Back to Home

Privacy Policy

Last Updated: April 1, 2025

At Certyfix, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our supplier certification management platform. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the platform.

Legal Compliance

Certyfix is committed to complying with applicable data protection laws, including:

  • General Data Protection Regulation (GDPR): For users in the European Union, we comply with the GDPR requirements regarding the collection, use, and retention of personal data.
  • California Consumer Privacy Act (CCPA): For California residents, we respect your rights under the CCPA regarding the collection and use of personal information.
  • Other Regional Laws: We also comply with other applicable regional data protection laws, including the UK GDPR, Canadian PIPEDA, and Australian Privacy Act where applicable.

Our data protection practices are designed to provide a consistent level of protection for your personal information regardless of where you are located.

Information We Collect

We collect information that you provide directly to us when you register for an account, create or modify your profile, set preferences, or make purchases through the platform:

  • Personal Information: Name, email address, phone number, billing address, and payment information.
  • Company Information: Company name, address, industry, and size.
  • Supplier Information: Contact details and certification information for suppliers you add to the platform.
  • Usage Data: Information about how you use our platform, including log data, device information, and cookies.

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related information
  • Send administrative messages, updates, and security alerts
  • Respond to your comments, questions, and requests
  • Monitor and analyze trends, usage, and activities in connection with our services
  • Personalize and improve your experience
  • Detect, investigate, and prevent fraudulent transactions and other illegal activities

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The specific retention periods depend on the nature of the information and the purposes for which it is used:

  • Account Information: We retain your account information for as long as your account is active. If you request to delete your account, we will delete or anonymize your personal information within 30 days, except as noted below.
  • Supplier Data: Information about your suppliers is retained for as long as you maintain those suppliers in your account, plus an additional period of up to 12 months after removal to allow for potential reactivation.
  • Transaction Records: For legal and accounting purposes, we retain basic transaction data for a minimum of 7 years.
  • Usage Data: We retain usage data for a maximum of 24 months to help us improve and optimize our services.

Even after your account is terminated, we may retain certain information as required by law or for legitimate business purposes. We may also retain cached or archived copies of information about you for a certain period of time.

Sharing of Information

We may share the information we collect in various ways, including:

  • With Suppliers: We share necessary information with your suppliers to facilitate certificate collection and management.
  • With Service Providers: We may share information with vendors, consultants, and other service providers who need access to such information to carry out work on our behalf.
  • For Legal Reasons: We may disclose information if we believe it's necessary to comply with a legal obligation or to protect the rights, property, or safety of Certyfix, our users, or others.

Third-Party Integrations

Certyfix does not use third-party analytics services, advertising networks, or external payment processors. All core functionality is handled directly by Certyfix systems to maximize data privacy and security:

  • No External Analytics: We do not use third-party analytics tools to track user behavior or collect usage statistics.
  • No Advertising Networks: We do not work with advertising networks or allow third-party ad tracking on our platform.
  • No External Payment Processing: Payment processing is handled through our secure internal systems.

This approach allows us to maintain complete control over your data and minimize exposure to external parties. The only exceptions are essential infrastructure services (such as hosting providers) who act as our data processors and are bound by strict confidentiality and security requirements.

Data Security

We implement appropriate technical and organizational measures to protect the security of your personal information. However, please be aware that no method of transmission over the Internet or method of electronic storage is 100% secure.

Your Rights

Depending on your location, you may have certain rights regarding your personal information, including:

  • The right to access personal information we hold about you
  • The right to request correction or deletion of your personal information
  • The right to restrict or object to our processing of your personal information
  • The right to data portability

To exercise these rights, please contact us using the information provided in the "Contact Us" section below.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our platform and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.

Children's Privacy

Our platform is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this page. You are advised to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Certyfix B.V.
Email: privacy@certyfix.com
Address: Amsterdam, The Netherlands