At Klearly B.V. — also known as Klearly ("Klearly", "us", "we", or "our") — we understand and respect how important your privacy is. This Privacy Policy explains what kind of information we collect from you when you use our App or the services available through it ("the App"). It also covers how we handle, store, share, and protect that information — plus how you can control some of the ways we use it.
Unless we say otherwise, any capitalized terms here have the same meaning as in our Terms of Use, which you can find in the App ("Terms"). When we say "you", we mean any adult user of our services, including anyone acting on behalf of a Merchant (one of our clients).
If you're using Klearly through one of our partners ("Partners"), then their own privacy policy might apply as well — especially when it comes to how they handle your personal data.
By “Personal Data”, we mean any information that identifies or relates to a specific person — or that could be used to identify someone — as defined by applicable law. This Privacy Policy explains in detail what kinds of Personal Data we collect and why we collect it to provide our services.
Privacy Policy – Key Highlights
Additional Use
Sharing of Personal Data
International Transfers
Security
Your Rights - You have the right to access your personal data, correct it, or ask us to limit how we use certain information.
1. Data Retention.
2. Cookies & Similar Technologies.
3. Third-Party Apps & Services.
4. Communication.
5. Children.
6. Changes to This Privacy Policy.
7. Questions or Feedback.
8. ***.
9. Cookies – More Details.
10. What Personal Data We Collect, Why We Collect It, and the Legal Basis
Depending on how you use our services, we may collect different types of data. Our team and our service providers use this data for specific reasons, which we explain clearly. You’re not legally required to provide us with all this information, but without it, we might not be able to register you or give you full access to certain features.
11. Account Owners.
12. Children.
13. Privacy Policy Updates.
14. Questions or Feedback.
-
Personal Data We Collect As A Processor.
If you are a customer of one of our Merchants, we may process personal data about you that includes the last four digits of your credit card, the type of credit card you're using, the amount of your transaction, the time and date of your transaction, the location of your transaction, and may include your data in aggregated analytics data that we provide to Merchants or the Partners with whom we and the Merchants work. When we do so, we serve as a processor and the applicable Merchant serves as a controller. We process such customer data on behalf of the relevant Merchant and according to its instructions, and may share this data with the relevant Merchant and/or the relevant Partner. To learn more about our processing activities in this capacity or to exercise your privacy rights regarding them, please contact the applicable Merchant directly.
-
Personal Data We Collect, Uses And Legal Basis.
Depending on your usage, we collect different types of data and we and any of our third-party subcontractors and service providers use the data we collect for different purposes, as specified below. You have no legal obligation to provide us with certain Personal Data, but if you refuse to provide such Personal Data we may not be able to register you to the Solution and/or provide you with all or part of the Services.
2.1. Owners - If you hold an Owner account on the Solution, we collect the following Personal Data about you.
2.1.1. Registration Data – When you register your company with our Solution, you will be required to provide us with the following Personal Data: your full name, email address, phone number (if requested), date of birth and registered address. You will also be required to provide the following information about your business: business name, legal form, business industry, business address, IBAN, and ultimate beneficial owners (if requested). Where the business is an individual, such as in the case of individuals who are self-employed, this data may include personal data. We will also need to authenticate you and verify your identity. To do so, we will need you to take a picture of your photo ID as well as a selfie.
How We Use This Data: (1) to register you and provide you with the Services, including to contact you regarding the registration process and your use of the Services ; (2) to comply with our KYC/KYB/AML obligations or other finance regulations; (3) to prevent fraud, protect the security of and address any problems with the Solution, including monitoring for prevention of money laundering or terrorism financing; and (4) to provide2.2. you with informational newsletters and promotional materials relating to our Services. For more information about our direct marketing activities and how you can control your preferences, please see the Direct Marketing section below.
Additional Uses.
