Privacy Policy

Effective: 2025-09-30

Who we are

E‑Noer (“we”, “us”, “our”) provides ecommerce coaching and software, including our platform reachable at e-noer.nl and related subdomains (the “Services”). We are the data controller for personal data we collect through the Services. If you use our Services on behalf of a business (e.g., connecting a Shopify store), your business is the controller for customer data inside your store and we act as a data processor — see our Data Processing Addendum.

What we collect

• Account data: name, email, password hash, and metadata from your profile.
• Usage data: logs, device/browser, IP address, and product interactions for security and analytics.
• Connected integrations: shop identifiers and scopes you authorize (e.g., Shopify store domain). We never pull customer PII unless you explicitly request a feature that needs it.
• Support: messages, attachments, and contact details.
• Payment: handled by our payment processors; we store payment status and the last 4 digits/brand where provided by the processor.

How we use data (legal bases)

• Provide the Services and account management — GDPR Art. 6(1)(b).
• Security, fraud prevention, abuse detection — GDPR Art. 6(1)(f) legitimate interests.
• Product analytics with aggregated, de‑identified data — GDPR Art. 6(1)(f).
• Marketing communications with your consent — GDPR Art. 6(1)(a) (you can opt out anytime).
• Legal compliance — GDPR Art. 6(1)(c).

Sharing

We share data with vendors that help us run the Services, under contracts that restrict their use: hosting (e.g., Vercel/Cloudflare), authentication and database (Supabase), payments (e.g., Stripe), error/logging, and communication tools. We may disclose data to comply with law or defend legal claims. We do not sell personal information.

International transfers

Where data is transferred outside the EEA/UK, we use appropriate safeguards such as the EU Standard Contractual Clauses (SCCs). US transfers rely on SCCs and, where applicable, the EU‑US Data Privacy Framework.

Retention

We keep personal data only as long as needed for the purposes above. You may request deletion of your account and associated personal data; backups and logs are purged on rolling cycles.

Your rights

Depending on where you live, you may have rights to access, correct, delete, port, or object to/limit processing. EU/UK residents can also complain to a supervisory authority. To exercise rights, email support@e-noer.nl.

Cookies & tracking

We use strictly necessary cookies and, with consent, analytics/advertising cookies. See our Cookie Policy to manage preferences.

Children

Our Services are not directed to children under 16. We do not knowingly collect data from children.

Contact

Controller: E‑noer B.V., Address: [add], Email: support@e-noer.nl

Changes

We may update this policy. We will post the new effective date and, where appropriate, notify you.