در حال بررسی کمپین‌های فعال...

Privacy Policy — Bamajan

Last Updated: November 2025

1. Introduction

Bamajan (“we”, “our”, “the Company”) is committed to protecting the personal data of customers, users, and final consumers. This Privacy Policy explains what information we collect, how we use it, how we store it, and how we ensure compliance with the EU General Data Protection Regulation (GDPR). Our services may involve situations where the customer is different from the final consumer, and we process personal data accordingly.

2. Data Controller Information

Bamajan Services

Email: privacy@bamajan.nl

Address: Waardenburgstraat 92, Tilburg, The Netherlands

We determine the purposes and means of processing personal data.

3. Categories of Personal Data We Collect

We may collect the following types of personal data:

Identification & Contact Information

  • Full name
  • Email address
  • Phone number

Billing & Contract Information

  • Billing address
  • Tax/VAT information
  • Contract and invoice details

Payment Information

  • Payment processing details handled exclusively by Stripe
  • We do not store or access any credit card information

Service Delivery Information

  • Delivery address, only if required for the service
  • Contact details of final consumers

Final Consumer Information

Collected when a customer purchases a service for another person, such as a relative or third party.

Technical & Analytical Data

  • IP address
  • Device information
  • Browser metadata
  • Cookies, detailed in the Cookie Policy

Communication Records

  • Support tickets
  • Inquiries
  • Internal communication notes relevant for service delivery

Sensitive Data

We do not intentionally collect sensitive data. If provided voluntarily, we apply enhanced safeguards.

4. Legal Basis for Processing (GDPR Art. 6)

  • Contract performance — executing purchases and delivering services
  • Legitimate interest — fraud prevention, customer support, service improvement
  • Legal obligations — accounting, tax compliance, financial retention rules
  • Explicit consent — for marketing communications or optional data fields

5. Purposes of Processing

  • Delivering purchased services
  • Processing payments via Stripe
  • Creating and issuing invoices
  • Creating customer or consumer accounts
  • Managing communication and support
  • Verifying eligibility and preventing fraud
  • Improving user experience and service operations
  • Meeting financial and regulatory obligations

6. Payment Processing via Stripe

  • All payments are handled through Stripe, a PCI-DSS compliant processor.
  • Bamajan does not handle or store credit card numbers.
  • Stripe acts as a GDPR-compliant data processor.
  • Stripe may process data in multiple regions, with legal safeguards in place.

7. When Customer and Final Consumer Differ

  • We collect strictly necessary data about the final consumer.
  • The customer is responsible for informing the consumer about this Privacy Policy.
  • We do not use consumer data for purposes unrelated to the purchased service.

8. Data Sharing & Third-Party Processing

We may share personal data only with:

  • Stripe, for payment processing
  • Hosting and infrastructure providers
  • Legal, accounting, or compliance partners
  • Subcontractors required for service delivery
  • Government authorities, only when legally obligated

We do not sell personal data.

9. International Data Transfers

  • Standard Contractual Clauses (SCCs)
  • GDPR-compliant safeguards
  • Technical protections such as encryption and access limitation

10. Data Retention Periods

  • Billing and contractual data: 7 years, as required by tax laws
  • Consumer or service delivery data: retained only as long as necessary
  • Support records: retained based on operational needs
  • Technical logs: short-term retention for security and diagnostics

Non-essential data is deleted when no longer needed.

11. Data Minimization Policy

We collect only the minimum amount of data required. All internal processes are designed to prevent unnecessary or excessive data processing.

12. Data Subject Rights (GDPR)

You may request:

  • Access to your data
  • Correction of inaccurate data
  • Deletion of your data, or the right to be forgotten
  • Restriction of processing
  • Objection to processing
  • Data portability
  • Withdrawal of consent, if previously given

Requests may be submitted via email to privacy@bamajan.nl.

13. Right to File Complaints

You may file a complaint with the Autoriteit Persoonsgegevens (Dutch Data Protection Authority) or the data protection authority in your home country.

14. Cookies & Tracking Technologies

  • Essential cookies, required for website functionality
  • Analytics cookies, used only with user consent
  • No advertising or behavioral tracking cookies unless accepted

Cookie details are provided in our Cookie Policy.

15. Automated Decision-Making

We do not perform automated decision-making that produces legal or significant effects on users.

16. Data Security Measures

  • Encryption in transit and at rest
  • Access-control systems
  • Logging and monitoring
  • Regular security audits
  • Staff confidentiality and compliance training

17. Children’s Data

Our services are not intended for individuals under 16. If we become aware of accidental collection, we delete the data.

18. Policy Updates & Revision Rules

This Privacy Policy may be updated at any time without prior notice to ensure compliance with legal requirements and operational changes. Updated versions will always be published on our website. Users are encouraged to review this document periodically.

19. Contact Information

For privacy inquiries, GDPR requests, or complaints:

Email: privacy@bamajan.nl

Address: Waardenburgstraat 92, Tilburg, The Netherlands