2.1.2. Direct Marketing. As described above, if you are an Owner, we may use Personal Data to let you know about our products and Services that we believe will be of interest to you. We may contact you by email, phone or via other channels. In all cases, we will respect your preferences for how you would like us to manage marketing activity with respect to you. To protect privacy rights and to ensure you have control over how we manage marketing with you:
We will take steps to limit direct marketing to a reasonable and proportionate level and only send you communications which we believe may be of interest or relevance to you. How we use this data: To provide you with the Services. Sharing the Personal Data We Collect. We share your information, including Personal Data, as follows:
Legal Basis: To perform a contract with you.
Merchants. We share information, including your Personal Data, with the Merchant with which your account is associated, where this is necessary to provide you and the applicable Merchant with our products and Services.
2.2. Service Providers, and Subcontractors. We disclose information, including Personal Data we collect from and/or about you, to our trusted service providers and subcontractors, who have agreed to confidentiality restrictions and who use such information solely on our behalf in order to: (1) help us provide you with the Services; and (2) aid in their understanding of how users are using our Services. Such service providers and subcontractors provide us with data storage, payment processing, identity verification, data analysis, and administrative services.
2.2.1. Partner Contract Information – Upon entering into a partnership with Klearly, we collect certain Personal Data related to the contract, including details about the owner(s) and signatory(ies) of the Partner entity, such as names, contact information, and position in the company. Business Transfers. Your Personal Data may be disclosed as part of, or during negotiations of any merger, sale, acquisition, dissolution or financing of the company or company assets (including in cases of liquidation). In such case, your Personal Data shall continue being subject to the provisions of this Privacy Notice.
2.2.2. Law Enforcement And Legal Disclosures. We may share your Personal Data with third parties: (i) if we believe in good faith that disclosure is appropriate to protect our or a third party's rights, property or safety (including the enforcement of the Terms and this Privacy Notice); (ii) when required by law, regulation subpoena, court order or other law enforcement related issues, agencies and/or authorities; or (iii) as is necessary to comply with any legal and/or regulatory obligation, for example, to comply with audit and other legal requirements.
2.2.3. International Transfer
2.2.4. Whenever we transfer your Personal Data to third parties based outside of the European Economic Area ("EEA") and when required under applicable law, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented: We will only transfer your Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the European Commission.
2.2.5. Where we use certain service providers not located in countries with an adequate level of protection as determined by the European Commission, we may use specific contracts approved by the European Commission which give Personal Data the same protection it has in the EEA.
2.2.6. Security. We have implemented and maintain appropriate technical and organizational security measures, policies and procedures designed to reduce the risk of accidental destruction or loss, or the unauthorized disclosure or access to Personal Data appropriate to the nature of such data. The measures we take include: Safeguards – The physical, electronic, and procedural safeguards we employ to protect your Personal Data include secure servers, firewalls, antivirus, and SSL (Secure Sockets Layer)encryption of data.
2.2.7. Access Control – We dedicate efforts for a proper management of system entries and limit access only to authorized personnel on a need to know basis of least privilege rules and revoke access immediately after employee termination.
Personnel – We require new employees to sign non-disclosure agreements according to applicable law and industry customary practice.
2.2.8. Encryption – We encrypt the data in transit using secure TLS 1.2 protocols.
2.2.9. Database Backup – Our databases are backed up on a periodic basis for certain data and are verified regularly. Backups are encrypted and stored within the production environment to preserve their confidentiality and integrity, are tested regularly to ensure availability, and are accessible only by authorized personnel.
However, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
As the security of information depends in part on the security of the computer you use to communicate with us and the security you use to protect user IDs and passwords, please take appropriate measures to protect this information.
3 Your Rights
How to Access and Limit Our Use of Certain Personal Data. Subject to applicable law and certain exemptions, and in some cases dependent upon the processing activity we are undertaking, you have certain rights in relation to the Personal Data that we or other controllers hold about you, as detailed below. For any requests to exercise such rights with respect to information held by other controllers, please contact the applicable controller directly. If you wish for us to notify all independent controllers, please specify that request when you contact us in order to exercise any of your rights. We will investigate and attempt to resolve complaints and disputes and make every reasonable effort to honor your wish to exercise your rights as quickly as possible and, in any event, within the timescales provided by applicable data protection laws. We reserve the right to ask for reasonable evidence to verify your identity before we provide you with any information and/or comply with any of your requests, as detailed below:
Right of Access. You have a right to know what Personal Data we collect about you and, in some cases, to have such Personal Data communicated to you. Subject to applicable law, we may charge you with a fee. Please note that we may not be able to provide you with all the information you request, and, in such case, we will endeavor to explain to you why.
