Privacy Policy
Last updated: 13/08/2025
Eywa bv (“we”, “us” or “our”) provides a Software-as-a-Service (SaaS) platform. We are committed to protecting personal data and process it in a careful, secure, and transparent manner, in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
1. Data Controller
Company name: Eywa bv
Address: Kempenseweg 12
Zip + City: 3690 Zutendaal
Country: Belgium
VAT: BE0670612171
2. Personal Data We Process
We only process personal data that is necessary for the use of our platform, such as:
- Name and contact details (email, phone number)
- Login credentials (username, password)
- Organisation details (company name, department, role)
- Platform usage data (log files, preferences, settings)
- Billing and payment information
We do not process special categories of personal data unless legally required or essential for service delivery.
3. Purposes of Processing
We process personal data for:
- Providing access to and enabling use of our platform
- Customer support and communication
- Billing and administration
- System management, security, and monitoring
- Compliance with legal obligations
4. Legal Basis for Processing
We process personal data on the following legal bases:
- Performance of a contract
- Compliance with legal obligations
- Legitimate interests (such as security and fraud prevention)
- Consent (where required)
5. Sharing of Personal Data
We only share personal data with:
- IT and hosting providers required for platform operations
- Payment service providers for billing
- Government authorities when legally required
All third parties that process data on our behalf are bound by Data Processing Agreements compliant with the GDPR.
6. Retention Periods
We retain personal data only for as long as necessary for the purposes for which it was collected, unless a longer retention period is required by law. After the retention period, data will be securely deleted or anonymised.
7. Security Measures
We apply appropriate technical and organisational measures to protect personal data, including:
- Encryption of data in transit and at rest
- Role-based access control
- Logging and monitoring of access attempts
- Regular penetration testing and security audits
Our security measures are aligned with ISO 27001 requirements and are part of our Information Security Management System (ISMS).
8. Data Subject Rights
You have the right to:
- Access your personal data
- Rectify or erase your personal data
- Restrict processing
- Data portability
- Withdraw consent
- Object to processing
Requests can be submitted via [email address]. We will respond within 30 days.
9. Cookies
Our platform uses functional cookies and, where applicable, analytical cookies. For non-essential cookies, we request prior consent.
10. