Privacy Statement

Tilaa is committed to performing all work in accordance with the GDPR. Personal data is processed and safeguarded with great care. On this page, you will find everything related to our privacy guidelines.

Why this privacy statement

Last update: November 13, 2020

We respect your privacy and we only process your personal data for the purpose of which you have provided that data to us in accordance with the General Data Protection Regulation. This means that your data is safe with us and that we look after your personal information. In this Privacy Statement we will explain to you how Tilaa BV as data controller collects data and how it is used and secured. We also make use of external parties who assist us in providing our services. Where this is applicable and the way they collect and use this information is described in this Privacy Statement.

Processing your order

When you have placed an order with us, we will ask for your personal data such as name and address, email address, telephone number and IP address. In order to conclude your order, we receive information about your payment from your bank or credit card company on the basis of the provided details. We require this information because we are entering into an agreement with you. We are keeping these details up to two years after conclusion of your order and for seven years after, which is statutory by law. The contact details of Tilaa BV are:

Willemsplein 2

5211 AK ‘s-Hertogenbosch

Telephone: +31 (0)85 2100 500

Your order for a paid service plan

You have taken out a paid service plan. To settle payment, we use your personal data such as your telephone number, payment details, email address, name and address and IP address. We need them to enter into the agreement with you. We keep these details up to two years after you have cancelled your subscription and seven years after, which is statutory by law.


Contact form and newsletter

You can ask questions or make requests through our contact form. For this we use your email address, IP address and name and address details. We need these details because of the question you have posed us or the request you have made. We keep this information until we are absolutely sure that you are satisfied with our reaction and for six months after that in case we need to answer any follow-up queries.

You can subscribe to our newsletter. It contains our latest news, tips and information about our existing and latest products and services. You can cancel your subscription to our newsletter at any time. This can be achieved through clicking on the cancellation link at the bottom of our newsletter or via an email to If you are not a customer with us/or you do not have an account with us, your email address will only be added to the list of subscribers after your permission. In order to receive the newsletter your data is kept until you cancel the subscription.


Your account

To order a product with us, you need to register first by submitting your email. An account will subsequently be set up and you can login with your email address and a self-chosen password. From that moment on you are considered one of our customers (this is also relevant for the newsletter). We use your email address and your IP address in order to create an account. We need these details because we are (preparing to) enter into an agreement with you. We keep this information up to two years after you have cancelled your subscription and for seven years after, which is statutory by law.

With your account you gain access to our dashboard, a content management system where you can install, implement and change data and control your products. We are keeping track of the changes you have implemented for reasons of proof, only with your permission. We do this based on the agreement we have entered into with you. We store this information so you do not need to enter the same information every time you login and we can contact you when necessary. You can amend your information through the dashboard at any time. We keep this information up to two years after you have cancelled your subscription and for seven years after, which is statutory by law.


Location data

Based on your IP address automatically detect your location. This information is supplied by Maxmind and is linked to a payment/request. In combination with the provided name and address and payment details this is solely used for preventing abuse of our services. In other words, to prevent fraud.


Distribution to other companies or institutions

We only supply your details to other companies or institutions when utterly necessary, or when it is statutory by law (for example, if the police demand it for an investigation when a crime is suspected). In order to provide the best service possible, we use external partners. It is possible that these partners receive your data from us.

  • Zendesk - To answer customer queries it is necessary to link a question to a customer account. We share your customer number, name of your organization, your first and last name, your email address and your preferred language.
  • Hubspot – Our website is running on HubSpot CMS which collects data from you. On top of that, the newsletters and relevant updates are also sent with this tool.
  • Buckaroo - For processing credit card, direct debit, Sofort, Giropay and Bancontact transactions. We do not share your personal data, solely the payment details, your customer number and your preference of language.
  • PayPal - For processing PayPal transactions. We do not share your personal data, solely payment details and language preference.
  • ABN AMRO - Processing all iDEAL transactions. We do not share your personal data, solely your payment details.
  • Maxmind - For risk analysis and anti-fraud. We share your IP address, method of payment, the amount paid and your email address as well as your name and address details.
  • Social media platforms – We share a hashed version of your email address with social media platforms (Facebook and LinkedIn) so the social media platform can match your email address with the data they have collected. We do this for marketing purposes in order to promote our products and services better and more widely, which has been weighted as a legitimate interest by us.
  • Ezora – Ezora is a software tool for the creation of Business Intelligence reports. This software is used for making financial analyses and we share your financial data and your name and address details with Ezora.
  • Twinfield - Dunning of invoices, payments and reports are done with Twinfield's accounting software. For this reason, your financial data is shared with this company.



The Tilaa website also uses cookies. The purpose of these cookies is to make your visit to the Tilaa website as pleasant as possible and to provide Tilaa with information that can be used for future optimizations. You can find all information regarding the cookies on our website on our cookie page. You can also modify previously stored cookie settings here. We do not store any data in the cookies that can be directly linked to a customer or visitor. You can disable the placement of cookies via your browser, or via the cookie banner, but some parts of our website will then no longer work properly.

Our website uses different types of cookies which all fall within the following categories:

  • Strictly necessary cookies
    These cookies are necessary for the proper functioning of the website and cannot be disabled.

  • Preference cookies
    These cookies enable the website to remember information that affects the behaviour and design of the website.

  • Statistical cookies
    These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously.

  • Targeting cookies
    These cookies are used for targeting purposes. They can be used to build a profile of interests of website visitors, so that relevant advertisements can be shown. They do not store directly identifiable personal information.  


Security of personal data is of great importance to us. To protect your privacy, we are taking the following measures:

  • Access to personal data is shielded by email address and password, in addition two factor authentication by means of using a login token can be installed by yourself.
  • We take physical measures such as locks and safes for protection of access to the systems where personal data is stored.
  • We make use of secured connection (Secure Sockets Layer or SSL), which shields all information between you and our website when you are entering your personal data.
  • We have been awarded certificates for ISO/IEC 27001:2013, PCI DSS 3.2, ISO/IEC 9001:2015, NEN 7510:2011 and ISAE 3402 Type I.


Data Protection Officer

We have appointed a Data Protection Officer. This person is responsible for all privacy related matters in our organization. In case of requests or queries our Data Protection Officer can be reached by email on or by phone on +31 (0) 852100500.

 Access, modify or delete your data

For queries regarding our Privacy Statement or questions about access or modifications (or deleting) your personal data you can always contact us through our regular channels. You can also send us a request to view, modify or delete the stored data. You can also request a data export for all data we use with your permission or your motivation why you would like us to limit processing your personal data. To prevent abuse, we could ask you to send us means of identification. If it concerns viewing personal data linked to a cookie, please also forward a copy of the cookie in question with the request. You can find these in your browser settings. In case these details we have are not correct, you can request to modify them or have them removed.


Submitting a complaint

Of course we would like to assist you if you have a complaint about processing your personal data. Nevertheless, if the solution offered is not to your satisfaction, you are entitled by law to submit a complaint to the Privacy supervisor being the Data Protection Authority. You can contact the Data Protection Authority directly.

Amendments to our Privacy Statement

If a change to this privacy document is required, then we will amend our policy and keep you updated on the changes. On our website you will always find the most recent version with the placement data at the top of this page.