The Controller within the meaning of the General Data Protection Regulation (GDPR) and national data protection laws of the EU Member States, as well as other data protection provisions, is Spanjaard Advice Agency B.V., located at Segment 3, 6921RC Duiven, the Netherlands
Spanjaard Advice Agency B.V. trading under name Revenue Radar
Segment 3
6921RC Duiven
The Netherlands
E-Mail: mail@revenueradar.app
II. General Information on Data Processing
1. Scope of the Processing of Personal Data
As a matter of principle, we collect and use personal data of our users only insofar as this is necessary for the provision of a functional website as well as of our contents and services. The collection and use of personal data of our users or their data of third parties (e.g., Amazon, eBay, shop systems, etc.) is regularly only carried out on a contractual basis or after consent and authorisation of the user. An exception applies in those cases where obtaining prior consent is not possible for actual reasons and the processing of the data is permitted by legal provisions.
2. Legal Basis for the Processing of Personal Data
Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) lit. a EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary for the execution of pre-contractual measures.
If processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) lit. c GDPR serves as the legal basis.
If processing is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not override the first-mentioned interest, Art. 6 (1) lit. f GDPR serves as the legal basis for the processing.
3. Data Erasure and Storage Period
The personal data of the data subject will be erased or barred as soon as the purpose of the storage ceases to apply. Storage may also be carried out if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the Controller is subject. The data will also be barred or erased if a storage period provided for by the aforementioned legislation expires, unless there is a need to continue storing the data for the purpose of concluding a contract, performing a contract or pursuing legal claims. other provisions to which the Controller is subject. The data will also be barred or erased if a storage period provided for by the aforementioned legislation expires, unless there is a need to continue storing the data for the purpose of concluding a contract, performing a contract or pursuing legal claims.
III. Provision of the Website and Creation of Log Files
1. Description and
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.
The following data are collected
(1) Information about the type of browser and the version used
(2) The user’s operating system
(3) The user’s Internet service provider
(4) The IP address of the user
(5) Date and time of access
These data are also stored in the log files of our system. These data are not stored together with other personal data of the user. stored in the log files of our system. These data are not stored together with other personal data of the user.
2. Legal Basis for Data
The legal basis for the temporary storage of the data and the log files is Art. 6 (1) lit. f GDPR
3. Purpose of the Data Processing
The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session. delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session.
The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems.
These purposes are also our legitimate interest in data processing according to Art. 6 (1) lit. f GDPR.
4. Duration of Storage
The data will be erased as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
In the case of storage of data in log files, this is the case after 10 days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated so that an assignment of the calling client is no longer possible.
5. Possibility of Objection and Erasure
The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility for the user to object.
IV. The
1. Description and Scope of Data Processing
Our website utilizes cookies, which are text files stored in the internet browser or by the internet browser on the user’s computer system. When a user visits our website, a cookie may be stored on their operating system, containing a unique string of characters that identifies the browser upon revisiting the site.
We employ cookies to enhance user-friendliness and enable certain features of our website to function across page changes.
The data stored and transmitted in cookies include log-in information.
2. Legal Basis for Data Processing
The legal basis for processing personal data using necessary cookies is Article 6 (1) lit. f GDPR.
3. Purpose of the Data Processing
Technically necessary cookies are used to simplify website use for users, particularly for features that require persistent browser recognition across page changes.
We use cookies specifically for:
Providing access to a closed user area.
Data collected through technically necessary cookies are not used to create user profiles.
These purposes constitute our legitimate interest in processing personal data under Article 6 (1) lit. f GDPR.
4. Duration of Storage, Possibility of Objection and Erasure
Cookies are stored on the user’s computer and transmitted to our site. Users have full control over cookie usage by adjusting their internet browser settings to deactivate or restrict cookie transmission. Stored cookies can be erased at any time, including automatically. Disabling cookies for our website may limit access to its full range of features.
V. Newsletter
1. Description and Scope of Data Processing
On our website, users can subscribe to a free newsletter. When registering for the newsletter, the data entered in the registration form is transmitted to us:
Name
E-mail address
The processing of this data is based on your consent during the registration process, with reference to this Privacy Policy.
2. Legal Basis for Data Processing
After the user has registered for the newsletter, the legal basis for data processing is Article 6 (1) lit. a GDPR, provided the user has given consent.
3. Purpose of the Data Processing
We collect the user’s e-mail address to deliver the newsletter.
4. Duration of Storage
The data is deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. The user’s e-mail address is therefore stored as long as the newsletter subscription is active.
