General Privacy Notice

Last updated: 30 july 2025

1. Introduction

This Privacy Notice outlines the processing of Personal Data on this website (the “Website”) and applies to our Website visitors, suppliers, customers partners, and newsletter subscribers.

This Privacy Notice describes our policies and practices regarding our collection and use of your Personal Data and sets forth your right to privacy. We recognize that informational privacy is an ongoing responsibility, and so we will from time-to-time update this Privacy Notice as we undertake new Personal Data practices or adopt new privacy policies.

Personal Data will be processed in compliance with European data protection legislation (including the EU General Data Protection Regulation (Regulation (EU) 2016/679 (“GDPR”)) and any other EU or national legislation which implements or supplements the foregoing). “Personal Data”, “Controller” and “Processor” have the meanings given in the applicable data protection laws.

2. Who is the Controller for the processing of your Personal Data?

The entity responsible for your Personal Data depends on where you live and the products and services you interact with when using the Website.

Atlas ArenA Amsterdam C.V (registered with the Chamber of Commerce under number 34283137 and having its registered office at Hogehilweg 7, 1101 CA Amsterdam) is the owner of the website and will be usually bet he Controler of the Personal Data collected via the Website.

The Website is also operated on behalf of, and contains content belonging to the following companies in the same group as Vastint Holding B.V.: Vastint Netherlands B.V. (registered with the Chamber of Commerce under number NL008063023B01, and having its registered office at the Hogehilweg 7, 1101 CA Amsterdam.

These other companies may from time to time act as Controller and/or Processor of your Personal Data.  These companies will be referred to hereafter as “Vastint”, “us” or “we” or “our”.

3. Which categories of Personal Data do we process?

We collect the following types of Personal Data when you visit and use the Website:

• Information you provide to us: We collect Personal Data that you choose to provide to us when filling out an enquiry form on this Website, when subscribing to e-mail notifications or our e-mail newsletter, when corresponding with us on this Website, when entering into business with us as partner or supplier. Such Personal Data includes: your first name and surname, email address, telephone number, information about your preferences and interests (such as types and locations of properties you are interested in), information about your business (such as your work telephone number, your work e-mail address, your position within the business, education and training etc.), financial information (if required for the performance of the service and/or invoicing) and any Personal Data you provide to us when corresponding with us.
• Information automatically collected by us: When you visit or interact with this Website, we automatically collect Personal Data about you and your visit. Such information includes: your IP address and other unique identifiers for the computer, mobile or other device you use to access this Website, your user behaviour and any referring Website. The date, time and duration of your visit, your browser type and your operating system. We gather such information through cookies and other web technologies. More information on the use of cookies can be found in our Cookie Notice here.
• Information collected from or provided by third parties: We may also obtain Personal Data about you from third parties, namely We Design, who is responsible for the website design and Mss Internet, who takes care of the hosting and maintenance of the website. Such Personal Data includes: your IP address and other unique identifiers for the computer, mobile or other device you use to access this Website, your user behaviour and any referring Website. The date, time and duration of your visit, your browser type and your operating system.

4. Why and under which lawful basis do we process your Personal Data?

We process your Personal Data when you visit the Website for the following purposes and based on one of the following lawful bases:

• When you provide your consent (art. 6(1)(a) GDPR), as permitted by applicable law: to inform you and to promote our (new) products and services (for instance via direct marketing communications); to place cookies on your device (please refer to our Cookie Notice for more information).
• To perform our contract with you or enter into such contract with you (art. 6(1)(b) GDPR): to provide our services to you; for our design construction and installation works; to recover our debts from you.
• For our legitimate (business or legal) interest (art. 6(1)(f) GDPR): to answer your queries and further maintain contact with you, if necessary; for our internal management; for the handling of complaints and disputes; to provide, maintain, secure and optimize our Website and compile user statistics for improvement of the Website to ensure we can provide you with a well-functioning website (please refer to our Cookie Notice for more information).
• For compliance with our legal obligations (Art. 6(1)(c) GDPR): We may process your personal data where necessary to comply with legal requirements under Dutch law, including statutory obligations, court orders, or binding instructions from public authorities.

5. When and how we share your information with others

We may share your information with other third parties (such as persons employed by or working on behalf of our entities from the Interogo Holding AG Group of companies (“Group Companies”) or data processors engaged by us) for the purposes described below. We will only disclose your Personal Data to those with a legitimate business need and after we have taken steps to ensure that your Personal Data is processed in a manner consistent with this Privacy Notice.

These include:

• Our Group Companies to provide you with the services: For the purpose of providing you with the services about subsidiaries we may disclose Personal Data that you provide via this Website to Group Companies that are entrusted to process your information on our behalf in accordance with our instructions, this Privacy Notice and other appropriate measures for privacy and security.
• Our Service Providers: Your Personal Data may be disclosed to our service providers who perform services on our behalf. The provide services such as:
• Email distribution service providers, in relation to any newsletters or other marketing communications that you sign up for via this Website;
• Lettings agents, where you have consented to be contacted in relation to lettings via this Website.
• Website Design, performed by WeDesign.
• Website hosting and maintenance, performed by Mass Internet

Our service providers are subject to contractual obligations to safeguard your Personal Data and to only process the Personal Data as instructed.

