Privacy statement:
At Carf.io, we value your privacy. This privacy statement describes how we collect, use, and protect your personal information when you use our website and services.
1. Personal data we process
We process personal data that you provide to us or that we collect when you use our services. This may include:
- Basic Information: Name, contact details, and company information
- Account Information: Login credentials and transaction data
- Technical Data: IP address, device information, and browsing activity
- Usage Data: How you interact with our services and website
We process this data to:
- Provide our services to you
- Improve and develop our offerings
- Communicate with you about our services
- Fulfill legal and regulatory requirements
The legal bases for these processing activities are:
- Performance of a contract
- Legitimate interest
- Legal obligation
- Consent (where applicable)
2. Cookies and similar technologies
Our website uses cookies and similar technologies to enhance your experience. These technologies help us:
- Ensure the website functions properly
- Analyze site usage and performance
- Remember your preferences
- Provide relevant content
You can manage your cookie preferences through your browser settings or our cookie consent tool. Please note that blocking certain cookies may impact your experience on our website.
3. Analytics
We use analytics tools to collect anonymous information about how visitors use our website. This helps us improve our services and user experience. The data collected may include:
- Pages visited
- Time spent on the site
- Referral sources
- General location information
We implement privacy-enhancing measures such as IP anonymization to protect your privacy while collecting this information.
4. Data sharing
We do not sell your personal data. We may share your information with:
- Service providers who help us deliver our services
- Legal authorities when required by law
- Business partners with your consent
All third parties who process data on our behalf are required to maintain appropriate security and confidentiality measures. When data is processed outside the European Economic Area (EEA), we ensure appropriate safeguards in accordance with GDPR requirements.
5. Data retention
We keep your personal data only for as long as necessary to:
- Provide our services to you
- Comply with legal obligations
- Resolve disputes
- Enforce our agreements
Different types of data may be retained for different periods. For administrative data, we typically maintain a retention period of 7 years in accordance with Dutch fiscal retention requirements. You may request deletion of your data by contacting us.
6. Your rights
Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:
- Right to access your data
- Right to correct inaccurate data
- Right to deletion of your data
- Right to restriction of or objection to processing
- Right to data portability
- Right to withdraw consent
To exercise these rights, please contact us. We may need to verify your identity before fulfilling your request. You also have the right to file a complaint with the Data Protection Authority if you believe we are not processing your personal data correctly.
7. Security
We implement appropriate security measures to protect your personal information. These include:
- Encryption technologies
- Access restrictions
- Regular security assessments
- Staff training
No method of transmission over the internet or electronic storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.
8. Changes to this statement
We may update this privacy statement occasionally to reflect changes in our practices or legal requirements. We will notify you of significant changes through our website or other appropriate means.
Contact
For questions about this privacy statement or our data practices:
Email: info@carf.io
Address: Dag Hammarskjoldborg 2, 3124TL Schiedam
Chamber of Commerce number: 96396342
Last updated: 08/04/2025