When this policy applies
This Privacy Policy applies to:
- Visitors of the AmsterCode website and landing pages.
- People who contact us via forms, e-mail, phone or messaging apps.
- Clients and their team members who work with us on projects.
- Users who interact with demo AI assistants that we host.
It does not cover the websites and systems we build for clients. For those, the client is usually the data controller and must provide their own privacy information.
Who is responsible for your data
For the data described on this page, the controller is AmsterCode (the legal entity mentioned in your proposal or invoice).
If you have questions or requests about this Privacy Policy, reach us at:
- E-mail: office@amstercode.com
- Contact form: /contact/
Categories of personal data
Depending on how you interact with us, we may process the following:
- Contact data: name, company, e-mail address, phone number, language, role/job title.
- Project data: info you share so we can prepare a proposal or run a project.
- Communication data: e-mails, messages and notes about our cooperation.
- Technical data: IP address, browser/device info, basic analytics (aggregated where possible).
For demos and AI intake forms, we may store the questions you ask and the answers generated, for improving/debugging our systems.
Why we use your data
- To reply to your messages and prepare proposals.
- To deliver projects and services we agreed on, including support.
- To send necessary service messages about maintenance, changes or security.
- To improve our website and services, using aggregated analytics.
- To comply with legal obligations (tax/accounting).
We do not spam you with generic newsletters. If we ever start a newsletter, we will ask for separate consent.
On what legal grounds we process data
- Performance of a contract: preparing/executing a project or subscription.
- Legitimate interests: security, analytics, improving services, keeping reasonable communication history.
- Legal obligations: records for tax and accounting.
- Consent: where required (certain cookies/optional communications).
Who can access your data
We do not sell your data. We only share it with:
- Service providers: hosting, e-mail, analytics, payment services — strictly to run the business.
- Project partners: where required to deliver their part (limited access).
- Authorities: if legally required.
Where data is transferred outside the EU/EEA, we apply appropriate measures such as standard contractual clauses.
How long we keep your data
- Project & billing data: typically 7 years (legal obligations).
- General enquiries (no project): usually up to 2 years.
- Analytics: kept aggregated/pseudonymised where possible.
If you request deletion, we honour it where possible, considering legal retention duties and legitimate interests.
Your rights under the GDPR
- Access — know which personal data we hold.
- Rectification — correct inaccurate information.
- Erasure — request deletion (within legal limits).
- Restriction — limit certain processing.
- Portability — receive your data in a usable format.
- Objection — object to processing based on legitimate interests.
To exercise these rights, contact office@amstercode.com. We may request identity confirmation.
You may lodge a complaint with your data protection authority if you believe we violate applicable law.
Updates to this Privacy Policy
We may update this Privacy Policy from time to time. The version published on this page is the version that applies.
If we make significant changes, we will highlight it on the website or inform you directly where appropriate.
