal data to third parties. We may share your information in the following circumstances:

• Service Providers: We may share data with trusted third-party service providers who assist us in operating our website, conducting business, or providing services to you, provided they agree to keep information confidential.
• Subcontractors: For construction projects, we may share relevant project information with qualified subcontractors and suppliers who are bound by confidentiality agreements.
• Legal Requirements: We may disclose your information when required by law, court order, or government regulation, or to protect our rights, property, or safety.
• Business Transfers: In the event of a merger, acquisition, or sale of business assets, personal data may be transferred as part of the transaction, subject to confidentiality agreements.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Our retention periods are based on business needs and legal requirements:

• Client Data: We retain client information for the duration of our business relationship and for seven years after project completion to comply with Dutch business record requirements.
• Marketing Data: We retain marketing communications data until you withdraw consent or for three years of inactivity, whichever comes first.
• Website Data: Analytics and usage data is typically retained for 26 months, while security logs may be retained for up to one year.
• Financial Records: Financial and tax-related information is retained for seven years as required by Dutch tax law.

After the retention period expires, we securely delete or anonymize your personal data in accordance with our data retention and deletion policies.

Your Rights Under GDPR

As a data subject under GDPR, you have several rights regarding your personal data. You can exercise these rights by contacting us at privacy@wanderlane.world:

• Right of Access: You can request a copy of the personal data we hold about you and information about how we process it.
• Right to Rectification: You can ask us to correct inaccurate or incomplete personal data.
• Right to Erasure: You can request deletion of your personal data in certain circumstances, such as when it's no longer necessary for the original purpose.
• Right to Restrict Processing: You can ask us to limit how we use your personal data in certain situations.
• Right to Data Portability: You can request to receive your personal data in a structured, commonly used format or ask us to transfer it to another organization.
• Right to Object: You can object to processing based on legitimate interests or for direct marketing purposes.
• Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.

We will respond to your requests within one month. If you're not satisfied with our response, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication measures
• Employee training on data protection and security
• Secure data backup and recovery procedures
• Regular monitoring for security breaches

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but are committed to maintaining industry-standard protections.

International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we need to transfer your data outside the EEA, we will ensure appropriate safeguards are in place, such as:

• European Commission adequacy decisions
• Standard Contractual Clauses approved by the European Commission
• Binding Corporate Rules
• Certification schemes and codes of conduct

We will always ensure that any international transfer of your personal data is conducted in compliance with applicable data protection laws and provides adequate protection for your rights.

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze website usage, and provide personalized content. For detailed information about our use of cookies, please refer to our Cookie Policy.

You can manage your cookie preferences through our cookie consent banner or by adjusting your browser settings. Please note that disabling certain cookies may affect the functionality of our website.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

If you believe we have collected information from a child under 16, please contact us immediately at privacy@wanderlane.world.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

For significant changes that affect your rights, we may provide additional notice through email or prominent website notifications. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please don't hesitate to contact us. We are committed to addressing your privacy concerns promptly and transparently.