Privacy Policy

Data Controller

Aerion B.V. is the data controller responsible for your personal data. Our company is registered in the Netherlands with registration number 61583942 and VAT number NL843107952B01. We are located at Stationsweg 150, 5070 NC Tilburg, North Brabant, Netherlands.

Data Collection

The data we collect includes personal information such as your name, email address, phone number, company details, and project requirements when you contact us through our website, email, or phone. We also collect technical information such as your IP address, browser type, and website usage data through cookies and similar technologies.

We collect this information directly from you when you:

• Submit enquiries through our contact forms
• Send us emails or call our offices
• Request quotes or consultations
• Visit and interact with our website
• Engage with us for professional services

How We Use Your Information

We explain how we use your information in this section to ensure transparency about our data processing activities. Your personal data is processed for the following purposes:

• To respond to your enquiries and provide requested information
• To deliver structural engineering services and consultations
• To communicate about projects, appointments, and service updates
• To improve our website functionality and user experience
• To comply with legal and regulatory requirements
• To maintain records for business and legal purposes

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent for specific processing activities
• Contract: To perform contractual obligations for engineering services
• Legitimate Interest: For business communications and service improvements
• Legal Obligation: To comply with applicable laws and regulations

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your data only in the following circumstances:

• With trusted service providers who assist in delivering our services
• When required by law or legal proceedings
• With your explicit consent for specific purposes
• To protect our rights, property, or safety

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy. Specifically:

• Contact enquiries: 3 years from last contact
• Client project data: 7 years after project completion
• Website analytics: 26 months maximum
• Legal compliance records: As required by applicable law

After these periods, we securely delete or anonymise your personal data unless longer retention is required by law.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time where applicable

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and staff training
• Secure backup and recovery procedures

Cookies and Tracking

Our website uses cookies and similar technologies to improve functionality and analyse usage. For detailed information about our cookie practices, please see our Cookie Policy.

International Data Transfers

Your personal data is primarily processed within the European Union. If we need to transfer data outside the EU, we ensure appropriate safeguards are in place, including adequacy decisions or standard contractual clauses approved by the European Commission.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

Contact Information

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Supervisory Authority

You have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal data in accordance with applicable law. You can contact them at: