When this policy applies
This Privacy Policy applies to:
- Visitors of the AmsterCode website and landing pages.
- People who contact us via forms, e-mail, phone or messaging apps.
- Clients and their team members who work with us on projects.
- Users who interact with demo AI assistants that we host.
It does not cover the websites and systems we build for clients. For those, the client is usually the data controller and must provide their own privacy information.
Who is responsible for your data
For the data described on this page, the controller is AmsterCode (the legal entity mentioned in your proposal or invoice).
If you have questions or requests about this Privacy Policy, you can reach us at:
- E-mail: office@amstercode.com
- Via the contact form on: /contact/
Categories of personal data
Depending on how you interact with us, we may process the following:
- Contact data: name, company, e-mail address, phone number, language, role or job title.
- Project data: information about your website, services, target groups and goals that you share so we can prepare a proposal or run a project.
- Communication data: e-mails, messages and notes about our cooperation.
- Technical data: IP address, browser type, device information and basic analytics about website visits (in aggregated form where possible).
For demos and AI intake forms, we may store the questions you ask and the answers generated, for the purpose of improving and debugging our own systems.
Why we use your data
We use personal data for the following purposes:
- To reply to your messages and prepare proposals for projects.
- To deliver projects and services we agreed on, including support.
- To send necessary service messages about maintenance, changes or security.
- To improve our own website and services, using aggregated analytics.
- To comply with legal obligations (for example tax rules and accounting).
We do not use your contact details to spam you with generic newsletters. If we ever start a structured newsletter, we will ask for separate consent.
On what legal grounds we process data
Under the GDPR, we rely on the following legal bases:
- Performance of a contract: when we process data to prepare or execute a project or subscription with you.
- Legitimate interests: for security, analytics, improving our services and keeping a reasonable history of communication.
- Legal obligations: keeping records for tax and accounting purposes.
- Consent: where required by law (for example for certain cookies or optional communications).
Who can access your data
We do not sell your data. We only share it with:
- Service providers: such as hosting companies, e-mail providers, analytics tools and payment services, strictly for running our business.
- Project partners: if we work together with another specialist on a project and they need limited access to deliver their part.
- Authorities: if we are legally required to do so.
Where data is transferred outside the EU/EEA, we take appropriate measures, such as standard contractual clauses, in line with GDPR requirements.
How long we keep your data
We keep personal data only as long as needed for the purposes described:
- Project and billing data: typically 7 years, to comply with legal retention obligations.
- General enquiries without a project: usually up to 2 years, unless you ask us to delete earlier.
- Analytics data: kept in aggregated or pseudonymised form where possible.
If you ask us to delete data, we will honour that request where possible, taking into account legal retention duties and our legitimate interests.
Your rights under the GDPR
As a data subject in the EU/EEA, you have several rights, including:
- Right of access – to know which personal data we hold about you.
- Right to rectification – to correct inaccurate information.
- Right to erasure – to request deletion, within legal limits.
- Right to restriction – to limit certain processing.
- Right to data portability – to receive your data in a usable format.
- Right to object – to certain processing based on legitimate interests.
To exercise any of these rights, contact us at office@amstercode.com. We may ask you to confirm your identity before fulfilling your request.
You also have the right to lodge a complaint with your local data protection authority if you believe we handle your data in a way that violates applicable law.
Updates to this Privacy Policy
We may update this Privacy Policy from time to time. The version published on this page is the version that applies.
If we make significant changes (for example, new types of data or new purposes), we will highlight this on the website or inform you directly where appropriate.
