Privacy Policy

Last Updated: 6 April 2026

1. Organisation Details

Business name: Kredentorio

Legal form: Eenmanszaak (sole trader)

Address: Bovenbeekstraat 26, 6811 CV Arnhem, Netherlands

Phone: +31 88 227 7700

Email: info@kredentorio.com

KvK number: 73841926

BTW-id: NL840478387B62

2. Introduction

Kredentorio takes the protection of your personal data seriously. This privacy policy explains which personal data we collect, for what purpose, on what legal basis, and how long we retain it. We process personal data in accordance with the General Data Protection Regulation (GDPR / AVG) and applicable Dutch legislation.

This policy applies to all visitors of kredentorio.com and to individuals who contact us directly or submit a session request through our website.

3. Personal Data We Collect

We collect and process the following categories of personal data:

• Contact data: name, email address, telephone number
• Communication data: the content of messages you send us via the contact form or by email
• Session request data: your child's year group, preferred session type, and the subjects or situations you describe in your request
• Technical data: IP address, browser type, pages visited, and time of visit (collected via necessary cookies only, unless you consent to analytics cookies)

We do not collect special categories of personal data (such as health data or data about minors directly) unless you voluntarily provide such information in your message.

4. Purpose and Legal Basis

We process your personal data for the following purposes:

• Responding to enquiries and session requests – legal basis: performance of a contract or pre-contractual steps (Article 6(1)(b) GDPR)
• Providing our study support services – legal basis: performance of a contract (Article 6(1)(b) GDPR)
• Complying with legal obligations – legal basis: legal obligation (Article 6(1)(c) GDPR)
• Website analytics (with your consent) – legal basis: consent (Article 6(1)(a) GDPR)
• Improving our services – legal basis: legitimate interest (Article 6(1)(f) GDPR)

5. Data Retention

We retain your personal data no longer than necessary for the purposes described in this policy:

• Contact and session request data: up to 2 years after the last contact
• Financial and administrative records: 7 years (statutory requirement under Dutch tax law)
• Technical/analytics data: up to 13 months

After the applicable retention period, data is securely deleted or anonymised.

6. Data Sharing

We do not sell your personal data to third parties. We may share your data with:

• Hosting and IT service providers who process data on our behalf under a data processing agreement
• Competent authorities if required by law

Any third party that processes data on our behalf does so under a written data processing agreement (verwerkersovereenkomst) in accordance with GDPR requirements.

7. Your Rights

Under the GDPR, you have the following rights with respect to your personal data:

• Right of access: you can request a copy of the personal data we hold about you
• Right to rectification: you can request correction of inaccurate data
• Right to erasure: you can request deletion of your data, subject to legal retention obligations
• Right to restriction: you can request that we restrict processing of your data in certain circumstances
• Right to data portability: you can request your data in a structured, commonly used format
• Right to object: you can object to processing based on legitimate interest
• Right to withdraw consent: where processing is based on consent, you can withdraw it at any time without affecting the lawfulness of prior processing

To exercise any of these rights, contact us at info@kredentorio.com. We will respond within 30 days. If you believe your rights have been violated, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.

8. Cookies

Our website uses cookies. For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy. You can manage your cookie preferences at any time via the cookie settings on our website.

9. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or destruction. These measures include secure hosting, HTTPS encryption, and access controls. No method of transmission over the internet is completely secure, but we take reasonable precautions.

10. Changes to This Policy

We may update this privacy policy from time to time. The "Last Updated" date at the top of this page reflects the most recent revision. We encourage you to review this policy periodically. Continued use of our website after changes constitutes acceptance of the updated policy.

11. Contact

For questions about this privacy policy or how we handle your personal data, please contact us:

Kredentorio
Bovenbeekstraat 26, 6811 CV Arnhem
info@kredentorio.com
+31 88 227 7700