Privacy Policy

Last Updated: 1st January 2026

This Privacy Policy describes how ClearOpium B.V. ("we", "us", or "our") collects, uses, and protects your personal information when you visit our website or use our services. We are committed to protecting your privacy and ensuring transparency about how we handle your personal data.

Data Controller Information

ClearOpium B.V. is the data controller for the personal information we collect. Our contact details are:

Data We Collect

We collect different types of personal data depending on how you interact with our website and services. The data collection includes information you provide directly and information collected automatically through your use of our services.

Information You Provide

• Contact information (name, email address, phone number)
• Business information (company name, address, VAT number)
• Communication preferences and enquiry details
• Order and transaction information
• Account credentials and profile information

Information Collected Automatically

• Website usage data and analytics information
• IP address, browser type, and device information
• Pages visited, time spent, and navigation patterns
• Referral sources and search terms
• Cookie and tracking technology data

How We Use Your Information

We use your personal data for various purposes based on legitimate business interests and legal obligations. The use of your data helps us provide better services and improve your experience with our platform.

• Processing orders and managing customer accounts
• Providing customer support and responding to enquiries
• Improving our website, products, and services
• Sending important updates and service communications
• Marketing communications (with your consent)
• Compliance with legal obligations and regulations
• Fraud prevention and security monitoring
• Business analytics and performance measurement

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Contract Performance: To fulfil our contractual obligations to you
• Legitimate Interests: For business operations, security, and service improvement
• Legal Compliance: To meet regulatory and legal requirements
• Consent: For marketing communications and certain tracking activities

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our cookie usage, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell your personal data to third parties. We may share your information in the following circumstances:

• With trusted service providers who assist in business operations
• With payment processors for transaction processing
• With logistics partners for order fulfilment
• When required by law or to protect our legal rights
• In connection with business transfers or mergers
• With your explicit consent for specific purposes

International Data Transfers

As we operate across Europe, your data may be transferred to and processed in different EU member states. All transfers are conducted in accordance with GDPR requirements and appropriate safeguards are in place to protect your personal information.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary depending on the type of data and the purpose for which it was collected. Generally, we retain customer data for the duration of the business relationship plus any applicable legal retention periods.

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Request transfer of your data
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for consent-based processing

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training on data protection principles.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us using the following information:

You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal data in accordance with applicable law.