Privacy Policy

Introduction

prismshift B.V. ("prismshift", "we", "us", or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website or services. We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Controller Information

The data controller for your personal data is prismshift B.V., a company registered in the Netherlands with registration number NL52948307. Our registered office is located at Marktplein 90, 1362 YL Almere, Flevoland, Netherlands. For any privacy-related enquiries, please contact us at privacy@prismshift.pro or call +31 36 437 8007.

Data We Collect

Our data collection practices are designed to provide you with the best possible service whilst respecting your privacy. We collect the following types of personal data:

• Contact Information: Name, email address, phone number, company name, and postal address when you contact us or use our services.
• Communication Data: Records of your communications with us, including emails, phone calls, and messages through our website.
• Website Usage Data: Information about how you use our website, including IP address, browser type, pages visited, time spent on pages, and referring websites.
• Technical Data: Device information, browser settings, and other technical information collected through cookies and similar technologies.
• Marketing Data: Your preferences regarding marketing communications and your interactions with our marketing materials.

How We Use Your Information

We use your personal data for the following purposes, based on our legitimate business interests, contractual obligations, or your consent:

• Service Provision: To provide commercial real estate services, respond to your enquiries, and fulfil our contractual obligations.
• Communication: To communicate with you about our services, respond to your questions, and provide customer support.
• Website Improvement: To analyse website usage, improve our services, and enhance user experience.
• Marketing: To send you relevant information about our services, industry insights, and promotional materials (with your consent).
• Legal Compliance: To comply with legal obligations, prevent fraud, and protect our legitimate business interests.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about the cookies we use, please refer to our Cookie Policy.

Data Sharing and Third Parties

We do not sell your personal data to third parties. We may share your information with:

• Service Providers: Third-party companies that provide services on our behalf, such as website hosting, email delivery, and analytics.
• Professional Advisors: Legal, financial, and other professional advisors when necessary for business operations.
• Legal Requirements: Government authorities or law enforcement when required by law or to protect our legal rights.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Generally, we retain contact and communication data for up to 7 years after our last interaction, unless a longer retention period is required by law. Website usage data and analytics information are typically retained for 26 months, whilst marketing data is kept until you withdraw consent or opt out of communications.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete personal data.
• Right to Erasure: Request deletion of your personal data in certain circumstances.
• Right to Restrict Processing: Request limitation of how we process your personal data.
• Right to Data Portability: Request transfer of your data to another organisation.
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
• Right to Withdraw Consent: Withdraw consent where processing is based on your consent.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include secure data transmission, access controls, regular security assessments, and staff training on data protection. However, no internet transmission or electronic storage is completely secure, and we cannot guarantee absolute security.

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA) where our service providers are located. When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about how we handle your personal data, please contact us:

• Email: privacy@prismshift.pro
• Phone: +31 36 437 8007
• Post: prismshift B.V., Marktplein 90, 1362 YL Almere, Flevoland, Netherlands

Complaints

If you believe we have not handled your personal data in accordance with applicable data protection laws, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this policy periodically to stay informed about how we protect your personal data.

Legal Basis for Processing

We process your personal data based on the following legal bases under GDPR: (a) Consent - where you have given clear consent for specific processing activities; (b) Contract - where processing is necessary for the performance of a contract with you; (c) Legal obligation - where processing is required to comply with legal requirements; (d) Legitimate interests - where processing is necessary for our legitimate business interests, provided these do not override your fundamental rights and freedoms.