3.1. Right to Data Portability. If the processing is based on your consent or performance of a contract with you and processing is being carried out by automated means, you may be entitled to (request that we) provide you or another party with a copy of the Personal Data you provided to us in a structured, commonly-used, and machine-readable format.
Right to Correct Personal Data. Subject to the limitations in applicable law, you may request that we update, complete, correct or delete inaccurate, incomplete, or outdated Personal Data.
3.2. Direct Marketing. As described above, if you are an Owner, we may use Personal Data to let you know about our products and Services that we believe will be of interest to you. We may contact you by email, phone or via other channels. In all cases, we will respect your preferences for how you would like us to manage marketing activity with respect to you. To protect privacy rights and to ensure you have control over how we manage marketing with you:
Right to Restrict Processing. If you are an EU Individual, you can ask us to limit the processing of your Personal Data if either: (i) you have contested its accuracy and wish us to limit processing until this is verified; (ii) the processing is unlawful, but you do not wish us to erase the Personal Data; (iii) it is no longer needed for the purposes for which it was collected, but we still need it to establish, exercise, or defend of a legal claim; (iv) you have exercised your Right to Object (below) and we are in the process of verifying our legitimate grounds for processing. We may continue to use your Personal Data after a restriction request under certain circumstances.
3.2.1. Right to Object. If you are an EU Individual, you can object to any processing of your Personal Data which has our legitimate interests as its legal basis, if you believe your fundamental rights and freedoms outweigh our legitimate interests. If you raise an objection, we have an opportunity to demonstrate that we have compelling legitimate interests which override your rights and freedoms.
3.2.2. Withdrawal of Consent. You may withdraw your consent in connection with any processing of your Personal Data based on a previously granted consent. This will not affect the lawfulness of any processing prior to such withdrawal. Right to Lodge a Complaint with Your Local Supervisory Authority. If you are an EU Individual, you may have the right to submit a complaint to the relevant supervisory data protection authority if you have any concerns about how we are processing your Personal Data, though we ask that as a courtesy you please attempt to resolve any issues with us first.
4. Data Retention
Subject to applicable law, we retain Personal Data as necessary for the purposes set forth above. We may delete information from our systems without notice to you once we deem it is no longer necessary for these purposes. Retention by any of our processors may vary in accordance with the processor's retention policy. In some circumstances, we may store your Personal Data for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax, audit, accounting requirements and so that we have an accurate record of your dealings with us in the event of any complaints or challenges, or if we reasonably believe there is a prospect of litigation relating to your Personal Data or dealings. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data, and whether those purposes can be achieved through other means, as well as applicable legal requirements.
4.1. Please contact us at if you would like details regarding the retention periods for different types of your Personal Data.
Cookies and Similar Technologies. We use cookies and similar technologies for a number of reasons, including to help personalize your experience. When accessing the Solution, you shall be notified of the use of and placement of cookies and other similar technologies on your device as specified herein.
4.2. What are Cookies? A cookie is a small piece of text that is sent to a user's device and stored locally. The device provides this piece of text to the cookie's server when this user returns.
First-party cookies are placed by us, while third-party cookies may be placed by a third party. We use both first- and third-party cookies. We may use the terms "cookies" to refer to all technologies that we may use to store data in your browser or device or that collect information or help us identify you in the manner described above, such as web beacons or "pixel tags".
4.3. How We Use Cookies. We use cookies and similar technologies for a number of reasons, as specified below. We will not place any cookies on your browser that are not strictly necessary unless you have first consented to the cookie pop up. The specific names and types of the cookies, web beacons, and other similar technologies we use may change from time to time. However, the cookies we use generally fall into one of the following categories:
Third Party Cookies
Mixpanel
Friebase
4.4. Data Controllers. When you use our Services, we also disclose your Personal Data to an additional third parties, such as business partners and/or Partners which act as an independent, separate controller with respect to the collection of your Personal Data. The details and contact information of such controllers are as set forth below.
