Privacy Policy

When you visit our website www.studio-inari.com or engage with our services, we collect and process information about you. This privacy policy explains transparently how we handle your personal data, ensuring we maintain the highest standards of data protection and security.

We process your information with care and store it securely in accordance with Dutch and European data protection laws. Should you have questions about your data or wish to understand what information we hold about you, we encourage you to contact us directly.

This privacy policy may be updated to reflect changes in our practices or legal requirements. We recommend reviewing this policy periodically to stay informed of any modifications. This privacy policy was last updated on 23 October 2025.

1. Scope and Application

This privacy policy applies comprehensively to all personal data we process across our operations and all domains associated with studio inari B.V. This encompasses personal data of all individuals who have engaged with us, including website visitors, clients, prospective clients, business partners, and professional contacts.

Personal data refers to any information relating to an identified or identifiable natural person, including but not limited to names, contact details, IP addresses, identification numbers, and behavioural data. For comprehensive guidance on personal data definitions, we refer you to the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

2. Data Controller Information

studio inari B.V. serves as the data controller responsible for processing your personal data as described in this privacy policy.

Complete company details:

studio inari B.V.
Gerard Callenburgstraat 34-2
1055 VC Amsterdam
Chamber of Commerce: 98428640
Email: info@studio-inari.com
Website: www.studio-inari.com

3. Categories of Data Subjects

We process personal data of various categories of individuals, including:

·        Website visitors and prospective clients

·        Current and former clients (both individuals and business representatives)

·        Business partners and professional contacts

·        Suppliers and service providers

·        Newsletter subscribers and event participants

4. Data Collection Methods

We collect your personal data through multiple channels:

·        Direct interaction when you visit our website www.studio-inari.com

·        Form submissions and contact requests through our digital platforms

·        Direct communication via email, telephone, or other communication methods

·        Business networking events and professional meetings

·        Third-party platforms where you have provided consent for data sharing

·        Public sources and professional networks where legally permissible

5. Types of Personal Data Processed

We process the following categories of personal data:

Contact Information:

  • Full name and professional title

  • Business address and postal address

  • Email address (business and personal where provided)

  • Telephone numbers (mobile and business)

Professional Information:

  • Company name and position

  • Industry sector and business activities

  • Professional interests and requirements

Communication Data:

  • Communication preferences

  • Interaction history and correspondence

  • Project-related information and requirements

Technical Data:

  • IP addresses and device identifiers

  • Website usage patterns and preferences

  • Browser type and operating system information

6. Purposes of Data Processing

We process your personal data exclusively for legitimate business purposes:

Client Relationship Management:

  • Providing consultancy services and professional advice

  • Managing ongoing client relationships and project delivery

  • Communicating about services, projects, and business matters

Business Development:

  • Identifying potential collaboration opportunities

  • Understanding market needs and client requirements

  • Developing tailored service offerings

Legal and Compliance:

  • Fulfilling contractual obligations

  • Complying with legal and regulatory requirements

  • Maintaining accurate business records

Marketing and Communication:

  • Sending relevant business communications and updates

  • Inviting you to relevant events and networking opportunities

  • Sharing insights and thought leadership content (with consent)

7. Data Retention Periods

We retain your personal data in accordance with legal requirements and business necessity:

Active Client Relationships: During the entire duration of our business relationship

Former Clients: Seven years following conclusion of services, in compliance with Dutch commercial law requirements

Prospective Clients: Three years from last meaningful interaction, unless you request earlier deletion

Legal Requirements: Where legal obligations require longer retention periods, we maintain data accordingly

Statistical Purposes: Anonymized data may be retained for statistical analysis and business intelligence

For specific retention periods applicable to your data categories, please contact us directly.

8. Data Sharing and Recipients

We maintain strict control over your personal data and limit sharing to essential business requirements:

Internal Processing: Your data is processed exclusively by authorized studio inari personnel

Service Providers: We may engage carefully vetted third-party service providers for specific functions (IT services, accounting, legal advice), all bound by strict confidentiality agreements

Legal Requirements: We may disclose data when legally obligated by court orders, regulatory requirements, or law enforcement requests

Business Network: With your explicit consent, we may share relevant contact information with trusted our business network for mutual benefit

We do not sell, rent, or commercially exploit your personal data under any circumstances.

