GDPR Compliance

Last updated: February 2026

Eazy Connect is committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR). As a Belgian company, we follow EU data protection standards in every aspect of our service.

Data Controller

Eazy Connect is the data controller for all personal data collected through our platform. For any data protection inquiries, contact us at [email protected].

What Data We Collect

  • Account data: Name, email address, and password hash when you create an account.
  • Profile data: Display name, job title, company, bio, phone number, email, and social links you add to your digital profile.
  • Uploaded media: Profile pictures and company logos you upload to personalize your profile.
  • Order data: Shipping address, order details, and payment metadata (we do not store credit card numbers — payments are processed securely via Stripe).
  • Analytics data: Anonymous click counts on your profile buttons, used to show you engagement statistics.

Legal Basis for Processing

  • Contract performance: Processing your data to provide our NFC card and digital profile services.
  • Legitimate interest: Anonymous analytics to improve our platform and your experience.
  • Consent: Marketing communications (only when you explicitly opt in).

Data Storage & Security

All data is stored on servers within the European Union. We use Supabase (hosted in the EU) for database and file storage, with encryption at rest and in transit. Access to personal data is restricted to authorized personnel only.

Your Rights Under GDPR

As a data subject, you have the right to:

  • Access: Request a copy of all personal data we hold about you.
  • Rectification: Correct any inaccurate or incomplete data via your dashboard or by contacting us.
  • Erasure: Request deletion of your account and all associated data ("right to be forgotten").
  • Portability: Receive your data in a structured, machine-readable format.
  • Restriction: Request that we limit processing of your data in certain circumstances.
  • Objection: Object to processing based on legitimate interest.

Data Retention

We retain your personal data for as long as your account is active. If you delete your account, all personal data is permanently removed within 30 days. Order records may be retained for up to 7 years for legal and tax compliance purposes.

Third-Party Processors

  • Supabase: Database and file hosting (EU region).
  • Stripe: Payment processing (PCI DSS Level 1 certified).
  • Vercel / Cloud hosting: Application hosting with EU edge locations.

All third-party processors are GDPR compliant and have Data Processing Agreements (DPAs) in place.

Cookies

We use only essential cookies required for authentication and session management. We do not use tracking cookies, advertising cookies, or third-party analytics that track individual users.

Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit / Autorité de protection des données):

Rue de la Presse 35, 1000 Brussels, Belgium
www.dataprotectionauthority.be

Contact

For any GDPR-related questions or to exercise your rights, contact us at [email protected].

GDPR Compliance — Eazy Connect | Eazy Connect