Privacy Policy

Last updated: May 10, 2026 | GDPR / RGPD Compliant

Introduction. This Privacy Policy describes how Daan Smit ("we," "us," or "our") collects, uses, stores, and protects your personal information when you visit our website, use our contact form, or otherwise interact with our services. We are committed to ensuring the privacy and security of all visitors and users. This policy is designed to comply with the General Data Protection Regulation (GDPR) (EU) 2016/679, the Dutch Implementation Act of the GDPR (Uitvoeringswet AVG), and other applicable European data protection legislation. By accessing or using this website, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with any part of this policy, please discontinue use of the website immediately.

1. Data Controller Information

The data controller responsible for processing your personal data is:

Name: Daan Smit
Address: Nedersticht 45, 1083 XD Amsterdam, Netherlands
Contact Email: hello@daansmit.nl
Contact Phone: +31 20 555 0287
Business Hours: Mon–Fri: 9:00 – 18:00 CET

As the data controller, we determine the purposes and means of processing personal data collected through this website. We take our responsibilities under data protection law seriously and have implemented appropriate technical and organizational measures to safeguard your information.

2. What Data We Collect

We collect and process only the personal data that is necessary for the specific purposes outlined in this policy. The categories of personal data we may collect include:

  • Identity Data: Your first name, last name, username, or similar identifier provided voluntarily through our contact form.
  • Contact Data: Your email address, telephone number, and postal address if provided.
  • Technical Data: Your internet protocol (IP) address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
  • Usage Data: Information about how you use our website, including which pages you visit, how long you spend on each page, and the navigation path you take.
  • Marketing and Communications Data: Your preferences in receiving marketing communications from us and your communication preferences.

We do not collect special categories of personal data (such as data concerning health, racial or ethnic origin, political opinions, religious beliefs, or trade union membership) unless explicitly and voluntarily provided by you in your messages, and even then, such data is processed solely for the purpose of responding to your inquiry and is never shared with third parties.

3. How We Collect Your Data

We use different methods to collect data from and about you, including:

  • Direct Interactions: You may give us your identity and contact data by filling in forms on our website, corresponding with us by post, phone, email, or otherwise. This includes personal data you provide when you use our contact form to send an inquiry, request information about our programs, or provide feedback.
  • Automated Technologies: As you interact with our website, we may automatically collect technical data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies.
  • Third Parties: We do not receive personal data about you from third parties. All data is collected directly from your interactions with our website.

4. Purpose and Legal Basis for Processing

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • Performance of a Contract: Where we need to perform the contract we are about to enter into or have entered into with you, such as providing you with the information or services you have requested.
  • Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. This includes maintaining our website, improving our services, and conducting business analytics.
  • Legal Obligation: Where we need to comply with a legal or regulatory obligation, such as responding to lawful requests from public authorities.
  • Consent: Where you have given explicit consent for us to process your personal data for a specific purpose, such as sending you marketing communications. You have the right to withdraw consent at any time.

Specifically, we process your contact form submissions to respond to your inquiries, provide information about our digital wellness programs, and maintain a record of our communications. We process technical and usage data to ensure the security and proper functioning of our website, analyze user behavior to improve user experience, and prevent fraudulent or malicious activity.

5. Cookies and Similar Technologies

Our website uses cookies and similar tracking technologies to distinguish you from other users of our website. This helps us provide you with a good experience when you browse our website and also allows us to improve our site. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer's hard drive.

We use the following types of cookies:

  • Strictly Necessary Cookies: These are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website. These cookies do not require your consent.
  • Analytical/Performance Cookies: These allow us to recognize and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily. We only use these cookies with your consent.
  • Functionality Cookies: These are used to recognize you when you return to our website. This enables us to personalize our content for you, greet you by name, and remember your preferences.

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more information about the cookies we use, please contact us at hello@daansmit.nl.

6. Data Sharing and Disclosure

We respect your privacy and do not sell, trade, or otherwise transfer your personal data to outside parties for marketing or advertising purposes. We may share your personal data with the following categories of recipients, but only where necessary and under strict confidentiality obligations:

  • Service Providers: We may employ third-party companies and individuals to facilitate our website, provide services on our behalf, perform website-related services, or assist us in analyzing how our website is used. These third parties have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. Currently, we do not use any third-party service providers that process personal data.
  • Legal Requirements: We may disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
  • Business Transfers: If we are involved in a merger, acquisition, or asset sale, your personal data may be transferred. We will provide notice before your personal data is transferred and becomes subject to a different privacy policy.

All data processing activities are conducted within the European Economic Area (EEA). We do not transfer your personal data to countries outside the EEA.

7. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. However, please be aware that no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

8. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means.

Contact form submissions are typically retained for a maximum of 24 months from the date of submission, after which they are securely deleted. Technical data such as server logs are retained for 12 months for security and analytical purposes. If you request deletion of your data before these periods expire, we will comply unless we are required by law to retain certain information.

9. Your Data Protection Rights

Under the GDPR and Dutch data protection law, you have the following rights regarding your personal data:

  • Right to Access: You have the right to request copies of your personal data. We may charge you a small fee for this service if requests are manifestly unfounded or excessive.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data, under certain conditions, such as when the data is no longer necessary for the purposes for which it was collected.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions, such as when you contest the accuracy of the data.
  • Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions, such as when we are processing based on legitimate interests.
  • Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions, in a structured, commonly used, and machine-readable format.
  • Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us using the contact details provided in Section 1 of this policy. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

10. Children's Privacy

Our website is not intended for children under the age of 16, and we do not knowingly collect personal data from children under 16. If you are under 16, please do not use our website or provide any personal data to us. If we learn that we have collected personal data from a child under 16, we will delete that information as quickly as possible. If you believe that we might have any information from or about a child under 16, please contact us at hello@daansmit.nl.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this policy. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. Your continued use of the website after any changes indicates your acceptance of the revised policy.

12. Contact Us

If you have any questions, concerns, or complaints about this Privacy Policy or our data handling practices, or if you wish to exercise any of your data protection rights, please do not hesitate to contact us:

Daan Smit
Nedersticht 45, 1083 XD Amsterdam, Netherlands
Email: hello@daansmit.nl
Phone: +31 20 555 0287
Hours: Mon–Fri: 9:00 – 18:00 CET

You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe that our processing of your personal data infringes the GDPR. Their contact details are available at www.autoriteitpersoonsgegevens.nl.