Privacy statement - Chatlicense

General information
Your privacy is important to us. We therefore do our utmost to ensure that data is safe with us. In this Privacy Statement, we explain how we handle personal data about people who visit our website, apply for a position at ChatLicense or use our (mobile) app(s) (“services“). This states which personal data we process, for what purposes, how long we store data, to whom we pass it on and how you, as a user of ChatLicense, can influence this yourself. Do you have any questions, comments or complaints about the way we process personal data? Please contact us via privacy@chatlicense.com or via the contact details in this Privacy statement.

Who is responsible for processing your personal data?
ChatLicense B.V. (referred to in this Privacy Statement as “ChatLicense“, “we“, “our“, “us“) is a controller within the meaning of the General Data Protection Regulation (“GDPR“). This means that we are responsible for processing your personal data in accordance with applicable privacy laws and regulations.

How can you contact us?
If you have any questions, comments or complaints about the way we process your personal data, you can contact our Data Protection Officer via privacy@chatlicense.com or via the contact details below.

ChatLicense B.V.
Aert van Nesstraat 45
3012 CS Rotterdam
Netherlands

Privacy rights

What are your privacy rights?

To keep control over the personal data we process about you, you have privacy rights. For example, you have the right to know what we do with your data. And to ask us which data we have of you and to correct or delete your data. These rights are briefly described below.

Withdraw consent. We process some data on the basis of consent. In that case, you have the right to withdraw this permission at any time. If you have withdrawn your consent, we are no longer allowed to process this data for the related purposes. You can withdraw your consent by contacting us via privacy@chatlicense.com or via the contact details at the top of this Privacy statement.

Right of access. You have the right to request access to the personal data that we process about you. In that case, we are obliged to provide you with a copy of your personal data. We can give you a copy of your personal data in two ways:

By making copies of all documents containing your personal data.
By only copying your personal data instead of the entire documents. And then put this data together in a complete overview.

Right to rectification. You have the right to ask us to rectify (change) your data if it is incorrect or if it is incomplete. In that case, you can ask us to adjust or supplement your data.

Right to be forgotten. You have the right to ask us to delete certain data about you. In certain cases, we are no longer allowed to process the data to which your request applies. This is the case, for example, if we no longer need the data for the purpose for which we collected the data or for which we process the data, if you withdraw your consent to the use of your data, if you (justifiably) object to the use of your data, if we do not comply with privacy laws and regulations or because we have collected data from a child under the age of 16 via a app or website.

Right to object. You have the right to object to the use of your personal data on grounds of your particular situation or if you no longer wish to receive direct marketing from us. In that case, we must stop processing the personal data to which your request applies, unless our legitimate interests to continue processing your data outweigh your interests. In the case of direct marketing, we will always approve your request (this is the case, for example, if you no longer wish to receive our newsletter).

Right to restriction of processing. You have the right to ask us to temporarily stop using your personal data. This is the case, for example, if you have asked us to change your data, but we have yet to assess this request.

Right to data portability. You have the right to receive the personal data that we have about you. For example, you can easily pass on your data to another organization with a similar service. You can also ask us to transfer your data directly to another organisation.

Right not to be subject to automated decision-making. In certain cases, you have the right to a human view of automatic decisions that affect you and that affect you. ChatLicense does not use automated decision-making when processing your data.

Right to complain. You can file a complaint with the Dutch Data Protection Authority (“AP”) by filling in this report form on the AP’s website, for example if you have experienced something or if you think we are not complying with the GDPR. Of course, we prefer to work it out together. Do you have any questions, comments or complaints about the way we handle your personal data? You can always discuss this with us. Please contact us via privacy@chatlicense.com or via the contact details at the top of this Privacy statement.

How can you exercise your privacy rights?

You can exercise your privacy rights free of charge by sending your request by email to privacy@chatlicense.com. You can also send us your request by regular mail. Our address is listed under our contact details at the top of this Privacy statement.

We will usually respond to your request within one month. In certain cases, for example if the request is very complex, we can extend this period by up to two months. If this is the case, we will notify you within one month. If we do not honor your request, we will inform you of why we have come to this decision, unless we are not allowed to do so for legal reasons.

How do we handle your personal data?

Below we inform you about the way in which we process your personal data. We process personal data about different categories of people. We explain for each category which personal data is processed and why it is necessary.

About whom do we process personal data?
We process personal data of the following categories of persons in the context of our services:

App users. Individuals who use our services.

