Skip to content
Qantara
Contact

Privacy

We keep personal data limited, practical, and connected to the reason you contacted us.

Short version

No hidden mailing list. No unnecessary profile building.

Qantara processes personal data to respond to enquiries, prepare or deliver work, keep the website reliable, and meet basic legal obligations. We do not sell personal data.

Only what we need

Contact details, message content, limited attribution data, and technical logs where needed for security and delivery.

Clear purpose

We use your data to answer you, scope work, deliver services, and keep the website and inbox working.

Controlled access

Access is limited to people and suppliers who need it for the work, under practical security controls.

Your rights stay yours

You can ask for access, correction, deletion, restriction, portability, or object to processing.

Policy

How we handle personal data.

1. Controller

Qantara (Chamber of Commerce number 99416468) is the controller for the personal data described in this policy.

This policy applies to qantara.digital, contact messages, exploratory conversations, and project communication with Qantara.

2. Data we process

When you contact us, we process the information needed to understand and answer your message.

  • Name, email address, company name, and the contents of your message.
  • Any information you choose to share during calls, email threads, or project work.
  • Basic technical data such as IP address, browser data, security logs, and technical metadata where needed to keep the website reliable and secure.
  • Attribution data such as UTM parameters, landing page, and referrer when you arrive via a campaign link. This is stored locally in your browser and may be sent with a form submission.

3. Why we process it

We process personal data only where there is a clear reason to do so.

  • To respond to your enquiry and communicate about a possible assignment.
  • To prepare proposals, perform agreed work, manage handover, and keep practical records.
  • To secure the website, prevent abuse, and resolve technical issues.
  • To understand which campaigns or pages lead to serious enquiries, without building unnecessary personal profiles.
  • To meet legal, tax, accounting, and contractual obligations.

4. Legal basis

Depending on the situation, we rely on one or more GDPR bases: taking steps before entering into a contract, performing a contract, legitimate interest, legal obligation, or consent where consent is required.

Our legitimate interests are ordinary business communication, service delivery, security, abuse prevention, and understanding whether our website and campaigns are useful.

5. Retention

We keep data no longer than needed for the purpose for which it was collected.

  • Contact messages are kept while we handle your message and for a reasonable period afterwards, so we can follow up properly.
  • Project and administrative records are kept for as long as needed for delivery, support, legal, tax, or accounting requirements.
  • Technical logs are kept for a limited period unless a security issue requires longer retention.
  • Attribution data stored in your browser can be cleared by deleting local site data for qantara.digital.

6. Suppliers and sharing

We use trusted suppliers for hosting, email, analytics, forms, security, and project delivery. They may process data on our behalf where needed for those services.

We do not sell personal data. We share data only when necessary for the work, required by law, or needed to protect our rights, systems, users, or clients.

7. Website analytics and chat

The website may use privacy-conscious analytics such as Cloudflare Web Analytics when configured. Google Tag Manager and Google Analytics are currently disabled in the application shell.

If a website chat or assistant is available, use it for general questions. Do not send passwords, secrets, or highly sensitive personal data through chat. Chat analytics are used only in aggregated or anonymised form where possible, and only when the relevant feature is enabled.

8. Security

We use practical technical and organisational measures such as least-privilege access, MFA where available, encrypted transport, supplier controls, and documented ownership for project systems.

No system is perfectly secure, but we aim to keep the amount of personal data small and access tightly scoped.

9. Your rights

Under the GDPR, you can ask us to access, correct, delete, restrict, or transfer your personal data. You can also object to processing or withdraw consent where processing depends on consent.

You can also lodge a complaint with the Dutch Data Protection Authority. We would appreciate the chance to resolve questions with you first.

Questions

Need to ask something about privacy?

Send a short email and we will handle it practically. For security concerns, use security@qantara.digital.
Last updated: 10 May 2026

Email Qantara