Privacy Policy

Last updated: December 2024

Introduction

crowdtglyv B.V. ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit our tea house, use our website at crowdtglyv.life, or interact with our services.

As a company operating in the Netherlands and serving customers in the European Union, we comply with the General Data Protection Regulation (GDPR) and all applicable EU privacy laws.

Data Controller

The data controller for your personal information is:

crowdtglyv B.V.

Dorpsstraat 147, 1343 AH Almere, Flevoland, Netherlands

Registration Number: A88525203

VAT Number: NL775965236A01

Email: privacy@crowdtglyv.life

Phone: +31 709607457

Data Collection

The data we collect includes personal information that you provide to us directly, information we collect automatically through our website and services, and information we may receive from third parties. We collect this information to provide you with our tea house services, improve your experience, and fulfil our legal obligations.

Information You Provide Directly

  • Contact details (name, email address, phone number)
  • Booking and reservation information
  • Payment information for services and purchases
  • Communication preferences
  • Feedback and reviews about our services
  • Information provided during tea workshops and events

Information Collected Automatically

  • Website usage data and analytics
  • IP address and location information
  • Device information and browser type
  • Cookies and similar tracking technologies
  • Visit dates and times to our tea house

How We Use Your Information

We explain how we use your information to provide our tea house services, improve your experience, and comply with legal requirements. Our use of your data is always based on a legal basis as required by GDPR, including your consent, contractual necessity, legitimate interests, or legal obligations.

Service Provision

  • Processing bookings and reservations for tea tastings, ceremonies, and workshops
  • Managing your visits to our tea house
  • Processing payments for services and retail purchases
  • Providing customer support and responding to inquiries
  • Sending booking confirmations and service-related communications

Legal Basis for Processing

  • Contract Performance: Processing necessary to perform our services
  • Legitimate Interest: Improving our services and business operations
  • Consent: Marketing communications and optional services
  • Legal Obligation: Compliance with tax, accounting, and safety requirements

Data Sharing and Third Parties

We do not sell your personal information to third parties. We may share your data with trusted service providers who help us operate our business, always under strict confidentiality agreements and GDPR compliance requirements.

Service Providers

  • Payment processing services for secure transactions
  • Booking and reservation management systems
  • Website hosting and maintenance providers
  • Email communication services
  • Accounting and legal service providers

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Our specific retention periods depend on the type of information and the purpose for which it was collected.

Retention Periods

  • Customer Records: 7 years after last interaction (legal requirement)
  • Marketing Consents: Until consent is withdrawn
  • Website Analytics: 26 months maximum
  • Payment Information: As required by financial regulations
  • CCTV Footage: 30 days (security purposes)

Your Rights

Under GDPR, you have several rights regarding your personal information. These rights allow you to control how your data is used and ensure transparency in our data processing activities.

Your GDPR Rights Include

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to certain types of data processing
  • Right to Withdraw Consent: Withdraw consent for data processing

To exercise any of these rights, please contact us at privacy@crowdtglyv.life or +31 709607457. We will respond to your request within one month as required by GDPR.

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. Our security measures include encryption, access controls, regular security assessments, and staff training on data protection.

Security Measures

  • SSL encryption for all website communications
  • Secure payment processing through certified providers
  • Regular security updates and monitoring
  • Access controls and staff authentication
  • Physical security measures at our tea house
  • Regular data backup and recovery procedures

Cookies and Tracking

Our website uses cookies and similar technologies to enhance your browsing experience, analyse website traffic, and provide personalised content. For detailed information about our cookie usage, please refer to our Cookie Policy.

You can control cookie settings through your browser preferences and our cookie consent banner. Disabling certain cookies may affect the functionality of our website.

International Data Transfers

As crowdtglyv operates primarily within the European Union, your personal data is generally processed within the EU/EEA. If we need to transfer data outside the EU/EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

Children's Privacy

Our services are not specifically directed to children under 16 years of age. We do not knowingly collect personal information from children under 16 without appropriate parental consent. If you believe we have collected information from a child under 16, please contact us immediately at privacy@crowdtglyv.life.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and, where appropriate, through other communication channels.

The "Last updated" date at the top of this policy indicates when it was last revised. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Contact Us

If you have any questions about this Privacy Policy, want to exercise your rights, or have concerns about how we handle your personal information, please contact us using the following contact information:

Privacy Officer - crowdtglyv B.V.

Email: privacy@crowdtglyv.life

Phone: +31 709607457

Address: Dorpsstraat 147, 1343 AH Almere, Flevoland, Netherlands

You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal data in accordance with applicable law.

Supervisory Authority

If you have concerns about our data processing practices that we cannot resolve, you have the right to lodge a complaint with the relevant supervisory authority:

Autoriteit Persoonsgegevens (Dutch Data Protection Authority)

Website: autoriteitpersoonsgegevens.nl

Phone: +31 70 888 8500

Address: Bezuidenhoutseweg 30, 2594 AV The Hague, Netherlands