Privacy Policy

1. Controller

Arin Solutions BV ("we", "us") is the controller responsible for the processing of your personal data as described in this privacy policy, within the meaning of the General Data Protection Regulation (EU) 2016/679 ("GDPR") and the Belgian Law of 30 July 2018 on the protection of natural persons with regard to the processing of personal data.

2. What personal data we collect

This website is a static informational site. In its current form, we collect minimal personal data:

• Email correspondence — If you contact us via the email address listed on this site, we process your name, email address, and the content of your message.
• LinkedIn — If you connect with us via LinkedIn, LinkedIn's own privacy policy governs that interaction.

We do not currently use cookies, analytics tools, tracking pixels, contact forms, or any third-party services that collect personal data on this website. If this changes in the future, this policy will be updated before any such processing begins.

3. Legal basis for processing

When you contact us by email, we process your personal data on the basis of:

• Legitimate interest (Article 6(1)(f) GDPR) — to respond to your enquiry and assess potential professional collaboration.
• Pre-contractual measures (Article 6(1)(b) GDPR) — if your enquiry relates to a potential engagement or service agreement.

4. How we use your data

Personal data collected through email correspondence is used exclusively to:

• Respond to your enquiry
• Evaluate and discuss potential professional engagements
• Administer any resulting contractual relationship

We do not use your data for direct marketing, profiling, or automated decision-making.

5. Data sharing

We do not sell, rent, or share your personal data with third parties for their own purposes. Your data may be processed by:

• Email service provider — for delivering and storing email correspondence (hosted within the EEA or under adequate safeguards).
• Hosting provider — our website is hosted on infrastructure within the EU. Cloudflare (based in the US) provides DNS and security services; Cloudflare processes limited technical data (IP addresses, request metadata) under Standard Contractual Clauses.

We ensure that any processor we engage provides sufficient guarantees regarding GDPR compliance.

6. International transfers

Where personal data is transferred outside the European Economic Area (such as through Cloudflare's network), we ensure appropriate safeguards are in place, including Standard Contractual Clauses (Article 46(2)(c) GDPR) and, where applicable, supplementary measures in line with the EDPB's recommendations.

7. Data retention

Email correspondence related to enquiries is retained for as long as necessary to fulfil the purpose of the communication, and no longer than 2 years after the last contact unless a contractual relationship is established. In case of a contract, data is retained for the duration of the engagement plus the legally required retention period under Belgian law (typically 7 years for accounting-related records).

8. Your rights

Under the GDPR, you have the right to:

• Access your personal data (Article 15)
• Rectify inaccurate data (Article 16)
• Erase your data ("right to be forgotten") (Article 17)
• Restrict processing (Article 18)
• Data portability (Article 20)
• Object to processing based on legitimate interest (Article 21)

To exercise any of these rights, contact us at [email protected]. We will respond within one month of receiving your request, as required by the GDPR.

9. Right to lodge a complaint

If you believe your data protection rights have been infringed, you have the right to lodge a complaint with the Belgian Data Protection Authority:

10. Cookies and tracking

This website does not use cookies, tracking pixels, analytics tools, or similar technologies. No cookie consent banner is therefore required. If we introduce any such technologies in the future, we will update this policy and implement appropriate consent mechanisms in accordance with the ePrivacy Directive and Belgian law.

11. Third-party links

This website contains links to third-party services (such as LinkedIn). These services are governed by their own privacy policies. We are not responsible for the data practices of third-party websites.

12. Changes to this policy

We may update this privacy policy to reflect changes in our data processing activities or legal requirements. The "last updated" date at the top of this page indicates when the policy was most recently revised. We encourage you to review this page periodically.

13. Contact

For any questions regarding this privacy policy or our data processing practices, please contact:

Nithin Mohan
Arin Solutions BV