5. Possibility of Objection and Cancellation
Users can cancel the newsletter subscription at any time using the corresponding link in each newsletter. This action also allows withdrawal of consent for the storage of personal data collected during the registration process.
VI. Contact Form and E-mail Contact
1. Description and Scope of Data Processing
Users can contact us via the provided e-mail address. In this case, the personal data transmitted with the e-mail will be stored. The data will not be shared with third parties and will be used exclusively to process the inquiry.
2. Legal Basis for Data Processing
The legal basis for processing this data is Article 6 (1) lit. a GDPR, provided the user has given consent. If the contact aims at concluding a contract, the additional legal basis for processing is Article 6 (1) lit. b GDPR.
3. Purpose of the Data Processing
The processing of personal data from the contact form serves solely to process the user's inquiry. In the case of e-mail contact, this also constitutes our necessary legitimate interest in processing the data.
4. Duration of Storage
The data is deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. For personal data from the contact form and e-mails, this occurs when the respective conversation with the user is concluded, indicating that the matter has been resolved.
5. Possibility of Objection and Erasure
Users can withdraw consent for processing personal data at any time. If a user contacts us via e-mail, they can also object to the storage of their personal data at any time. In such cases, the conversation cannot be continued, and all personal data related to the inquiry will be erased.
Exceptions apply where legal provisions require us to retain such messages. In such cases, messages will only be kept for storage purposes and not erased.
VII. Registration
1. Description and Scope of Data Processing
Users have the option to register for our services on our website by providing personal data through an entry mask. The following data is collected during the registration process:
Name
Company
Address
E-mail address
Amazon API tokens
Additionally, we process any other data voluntarily provided by the user during registration. These data are initially used to create and manage the user's account for our services. They are stored in the user's central account and can be accessed, modified, and updated by the user at any time.
For billing purposes, we also collect and process the user’s payment data, including bank details and other payment information provided by the user. Qualified payment providers may be used for debt collection purposes in certain payment scenarios, particularly where legal requirements or international financial security standards such as PCI DSS (Payment Card Industry Data Security Standard) apply.
These data may also be processed for direct marketing purposes.
2. Legal Basis for Data Processing
The legal basis for processing the data to the extent described above is the performance of a contract to which the user is a party or the implementation of pre-contractual measures, according to Article 6 (1) lit. b GDPR. The legal basis for using the data for direct marketing purposes is our legitimate interest, as per Article 6 (1) lit. f GDPR.
3. Purpose of Data Processing
User registration is necessary for performing a contract with the user or for implementing pre-contractual measures. It facilitates the provision of our services, which are continuous in nature, thereby making registration essential for accessing specific content and services on our website.
4. Duration of Storage
Data is erased once it is no longer necessary for the purpose for which it was collected. For data collected during the registration process for contract performance or pre-contractual measures, this occurs when the data is no longer needed for contract execution. However, even after contract conclusion or termination, personal data of the contractual party may need to be retained to comply with contractual or legal obligations, or to assert legal claims.
5. Possibility of Objection and Erasure
Users can cancel their registration at any time and request changes to their stored data. If data is required for contract performance or pre-contractual measures, premature deletion is only possible if contractual or legal obligations do not prevent it.
Users also have the right to object to direct marketing at any time.
VIII. Use of Vercel
We utilize Vercel as a third-party provider for hosting and delivering content on our website. Vercel is used to distribute static content such as images, scripts, and files to our visitors. Please be aware that Vercel may collect certain personal information, including IP addresses, browser information, and access time logs. Vercel's handling of this data is governed by their Privacy Policy, which you can review at https://vercel.com/legal/privacy-policy.
We do not have direct access to the data collected by Vercel and do not control how Vercel uses this data. We encourage you to familiarize yourself with Vercel's privacy practices by reading their privacy policy.
The storage of data and use of cookies related to Vercel's services are implemented in accordance with Art. 6 para. 1 lit. f GDPR (General Data Protection Regulation). Please note that our use of Vercel is purely technical and does not involve direct handling of personal data.
You have the right to access, rectify, erase, or restrict the processing of your personal data, as well as the right to object to processing, request cessation of processing, data portability, withdraw consent, and lodge a complaint with the relevant data protection authority. For any inquiries regarding corrections, restrictions, objections, revocations, access, or deletions, please contact the responsible person as mentioned.
IX. Use of Supabase
We utilize Supabase as a third-party service provider for data storage and management on our website. Supabase is used to securely store and deliver files such as images and documents, and to manage authentication processes.
The purpose of using Supabase is to provide a safe and reliable storage solution for the content hosted on our website, including product images, instructional documents, and other resources. Please note that Supabase acts solely as a technical service provider and does not directly collect or process personal data. It is used to host the files and resources we provide on our website securely and efficiently.