How to Adjust Your Preferences. Most Web browsers are initially configured to accept cookies, but you can change this setting so your browser either refuses all cookies or informs you when a cookie is being sent. In addition, you are free to delete any existing cookies at any time. Please note that some features of the Services may not function properly when cookies are disabled or removed. For example, if you delete cookies that store your account information or preferences, you will be required to input these each time you visit.
Valitor hf. Privacy@valitor.com
Third-Party Applications and Services. All use of third-party applications or services is at your own risk and subject to such third party's terms and privacy policies.
4.5. Communications. We reserve the right to send you service-related communications, including service announcements and administrative messages, without offering you the opportunity to opt out of receiving them. Should you not wish to receive such communications, you may cancel your account.
Children. We do not knowingly collect Personal Data from children under the age of sixteen (16). In the event that you become aware that an individual under the age of sixteen (16) has registered without parental permission, please advise us immediately.
4.6. Changes to the Privacy Notice. We may update this Privacy Notice from time to time to keep it up to date with legal requirements and the way we operate our business, and we will place any updates on this webpage. Please come back to this page every now and then to make sure you are familiar with the latest version. If we make material changes to this Privacy Notice, we will seek to inform you by notice in our App or via email.
Comments and Questions. If you have any comments or questions about this Privacy Notice or if you wish to exercise any of your legal rights as set out herein, please contact us at .
4.7. Apple. If you use the Services in connection with Apple’s services, including via an iOS device, we may share your information with Apple and Partners as necessary for the provision of service in connection with Apple. Apple shall process your Personal Data in compliance with applicable laws and for the applicable purposes specified in the Terms. Apples and Partner may process and disclose aggregated data that can not be identified, and Apple may use anonymized Personal Data for the following purposes: (1) internal business management and reporting, including processing necessary to evaluate business arrangements; (2) processing for purposes of detecting and preventing fraudulent activity and security and integrity of Apple data, systems and networks; and (3) processing in connection with internal research which may lead to the development or improvement of products and features, provided that such anonymized Personal Data shall be recorded or saved in a form that makes it impossible to identify the data owner, whether directly or indirectly.
5. International Transfer
5.1. Some of our subcontractors, service providers, additional controllers and/or affiliates are located in countries other than your own, such as Israel, and we send them information we receive (including Personal Data). We conduct such international transfers for the purposes described above. We will ensure that these third parties will be subject to written agreements ensuring the same level of privacy and data protection as set forth in this Privacy Notice, including appropriate remedies in the event of the violation of your data protection rights is such third country.
5.2. Whenever we transfer your Personal Data to third parties based outside of the European Economic Area ("EEA") and when required under applicable law, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
5.2.1. We will only transfer your Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the European Commission.
5.2.2. Where we use certain service providers not located in countries with an adequate level of protection as determined by the European Commission, we may use specific contracts approved by the European Commission which give Personal Data the same protection it has in the EEA.
5.3. Please contact us at privacy@Klearly.nl if you would like further information on the specific mechanism used by us when transferring your Personal Data out of the EEA.
6. Security
We have implemented and maintain appropriate technical and organizational security measures, policies and procedures designed to reduce the risk of accidental destruction or loss, or the unauthorized disclosure or access to Personal Data appropriate to the nature of such data. The measures we take include:
6.1. Safeguards – The physical, electronic, and procedural safeguards we employ to protect your Personal Data include secure servers, firewalls, antivirus, and SSL (Secure Sockets Layer)encryption of data.
6.2. Access Control – We dedicate efforts for a proper management of system entries and limit access only to authorized personnel on a need to know basis of least privilege rules and revoke access immediately after employee termination.
6.3. Personnel – We require new employees to sign non-disclosure agreements according to applicable law and industry customary practice.
