Privacy Policy

Last updated: March 2026

1. Introduction

Keveone ("we", "us", "our") operates the website keveone.net and provides digital rights management services. We are headquartered in Brussels, Belgium.

We are committed to protecting and respecting your personal data in full compliance with the General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR") and applicable Belgian data protection legislation. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website or interact with our services.

2. Data Controller

The data controller responsible for your personal data is:

Keveone
Brussels, Belgium
Email: privacy@keveone.net

3. Data We Collect

We may collect and process the following categories of personal data:

Contact Form Submissions

  • Name
  • Company name
  • Email address
  • Phone number
  • Service interest
  • Message content

Website Usage Data

  • Cookies and similar technologies (limited to essential functionality)
  • Analytics data (anonymized, including page views, browser type, and device information)

Business Partner Data

  • Company information
  • Contact details of representatives for partnership operations

4. Legal Basis for Processing

We process your personal data on the following legal bases under Article 6 of the GDPR:

  • Consent (Article 6(1)(a)) — When you submit a contact form, you provide your explicit consent for us to process the data you have provided in order to respond to your inquiry.
  • Legitimate Interest (Article 6(1)(f)) — We process anonymized website analytics data and certain business operations data based on our legitimate interest in improving our services and maintaining effective business operations.
  • Contract Performance (Article 6(1)(b)) — Where we process data in the context of existing or prospective partnership agreements.

5. How We Use Your Data

We use the personal data we collect for the following purposes:

  • Responding to partnership inquiries and requests submitted through our contact form
  • Managing and maintaining business relationships with our partners
  • Improving our website, user experience, and service offerings
  • Complying with legal obligations under Belgian and EU law

6. Data Storage & Security

We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it:

  • Data is stored on secure servers within the European Union
  • We use Supabase infrastructure hosted in an EU region for database services
  • All data is encrypted both in transit (TLS/SSL) and at rest
  • Access to personal data is strictly restricted to authorised personnel who require it for their duties
  • We regularly review and update our security practices to ensure ongoing protection

7. Data Retention

We retain personal data only for as long as is necessary to fulfil the purposes for which it was collected:

  • Contact form submissions: Retained for up to 2 years from the date of submission, unless a partnership relationship is established, in which case the data is retained as partner data.
  • Partner data: Retained for the duration of the business relationship plus 5 years thereafter, in accordance with Belgian commercial record- keeping obligations.
  • Analytics data: Fully anonymized at the point of collection. No personally identifiable data is retained.

8. Your Rights Under the GDPR

As a data subject, you have the following rights under the GDPR. You may exercise any of these rights by contacting us at privacy@keveone.net:

  • Right of Access — You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification — You have the right to request correction of inaccurate or incomplete personal data.
  • Right to Erasure ("Right to be Forgotten") — You have the right to request the deletion of your personal data where there is no compelling reason for its continued processing.
  • Right to Restrict Processing — You have the right to request that we limit the processing of your personal data in certain circumstances.
  • Right to Data Portability — You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object — You have the right to object to processing based on legitimate interests or direct marketing.
  • Right to Withdraw Consent — Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.

If you believe that our processing of your personal data infringes the GDPR, you have the right to lodge a complaint with the Belgian Data Protection Authority:

Autorité de protection des données / Gegevensbeschermingsautoriteit (APD/GBA)
Rue de la Presse 35 / Drukpersstraat 35
1000 Brussels, Belgium
Website: www.dataprotectionauthority.be

9. Cookies

Our website uses essential cookies only, which are necessary for the basic functionality of the site. We do not use tracking cookies or third-party advertising cookies by default.

If analytics or non-essential cookies are introduced in the future, we will obtain your explicit consent before placing such cookies on your device, in accordance with the GDPR and the Belgian transposition of the ePrivacy Directive.

10. International Data Transfers

Your personal data is primarily processed and stored within the European Union / European Economic Area (EU/EEA).

In cases where a transfer of personal data outside the EEA is necessary (for example, to service providers located in third countries), we ensure that appropriate safeguards are in place, including the use of Standard Contractual Clauses (SCCs) approved by the European Commission, or other legally recognised transfer mechanisms under Chapter V of the GDPR.

11. Third-Party Services

We use a limited number of third-party service providers to operate our website and services:

  • Supabase — Database and backend services, hosted in an EU region.
  • Vercel — Website hosting and deployment infrastructure.

We do not sell, rent, or trade your personal data to any third party. Third-party providers process data only on our behalf and under our instructions, in accordance with data processing agreements.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The "Last updated" date at the top of this page indicates when the most recent revision was made.

Where we make significant changes to how we process your personal data, we will communicate those changes prominently on our website. We encourage you to review this Privacy Policy periodically.

13. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us:

Email: privacy@keveone.net
Keveone
Brussels, Belgium