Scope

This privacy policy applies to the use of my website and to all (pre-)contractual interactions, such as booking an AI consultation, completing forms, and requesting information or quotes.

2. Controller

I, Robin Harinck (AIdoptIQ), act as the data controller under the GDPR.

3. What personal data do I process?

Contact details: name, email, phone number, company name and role.
Communications content: information you provide in forms or share by email/meeting.
Website data: IP address, device/browser type, pages visited, click behavior (via cookies/analytics).
Business data (if you are a client): invoicing and payment details, contract information, project notes.
I do not process special categories of personal data. My focus is on B2B relationships.

4. Purposes and legal basis

Service delivery & communications – performance of a contract.
Website functionality & security – legitimate interests.
Analysis & improvement – legitimate interests.
Marketing (updates/newsletter) – consent or legitimate interests for existing customers.
Administration & tax – legal obligation.

5. Cookies

I use functional, analytical (e.g., Google Analytics or equivalent) and—where consented—marketing cookies (e.g., LinkedIn/Meta). On your first visit you can set your preferences.

6. Recipients and sharing of data

I only engage processors that ensure appropriate security and with whom I conclude data processing agreements, for example:
Hosting and website (e.g., Framer/Vercel or equivalent)
Email, calendar and CRM
Analytics and feedback tools
Invoicing and accounting
I do not sell personal data. Data are shared with third parties only if legally required (e.g., tax authorities) or necessary to perform the contract.

7. International transfers

If processors outside the EEA are involved (e.g., in the US), I ensure an adequate level of protection through:
EU-U.S. Data Privacy Framework (where applicable), and/or
EU Standard Contractual Clauses (SCCs) adopted by the European Commission, plus any supplementary measures where needed.

8. Retention periods

Client and invoicing data: up to 7 years (tax retention).
Website/analytics: up to 26 months.
Newsletter data: until you unsubscribe or withdraw consent.
Other communications: as long as necessary to respond and handle your request (max. 24 months, unless a client relationship applies).

9. Security

I implement appropriate measures, including TLS/HTTPS, access control with 2FA, least-privilege access, regular updates, and backups at processors.

10. Your rights

You have the right to: access, rectification, erasure, restriction, objection (including to marketing), data portability.
Please send your request to contact@aidoptiq.ai. I will respond within one month.

11. Children

My services are aimed at businesses and professionals; I do not intend to collect data from children.

12. Complaints

Not satisfied? Contact me via contact@aidoptiq.ai.
You may also lodge a complaint with the Dutch Data Protection Authority: www.autoriteitpersoonsgegevens.nl.

13. Changes

I may update this policy. The most recent version is always available at https://aidoptiq.ai.