6.4. Encryption – We encrypt the data in transit using secure TLS 1.2 protocols.
6.5. Standards and Certifications – We have built our systems on third-party infrastructure that has been certified as compliant with ISO 27001 (Information Security Management)/ ISO 27017 (Cloud Security)/ ISO 27018 (Cloud Privacy), ISO 27701 (Security Techniques), ISO 22301 (Security and Resilience), ISO 9001 (Quality Management Systems), and CSA STAR CMM v3.0.1. Our payment processor complies with the Payment Card Industry's Data Security Standards (PCI DSS 3.2).
6.6. Database Backup – Our databases are backed up on a periodic basis for certain data and are verified regularly. Backups are encrypted and stored within the production environment to preserve their confidentiality and integrity, are tested regularly to ensure availability, and are accessible only by authorized personnel.
6.7. However, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
6.8. As the security of information depends in part on the security of the computer you use to communicate with us and the security you use to protect user IDs and passwords, please take appropriate measures to protect this information.
7. Your Rights - How To Access And Limit Our Use Of Certain Personal Data.
Subject to applicable law and certain exemptions, and in some cases dependent upon the processing activity we are undertaking, you have certain rights in relation to the Personal Data that we or other controllers hold about you, as detailed below. For any requests to exercise such rights with respect to information held by other controllers, please contact the applicable controller directly. If you wish for us to notify all inde pendent controllers, please specify that request when you contact us in order to exercise any of your rights.
We will investigate and attempt to resolve complaints and disputes and make every reasonable effort to honor your wish to exercise your rights as quickly as possible and, in any event, within the timescales provided by applicable data protection laws. We reserve the right to ask for reasonable evidence to verify your identity before we provide you with any information and/or comply with any of your requests, as detailed below:
7.1. Right Of Access. You have a right to know what Personal Data we collect about you and, in some cases, to have such Personal Data communicated to you. Subject to applicable law, we may charge you with a fee. Please note that we may not be able to provide you with all the information you request, and, in such case, we will endeavor to explain to you why.
7.2. Right To Data Portability. If the processing is based on your consent or performance of a contract with you and processing is being carried out by automated means, you may be entitled to (request that we) provide you or another party with a copy of the Personal Data you provided to us in a structured, commonly-used, and machine-readable format.
7.3. Right To Correct Personal Data. Subject to the limitations in applicable law, you may request that we update, complete, correct or delete inaccurate, incomplete, or outdated Personal Data.
7.4. Deletion Of Personal Data ("Right to be forgotten"). If you are an EU Individual, you have a right to request that we delete your Personal Data if either: (i) it is no longer needed for the purpose for which it was collected, (ii) our processing was based on your consent and you have withdrawn your consent, (iii) you have successfully exercised your Right to Object (see below), (iv) processing was unlawful, or (v) we are required to erase it for compliance with a legal obligation. We cannot restore information once it has been deleted. Please note that to ensure that we do not collect any further Personal Data, you should also delete our App from your devices, terminate your account with us, and clear our cookies from any device where you have used our App. We may retain certain Personal Data (including following your request to delete) for audit and record-keeping purposes, or as otherwise permitted and/or required under applicable law.
7.5. Right to Restrict Processing. If you are an EU Individual, you can ask us to limit the processing of your Personal Data if either: (i) you have contested its accuracy and wish us to limit processing until this is verified; (ii) the processing is unlawful, but you do not wish us to erase the Personal Data; (iii) it is no longer needed for the purposes for which it was collected, but we still need it to establish, exercise, or defend of a legal claim; (iv) you have exercised your Right to Object (below) and we are in the process of verifying our legitimate grounds for processing. We may continue to use your Personal Data after a restriction request under certain circumstances.
7.6. Direct Marketing Opt Out. You can change your mind at any time about your election to receive marketing communications from us and/or having your Personal Data processed for direct marketing purposes. If you do, please notify us by contacting us at support@Klearly.nl. We will process your request as soon as reasonably possible, however it may take a few days for us to update our records before any opt out is effective.
7.7. Right To Object. If you are an EU Individual, you can object to any processing of your Personal Data which has our legitimate interests as its legal basis, if you believe your fundamental rights and freedoms outweigh our legitimate interests. If you raise an objection, we have an opportunity to demonstrate that we have compelling legitimate interests which override your rights and freedoms.
