Privacy policy – NextPrompt

At NextPrompt ("NextPrompt," "we," "our," or "us"), we value the protection of personal data. This privacy policy explains which personal data we collect, for what purposes, how we use and store it, and which rights individuals have regarding their data.

We process personal data in accordance with the General Data Protection Regulation (GDPR) and all applicable Dutch privacy laws.

This policy applies to all our services (AI training, AI consultancy, and AI agent development) and to all visitors of our website.

The data controller responsible for the processing of personal data is:

NextPrompt B.V.
Vlamovenweg 2
5708 JV Helmond, the Netherlands
Chamber of Commerce (KVK) number: 98993445

Depending on the nature of our services or your website interaction, we may collect the following categories of personal data:

• Contact details: name, (business) address, email, phone number.
• Organizational details: company name, position/department, company size.
• Billing information: invoice address, bank account, VAT number.
• Usage and technical data: IP address, browser type, device information, pages visited, access date/time.
• Communication data: correspondence, email exchanges, project notes.
• Other data relevant to the execution of our services or website functionality.

We process personal data for the following purposes and based on the following legal grounds:

• To conclude and perform an agreement with the Client (necessary for contract performance).
• To process invoices and payments.
• To communicate about services, progress, and support.
• To maintain and secure our website (legitimate interest).
• To send newsletters or marketing materials (consent or legitimate interest, where applicable).

We will not process personal data for purposes incompatible with those stated above.

Personal data is not retained longer than necessary for the purposes for which it was collected, unless a longer retention period is required by law (for example, tax obligations). Technical and analytical data may be anonymized or deleted periodically.

We may share or have personal data processed by third parties (such as IT service providers, cloud hosting partners, accountants) under a data processing agreement that meets GDPR requirements.

If data is transferred outside the European Economic Area (EEA), we will ensure appropriate safeguards (such as EU Standard Contractual Clauses or adequacy decisions) are in place.

We take appropriate technical and organizational measures to protect personal data from loss, misuse, or unauthorized access. These include encryption, access controls, secure servers, and periodic security assessments.

Individuals whose personal data we process have the following rights under the GDPR:

• Right of access and to obtain a copy of their data.
• Right to rectification of inaccurate data.
• Right to erasure ("right to be forgotten") under certain conditions.
• Right to restriction of processing.
• Right to data portability.
• Right to object to processing based on legitimate interest.
• If processing is based on consent: the right to withdraw consent at any time, without affecting prior lawful processing.

Requests to exercise these rights can be made via [email protected]. We will respond within the legally required time frame.

Our website uses cookies and similar technologies. For strictly necessary cookies, prior consent is not required. For other cookies (e.g., analytical, marketing), we will obtain prior consent through a cookie banner.

Users are informed about the type, purpose, and duration of cookies in our separate Cookie Policy.

Where we use automated decision-making or profiling (for instance, in AI-based services), we will inform the data subject about the logic involved, as well as the significance and possible consequences of such processing.

Individuals have the right to request human intervention, express their viewpoint, and contest such decisions.

NextPrompt reserves the right to amend this privacy policy at any time. The most recent version will always be available on our website. We encourage visitors to review this page regularly for updates.

For any questions about this privacy policy or our data processing practices, please contact:

NextPrompt B.V.
Email: [email protected]
Phone: +31 6 27 12 96 95

If you believe that we are not processing your personal data appropriately, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).