Privacy Policy

Last updated: 9 June 2026

This Privacy Policy explains how Nortzee B.V. ("Nortzee", "we", "us") collects, uses, and protects personal data when you visit our website, subscribe to our newsletter, book a demo, or otherwise contact us. We process personal data in accordance with the General Data Protection Regulation (GDPR) and the Dutch implementation act (UAVG).

1. Who we are

Nortzee B.V. is the data controller for the personal data described in this policy.

  • Company: Nortzee B.V.
  • Postal address: Postbus 18644, 2502 EP 's-Gravenhage, The Netherlands
  • Chamber of Commerce (KvK) number: 99359227
  • Contact for privacy matters: info@nortzee.com

We have not appointed a Data Protection Officer, as we are not required to do so under Article 37 GDPR. For any privacy question, use the contact above.

2. What data we collect and why

Newsletter subscribers. When you sign up for our newsletter, we collect your email address and the fact that you signed up via our website. We only add you to our list after you confirm your subscription via the link in the confirmation email (double opt-in). We use your email address to send you our market intelligence briefing and related updates about Nortzee. The legal basis is your consent (Article 6(1)(a) GDPR), given at the moment of signup. You can withdraw consent at any time via the unsubscribe link in every email or by contacting us.

Demo bookings. When you book a demo through the scheduling widget on our contact page, we collect your name, email address, the meeting time you choose, and anything you add to the booking notes. We use this to prepare for and hold the meeting. The legal basis is taking steps at your request prior to entering into a contract (Article 6(1)(b) GDPR).

Business and sales contact. If you reach out to us, or we identify your company as a relevant prospect, we may process business contact details (name, role, company, business email, and notes from our exchanges) to evaluate and pursue a potential business relationship. The legal basis is our legitimate interest (Article 6(1)(f) GDPR) in B2B marketing and relationship management. You can object to this processing at any time.

Website usage. We use Plausible Analytics, a privacy-friendly analytics service, to understand aggregate website traffic (page views, referrers, browser type, country-level location). Plausible does not use cookies and does not store identifiable personal data; we cannot trace statistics back to individual visitors. The legal basis is our legitimate interest (Article 6(1)(f) GDPR) in understanding how our website is used. Our website does not use advertising trackers and sets no cookies of its own; the embedded scheduling widget on the contact page may use cookies from Calendly that are needed to provide the booking function.

We do not knowingly collect special categories of personal data, and our services are not directed at children.

3. Who has access to your data

We share personal data only with service providers (processors) acting on our instructions, and only as needed to operate our services:

  • MailerLite (UAB MailerLite, Lithuania) — newsletter signup and email delivery.
  • Amazon Web Services (AWS) — website hosting and infrastructure, in the EU (Frankfurt) region, with content delivered through Amazon CloudFront.
  • Plausible Analytics (Plausible Insights OÜ, Estonia) — cookieless, aggregated website statistics, hosted in the EU.
  • Calendly (Calendly LLC, United States) — demo and meeting scheduling.
  • Google — business email and document storage.

These providers process data under a data processing agreement and may not use it for their own purposes. We do not sell personal data.

4. International transfers

Our primary processors store data in the EU/EEA. Where a processor or its sub-processors are based outside the EEA — such as Calendly in the United States — those transfers are protected by appropriate safeguards under Chapter V GDPR, such as the EU Standard Contractual Clauses or certification under the EU-US Data Privacy Framework. You can request details of the safeguards in place via the contact in Section 1.

5. How long we keep your data

  • Newsletter data: until you unsubscribe or withdraw consent, after which it is deleted within a reasonable cleanup period.
  • Sales and business contact data: for as long as there is a realistic prospect of a business relationship, and thereafter only where required for legal or administrative reasons.
  • Website statistics: kept only in aggregated form that cannot be traced back to you.

6. Your rights

Under the GDPR you have the right to:

  • access the personal data we hold about you;
  • have inaccurate data corrected;
  • have your data erased;
  • restrict or object to processing;
  • receive your data in a portable format;
  • withdraw consent at any time, without affecting prior processing.

To exercise any of these rights, contact us at info@nortzee.com. We will respond within one month.

You also have the right to lodge a complaint with the Dutch supervisory authority, the Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl).

7. Changes to this policy

We may update this policy from time to time. The current version is always available on our website, with the revision date shown at the top.

8. Contact

Questions about this policy or your data: info@nortzee.com.