7.8. Withdrawal Of Consent. You may withdraw your consent in connection with any processing of your Personal Data based on a previously granted consent. This will not affect the lawfulness of any processing prior to such withdrawal.
7.9. Right To Lodge A Complaint With Your Local Supervisory Authority. If you are an EU Individual, you may have the right to submit a complaint to the relevant supervisory data protection authority if you have any concerns about how we are processing your Personal Data, though we ask that as a courtesy you please attempt to resolve any issues with us first.
8. Data Retention
8.1. Subject to applicable law, we retain Personal Data as necessary for the purposes set forth above. We may delete information from our systems without notice to you once we deem it is no longer necessary for these purposes. Retention by any of our processors may vary in accordance with the processor's retention policy.
8.2. In some circumstances, we may store your Personal Data for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax, audit, accounting requirements and so that we have an accurate record of your dealings with us in the event of any complaints or challenges, or if we reasonably believe there is a prospect of litigation relating to your Personal Data or dealings. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data, and whether those purposes can be achieved through other means, as well as applicable legal requirements.
8.3. Please contact us at privacy@Klearly.nl if you would like details regarding the retention periods for different types of your Personal Data.
9. Cookies And Similar Technologies.
We use cookies and similar technologies for a number of reasons, including to help personalize your experience. When accessing the Solution, you shall be notified of the use of and placement of cookies and other similar technologies on your device as specified herein.
9.1. What Are Cookies? A cookie is a small piece of text that is sent to a user's device and stored locally. The device provides this piece of text to the cookie's server when this user returns.
9.1.1. First-party cookies are placed by us, while third-party cookies may be placed by a third party. We use both first- and third-party cookies.
9.1.2. We may use the terms "cookies" to refer to all technologies that we may use to store data in your browser or device or that collect information or help us identify you in the manner described above, such as web beacons or "pixel tags".
9.2. How We Use Cookies? We use cookies and similar technologies for a number of reasons, as specified below. We will not place any cookies on your browser that are not strictly necessary unless you have first consented to the cookie pop up.
The specific names and types of the cookies, web beacons, and other similar technologies we use may change from time to time. However, the cookies we use generally fall into one of the following categories:
| Type Of Cookie | Why We Use These Cookies |
| Performance | These cookies can help us collect information to help us understand how you use our Solution, for example whether you have viewed messages or specific pages and how long you spent on each page. This helps us improve the performance of our Solution. |
| Analytics | These cookies collect information regarding your activity on our Solution to help us learn more about which features are popular with our users and how our Solution can be improved. |
9.3. Third Party Cookies
Mixpanel
Firebase
Hotjar
9.4. How To Adjust Your Preferences. Most Web browsers are initially configured to accept cookies, but you can change this setting so your browser either refuses all cookies or informs you when a cookie is being sent. In addition, you are free to delete any existing cookies at any time. Please note that some features of the Services may not function properly when cookies are disabled or removed. For example, if you delete cookies that store your account information or preferences, you will be required to input these each time you visit.
10. Third-Party Applications And Services
All use of third-party applications or services is at your own risk and subject to such third party's terms and privacy policies.
11. Communications.
We reserve the right to send you service-related communications, including service announcements and administrative messages, without offering you the opportunity to opt out of receiving them. Should you not wish to receive such communications, you may cancel your account.
12. Children.
We do not knowingly collect Personal Data from children under the age of sixteen (16). In the event that you become aware that an individual under the age of sixteen (16) has registered without parental permission, please advise us immediately.
13. Changes To The Privacy Notice.
We may update this Privacy Notice from time to time to keep it up to date with legal requirements and the way we operate our business, and we will place any updates on this webpage. Please come back to this page every now and then to make sure you are familiar with the latest version. If we make material changes to this Privacy Notice, we will seek to inform you by notice in our App or via email.
14. Comments And Questions.
If you have any comments or questions about this Privacy Notice or if you wish to exercise any of your legal rights as set out herein, please contact us at privacy@Klearly.nl.