• Other third parties when necessary pursuant to regulatory obligations: We may disclose your Personal Data with third parties to comply with court orders or other legal obligations (such as with other organizations for fraud prevention and detection).

We do not sell Personal Data to anyone and only share it with third parties when this is necessary.

6. Transfers outside the European Economic Area

The Personal Data transferred may also be processed in a country outside the European Economic Area (the “EEA”), which covers the EU Member States, Iceland, Liechtenstein and Norway. Non-EEA countries may not offer the same level of Personal Data protection as EEA countries.

If your Personal Data is transferred outside the EEA, we will put suitable safeguards in place to ensure that such transfers are carried out in compliance with the applicable data protection rules. These include, for instance, relying on adequacy decisions or standard contractual clauses issued by the European Commission together with binding and enforceable commitments by the recipient.

We may transfer your Personal Data to Interogo Holding AG which has its headquarters in Bahnhofstrasse 15, CH – 8808 Pfäffikon SZ, Switzerland. Switzerland has received an adequacy decision from the European Union under Article 45 of the GDPR which means that we may transfer Personal Data to Interogo Holding for processing in Switzerland.

You may request additional information in this respect and obtain a copy of the relevant safeguard by exercising your rights as set out below.

7. Data subject rights

Subject to applicable laws, you are entitled to a number of rights over the processing of your Personal Data. You may exercise these rights at any point by contacting us by email at info.netherlands@vastint.eu

We will consider all such requests and, in accordance with the applicable laws, will provide our response within a reasonable period, or within the period prescribed by law. We may request you to provide us with information necessary to confirm your identity before responding to any request you make.

You have the following rights:

• The right to access: subject to exceptions, you have the right to request access to the Personal Data we hold about you;
• The right to rectification: if the Personal Data we hold is inaccurate you are entitled to have it updated or rectified;
• The right to deletion: subject to exceptions, you can ask us to delete your Personal Data. Please note that if you ask us not to contact you by email at a certain email address, we will retain a copy of that email address on our “master do not send” list in order to comply with your no-contact request;
• The right to object: under certain circumstances, you have the right to ask us to stop processing your Personal Data. For example you may object to processing for direct marketing activities (for example, by clicking on the unsubscribe link in our emails) and where we are relying on ours or a third party’s legitimate interests to process the Personal Data (unless we can demonstrate compelling legitimate grounds to continue processing your Personal Data);
• The right to withdraw consent: where we rely on your consent to process Personal Data, you have the right to withdraw consent at any time;
• The right to restriction of processing: under certain circumstances you have the right to restrict the processing of your Personal Data such as if you believe (i) the Personal Data we have about you is accurate; (ii) the Personal Data is not being processed lawfully, but instead of deleting the Personal Data, you would prefer us to restrict processing instead; or (iii) we no longer need your Personal Data for the purposes we collected it, but you require the data in order to establish, exercise or defend legal claims;
• The right to data portability: under certain circumstances you have the right to obtain Personal Data you’ve provided us with (in a structured, commonly used and machine-readable format) and to reuse it elsewhere or to ask us to transfer this to a third party of your choice; and
• The right to lodge a complaint with a supervisory authority: you also have the right to file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).  Their contact details are given below in section 11.

We will consider and act upon any request based on the abovementioned rights in accordance the applicable data protection rules. In response to a request, we may ask you to verify your identity by, for instance, providing additional information. Whenever reasonably possible and required under applicable laws, we will strive to respond to your requests within one month. If we do not comply with your request within such time frame, we will explain why.

8. How do we protect Personal Data?

We have implemented adequate technical and organizational measures to safeguard the Personal Data we process. We update and test our security technology on an ongoing basis. In addition, we restrict access to your Personal Data to employees on a need-to-know basis and train all staff about the importance of confidentiality and maintaining the privacy and security of your information.

9. How long do we keep and store your Personal Data?

We will not retain your Personal Data longer than necessary in relation to the purposes for which the data are processed. In principle, we will retain your data for a maximum of two years after the end of your customer relationship with us, unless we are required by statutory obligations to retain your Personal Data for a longer period of time. We may retain your Personal Data for a longer period in the event of complaints or disputes to the extent that this is necessary to protect our interests and/or the interests.

10. Changes to this Privacy Notice

We may change this Privacy Notice from time to time by posting the updated version of the Privacy Notice on our Website. We will give you reasonable notice on our Website of any material change. The “effective date” at the top of this Privacy Notice indicates when such changes will take effect. We encourage you to visit frequently to stay informed about how we use your Personal Data.

11. Questions, concerns or complaints

To ask questions or comment about our Privacy Notice and our privacy practices, you can contact Vastint Netherlands B.V. registered with the Chamber of Commerce under number NL008063023B01, and having its registered office at the Hogehilweg 7, 1101 CA Amsterdam, by e-mail: info.netherlands@vastint.eu.

You can also contact our Group Data Protection Officer, Lucas Noronha, at lucas.noronha@vastint.eu.

 You also have the right to raise a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

Contact details:

Website: https://autoriteitpersoonsgegevens.nl/en

Address: Autoriteit Persoonsgegevens, PO Box 93374, 2509 AJ The Hague, The Netherlands

Phone: +31 (0)70 888 85 00

12. Cookie Notice

Please refer to our Cookie Notice available here for more information on our use of cookies with this Website.