Privacy Policy

Last updated: 1st January 2026

Introduction

FreshImpacto B.V. ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website freshimpacto.world and use our sustainable finance allocation framework services.

Data Controller Information

The data controller for your personal information is FreshImpacto B.V., a company registered in the Netherlands with registration number KvK736541298, VAT number NL736452198B02, and registered address at Berkenlaan 82, 3088 CL Rotterdam, South Holland, Netherlands.

Data Collection

The data we collect from you may include the following personal information:

  • Contact information (name, email address, phone number, company details)
  • Communications data (messages sent through our contact forms or email)
  • Technical data (IP address, browser type, device information, website usage patterns)
  • Cookie data (preferences, website analytics, marketing data)
  • Professional information (job title, company size, industry sector)

How We Use Your Information

We use the personal data we collect to provide, maintain, and improve our services. Specifically, we use your data to:

  • Respond to your enquiries and provide customer support
  • Deliver our sustainable finance allocation framework services
  • Send you relevant business communications and service updates
  • Analyse website usage to improve our services and user experience
  • Comply with legal obligations and regulatory requirements
  • Protect against fraud and ensure the security of our systems

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

  • Consent: Where you have given clear consent for specific processing activities
  • Contract: Where processing is necessary for the performance of a contract with you
  • Legal obligation: Where processing is required to comply with legal requirements
  • Legitimate interests: Where processing is necessary for our legitimate business interests

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our cookie usage, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties except in the following circumstances:

  • With your explicit consent
  • To trusted service providers who assist in operating our business
  • When required by law or to comply with legal processes
  • To protect our rights, property, or safety, or that of others
  • In connection with a business transaction (merger, acquisition, etc.)

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Generally, we retain contact information for active business relationships and for seven years after the end of our business relationship to comply with legal and regulatory requirements.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right of access: You can request copies of your personal data
  • Right to rectification: You can request correction of inaccurate or incomplete data
  • Right to erasure: You can request deletion of your personal data
  • Right to restrict processing: You can request limitation of data processing
  • Right to data portability: You can request transfer of your data
  • Right to object: You can object to processing based on legitimate interests
  • Right to withdraw consent: You can withdraw consent for specific processing activities

Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training on data protection principles.

International Data Transfers

As we operate primarily within the European Union, your personal data is generally processed within the EU/EEA. When we do transfer data outside the EU/EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

Contact Information

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

Email: privacy@freshimpacto.world

Phone: +31 108 493 415

Post: FreshImpacto B.V., Berkenlaan 82, 3088 CL Rotterdam, South Holland, Netherlands

Supervisory Authority

You have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal data in accordance with applicable data protection laws.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete such information.