Privacy policy

Last updated: June 5, 2026

This privacy policy explains how Riemersma RMS handles personal data when you visit our website, fill in a form, request a demo or advice, or are a customer. We process personal data carefully and in accordance with the General Data Protection Regulation (GDPR).

1. Data controller

  • Company: Riemersma RMS
  • Address: Breuningslaan 26, 8471 ZT Wolvega
  • Chamber of Commerce (KvK): 96579153
  • VAT number: NL005217547B44
  • Email: rowan@riemersma.co.nl

For data we process on behalf of our customers (their end-customers' data in our system) we act as processor and our customer is the controller. Our data processing agreement applies there.

2. Data we process

  • Contact details: name, company name, email and phone number you provide via a form or email.
  • Account and customer data: if you are a customer, your login, company and subscription data.
  • Communication: the content of your messages, support and demo requests.
  • Billing data: data needed for invoices and payments.
  • Technical data: session and security data and audit logs of important actions (such as logging in).

3. Purposes and legal grounds

CategoryPurposeLegal ground
Contact and request dataAnswering your question, demo or advicePerformance of a contract / legitimate interest (art. 6(1)(b)/(f))
Account and customer dataDelivering and managing our servicePerformance of a contract (art. 6(1)(b))
Invoice and payment dataMeeting tax obligationsLegal obligation (art. 6(1)(c))
Technical and security dataSecuring and running the platformLegitimate interest (art. 6(1)(f))

4. Retention periods

  • Invoice and administrative data: 7 years (statutory tax retention).
  • Contact and request data: up to 2 years after last contact.
  • Account and customer data: for the duration of the contract, then a 30-day export window and subsequent deletion or anonymisation.
  • Audit logs: for the statutory period for security and accountability.

5. Processors and recipients

We engage processors for our services. A processing agreement is in place with each, and data stays within the EU/EEA:

  • PayNL - payment processing (POS and webshop).
  • MyParcel - shipping and delivery.
  • Postmark - transactional and notification email.
  • Hosting provider (EU) - hosting of the platform and database.
  • Sentry - error monitoring (only if enabled; personal data is filtered).

We never sell your data to third parties.

6. Your rights

You have the right to access, rectify, erase, restrict, object to and port your data, and to withdraw consent.

Customers can do much of this themselves via the privacy portal. For other requests, contact us at rowan@riemersma.co.nl.

7. Security

We take appropriate technical and organisational measures: encrypted traffic (HTTPS), encrypted storage of sensitive data, access control, daily backups and timely security updates.

8. Complaints

If you have a complaint about how we handle your data, please contact us first at rowan@riemersma.co.nl. You also have the right to lodge a complaint with the Dutch Data Protection Authority at autoriteitpersoonsgegevens.nl.

9. Changes

We may update this privacy policy. The current version is always on this page, with the date of last change at the top.