Privacy by design is a core principle. This policy explains how data is handled in compliance with GDPR.
1. Introduction
This Privacy Policy explains how Monochrome Systems B.V. processes personal data through the company's website at https://monochrome.systems/. The organization is committed to protecting user privacy and ensuring compliance with the General Data Protection Regulation (GDPR).
2. Data Controller Information
Monochrome Systems B.V.
Registration number: 42061121
Johannes Geradtsweg 72-16, 1222PW Hilversum
The Netherlands
For privacy-related questions contact me on LinkedIn.
For professional inquiries, LinkedIn serves as the primary communication channel. Additional methods will be implemented progressively.
3. Personal Data Processed
3.1 Personal Data Collected Through Website
No personal data is collected, stored, or processed via the website.
3.2 Contact Information
Contact initiated through email or other communication channels may result in collection of contact details. Such information is utilized exclusively for responding to inquiries and is retained only as long as necessary for this purpose.
3.3 No Cookies or Tracking
The website does not employ cookies, tracking pixels, or any similar technologies.
3.4 No Third-Party Analytics
No third-party analytics services (such as Google Analytics) are utilized that would process personal data.
4. Purposes of Data Processing
Contact information collected through communication channels is processed for the following purposes:
- To respond to inquiries and provide relevant information
- To maintain professional communication records as required by business operations
5. Legal Bases for Processing
The legal bases for processing any contact information received are:
- Performance of a contract: When responding to service-related inquiries
- Legitimate interests: For maintaining professional communication records
- Consent: When explicitly provided by the data subject
6. Data Retention Practices
- Contact information is held only for the duration necessary to fulfill the purposes for which it was collected
- Records may be maintained for legal or business purposes where required by applicable law
7. Data Subject Rights
Right to Access
Individuals may request confirmation of whether personal data concerning them is being processed and may request access to such data.
Right to Rectification
Requests for correction of inaccurate personal data will be accommodated.
Right to Erasure
Data subjects may request deletion of personal data under certain circumstances in accordance with regulatory requirements.
Right to Restriction
Requests to restrict processing are honored where contested or where processing is determined to be unlawful.
Right to Portability
Where applicable, individuals may receive their data in a structured, commonly used format and have the right to transmit such data directly to another controller.
Right to Object
Objections to processing based on legitimate interests are respected.
Right to Withdraw Consent
Consent for processing may be withdrawn at any time where processing is based on consent.
Inquiries regarding this Privacy Policy or privacy practices can be directed to LinkedIn. Requests are responded to within 30 days, and identity verification may be required.
8. Data Security Measures
While no personal data is processed through the website, appropriate technical and organisational measures are maintained to protect any personal data processed through other channels, including encryption, access controls, and secure storage systems.
9. Third-Party Service Providers
Monochrome Systems B.V.'s infrastructure is operated on AlphaVPS (alphavps.com) systems. AlphaVPS is ISO 27001 & ISO 9001 certified and complies with GDPR and EU data protection regulations. It is registered at 8 Asen Yordanov Blvd, Sofia (company no. 202826767). All data processing is governed by GDPR and AlphaVPS's published security policies.
10. International Data Transfer Considerations
As a data controller based within the European Economic Area (EEA), personal data is not transferred outside of the EEA except in compliance with GDPR requirements and suitable safeguards.
11. Automated Decision Making
No automated decision-making processes producing legal or similarly significant effects based on personal data are utilized.
12. Children's Privacy
Services are not directed to individuals under the age of 16. The company does not knowingly collect personal data from children.
13. Privacy Policy Updates
This Privacy Policy may be updated periodically. All changes are effective immediately upon posting to the website. Users are encouraged to review this policy regularly for the latest information on privacy practices.