Privacy Policy
How vBoxx keeps your data private. Last updated in December 2025
vBoxx B.V. attaches great importance to the protection of your personal data and your privacy. In this Privacy Policy, we explain how we collect, use, store, and protect personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable Dutch data protection laws.
This Privacy Policy applies to the use of our website, our services, and all interactions with vBoxx in which personal data are processed.
1. Data Controller
The data controller within the meaning of the GDPR is:
vBoxx B.V.
The Netherlands
Email: info@vboxx.eu
Website: www.vboxx.eu
For any questions regarding this Privacy Policy or the processing of your personal data, you may contact us using the details above.
2. Personal Data We Process
vBoxx may possibly process your data if you are or will become a client of vBoxx, if you visit the website, if you are an employee of vBoxx, if you register for newsletters from vBoxx, or if you get in touch with us via the contact form. In this process, vBoxx collects your name, address, telephone number, and email address, and in some cases, your IP address. Consequently, this data enables us to process your personal information in accordance with our privacy policy.
- finalise the contract clients conclude with vBoxx financially and administratively;
- comply with our obligations as an employer;
- provide our services;
- reach clients or interested parties if this is necessary;
- develop/further optimise our services;
- provide you with customised information (direct marketing).
vBoxx keeps IP addresses of clients or prospective clients who visit the website. These data enable us to:
- record which internet site/internet pages you visit;
- improve the functionality and contents of the website;
- keep track of the subjects or applications in which prospective clients are interested;
- ensure that you do not constantly receive the same information;
- improve the range of products.
3. Purposes and Legal Bases of Processing
vBoxx processes personal data only where there is a lawful basis under Article 6 GDPR and for clearly defined purposes:
| Purpose | Legal Basis |
|---|---|
| Providing and managing our services | Art. 6(1)(b) GDPR (performance of a contract) |
| Handling inquiries and communication | Art. 6(1)(f) GDPR (legitimate interest) |
| Website security and technical operation | Art. 6(1)(f) GDPR (legitimate interest) |
| Improving our website and services (Matomo analytics) | Art. 6(1)(f) GDPR (legitimate interest) |
| Sending newsletters and marketing emails | Art. 6(1)(a) GDPR (consent) |
| Compliance with legal obligations | Art. 6(1)(c) GDPR |
Our legitimate interests include maintaining a secure website, improving our services, and communicating effectively with clients and interested parties.
4. Cookies and Website Analytics (Matomo)
Our website uses Matomo, a privacy-friendly web analytics tool that is operated on our own infrastructure.
No data are shared with third-party providers.
IP addresses are anonymised.
No cross-site tracking takes place.
No personal profiles are created.
Matomo is used solely to analyze website usage in order to improve functionality and content. The processing is based on our legitimate interest in operating and optimizing our website in accordance with Art. 6(1)(f) GDPR.
5. Newsletter and Email Communications
If you subscribe to our newsletter or marketing communications, we will process your email address (and optionally your name) to send you information about vBoxx, our services, and related updates.
Subscription is based on your explicit consent.
We use a double opt-in procedure.
You may withdraw your consent at any time via the unsubscribe link included in every email or by contacting us directly.
Legal basis: Art. 6(1)(a) GDPR.
6. Disclosure of Personal Data to Third Parties
vBoxx does not sell or trade your personal data.
Personal data may be disclosed to third parties only if:
this is required by law or a court order;
it is necessary for the performance of a contract;
you have given your explicit consent.
Where third parties process personal data on our behalf, vBoxx ensures that appropriate data processing agreements are in place in accordance with Art. 28 GDPR.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which they were collected, unless a longer retention period is required by law.
As a general rule:
Client and business contact data are retained for up to two years after the last business interaction, unless legal obligations require longer storage.
Newsletter data are retained until you unsubscribe.
Technical website data are anonymised or deleted as soon as they are no longer required for analytical or security purposes.
8. Data Security
vBoxx has implemented appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, disclosure, or alteration. These measures include, among others:
Access controls and role-based authorisation
Individual user accounts and strong authentication
Two-factor authentication for internal systems
Secure, encrypted connections
Confidentiality obligations for employees
9. Your Rights Under the GDPR
You have the following rights under the GDPR:
Right of access (Art. 15 GDPR)
Right to rectification (Art. 16 GDPR)
Right to erasure (Art. 17 GDPR)
Right to restriction of processing (Art. 18 GDPR)
Right to data portability (Art. 20 GDPR)
Right to object (Art. 21 GDPR)
Right to withdraw consent at any time (Art. 7(3) GDPR)
To exercise any of these rights, please contact us at info@vboxx.eu. We will respond to your request within one month, unless a legal exception applies.
Privacy Regulations of vBoxx version December 2025