GDPR

🛡️ GDPR Compliance

1. Introduction

At OLY Europe B.V., we are fully committed to protecting your personal data and complying with the General Data Protection Regulation (EU) 2016/679 (“GDPR”). This page explains how we process personal data in accordance with GDPR, your rights, and how to exercise them.

2. Who We Are

OLY Europe B.V.
Weena 690
3012 CN Rotterdam, Netherlands
KVK: 93875207
VAT: NL866557404B01
Email: support@ol-y.com

3. Legal Basis for Processing

We process personal data based on one or more of the following legal grounds:

  • Contract: To fulfill our agreement with you as a customer, supplier or partner.
  • Legal obligation: To comply with EU tax, accounting, and trade laws.
  • Legitimate interest: To manage our operations, prevent fraud, and improve our services.
  • Consent: Only when you have explicitly opted in for marketing communications.

4. What Data We Collect

  • Company contact data: Name, address, phone, email
  • Representative data: Contact person, email, phone number
  • Payment data: Bank account, payment history, VAT number
  • Website data: IP address, device type, browser info, cookie preferences

5. How We Use Your Data

We use personal data only for legitimate business purposes, such as:

  • Processing orders and payments
  • Providing customer service
  • Managing your account and communication preferences
  • Compliance with legal and regulatory requirements

6. Data Storage and Retention

Your data is securely stored on servers within the European Union. We retain data only as long as necessary for business and legal purposes, typically:

  • Accounting records: 7 years
  • Order and shipping data: 5–7 years
  • Email correspondence: Up to 2 years unless legally required longer

7. Your GDPR Rights

Under GDPR, you have the following rights:

  • Access: You can request a copy of your personal data.
  • Rectification: You can ask us to correct inaccurate data.
  • Erasure ("Right to be Forgotten"): You can request deletion of your data, subject to legal obligations.
  • Restriction: You can ask us to restrict processing in certain situations.
  • Objection: You can object to processing based on legitimate interest or marketing.
  • Portability: You can request a copy of your data in a machine-readable format.

To exercise any of your rights, email us at support@ol-y.com. We will respond within 30 days.

8. Data Sharing

We do not sell personal data. We may share data with trusted service providers such as:

  • Payment processors (e.g., card acquirers, banks)
  • Shipping and logistics partners
  • Accounting and legal service providers
  • IT infrastructure and web hosting providers

All partners are GDPR-compliant and process data only on our behalf.

9. Security Measures

We implement appropriate technical and organizational security measures including:

  • SSL encryption
  • Access control to systems and databases
  • Two-factor authentication (2FA) for administrative systems
  • Regular security audits and updates

10. Complaints

If you believe your data has been handled improperly, you have the right to lodge a complaint with the relevant Data Protection Authority in your EU country. In the Netherlands, this is:

Autoriteit Persoonsgegevens
Website: autoriteitpersoonsgegevens.nl

11. Updates to This GDPR Page

This page was last updated on June 2025. We may update this notice from time to time to reflect legal or business changes. The latest version will always be available here.

12. Contact

For any GDPR-related questions, requests, or concerns, contact us at:

Email: support@ol-y.com

Sign in

Megamenu

My wishlist0

This website use cookies to ensure you get the best experience on our website.Privacy Policy