DRAFT, pending legal review. These drafts are scaffolds and need Dutch SaaS lawyer review before publishing.

Privacy Policy

Last updated: 11 June 2026

In short: This Privacy Policy explains which personal data e-tailize collects, why we use it, which legal bases apply, who receives it and how people can exercise GDPR rights.

Placeholders to confirm

    1. Controller

    e-tailize B.V., trading as e-tailize, is the controller for personal data collected through this website, marketing activities, account management and customer communications, except where e-tailize acts as processor under a customer DPA. Its registered office is Vanadiumweg 25, 3812 PX Amersfoort, Netherlands.

    Privacy questions can be sent to support@e-tailize.com.

    2. Personal data we collect

    e-tailize does not intend to process special categories of personal data (such as health data or data revealing religion or ethnicity). If such data nevertheless reaches us, for example through free text fields, chat messages or a connected integration, we process it only to the extent strictly necessary and remove it where possible.

    The website and the Services are not directed at persons under 16. If you believe we have collected personal data of a minor without valid consent, contact support@e-tailize.com and we will delete it.

    CategoryExamplesLegal basis
    Account dataName, email, role, company, login detailsContract and legitimate interest
    Usage dataLogins, actions, IP address, device and browser dataLegitimate interest and security
    Communication dataSupport tickets, emails, call notes, AI chat historyContract and legitimate interest
    Marketplace dataMarketplace credentials, product data, order data and integration logsContract and customer instructions
    Marketing dataNewsletter preferences, campaign interactions and consent choicesConsent or legitimate interest where allowed
    Billing dataInvoicing details, bank account number and payment statusContract and legal obligation

    3. Purposes

    • Provide the Marketplace Scan, onboarding and Platform Services.
    • Operate the chat-first AI interface and integrations.
    • Manage accounts, billing, support and security.
    • Improve the Services and troubleshoot errors.
    • Send service messages and permitted marketing communications.
    • Comply with legal, accounting and security obligations.

    4. Marketplace credentials

    Marketplace credentials are treated as sensitive operational data. e-tailize uses access controls, encryption in transit and appropriate technical measures to protect them.

    Credentials are stored encrypted at rest, access is restricted to authorised staff and systems, and credentials are removed when the connection is deleted.

    5. AI chat data

    The chat interface may process customer prompts, product data, order data, marketplace data and support context to perform requested tasks.

    AI features, which live primarily in the e-tailize application (app.e-tailize.eu), run on Microsoft Azure AI Foundry, Microsoft's secured enterprise AI platform. It gives e-tailize access to the latest AI models while data is processed inside the protected Azure environment. e-tailize may use data to train and improve its AI features, but confidential information and personal data are not used for training and are not required for it.

    Where AI providers outside the EEA process personal data, e-tailize will use appropriate transfer safeguards such as standard contractual clauses where required.

    e-tailize may use automated processing such as analytics, recommendations and AI assisted workflows, but does not take decisions that produce legal effects or similarly significant consequences for individuals based solely on automated processing without human involvement. If that ever changes, this policy will explain the logic involved and your right to human intervention.

    6. Recipients and sub-processors

    e-tailize shares personal data with service providers that help provide hosting, support, analytics, payment processing, email, AI processing and security. The e-tailize application (app.e-tailize.eu) runs on European Union infrastructure (Microsoft Azure, West Europe region); the website is served through Vercel.

    The current sub-processors are: Microsoft (cloud hosting on Azure in the West Europe region, the application, the AI platform and Microsoft 365, EU), Vercel (website delivery, US), Google (Google Workspace, EU and US), HubSpot (CRM, US), Intercom (customer support chat, US), Aircall (business telephony, EU), PandaDoc and SignWell (quotes, contracts and electronic signing, US), Cloudflare (content delivery and security, US), Zapier (workflow automation, US), Databrydge (data integration, Netherlands), and FastSpring and Verifone (payment processing, US and Netherlands).

    e-tailize may also share personal data with parties that are not processors where there is a legal basis to do so, such as accountants and professional advisors, and competent authorities where disclosure is legally required.

    7. International transfers

    Where personal data is transferred outside the EEA, e-tailize will use an adequacy decision, standard contractual clauses or another lawful transfer mechanism.

    Processing takes place primarily in the European Union (Microsoft Azure, West Europe region). Where a provider processes personal data outside the EEA, e-tailize relies on an adequacy decision or the EU Standard Contractual Clauses.

    8. Retention

    e-tailize keeps personal data only as long as needed for the purposes in this policy, legal obligations, dispute handling and security.

    As a rule: account and contract data up to 2 years after the end of the Services; invoices and billing records 7 years (statutory tax retention); support communications 2 years; technical logs 12 months; marketing data until consent is withdrawn or after 2 years of inactivity.

    9. GDPR rights

    • Access your personal data.
    • Correct inaccurate personal data.
    • Request deletion where the law allows.
    • Restrict or object to processing.
    • Request data portability.
    • Withdraw consent where processing is based on consent.
    • Not be subject to a decision based solely on automated processing, including profiling, that produces legal or similarly significant effects.
    • Complain to the Autoriteit Persoonsgegevens in the Netherlands, or to the supervisory authority of your own EU member state.

    10. How to exercise rights

    Requests can be sent to support@e-tailize.com. e-tailize may need to verify identity and may refuse or limit requests where allowed by law. When sharing an identity document for verification, blank out the photo, the document number and the citizen service number (BSN).

    11. Security

    e-tailize uses technical and organisational measures appropriate to the risk, including access controls, encryption in transit, monitoring, backups and staff confidentiality obligations.

    Security information is kept high level on this public page to avoid exposing implementation details.

    12. Cookies

    The website uses strictly necessary cookies and optional functional, analytics and marketing cookies. Optional cookies are used only after consent. See the Cookie Policy for details.

    13. Changes

    e-tailize may update this Privacy Policy. Material changes will be announced through the website or direct customer communication where appropriate.

    14. Contact

    Privacy questions can be sent to support@e-tailize.com. The named privacy contact is Leon Bosman.