Privacy Policy
Last updated: February 19, 2026
1. Controller
CYBERSOL B.V.
Teleportboulevard 110, 1043EJ Amsterdam, Netherlands
Prinses Margrietplantsoen 33, 2595AM The Hague, Netherlands
Email: info@cybersol.nl
Phone: +31-70-304-36-65
CYBERSOL B.V. ("CYBERSOL", "we", "us", or "our") is the controller of personal data processed through this website and our services, as defined under the General Data Protection Regulation (EU) 2016/679 ("GDPR").
2. What Personal Data We Collect
We may collect and process the following categories of personal data:
- Contact form submissions: name, email address, phone number (optional), and message content when you contact us via our website.
- Website usage data: IP address, browser type, device information, pages visited, referring URL, and interaction data collected through analytics tools.
- LinkedIn data: when you interact with our services that integrate with LinkedIn's Community Management APIs, we may access your public LinkedIn profile information (name, profile URL, profile picture) and activity data (posts, comments, reactions) as permitted by your LinkedIn privacy settings and our API access scope.
- Cookies and similar technologies: essential cookies for website functionality, analytics cookies (with your consent), and performance cookies. See Section 9 for details.
3. Purpose and Legal Basis for Processing
We process your personal data for the following purposes:
| Purpose | Legal Basis (Art. 6 GDPR) | Retention |
|---|---|---|
| Responding to contact inquiries | Art. 6(1)(b) — pre-contractual measures | 12 months after last contact |
| Website analytics and improvement | Art. 6(1)(f) — legitimate interest | 26 months |
| LinkedIn content management and publishing | Art. 6(1)(f) — legitimate interest | Until no longer necessary for purpose |
| Security monitoring and abuse prevention | Art. 6(1)(f) — legitimate interest | 90 days |
| Legal compliance and record-keeping | Art. 6(1)(c) — legal obligation | As required by law (up to 7 years) |
4. LinkedIn API Data
CYBERSOL uses LinkedIn's Community Management APIs to manage and publish content on our LinkedIn company page. In connection with this integration:
- We access LinkedIn data solely for the purpose of managing our company's LinkedIn presence, including publishing posts, monitoring engagement, and analysing content performance.
- We do not use personal data obtained via LinkedIn APIs for advertising, sales, or any purpose other than community management.
- We have the capability to securely delete all data obtained via LinkedIn's Community Management APIs upon request from LinkedIn or the data subject.
- LinkedIn profile data and activity data accessed through the API is processed in accordance with LinkedIn's Privacy Policy and our API agreement with LinkedIn.
- We do not sell, rent, or share LinkedIn-sourced data with third parties.
5. Data Sharing and Recipients
We may share your personal data with the following categories of recipients:
- Hosting and infrastructure: Vercel Inc. (website hosting, based in USA — EU Standard Contractual Clauses in place), Neon Inc. (database hosting).
- Analytics: Vercel Analytics (privacy-focused, no cookies for basic analytics).
- Email services: Resend (transactional email delivery for contact form submissions and system notifications).
- LinkedIn: data shared back to LinkedIn only as required by the API integration (e.g., publishing content to our company page).
- Legal authorities: when required by Dutch or EU law, court order, or regulatory request.
We do not sell your personal data. We do not share your data with third parties for their own marketing purposes.
6. International Data Transfers
Some of our service providers are based outside the European Economic Area (EEA), primarily in the United States. Where we transfer personal data outside the EEA, we ensure appropriate safeguards are in place:
- EU Standard Contractual Clauses (SCCs) adopted by the European Commission
- EU-US Data Privacy Framework certification of the recipient (where applicable)
- Binding Corporate Rules (where applicable)
You may request a copy of the safeguards in place by contacting us at info@cybersol.nl.
7. Your Rights Under GDPR
As a data subject, you have the following rights under the GDPR. You can exercise these rights at any time by contacting us at info@cybersol.nl:
- Right of access (Art. 15): obtain confirmation of whether we process your personal data and request a copy of it.
- Right to rectification (Art. 16): request correction of inaccurate or incomplete personal data.
- Right to erasure (Art. 17): request deletion of your personal data ("right to be forgotten") where no legal basis for continued processing exists.
- Right to restriction (Art. 18): request restriction of processing in certain circumstances (e.g., while we verify accuracy of data).
- Right to data portability (Art. 20): receive your personal data in a structured, commonly used, machine-readable format.
- Right to object (Art. 21): object to processing based on legitimate interest, including profiling. We will cease processing unless we demonstrate compelling legitimate grounds.
- Right to withdraw consent (Art. 7(3)): where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
- Right to lodge a complaint: you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.
We will respond to your request within 30 days. In complex cases, this period may be extended by an additional 60 days, in which case we will inform you of the extension and the reasons for it.
8. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:
- Encryption in transit (TLS/HTTPS) for all data transfers
- Encryption at rest for database storage
- Access controls and authentication for administrative systems
- Regular security assessments and monitoring
- Rate limiting and abuse detection on all API endpoints
- Security headers (Content Security Policy, X-Frame-Options, etc.)
9. Cookies and Tracking Technologies
Our website uses the following cookies and similar technologies:
| Type | Purpose | Duration |
|---|---|---|
| Essential | Authentication session cookies for admin panel access | Session / 7 days |
| Analytics | Vercel Analytics — privacy-focused website usage statistics | Session |
| Performance | Vercel Speed Insights — page performance monitoring | Session |
Essential cookies are strictly necessary for the website to function and do not require consent. Analytics and performance cookies are privacy-focused and do not track individual users across websites.
10. Automated Decision-Making
We do not use your personal data for automated decision-making or profiling that produces legal effects concerning you or similarly significantly affects you, as described in Art. 22 GDPR.
11. Data Protection for Minors
Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from a minor, please contact us at info@cybersol.nl and we will promptly delete it.
12. Changes to This Policy
We may update this privacy policy from time to time to reflect changes in our practices, technology, or legal requirements. The "Last updated" date at the top of this page indicates when the policy was last revised. Material changes will be communicated through a notice on our website.
13. Contact Us
For any questions, concerns, or requests regarding this privacy policy or our data processing practices, please contact us:
CYBERSOL B.V.
Attn: Privacy
Email: info@cybersol.nl
Phone: +31-70-304-36-65
Teleportboulevard 110, 1043EJ Amsterdam, Netherlands
You may also contact the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) directly:
Autoriteit Persoonsgegevens
PO Box 93374, 2509AJ The Hague
autoriteitpersoonsgegevens.nl