Privacy Policy

How we collect, use, and protect your personal information.

Last updated: April 18, 2026

1. Introduction

Thalfyroshakao ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website thalfyroshakao.ddd.

This policy complies with the General Data Protection Regulation (EU) 2016/679 (GDPR), the Dutch GDPR Implementation Act (Uitvoeringswet AVG), and other applicable data protection laws in the Netherlands and the European Economic Area (EEA).

2. Data Controller Information

The data controller responsible for your personal data is:

Thalfyroshakao
Paktuinen 23B, 1601 GD Enkhuizen, Netherlands
Phone: +31 6 50406599
Email: service@thalfyroshakao.world

3. Categories of Personal Data

Depending on how you use our website, we may process the following categories of personal data:

  • Identity and contact data: name, email address, and any information you include in messages
  • Technical and usage data: IP address, browser type and version, device type, operating system, referring URLs, pages viewed, and approximate location derived from IP
  • Communication data: records of your correspondence with us
  • Preference data: cookie and privacy choices stored in your browser or device

We do not intentionally collect special categories of data (such as health data) through our website. If you voluntarily include health-related information in a message, we will process it only to respond to your inquiry and based on your request, unless another legal basis applies.

4. Information We Collect

4.1 Information You Provide

We collect information that you voluntarily provide when:

  • Submitting a contact form (name, email address, message content)
  • Subscribing to our communications
  • Corresponding with us via email or phone

4.2 Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address and browser type
  • Device information and operating system
  • Pages visited and time spent on pages
  • Referring website addresses
  • Cookie data (see our Cookie Policy)

5. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you have given explicit consent for specific purposes
  • Legitimate Interest: When processing is necessary for our legitimate business interests
  • Contract: When processing is necessary to fulfill a request you have made
  • Legal Obligation: When we are required by law to process your data

6. How We Use Your Information

We use collected information for the following purposes:

  • Responding to your inquiries and contact form submissions
  • Providing information about our products and services
  • Improving our website and user experience
  • Analyzing website traffic and usage patterns
  • Complying with legal obligations
  • Protecting against fraudulent or unauthorized activity

7. Advertising, Analytics, and Measurement

Where you have given consent via our cookie banner (or equivalent controls), we may use third-party technologies for website analytics and, if applicable, to measure the effectiveness of online advertising (for example Google Ads conversion measurement or similar tools). These technologies may process online identifiers, device data, and event data (such as page views or form interactions) in aggregated or pseudonymous form.

Providers may act as independent controllers or as processors on our behalf, depending on the service. For services operated by Google, please also refer to Google's Privacy Policy and Google's privacy controls. You can withdraw or adjust consent at any time through our cookie settings; you may also use browser controls or industry opt-out tools where available.

8. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

  • Service providers (processors): Hosting, IT infrastructure, email delivery, analytics, and advertising technology vendors that support our website and campaigns, strictly under written agreements where required by law
  • Professional advisers: Lawyers, accountants, or insurers where necessary
  • Legal requirements: When required by law, court order, or competent authority
  • Business transfers: In connection with a merger, acquisition, reorganization, or sale of assets, subject to appropriate safeguards

We require service providers to protect your information and to process it only on our instructions or as otherwise permitted by law.

9. International Data Transfers

Your information may be transferred to and processed in countries outside the EEA (including the United States) when we use global service providers. When this occurs, we implement appropriate safeguards required by GDPR, such as the European Commission's Standard Contractual Clauses (SCCs), supplementary measures where appropriate, or other lawful transfer mechanisms.

You may request more information about transfers and safeguards by contacting us using the details in Section 2.

10. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy:

  • Contact form submissions: Up to 2 years after your last interaction
  • Website analytics data: Up to 26 months
  • Cookie consent preferences: Until you withdraw consent or clear your browser data

After the retention period expires, your data will be securely deleted or anonymized.

11. Automated Decision-Making and Profiling

We do not use automated decision-making, including profiling, which produces legal effects concerning you or similarly significantly affects you. If this changes, we will inform you and explain the logic and consequences as required by law.

12. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data we hold
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of how we process your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us using the information provided in Section 2. We will respond within one month, which may be extended by two further months where necessary; if so, we will inform you of the extension and reasons within one month. You also have the right to lodge a complaint with a supervisory authority (see Section 17).

13. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • SSL/TLS encryption for data in transit
  • Secure server infrastructure
  • Regular security assessments
  • Access controls and authentication
  • Employee training on data protection

While we strive to protect your data, no method of transmission over the Internet is completely secure. We cannot guarantee absolute security.

14. Children's Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected information from a child, please contact us immediately.

15. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

16. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy regularly.

17. Complaints

If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.

Autoriteit Persoonsgegevens
Website: autoriteitpersoonsgegevens.nl

18. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Thalfyroshakao
Paktuinen 23B, 1601 GD Enkhuizen, Netherlands
Phone: +31 6 50406599
Email: service@thalfyroshakao.world