Privacy Policy

Introduction

openlume B.V. ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us. We are the Data Controller for the personal data we process and are committed to compliance with the General Data Protection Regulation (GDPR) and Dutch privacy laws.

Data Collection

The data we collect includes personal information such as your name, email address, phone number, postal address, property information, financial details related to property management, and any other information you voluntarily provide to us. We may also collect technical information such as your IP address, browser type, device information, and website usage data through cookies and similar technologies. Additionally, we may collect information from third parties such as credit reporting agencies, background check services, and professional references when providing our property management services.

How We Use Your Information

We explain how we use your information to provide and improve our property management services, including tenant screening, lease administration, maintenance coordination, financial reporting, and customer support. We use of your data is based on legitimate business interests, contractual necessity, and your consent where required. We may use your information to communicate with you about our services, send you important updates, process payments, comply with legal obligations, and improve our website and services through analytics and user feedback.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds: (a) Contractual necessity - to perform our property management services and fulfill our contractual obligations; (b) Legitimate interests - to operate our business, improve our services, and maintain customer relationships; (c) Legal compliance - to meet regulatory requirements and legal obligations; (d) Consent - where you have given explicit consent for specific processing activities, which you may withdraw at any time.

Data Sharing and Disclosure

We may share your personal data with trusted service providers who assist us in delivering our services, including maintenance contractors, legal advisors, financial institutions, and technology providers. We may also share information with government authorities when required by law, with your explicit consent, or to protect our legal rights. We do not sell, rent, or trade your personal information to third parties for marketing purposes. All third-party service providers are contractually bound to protect your data and use it only for the specified purposes.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. Generally, we retain customer data for the duration of our service relationship and for up to 7 years thereafter for legal and regulatory compliance purposes. Property and financial records may be retained for longer periods as required by Dutch law. You may request deletion of your personal data, subject to legal retention requirements.

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights: (a) Right of access - to obtain confirmation of data processing and a copy of your personal data; (b) Right to rectification - to correct inaccurate or incomplete personal data; (c) Right to erasure - to request deletion of your personal data under certain circumstances; (d) Right to restrict processing - to limit how we use your data; (e) Right to data portability - to receive your data in a structured format; (f) Right to object - to object to processing based on legitimate interests; (g) Right to withdraw consent - where processing is based on consent. To exercise these rights, please contact us using the information provided below.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Our security measures include encryption of data in transit and at rest, secure servers, access controls, regular security assessments, and employee training on data protection. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

International Data Transfers

Your personal data is primarily processed within the European Union. If we transfer data outside the EU, we ensure adequate protection through appropriate safeguards such as Standard Contractual Clauses, adequacy decisions, or other approved transfer mechanisms under GDPR. We will inform you of any such transfers and the safeguards in place to protect your data.

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience, analyze website traffic, and improve our services. For detailed information about our use of cookies, including types of cookies we use and how to manage your preferences, please see our Cookie Policy.

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately so we can delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding your personal data, please contact us at privacy@openlume.top or write to us at openlume B.V., Eikenlaan 297, 4889 WY Breda, Netherlands. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal data appropriately.

Data Controller Information

The Data Controller for your personal data is:
openlume B.V.
Registration Number: 91528346
VAT Number: NL834760592B01
Address: Eikenlaan 297, 4889 WY Breda, Netherlands
Email: privacy@openlume.top
Phone: +31 40 966 6833