Legal

Privacy Policy

Last updated: 22 April 2026

⚠️ Template notice: This is a starting template and not legal advice. Before publishing, have a Dutch privacy specialist review this policy. It needs to reflect your actual data processing activities and the specific third-party tools you use.

At AI Woman, we take your privacy seriously. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and what rights you have under the EU General Data Protection Regulation (GDPR) and Dutch privacy law.

1. Who we are (the data controller)

The controller responsible for your personal data is:

AI Woman
Registered with the Dutch Chamber of Commerce (KvK)
KvK number: 91035368
Based in Amsterdam, Netherlands
Email: hello@aiwoman.space

Our full registered business details are available in the public Dutch Handelsregister at kvk.nl (search by KvK number 91035368).

2. What personal data we collect

Category	What we collect	Why
Workshop booking	Name, email, business name, dietary preferences (optional)	To process your booking, send confirmations and prep materials, provide catering that suits you
Payment	Payment details are handled by Stripe — we only see the last 4 digits of your card and the transaction ID	To process payment and issue invoices
Consultation call	Name, email, your questions or context you share	To prepare for and conduct the call
Email & community	Email address if you opt in to newsletters or community messages	To send you workshop announcements, follow-ups, and community updates
Website	IP address, browser type, pages visited, duration (via analytics)	To understand site usage and improve our site

3. Legal basis for processing

We process your data on the following legal bases (Article 6 GDPR):

Contract — when processing your booking, taking payment, and delivering the workshop.
Legal obligation — to meet Dutch tax, accounting, and invoicing requirements.
Consent — for marketing emails, newsletters, and optional analytics cookies.
Legitimate interests — to run our business, improve our services, and keep our website secure.

4. Who we share your data with (processors)

We work with trusted service providers who process data on our behalf. We have Data Processing Agreements in place where required:

Stripe — payment processing (Ireland, EU) · privacy policy
[YOUR_EMAIL_PROVIDER] (e.g., Google Workspace) — email hosting
[YOUR_NEWSLETTER_TOOL] (e.g., ConvertKit, Beehiiv, Mailchimp) — newsletter
[YOUR_BOOKING_TOOL] (e.g., Cal.com, Calendly) — consultation call scheduling
[YOUR_ANALYTICS] (e.g., Plausible, Google Analytics) — website analytics
[YOUR_HOSTING] (e.g., Vercel, Netlify) — website hosting

Some of these providers may be based outside the EU (e.g., the US). In those cases, we rely on Standard Contractual Clauses and other GDPR-compliant safeguards.

We never sell your personal data. We never share it with third parties for their own marketing purposes.

5. How long we keep your data

Booking and invoice records: 7 years (required by Dutch tax law)
Newsletter subscribers: until you unsubscribe, then deleted within 3 months
Consultation call notes: 6 months after the call, unless you book a workshop
Website analytics: typically 26 months in aggregate form
Photos from workshops: as long as relevant for marketing, with your consent — you can withdraw consent at any time

6. Your rights under GDPR

You have the following rights regarding your personal data:

Access — ask us what data we have about you
Rectification — correct inaccurate or incomplete data
Erasure — ask us to delete your data ("right to be forgotten")
Restriction — ask us to temporarily stop processing
Portability — receive your data in a machine-readable format
Object — to processing based on legitimate interests or direct marketing
Withdraw consent — at any time, where processing is based on consent

To exercise any of these rights, email us at hello@aiwoman.space. We will respond within 30 days.

7. Cookies

Our website uses cookies to make it function and to understand how it's used. You can accept or decline non-essential cookies through our cookie banner. We distinguish between:

Strictly necessary cookies — required for the site to work
Analytics cookies — help us improve the site (only set with consent)
Marketing cookies — we currently don't use marketing cookies

8. Data security

We use reasonable technical and organisational measures to protect your data: HTTPS encryption, access controls, strong passwords, and only working with reputable processors. No system is 100% secure — in the unlikely event of a data breach that affects you, we will notify you and the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) as required by law.

9. Complaints

If you are unhappy with how we handle your data, please contact us first so we can try to resolve it. You also have the right to lodge a complaint with the Dutch Data Protection Authority (autoriteitpersoonsgegevens.nl).

10. Changes to this policy

We may update this Privacy Policy from time to time. Significant changes will be communicated by email to active participants. The "last updated" date at the top reflects the current version.

11. Contact

For any privacy-related question, email hello@aiwoman.space.