Privacy Policy

Last updated: 2025-12-20

1. Controller

  • Pontovio BV
  • Standplaats 54
    2570 Duffel
  • Belgium (European Union)
  • Company number: 1019.227.696
  • VAT number: BE 1019.227.696
  • Contact: info@pontovio.com

2. Scope

This notice applies to visitors of our public website.

Processing related to our services is governed separately by contractual Data Processing Agreements and is described here only at a high level for transparency.

3. Dashboard access

Our services include a restricted online dashboard with user authentication.

User accounts and access rights are technically managed within our platform. Personal data processed for this purpose may include identifiers, access roles, authentication credentials, and security-related technical data.

This processing is performed solely on the documented instructions of our customers, who determine which of their employees are granted access and for what purpose.

For this processing, we act as a data processor. The relevant data controller is the customer.

If you are an end user of one of our customers, requests relating to your personal data must be directed to that customer.

4. Website usage

When you visit our website, we process limited technical data necessary to operate and secure the site, including IP address, device and browser metadata, and timestamps.

This data is not used to identify individual visitors.

5. Contact form

When you submit the contact form on our website, we process the personal data you provide, such as your name, email address, and message content.

This data is used solely to respond to your inquiry and related follow-up communication. We do not use contact form submissions for marketing purposes.

6. Bot protection

To protect our contact form and enterprise dashboard login against automated abuse, we use Google reCAPTCHA.

reCAPTCHA analyzes technical and usage data such as IP address, device and browser characteristics, and interaction patterns to distinguish human users from bots.

This processing is performed for security and abuse prevention purposes.

7. Personal data processed

Depending on how you interact with our website or services, we may process the following categories of personal data:

  • Identification data (name and email address, if provided via the contact form)
  • Authentication and access data (enterprise dashboard users)
  • Technical and usage data (IP address, device and browser metadata, timestamps)
  • Communication data (messages submitted via the contact form)

We do not process special categories of personal data.

8. Purpose

  • Operating and securing the website
  • Measuring basic website usage and performance
  • Responding to inquiries submitted via the contact form

9. Legal basis

  • Website operation, analytics, and security: legitimate interest (Article 6(1)(f) GDPR)
  • Contact form communication: legitimate interest (Article 6(1)(f) GDPR)

Our interests are limited to providing information, responding to inquiries, and maintaining a secure, reliable website.

10. Analytics

We use Umami Analytics, configured as follows:

  • No cookies
  • No cross-site or cross-device tracking
  • No user profiling
  • No sharing of analytics data with third parties

Analytics data is used exclusively in aggregated form.

11. Retention

  • Contact form submissions: retained for business and administrative purposes, including record-keeping, unless deletion is requested
  • Technical logs: maximum 12 months
  • Aggregated analytics data: maximum 12 months

12. Recipients

Personal data is processed only by our internal staff and by infrastructure and hosting providers acting as processors under GDPR-compliant agreements.

Recipients may include technology providers used for security and abuse prevention, such as Google (reCAPTCHA).

13. International transfers

Data may be processed outside the EU under appropriate safeguards, including Standard Contractual Clauses

Some security-related processing may involve transfers outside the European Union. These transfers are covered by appropriate safeguards, including Standard Contractual Clauses.

14. Your rights

You have the right to request access, rectification, erasure, restriction, or objection to processing.

You may also lodge a complaint with your local supervisory authority.

Requests: info@pontovio.com

15. Changes

We may update this notice when required by legal or operational changes.

The current version is always published on this page.