Privacy Policy

City Spaces Amsterdam ('we', 'our', or 'us') is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

Please read this privacy policy carefully. By using our services, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

We collect the following types of personal data:

• Contact information (name, email address, phone number, address)
• Identity documents (passport, ID card, proof of address) for KYC verification
• Business information (company name, KvK number, legal form, UBO information)
• Payment information (processed securely through our payment provider)
• Communication records (emails, support requests)
• Technical data (IP address, browser type, device information)

2. How We Use Your Information

We use the collected information for:

• Providing and managing our virtual office services
• Performing legally required customer due diligence (KYC/AML)
• Communicating with you about your account and services
• Complying with legal obligations
• Improving our services and user experience

3. Legal Basis for Processing

We process your personal data based on:

• Contract: Processing is necessary for the performance of our agreement with you
• Legal obligation: Processing is necessary to comply with Dutch and EU regulations (including WWFT)
• Legitimate interest: Processing is necessary for our legitimate business interests
• Consent: Where you have given consent for specific processing activities

4. Sharing Your Information

We may share your information with:

• Payment processors (for processing transactions)
• Cloud service providers (for data storage and hosting)
• Government authorities (when legally required)
• Professional advisors (lawyers, accountants)

We do not sell your personal data to third parties.

5. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law:

• Active account data: Duration of the business relationship plus 2 years
• KYC documentation: 5 years after end of relationship (as required by WWFT)
• Financial records: 7 years (as required by Dutch tax law)

6. Your Rights

Under the GDPR, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data (subject to legal retention requirements)
• Restriction: Request restriction of processing
• Portability: Receive your data in a portable format
• Objection: Object to processing based on legitimate interests

To exercise these rights, please contact us at privacy@cityspacesamsterdam.com.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption, secure servers, and regular security assessments.

8. Cookies

Our website uses cookies to enhance your browsing experience. Essential cookies are necessary for the website to function properly.

You can manage your cookie preferences through your browser settings.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the 'Last updated' date.