Privacy policy.

Effective Date: 17-11-2025

Last Updated: 17-11-2025

 

 

1. Introduction

Welcome to Forculus (“we”, “our”, “us”). We are an Information Security Consulting company based in the Netherlands, committed to protecting your personal data and respecting your privacy.

 This Privacy Policy explains how we collect, use, store, and protect personal data when you:

  • Use our website

  • Contact us or use our services

  • Enter into a contractual relationship with us

We process your personal data in accordance with the General Data Protection Regulation (GDPR) and the Dutch Implementation Act (Uitvoeringswet AVG).

 2. Data Controller

Forculus BV

Standerdmolen 84

6049GK, Herten, The Netherlands

Chamber of Commerce (KvK) Number: 98851446

Email: privacy@forculus.eu

Phone: +31 (0)6 27 24 15 85

Website: www.forculus.eu

We are the data controller responsible for processing your personal data.

 3. Personal Data We Collect

We may collect and process the following categories of personal data:

 a) When You Visit Our Website:

  • IP address

  • Browser type and version

  • Operating system

  • Referral source

  • Pages viewed and time spent

  • Cookies and usage data (see our Cookie Policy)

 b) When You Contact Us or Use Our Services:

  • Name and contact details (email, phone number)

  • Company name and position

  • Communications and inquiries

  • Project-related information

 c) When You Are a Client:

  •  Billing and payment details

  • Contractual data

  • Identity verification documents (where required)

We do not collect special categories of personal data (e.g. health data, biometric data) unless explicitly required for a specific legal obligation or contract.

 4. Legal Bases for Processing

We only process personal data when we have a lawful basis under Article 6 of the GDPR:

  • Consent – when you voluntarily provide data or opt-in (e.g., newsletter)

  • Contract – for fulfilling a contract or taking steps prior to entering into one

  • Legal obligation – for compliance with Dutch or EU legal requirements

  • Legitimate interests – such as improving our services, security, or marketing (unless overridden by your interests)

 5. How We Use Personal Data

We use your personal data for the following purposes:

  • To respond to inquiries and provide consulting services

  • To manage client relationships and contractual obligations

  • To improve our website, services, and security posture

  • To comply with legal and regulatory obligations

  • To send service-related or marketing communications (only with consent)

 6. Data Sharing and Disclosure

We do not sell or rent your data. We may share your data with:

  • Service providers (e.g., hosting, email, CRM), under strict data processing agreements

  • Legal or regulatory authorities, if required by law

  • Subcontractors or partners, strictly for project-related execution and under NDA

 All third parties are bound by data protection agreements to ensure your information is secure.

 7. International Transfers

Your personal data is primarily stored in the European Economic Area (EEA). If data is transferred outside the EEA, we ensure appropriate safeguards, such as:

  • EU Commission adequacy decisions

  • Standard Contractual Clauses (SCCs)

  • Binding Corporate Rules (BCRs), if applicable

 8. Data Retention

 We retain personal data only as long as necessary for the purposes for which it was collected, including:

  • For the duration of a contract or client relationship

  • As required by tax and accounting laws (usually 7 years)

  • Until consent is withdrawn (for marketing)

  • To resolve legal disputes or enforce agreements

 9. Your Rights Under GDPR

 You have the following rights under the GDPR:

  • Right to access – request a copy of your personal data

  • Right to rectification – request correction of inaccurate data

  • Right to erasure (“right to be forgotten”)

  • Right to restriction of processing

  • Right to data portability

  • Right to object to processing, including for direct marketing

  • Right to withdraw consent at any time (where processing is based on consent)

  • Right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): https://autoriteitpersoonsgegevens.nl

 To exercise any of these rights, contact us at: privacy@forculus.eu

 10. Data Security

We implement appropriate technical and organizational measures to protect personal data, including:

  • Encryption and secure storage

  • Access control and authentication

  • Regular vulnerability assessments and penetration testing

  • Security awareness training for staff

 11. Cookies

Our website uses cookies and similar tracking technologies. Please refer to our Cookie Policy for detailed information on how and why we use cookies, and how you can manage your preferences.

 12. Changes to This Privacy Policy

We may update this policy from time to time. The latest version will always be available on our website. If the changes are significant, we will notify you by email or other means.

 13. Contact

If you have any questions about this Privacy Policy or how we handle your personal data, please contact:

Privacy Officer

Forculus BV

Email: privacy@forculus.eu

Address: Standerdmolen 84, Herten, The Netherlands

  

This policy is governed by the laws of the Netherlands and the EU GDPR.