Legal
Privacy Policy for Liccium B.V.
Introduction
Liccium B.V. (“we,” “us,” or “our”) is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR). This Privacy Policy outlines how we collect, use, and protect personal data when you use our apps and services. By using our apps and services, you agree to the terms of this Privacy Policy.
Data Controller and Processor
Liccium B.V. is the company responsible for operating the following applications, websites and services (in the future “Services”):
- Liccium App on liccium.app
- Creator Credentials App on creatorcredentials.app
- Liccium Landing page on liccium.com
Liccium B.V., a company under Dutch Law, is your contractual partner and the data controller responsible for collecting and processing your personal data for these services. Dutch Law applies. The designated privacy officer for Liccium B.V. is Sebastian Posth, who oversees data protection and privacy compliance.
You acknowledge that Liccium B.V. will, in order to ensure the use of our Services, transfer your personal information across national borders and to other countries where our partners and providers operate, including the United States. The privacy protections and rights of authorities to access your information in these countries may not be equivalent to those in your country. We will only transfer your personal information to these countries where legally permitted and we will take steps intended to ensure that your personal information continues to receive appropriate protections.
Data Collection
We use your personal information to enable you to register with Liccium B.V. and to provide you with our Services, and other products or services that you request. For these purposes, we collect and process data that you provide directly or that is collected automatically for specific purposes necessary to provide our Services, fulfill technical requirements, comply with contractual obligations, or respond to user inquiries.
When you create a user account, we collect Personal Identification Information, such as your name and email address necessary to provide the Service. We may also collect professional information, including your organization’s name and domain as well as information about social or institutional accounts and domains, the fact and nature of a relationship between you and third parties as well as your relationship as a creator to a work and the information and metadata contained in a work, if this data is provided by you.
Additionally, we gather technical data, such as the date and duration of your visit, web pages accessed, browser identification, and operating system, if you consent to such a data collection. Usage data, including interactions with the app and user preferences, may also be collected to enhance your experience and improve our services, if you consent to such a data collection.
Specific Purposes
The information we collect about you, we use for the following purposes:
Conclude or fulfill a contract, when you use a Liccium app or website. The purposes include:
- Providing you with the Services, including the issuance and verification of VCs and verifiable content declaration
- Identifying you as a contract partner
- Processing payments
- Sending you necessary information
- Administering our app and websites, including testing and certification.
Communication; Improvement and Customization
If you give Liccium B.V. your consent, we use for the following purposes in particular:
- Communication by sending you information about updates or other products and services offered by Liccium B.V. and sharing your information with third parties for their own marketing purposes as specified in the consent;
- Improvement and Customization: Placing cookies and using similar technologies in our Services and Software and in email communications, in accordance with our Cookies Policy and the information provided to you when those technologies are used; Analyzing your use and navigation of the Services and Software or your content (including metadata contained in your content) using techniques such as machine learning in order to detect and prevent fraudulent, deceptive, or illegal activity or misuse of the Services, and improve our services and the user experience.
Where consent is the basis, you can withdraw your consent at any time.
Legal Compliance
For legal reasons,
- if we need to disclose information to official authorities, e.g. in order to detect or prevent fraud, identity theft, misuse of the Services or other criminal activity.
- if official authorities based on a legal basis demand such disclosure of information.
Where this processing and these disclosures are not strictly required by law, Liccium B.V. may rely on its legitimate interests, where available.
Legal Basis for Processing
The legal basis for the processing of information is in case of:
- Contractual Obligation: Data needed to fulfill our services (Article 6(1)(b) GDPR).
- Consent: Data processed with your explicit consent (Article 6(1)(a) GDPR).
- Legal Obligation: Data processed to comply with legal requirements (Article 6(1)(c) GDPR).
- Legitimate Interests: Data processed to improve services and user experience (Article 6(1)(f) GDPR).
Data Sharing
In order to be able to offer our services, we share your data with third-party service providers and data processors as follows:
- Amazon Web Services (AWS) for hosting — AWS Data Processing Agreement
- Clerk for user administration — Clerk Data Processing Agreement
- HubSpot for email newsletters and contact forms — HubSpot Data Processing Agreement
- Stripe for payments and invoicing — Stripe DPA
- Cloudflare for website hosting and analytics — Cloudflare DPA
The main locations where we process your personal information are the Netherlands, but we also transfer personal information to other countries in which Liccium B.V. or its affiliates, providers, and partners operate. We carry out these transfers in compliance with applicable laws – for example, by putting data transfer agreements in place to help protect your personal information.
Data Security
We implement legal, administrative, technical and physical security measures, including appropriate contractual confidentiality obligations for employees and contractors as well as encryption, verification and access controls to protect your data. However, no internet transmission method is completely secure.
Data Retention
We retain your data as long as necessary for the purposes outlined, as long as we have your consent or as long as required by law.
Your Rights
Under the GDPR, you have the following rights regarding your personal data:
- Right to Access: You can request access to your personal data that we hold.
- Right to Rectification: You have the right to request corrections to any inaccuracies in your personal data.
- Right to Erasure: You can request the deletion of your personal data under certain conditions.
- Right to Restrict Processing: You can request the restriction of processing your personal data under certain circumstances.
- Right to Object: You have the right to object to the processing of your personal data based on our legitimate interests.
- Right to Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format, and transfer it to another data controller.
If you want to make use of the above mentioned rights, please contact us at info@liccium.com.
Data Transfers
Your data may be transferred outside the European Economic Area (EEA). We ensure appropriate safeguards are in place.
Contact Us
If you have questions or concerns about this Privacy Policy or your data, contact us at:
Liccium B.V.Boerhaavelaan 99
2334 EG Leiden
E-mail: info@liccium.com
Changes to this Policy
We may update this Privacy Policy periodically. Changes will be posted on this page with an updated revision date.