Website visitors and people with whom we have contact. Persons who visit our website and persons with whom we have contact, for example via our social media.

Applicants. Individuals applying for a position at ChatLicense.

What personal data do we process and why?

App users

ChatLicense processes personal data when you use our services.

Categories of Personal Data. Individuals who use our services: parents and their children (users of the app) and subscribers (subscription holders).

Purposes of the processing. We process your personal data for the following purposes:
- Providing access to our services by registering for a ChatLicense account;
- Providing assistance with purchases, downloads, or using our services if something doesn’t work as expected;
- Providing services based on your subscription form and appropriate to the age of the child.
Categories of Personal Data. If you use our services, we may process the following personal data:
- Child users:
  - Name (free input field);
  - Age (multiple choice question);
  - Gender (boy, girl, different, I’d rather not say);
  - Progress;
  - Link code;
  - Answers with personal preferences.
- Parents:
  - Name (free input field);
  - Email address;
  - Parent/child relationship.
- Subscribers:
  - Payment details;
  - Link code;
  - Apple of Google ID.
- Special personal data. In principle, we do not process any special personal data in the context of our services.
- Bases of processing. We may only process personal data if we have (a) legal basis(s) for doing so. We base the processing of your personal data in the context of our services on your consent, for the performance of an agreement to which you are a party, or to take measures before concluding an agreement.

Website visitors and people with whom we interact

ChatLicense processes personal data when you use our website or when we have contact with you, for example via our social media. For information about the use of cookies and similar techniques on our website, please refer to our Cookie statement.

Categories of persons. Persons who visit our website or with whom we have contact, for example via our social media.
Purposes of the processing. We process your personal data for the following purposes:
Providing, administering and improving our website;
To secure our website;
Analyzing website usage and behavior; and
Handling questions, comments or complaints.
Categories of Personal Data. If you use our website or contact us, we may process the following personal data:
- Internet protocol (IP) address with which you visit our website or social media;
- Browser type you used to visit our website or social media;
- Browser settings, such as your location and language preference (if applicable);
- Other information related to the interaction between the device you use to visit our website and the website, such as: which web page has been visited, whether it is a recurring visit, the number of visits and how much time is spent on (specific pages of) the website;
- Information we may collect through cookies and similar technologies, including Google Play, Google Ads/DoubleClick, Google Tag manager, Google Static and Youtube.
- Information we receive when you contact us via our website or social media, including: name, email address and the content of your message (free input field).
Special personal data. In principle, we do not process any special personal data in the context of our website or persons with whom we have contact.
Bases of processing. We may only process personal data if we have (a) legal basis(s) for doing so. We base the processing of your personal data in the context of our website and social media contacts for the above purposes on our legitimate interests or on the basis of your consent, for example for the placement of certain cookies. More information about the different types of cookies we use on our website can be found in our Cookie statement.

Sollicitants

ChatLicense processes personal data when you apply for a position at ChatLicense.

Categories of Personal Data. Individuals applying for a position at ChatLicense (applicants/potential future employees).
Purposes of the processing. We process your personal data during the application process for the following purposes:
- Assessing whether you are suitable for a position that is or may become available within ChatLicense;
- Handling any expenses incurred by you in relation to the application procedure; and
- Conducting a background check, such as a Certificate of Good Conduct (“VOG“).
Categories of Personal Data. If you apply for a position at ChatLicense, we may process the following personal data:
- First and last name;
- Email;
- Telephone number;
- Address;
- Gender;
- Education;
- Work experience;
- VOG (if applicable); And
- Other employment-related information that we receive from you, for example through your CV and cover letter.
Special personal data. In principle, we usually do not process special personal data during the application process, unless a legal exception applies. For example, because we need to be aware of your criminal history for the position you are applying for. In that case, submitting a VOG is sufficient.
Bases of processing. We may only process personal data if we have (a) legal basis(s) for doing so. We base the processing of your personal data in the context of job applications for the above purposes on our legitimate interests to select the most suitable candidate for the position. In this context, we may also process your personal data on the basis of your consent, for example to be able to store your data longer if you have not been given the position, because a suitable position may come at a later date. In that case, we will keep your data for a maximum of one year after the end of the application period (instead of 4 weeks).

