Controller
Anqilab-Academie (sole proprietorship; trading as “Anqilab”)
KvK (CoC): 88845850 — VAT: NL004660017B04
Address: Zwarteweg 92, 1412 GE Naarden, The Netherlands
Email: [email protected]
Phone/WhatsApp: +31 6 40396958

Last updated: 25 September 2025

1. Introduction

Anqilab-Academie respects your privacy and is committed to protecting your personal data. This Privacy Policy explains in detail what data we collect, why we collect it, how we use it, how long we keep it, and what rights you have under the EU General Data Protection Regulation (GDPR).

By using our website, purchasing a subscription, or contacting our support, you agree to this Privacy Policy.

2. Data we collect

We collect only the data necessary to deliver our educational services:

• Identification data: first and last name, email address, phone/WhatsApp number (if provided), billing address.
  
  

• Account data: login credentials for your Huddle account, course progress (e.g., modules completed).
  
  

• Payment & billing data: transaction status, subscription details, and invoice information. Payments are processed securely via Mollie/Plug&Pay. We do not access or store full card details.
  
  

• Support data: emails, messages, or calls made to [email protected], [email protected], [email protected], or via WhatsApp/phone.
  
  

• Technical data: your IP address, browser type, operating system, date/time of access, and server logs. These are used solely for security and troubleshooting.
  
  

We do not use cookies, tracking pixels, or analytics tools.

3. Purposes of processing

Your data is processed only for lawful purposes:

1. To perform the contract (Art. 6(1)(b) GDPR):
   
   

   • Creating your Huddle account.
     
     

   • Delivering recorded courses.
     
     

   • Providing chat support.
     
     

   • Processing payments and issuing invoices.
     
     

2. To comply with legal obligations (Art. 6(1)(c) GDPR):
   
   

   • Storing invoices for Dutch tax requirements (7 years).
     
     

   • Meeting anti-fraud and financial compliance obligations.
     
     

3. For legitimate interests (Art. 6(1)(f) GDPR):
   
   

   • Ensuring platform security and preventing abuse.
     
     

   • Improving our services based on support interactions.
     
     

   • Communicating necessary updates about your subscription.
     
     

We do not process data for profiling, tracking, or targeted advertising.

4. Sharing with third parties

We share your data only with trusted processors who help us run our services:

• Huddle: hosts our online courses and manages account access.
  
  

• Mollie: processes secure payments.
  
  

• Plug&Pay: handles subscription management and invoicing.
  
  

• Hosting provider: keeps our website online.
  
  

• Email/communication services: deliver transactional messages and support replies.
  
  

We ensure that these partners handle your data securely and sign data processing agreements where required. We never sell or rent your personal data.

5. International transfers

Where our partners are located outside the European Economic Area (EEA), your data may be transferred internationally. In such cases, we ensure appropriate safeguards are in place, such as:

• Adequacy decisions by the European Commission.
  
  

• Standard Contractual Clauses (SCCs).
  
  

• Additional security measures (e.g., encryption).
  
  

6. Retention periods

We keep your personal data only as long as necessary:

• Account & course data: while your subscription is active + 24 months after expiry (for reactivation and support history).
  
  

• Payment & invoice data: 7 years (Dutch tax law).
  
  

• Support communications: 24 months after closing the request.
  
  

• Technical/security logs: up to 12 months.
  
  

After these periods, data is securely deleted or anonymised.

7. Your rights

As a data subject in the EU, you have the following rights under the GDPR:

• Right of access: obtain a copy of the personal data we hold about you.
  
  

• Right of rectification: correct inaccurate or incomplete data.
  
  

• Right to erasure: request deletion of your data when it is no longer necessary.
  
  

• Right to restrict processing: temporarily limit processing in certain situations.
  
  

• Right to data portability: receive your data in a machine-readable format.
  
  

• Right to object: object to processing based on legitimate interests.
  
  

• Right to withdraw consent: if processing is based on consent (not applicable here, since we do not use cookies/ads).
  
  

To exercise these rights, contact [email protected].

You also have the right to file a complaint with the Autoriteit Persoonsgegevens (Dutch Data Protection Authority).

8. Children

Our services are intended for users aged 18 years or older. If we learn that we have collected personal data from a minor without parental consent, we will delete it immediately.

9. Security measures

We take strong measures to protect your personal data:

• SSL/TLS encryption on all website traffic.
  
  

• Restricted access to personal data (only authorised staff).
  
  

• Use of secure third-party processors (Huddle, Mollie, Plug&Pay).
  
  

• Regular monitoring and updates to prevent breaches.
  
  

No method of transmission or storage is completely secure, but we follow industry standards to minimise risks.

10. No cookies or tracking

Our website does not use cookies, tracking pixels, or third-party analytics. You can use our website without being tracked.

11. Changes to this policy

We may update this Privacy Policy to reflect changes in law or our services. Any updates will be published on our website, with the date updated above. Significant changes will be clearly communicated.

12. Contact us

For questions or to exercise your rights, contact:

• General/data requests: [email protected] | [email protected]
  
  

• Billing issues: [email protected]
  
  

• Cancellations: [email protected]
  
  

• Phone/WhatsApp: +31 6 40396958