Privacy Policy

Last updated: January 2026

Introduction

GoldenFerrumium B.V. ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard the data we collect from users of our website and services.

As a company registered in the Netherlands (Registration Number: NL56473829), we comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws within the European Union.

Data Controller Information

GoldenFerrumium B.V. acts as the data controller for the personal information processed through our website and services. Our contact details are:

Company: GoldenFerrumium B.V.

Address: Schoolstraat 58, 1312 ZK Almere, Flevoland, Netherlands

Registration Number: NL56473829

VAT Number: NL007564738B01

Email: [email protected]

Phone: +31 365808862

Data Collection

The data we collect includes personal information that you voluntarily provide to us and information automatically collected when you use our website. We collect the following types of personal data:

  • Contact Information: Name, email address, phone number, and postal address when you contact us or register for our services.
  • Communication Data: Records of your communications with us, including emails, phone calls, and messages through our contact forms.
  • Technical Information: IP address, browser type, device information, operating system, and website usage data collected through cookies and similar technologies.
  • Transaction Information: Details about orders, payments, and service usage when you engage with our e-commerce services.
  • Marketing Preferences: Your preferences regarding marketing communications and cookie consent choices.

How We Use Your Information

We process your personal data for various purposes based on legitimate legal grounds. Here's how we use your information:

  • Service Provision: To provide our online retail services, process orders, and fulfil contractual obligations.
  • Customer Support: To respond to your enquiries, provide technical support, and resolve issues.
  • Communication: To send important updates about our services, respond to your questions, and provide requested information.
  • Website Improvement: To analyse website usage, improve functionality, and enhance user experience.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.
  • Marketing: With your consent, to send promotional materials and information about our services that may interest you.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, their purposes, and how to control them, please refer to our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to fulfil our contractual obligations to you.
  • Legitimate Interests: Processing necessary for our legitimate business interests, such as improving our services and website security.
  • Consent: Where you have given explicit consent for specific processing activities, such as marketing communications.
  • Legal Obligation: Processing required to comply with applicable laws and regulations.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your data in the following limited circumstances:

  • Service Providers: Trusted third-party service providers who assist us in operating our business, such as payment processors, hosting services, and analytics providers.
  • Legal Requirements: When required by law, regulation, or legal process, or to protect our rights and interests.
  • Business Transfers: In the event of a merger, acquisition, or sale of business assets, subject to appropriate data protection safeguards.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Our data retention periods are:

  • Contact Information: Retained for the duration of our business relationship and up to 7 years after the last contact for legal compliance purposes.
  • Transaction Records: Retained for 7 years in accordance with accounting and tax law requirements.
  • Website Analytics: Anonymised data may be retained for statistical analysis and service improvement purposes.
  • Marketing Consents: Retained until consent is withdrawn or the purpose is no longer valid.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right of Rectification: Request correction of inaccurate or incomplete personal data.
  • Right of Erasure: Request deletion of your personal data in certain circumstances.
  • Right to Restrict Processing: Request limitation of how we process your data in specific situations.
  • Right to Data Portability: Request transfer of your data to another service provider in a structured format.
  • Right to Object: Object to processing based on legitimate interests or for marketing purposes.
  • Right to Withdraw Consent: Withdraw consent for processing activities that require your explicit consent.

To exercise any of these rights, please contact us at [email protected] or +31 365808862.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training on data protection principles.

International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we need to transfer data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately so we can delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date at the top of this page.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about how we handle your personal data, please contact us using the following methods:

Privacy Contact: [email protected]

Phone: +31 365808862

Address: GoldenFerrumium B.V., Schoolstraat 58, 1312 ZK Almere, Flevoland, Netherlands

Business Hours: Monday - Friday: 9:00 - 18:00

You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal data in accordance with applicable law.