Privacy Policy

Tegra Development is the data controller for the personal data processed through this website. Tegra Development Goeree 16 8245 GA Lelystad The Netherlands Email: privacy@tegra.io KvK: 67683207 BTW: NL002312981B26

We may collect and process the following personal data: • Contact information: name, email address, phone number, company name • Communication data: messages you send us through our contact form • Technical data: IP address, browser type, device information, pages visited • Cookie data: as described in our Cookie Policy

We process your personal data on the following legal bases: • Consent (Art. 6(1)(a)) — for analytics and marketing cookies • Legitimate interest (Art. 6(1)(f)) — for website security and improvement • Contract performance (Art. 6(1)(b)) — to respond to your inquiries and deliver our services • Legal obligation (Art. 6(1)(c)) — for tax and accounting requirements

We use your personal data to: • Respond to your inquiries and contact requests • Provide and improve our services • Analyze website usage to improve user experience • Comply with legal obligations • Send you relevant communications (only with your consent)

We retain your personal data only for as long as necessary for the purposes described in this policy: • Contact form submissions: 2 years after last contact • Analytics data: 26 months (anonymized after) • Contractual data: 7 years (Dutch fiscal retention obligation) • Cookie consent records: 12 months

We may share your personal data with: • Hosting providers (within the EU/EEA) • Analytics services (with your consent) • Email service providers • Professional advisors (accountants, legal counsel) We have Data Processing Agreements (verwerkersovereenkomsten) in place with all processors. We do not sell your personal data to third parties.

Where personal data is transferred outside the EU/EEA, we ensure adequate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, or transfers to countries with an adequate level of protection.

Under the GDPR, you have the following rights: • Right of access (Art. 15) — request a copy of your personal data • Right to rectification (Art. 16) — correct inaccurate data • Right to erasure (Art. 17) — request deletion of your data • Right to restrict processing (Art. 18) • Right to data portability (Art. 20) — receive your data in a structured format • Right to object (Art. 21) — object to processing based on legitimate interest • Right to withdraw consent — at any time, without affecting prior processing To exercise any of these rights, contact us at privacy@tegra.io. We will respond within 30 days.

We implement appropriate technical and organizational measures to protect your personal data, including encryption in transit (TLS) and at rest, access controls, regular security assessments, and incident response procedures.

If you believe we have not handled your personal data properly, you have the right to file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): Autoriteit Persoonsgegevens Postbus 93374 2509 AJ Den Haag https://autoriteitpersoonsgegevens.nl

We may update this privacy policy from time to time. Material changes will be communicated through our website. The date at the top of this page indicates the last revision.