While we have direct access to the data stored on Supabase, we do not control how Supabase processes this data. We recommend reviewing Supabase's privacy policy at https://supabase.com/privacy/ to understand their privacy practices.
The storage of data and use of cookies related to Supabase's services are implemented in accordance with Art. 6 para. 1 lit. f GDPR. Please note that our use of Supabase is purely technical and does not involve direct processing of personal data.
For any inquiries regarding corrections, restrictions, objections, revocations, access, or deletions related to your data stored on Supabase, please contact the responsible person as mentioned.
X. Our Online Presence in Social Media
Our company engages in social networks and other platforms to interact with users and provide information about our services. These platforms are operated by companies located outside the European Union, which means user data may be processed outside the EU. For platforms operated by US companies, the EU-US Privacy Shield previously provided an adequacy decision by the European Commission, allowing data transfers based on certification under this framework. However, the Court of Justice of the European Union invalidated the Privacy Shield in July 2020, citing concerns over data protection levels.
In the absence of a subsequent agreement or valid adequacy decision with the USA, data processing in the USA occurs with lower data protection standards and without appropriate safeguards, solely based on your explicit consent under Art. 49 (1) lit. a GDPR.
When users visit these social networks, their data may be collected and processed for market research and advertising purposes. This enables us to create user profiles based on user behavior and inferred interests, which may be used to display targeted advertisements within and outside the platforms that align with users' likely interests. Cookies are typically used for these purposes to track user behavior and interests.
The processing of users' personal data is primarily based on our legitimate interests in effectively informing and communicating with users under Art. 6 (1) lit. f GDPR. If the platform providers request consent from users for the aforementioned data processing, the legal basis is Art. 6 (1) lit. a GDPR. Regarding data processing in the USA, it occurs as described above, with lower data protection standards and without suitable guarantees, solely based on your express consent under Art. 49 (1) lit. a GDPR.
For detailed information about specific processing practices, options for objection, and consent mechanisms, please refer to the individual platform providers listed below:
Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA)
This website incorporates content provided by third parties, particularly including content from our social media profiles or videos on our pages. This integration technically necessitates that the providers of this content can access users' IP addresses, as the IP address is required to transmit the content to the user's browser.
The integration of third-party content is based on Art. 6 (1) lit. f GDPR. Our legitimate interest lies in delivering an attractively designed website.
XII. Rights of the Data Subject
If your personal data is processed, you are a data subject under the GDPR and you have the following rights with respect to the Controller:
1. Right of Access
You have the right to obtain confirmation from us as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data and additional information (Art. 15 GDPR).
2. Right to Rectification
You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you (Art. 16 GDPR).
3. Right to Restriction of Processing
You have the right to obtain from us restriction of processing where one of the grounds specified in Art. 18 GDPR applies, such as the accuracy of the personal data being contested by you (Art. 18 GDPR).
4. Right to Erasure
You have the right to obtain from us the erasure of personal data concerning you without undue delay where one of the grounds specified in Art. 17 GDPR applies, such as withdrawal of consent (Art. 17 GDPR).
5. Right to Information
If you have exercised your right to rectification, erasure or restriction of processing, we are obligated to communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data has been disclosed, unless this proves impossible or involves disproportionate effort (Art. 19 GDPR).
6. Right to Data Portability
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from us, where technically feasible (Art. 20 GDPR).
7. Right to Object
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6(1) lit. e or lit. f GDPR, including profiling based on those provisions (Art. 21 GDPR).
8. Right to Withdraw Consent under Data Protection Law
You have the right to withdraw your consent under data protection law at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal (Art. 7 (3) GDPR).
9. Right to Lodge a Complaint with a Supervisory Authority
You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR (Art. 77 GDPR).
Essential cookies enable basic functions and are necessary for the proper functioning of the website.
Functional cookies
These cookies ensure the functionality of the site, such as the subscription to the newsletter. If these cookies are rejected, some areas of the site may have limited usability.
Statistics cookies
Statistics cookies collect information anonymously. This information helps us understand how our visitors use our site.
Marketing cookies
Marketing cookies are used by third-party vendors or publishers to display personalized advertisements. They do this by tracking visitors across websites.
External media cookies
Content from video and social media platforms are blocked by default. If cookies from external media are accepted, access to this content no longer requires manual consent.
II. Deletion of cookies
If you wish to restrict or block the cookies set by our website, you can do so through your browser settings. Alternatively, you can click the button below, which will reopen the cookie banner and allow you to edit your consents.
