Privacy Policy
Last updated: January 31, 2026
1. Introduction
Konsultrix B.V. ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services, in compliance with the General Data Protection Regulation (GDPR) and other applicable European data protection laws.
By using our website and services, you consent to the data practices described in this policy.
2. Data Controller
For the purposes of GDPR, Konsultrix is the data controller. You can contact us at:
Konsultrix
Staalmeesterslaan
1057NP Amsterdam
Netherlands
Email: privacy@konsultrix.com
3. Information We Collect
3.1 Personal Data You Provide
We collect personal data that you voluntarily provide when you:
- Fill out contact forms or request assessments
- Subscribe to our newsletter or communications
- Register for webinars or events
- Engage with our consulting services
This may include: name, email address, phone number, company name, job title, and any other information you choose to provide.
3.2 Automatically Collected Data
When you visit our website, we automatically collect certain information:
- IP address and location data
- Browser type and version
- Device information
- Pages visited and time spent on pages
- Referring website addresses
- Cookies and similar tracking technologies
4. Legal Basis for Processing (GDPR)
We process your personal data based on the following legal grounds:
- Consent: You have given clear consent for us to process your personal data for specific purposes
- Contract: Processing is necessary for a contract we have with you, or to take steps at your request before entering into a contract
- Legal Obligation: Processing is necessary for compliance with legal obligations
- Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, provided these are not overridden by your rights
5. How We Use Your Data
We use your personal data for the following purposes:
- Responding to your inquiries and providing requested services
- Conducting FinOps assessments, AI readiness assessments, and consulting services
- Sending marketing communications (with your consent)
- Improving our website and services
- Complying with legal and regulatory requirements
- Analyzing website usage and trends
- Preventing fraud and ensuring security
6. Data Sharing and Disclosure
We do not sell your personal data. We may share your information with:
- Service Providers: Third-party vendors who assist us in operating our website and providing services (e.g., hosting, analytics, email services)
- Microsoft Azure: As our cloud infrastructure provider, subject to their data protection agreements
- Legal Authorities: When required by law or to protect our rights
- Business Transfers: In connection with mergers, acquisitions, or asset sales
All third parties are contractually obligated to protect your data in compliance with GDPR.
7. International Data Transfers
Your data may be transferred to and processed in countries outside the European Economic Area (EEA), including Egypt. We ensure such transfers comply with GDPR through:
- EU Standard Contractual Clauses (SCCs)
- Adequacy decisions by the European Commission
- Appropriate safeguards as required by GDPR Article 46
8. Data Retention
We retain your personal data only as long as necessary for the purposes outlined in this policy, or as required by law. Retention periods vary based on:
- Client data: Duration of engagement plus 7 years for legal compliance
- Marketing data: Until you withdraw consent or request deletion
- Website analytics: 26 months maximum
9. Your Rights Under GDPR
Under GDPR, you have the following rights:
- Right to Access: Request copies of your personal data
- Right to Rectification: Request correction of inaccurate or incomplete data
- Right to Erasure: Request deletion of your personal data ("right to be forgotten")
- Right to Restrict Processing: Request limitation of how we use your data
- Right to Data Portability: Request transfer of your data in a machine-readable format
- Right to Object: Object to processing based on legitimate interests or direct marketing
- Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
- Right to Lodge a Complaint: File a complaint with your national data protection authority
To exercise these rights, contact us at privacy@konsultrix.com. We will respond within 30 days.
10. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience. You can manage your cookie preferences at any time using our cookie consent banner.
10.1 Essential Cookies (Always Active)
These cookies are necessary for the website to function properly and cannot be disabled.
| Cookie | Purpose | Duration |
|---|---|---|
| cookieyes-consent | Stores your cookie consent preferences | 1 year |
| __cf_bm | Cloudflare bot protection | 30 minutes |
10.2 Analytics Cookies (Requires Consent)
These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously.
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
| _ga | Google Analytics | Distinguishes unique users | 2 years |
| _ga_* | Google Analytics | Maintains session state | 2 years |
| _gid | Google Analytics | Distinguishes users | 24 hours |
| _clck | Microsoft Clarity | Persists Clarity user ID | 1 year |
| _clsk | Microsoft Clarity | Connects pageviews in session | 1 day |
| CLID | Microsoft Clarity | Identifies returning users | 1 year |
10.3 Marketing Cookies (Requires Consent)
These cookies are used to track visitors across websites to display relevant advertisements.
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
| _gcl_au | Google Ads | Conversion linker for ads | 90 days |
| IDE | Google DoubleClick | Ad targeting and measurement | 1 year |
| NID | Preferences and ad personalization | 6 months |
10.4 Managing Your Cookie Preferences
You can change your cookie preferences at any time by clicking the button below. You can also control cookies through your browser settings, though this may affect website functionality.
11. Data Security
We implement appropriate technical and organizational measures to protect your data:
- Encryption in transit (TLS/SSL) and at rest
- Access controls and authentication
- Regular security assessments and penetration testing
- SOC 2 Type II compliance
- Employee training on data protection
- Incident response procedures
12. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes by:
- Posting the updated policy on our website with a new "Last updated" date
13. Supervisory Authority
If you have concerns about our data processing practices, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens):
Autoriteit Persoonsgegevens
Postbus 93374
2509 AJ Den Haag
Netherlands
Website: autoriteitpersoonsgegevens.nl
14. Contact Us
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:
Konsultrix Privacy Team
Email: privacy@konsultrix.com
Phone: +31 (06) 40939533
Address: Staalmeesterslaan, 1057 NP Amsterdam, Netherlands
Questions About Your Privacy?
We're committed to transparency and protecting your data. Contact our privacy team for any concerns.
Contact Privacy Team