.png?width=135&height=80&name=BrainCreators_logo_orange%20(1).png){kind=logo}
Privacy Statement
Introduction
In this privacy statement, we explain how we handle your personal data, why we process them and what your rights are. In doing so, we comply with the requirements of the General Data Protection Regulation (“GDPR”).
Who we are
Braincreators (“we”, “us” or “our”) acts as the data controller for the processing of personal data through our websites.
We aim to be transparent about the personal data we collect, how we use and protect it, and how you can exercise your rights. If you have any questions about this privacy statement or about how we process your personal data, you can contact us via: info@braincreators.com.
Processing of personal data
Personal data is any information relating to an identified or identifiable natural person. Through this website, we only process personal data in the following situations.
1. Contact requests and appointment scheduling. When you contact us via the contact form, email, or when you request an appointment, we may process the following personal data:
- Name
- Email address
- Phone number (if provided)
- Any information you include in your message
We process these personal data for the purpose of responding to your request, scheduling an appointment, or communicating with you.
The legal basis for this processing is our legitimate interest in responding to inquiries, or taking steps prior to entering into a contract when the request relates to services we provide.
2. Job applications. If you apply for a position with us via the website or by email, we process the personal data you provide in your application, such as:
- Name and contact details
- CV and motivation letter
- Education and work experience
- Any other information you voluntarily include in your application
We process this data for the purpose of assessing your application and communicating with you during the recruitment process. The legal basis for this processing is taking steps prior to entering into a contract. For more information, also see Privacy Statement - Job applicants.
.
Retention period
We do not retain your personal data longer than necessary for the purposes for which it was collected.
- Personal data related to contact requests or appointment scheduling will generally be retained for up to 12 months after the last contact, unless further communication takes place or a business relationship arises.
- Personal data submitted as part of a job application will be retained for up to four weeks after the end of the recruitment procedure if the application is not successful. If you provide consent for us to keep your application on file for future vacancies, we may retain your application data for up to 12 months.
Sharing of personal data
We do not sell or share your personal data with third parties for marketing purposes.
In some cases, we rely on trusted service providers to support the operation of our website and our internal business processes. These parties may process personal data on our behalf as data processors, but only where necessary to provide their services. These may include:
- IT and hosting providers for website hosting, data storage, and email services;
- Website tools used to manage contact requests or communication through the website;
- Administrative service providers that support internal business operations.
Where these service providers process personal data on our behalf, they do so only on our instructions. We ensure appropriate safeguards by entering into Data Processing Agreements with these parties.
Where possible, personal data are processed within the European Economic Area (EEA). If
personal data are transferred outside the EEA, we ensure that appropriate safeguards are in
place, such as Standard Contractual Clauses (SCCs).
Organizational and technical measures
We implement appropriate technical and organizational measures to protect your personal data against loss, misuse, unauthorized access, disclosure, or alteration. These measures are designed in line with recognized information security standards, including ISO 27001, and are regularly reviewed to ensure an appropriate level of protection.
Access to personal data is restricted to individuals who require access in order to perform their duties. Employees and contractors who may have access to personal data are bound by confidentiality obligations.
Your rights regarding personal data
Under the GDPR, you have the following rights regarding your personal data:
- Right of access
- Right to withdraw consent if given
- Right to rectification
- Right to erasure
- Right to restriction of processing
- Right to object to processing
- Right to data portability
You can exercise these rights by contacting us via info@braincreators.com
We will respond to your request within one month. If necessary, this period may be extended in accordance with the GDPR. Please note that these rights are not absolute, which means that we may not be able to comply with every request in all circumstances.
Right to lodge a complaint
If you believe that we have not handled your personal data correctly, you have the right to lodgea complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): https://www.autoriteitpersoonsgegevens.nl
We do appreciate it if you contact us first so that we can try to resolve the issue together.
No processing of children’s data
Our website is not intended for children under the age of 16, and we do not knowingly collect personal data from children.
If we become aware that personal data from a child has been submitted to us, we will delete this information as soon as possible.
About this privacy statement
This privacy statement was last updated on Mar 4, 2026.
We may update this statement from time to time. The most recent version will always be available on our website.