How we collect, use, and protect your personal information in compliance with GDPR and Dutch privacy laws
Last updated: January 15, 2025
As a Netherlands-based platform, we fully comply with the General Data Protection Regulation (GDPR). You have the right to access, rectify, erase, restrict processing, object to processing, and data portability regarding your personal information.
Learn more about your rights →Fallow Café ("we," "us," or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (fallowcafe.com), use our services, or interact with us in any way.
This policy applies to all users of our platform, including visitors, registered users, design professionals, business owners, and anyone who submits content or information to us.
Data Controller: Fallow Café
Location: Amsterdam, Netherlands
Contact: [email protected]
DPA Registration: [Registration Number]
We may receive information about you from third parties, such as social media platforms if you interact with our content, business partners for venue features, or publicly available professional directories when relevant to our hospitality design focus.
We use your personal information for the following purposes, based on legitimate interests, contractual necessity, or with your consent:
We do not sell your personal information. We may share your information in the following limited circumstances:
We work with trusted third-party service providers who help us operate our platform, including hosting services, email providers, analytics tools, and customer support platforms. These providers are bound by strict confidentiality agreements and may only use your information to provide services to us.
With your explicit consent, we may share your professional information with other design professionals, venue owners, or industry partners for networking and collaboration purposes. You control what information is shared and can opt out at any time.
We may disclose your information if required by law, legal process, or government authorities, or to protect the rights, property, or safety of Fallow Café, our users, or others.
In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction, subject to the same privacy protections.
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.
While we use industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your information to the best of our ability.
Under GDPR and Dutch privacy law, you have the following rights regarding your personal information:
Request a copy of the personal information we hold about you, including how it's used and shared.
Correct any inaccurate or incomplete personal information we have about you.
Request deletion of your personal information under certain circumstances ("right to be forgotten").
Limit how we use your personal information under certain circumstances.
Receive your personal information in a portable format or have it transferred to another service.
Object to processing of your personal information for direct marketing or other purposes.
To exercise any of these rights, please contact us at [email protected] or use our contact form. We will respond to your request within 30 days as required by law.
You also have the right to file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal information appropriately.
We retain your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements.
Account Information
While your account is active, plus 2 years after deletion
Communication Records
Support inquiries and professional correspondence
Analytics Data
Aggregated usage statistics and website analytics
Marketing Data
Newsletter subscriptions and marketing preferences
Legal Records
Records kept for legal compliance purposes
When we no longer need your personal information, we will securely delete or anonymize it. Some information may be retained in aggregated, anonymized form for statistical purposes.
Your personal information is primarily stored and processed within the European Union. However, some of our service providers may be located outside the EU/EEA.
When we transfer personal information outside the EU/EEA, we ensure appropriate safeguards are in place:
You have the right to obtain information about any international transfers and the safeguards in place. Please contact us if you need more details about specific transfers.
If you have any questions about this Privacy Policy, wish to exercise your privacy rights, or have concerns about how we handle your personal information, please contact us:
Email: [email protected]
Subject Line: Privacy Inquiry - [Your Request Type]
Response Time: Within 30 days
Languages: Dutch, English
Email: [email protected]
Role: External Data Protection Officer
Scope: GDPR compliance and data protection matters
Available: Monday - Friday, 9:00 - 17:00 CET
If you're not satisfied with our response to your privacy concerns, you have the right to file a complaint with the Dutch Data Protection Authority:
Autoriteit Persoonsgegevens
Website: autoriteitpersoonsgegevens.nl
Phone: +31 (0)70 888 8500
Email: [email protected]
Our services are designed for professional use by adults in the hospitality design industry. We do not knowingly collect personal information from children under the age of 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete that information promptly.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at [email protected].
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.