Legitimate interest

We may also process your data on the basis of our legitimate interests for purposes other than those listed above, for example:

Handling and resolving legal disputes or complaints;
Compliance with obligations under laws and regulations;
Enforcing agreements;
Comply with requests from law enforcement authorities, to the extent required by law; and

Do you have questions about the processing that we base on our legitimate interests? Please contact us via privacy@chatlicense.com or via the contact details at the top of this Privacy statement.

How do we collect your personal data?

Obtained through you. We process data that we have received directly from you, for example from the contact form on the website, from application forms, the information we have asked you to fill in or provide for the use of the app and through your other interactions with us.

Obtained through third parties. In some cases, we collect personal data about you from third parties with whom we work. For example, we work with third parties, such as governments, telecom providers, insurers, banks or employers, to offer vouchers to (end) users and suppliers, such as software developers, for the purchase of services.

Automatically retrieved. We collect some data about you automatically, for example via cookies. This is the case, for example, when you use our website.

Generated. We may perform analytics on your data. The results of this analysis may also contain personal data.

Are you obliged to give us personal data that we request?

You are not obliged to share data with us.

However, the provision of personal data may be necessary for the conclusion of a contract or to comply with a legal obligation (e.g. due to tax regulations). We will inform you separately about this if necessary. We will also explain the possible consequences if you decide not to provide the information to us. This may mean, for example, that we cannot enter into an agreement with you that prevents you from using (all functionalities of) our services.

Do we pass on your personal data to third parties?

We only share your data with third parties if this is necessary in the context of our services or if we are legally obliged to do so. If possible, we enter into contracts where we take privacy and security by design as a starting point, for example with suppliers, stating exactly what data is shared and why it is necessary (need-to-know basis). ChatLicense requires guarantees that the data provided will only be used for the described purpose and certainty about the way in which the supplier protects the data and destroys it after use.

We may pass on your personal data to third parties under the following circumstances:

Authorised persons working for us, who are involved in the processing of personal data, for example when you contact us for information about our services or when you apply for a job with us.

Authorised persons who work for our suppliers, who are involved in the processing of personal data in the context of our services to you, such as IT service providers.

Authorised persons who work for third parties with whom we cooperate, who are involved in the processing of personal data in the context of our services to you, such as governments, telecom providers, insurers, banks or employers who offer vouchers for the (free) use of our app.

Authorized individuals who work in government or law enforcement agencies. We may share your information with other organizations, such as law enforcement agencies and law enforcement agencies, to the extent that we are legally required to do so.

Aggregate Information. We may share aggregated statistical information with third parties for various purposes, such as conducting market research. The data we share in this context is not personal data. So they cannot be (in)traced back to you directly.

Do we transfer your personal data to a third country or international organisation?

Parties involved in the processing of your personal data may be located outside your jurisdiction. Depending on where these third parties are located, this may mean that your data will be transferred to countries located outside the European Economic Area (“EEA”). These are called third countries. Here you will find an overview of all countries that belong to the EEA.

We can legitimize the transfer of your data to a third country on the basis of an adequacy decision. In this decision, the European Commission (“EC”) finds that the data protection in that country is of a comparable level to the GDPR. Here you will find an up-to-date overview of all countries for which the EC has taken an adequacy decision.

If we transfer your data to parties in third countries for which the EC has not taken an adequacy decision, we will take appropriate safeguards to protect your data. We can do this, for example, by concluding a model contract with these parties that has been approved by the EC.

How long do we keep your personal data?

The GDPR does not contain any concrete retention periods for personal data. We therefore determine how long we store personal data. Unfortunately, there is no formula for this, but the criteria below describe how we determine this.

Starting point

We do not store personal data for longer than is strictly necessary for the purposes for which they are processed. What is necessary depends on the situation.

Minimum legal retention period

Sometimes there are minimum legal retention periods that we must adhere to. For example, on the basis of tax legislation.

Shorter retention period

We may also process data for a shorter period of time than stated under the ‘starting point’ above. This is the case, for example, if you successfully invoke one of your privacy rights. This is the case, for example, when you withdraw permission to use your data for the purpose of certain processing, such as sending our newsletter.

Longer retention period

In exceptional cases, we will need to process personal data for a longer period than stated under the ‘starting point’ above. This is the case with:

A legal procedure;
The right to freedom of expression and information;
A task carried out in the public interest or in the exercise of official authority vested in the controller.

Changes to this Privacy Statement

This Privacy Statement is amended from time to time. You can always consult the current version of this Privacy Statement on our website.

This Privacy Statement was last amended on 30 June 2025.