9. International Data Transfers

We process and store your personal data exclusively within the European Economic Area (EEA), ensuring full protection under European data protection laws. Should business requirements necessitate data transfers outside the EEA, we will implement appropriate safeguards including adequacy decisions, Standard Contractual Clauses, or other legally recognized protection mechanisms.

Any international transfers will be communicated transparently, and we will obtain your consent where legally required.

10. Security Measures

We implement comprehensive technical and organizational measures to protect your personal data:

Technical Safeguards:

  • Advanced encryption for data transmission and storage

  • Secure server infrastructure with regular security updates

  • Multi-factor authentication and access controls

  • Regular security audits and vulnerability assessments

Organizational Measures:

  • Strict access policies limiting data access to authorized personnel only

  • Regular staff training on data protection requirements

  • Incident response procedures for security breaches

  • Clear data handling protocols and procedures

Ongoing Protection:

  • Continuous monitoring of security systems

  • Regular review and update of security measures

  • Compliance with industry security standards

11. Your Rights Under GDPR

You possess comprehensive rights regarding your personal data:

Right to Information We provide clear, accessible information about our data processing activities through this privacy policy and direct communications.

Right of Access You may request complete details of all personal data we hold about you, including processing purposes and recipients.

Right to Rectification You may request correction of inaccurate or incomplete personal data at any time.

Right to Erasure (Right to be Forgotten) You may request deletion of your personal data where processing is no longer necessary or lawful. Note that legal retention requirements may limit immediate deletion in some cases.

Right to Restrict Processing You may request limitation of data processing in specific circumstances, allowing storage but preventing active use.

Right to Data Portability You may request your personal data in a structured, commonly used format for transfer to another organization.

Right to Object You may object to processing based on legitimate interests, including direct marketing communications.

Rights Related to Automated Decision-Making We do not engage in automated decision-making or profiling that produces legal effects or significantly impacts you.

Exercising Your Rights

Submit requests via email to info@studio-inari.com with clear identification of your request and verification of your identity. We process all requests within 30 days, extending to 60 days only for complex requests with prior notification.

Right to Lodge a Complaint

You may file complaints about our data processing with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or seek judicial remedy through competent courts.

12. Legal Basis for Processing

Our data processing activities are based on the following legal grounds under GDPR Article 6:

Contractual Necessity (Article 6(1)(b)): Processing essential for performing our consultancy services and fulfilling contractual obligations

Legitimate Interests (Article 6(1)(f)): Processing for business development, client relationship management, and operational efficiency where your interests do not override ours

Consent (Article 6(1)(a)): Explicit consent for marketing communications and specific data uses

Legal Obligations (Article 6(1)(c)): Compliance with accounting, tax, and other statutory requirements

13. Cookies and Tracking Technologies

Our website employs cookies and similar technologies to enhance your browsing experience and improve our services:

Essential Cookies: Necessary for basic website functionality, including session management and security features

Functional Cookies: Enable enhanced features and personalization based on your preferences

Analytics Cookies: Help us understand website usage patterns and improve user experience

You can manage cookie preferences through your browser settings. Disabling certain cookies may limit website functionality but will not prevent access to our core services.

We do not use cookies for invasive tracking or behavioural advertising purposes.

14. Processing of Minors' Data

Our services target business professionals and organizations. We do not knowingly collect or process personal data of individuals under 16 years of age. Should we become aware of such data collection, we will promptly delete the information unless parental consent has been obtained in compliance with GDPR requirements.

Parents or guardians who believe we have collected their child's personal data may contact us for immediate review and deletion.

15. Contact Information for Privacy Matters

For questions, concerns, or requests regarding this privacy policy or our data processing practices, contact our data protection team:

Email: info@studio-inari.com
Subject Line: Privacy Policy Inquiry
Postal Address:
studio inari B.V.
Attn: Data Protection Officer
Gerard Callenburgstraat 34-2
1055 VC Amsterdam

We commit to responding to all privacy-related inquiries within five business days and resolving concerns promptly and transparently.

 This privacy policy complements our General Terms and Conditions (version 2025-6) and forms part of our comprehensive commitment to data protection and client service excellence.

Last updated: 23 October 2025
Version: 2025-2