Privacy Policy

FrostAtlas B.V. ("we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

Data Controller Information

FrostAtlas B.V. is the data controller for your personal information. Our contact details are:

• Company: FrostAtlas B.V.
• Registration Number: KvK64582173
• VAT Number: NL429873156B01
• Address: Marktplein 123, 6526 RZ Nijmegen, Gelderland, Netherlands
• Email: privacy@frostatlas.world
• Phone: +31 242463316

Data Collection

We collect and process the following types of personal data:

• Personal Information: Name, email address, phone number, postal address
• Financial Information: Financial goals, income information, debt details (only when provided voluntarily for consultation purposes)
• Communication Data: Records of correspondence, consultation notes, service preferences
• Technical Data: IP address, browser type, device information, website usage patterns
• Cookies and Tracking Data: Information collected through cookies and similar technologies

The data we collect is obtained through website forms, email communications, phone consultations, and automated technologies such as cookies. We only collect information that is necessary for providing our financial education services.

How We Use Your Information

We use your personal data for the following purposes, based on legitimate business interests and legal obligations:

• Service Delivery: To provide financial education, consultation services, and personalised guidance
• Communication: To respond to enquiries, send appointment confirmations, and provide follow-up support
• Business Operations: To manage client relationships, maintain records, and improve our services
• Legal Compliance: To meet regulatory requirements and legal obligations
• Marketing: To send relevant information about our services (with your consent)

How we use your information depends on the services you request and your consent preferences. We process your data lawfully under GDPR based on contract performance, legitimate interests, and consent where applicable.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our cookie usage, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

• Service Providers: Third-party vendors who assist with website hosting, email services, and analytics
• Legal Authorities: When required by law or to protect our rights and safety
• Business Transfers: In the event of a merger, acquisition, or sale of assets

All third parties are contractually obligated to protect your information and use it only for specified purposes.

Data Retention

We retain your personal information only as long as necessary to fulfil the purposes outlined in this policy. Client consultation records are kept for 7 years to comply with financial services regulations. Marketing communications data is retained until you withdraw consent. Website analytics data is typically retained for 26 months. We regularly review and delete data that is no longer required.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data in certain circumstances
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Request transfer of your data
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for processing where applicable

Your rights may be subject to certain limitations under applicable law. To exercise any of these rights, please contact us using the information provided below.

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. This includes encryption, secure servers, access controls, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

International Data Transfers

Your data is primarily processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will take steps to delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

• Email: privacy@frostatlas.world
• Phone: +31 242463316
• Post: FrostAtlas B.V., Marktplein 123, 6526 RZ Nijmegen, Gelderland, Netherlands

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with your local data protection authority. For residents of the Netherlands, this is the Autoriteit Persoonsgegevens (Dutch Data Protection Authority).

Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR: (a) Contract performance - to provide requested services; (b) Legitimate interests - for business operations and service improvement; (c) Consent - for marketing communications and certain cookies; (d) Legal obligation - to comply with regulatory requirements. You can contact us to learn more about the specific legal basis for processing your information.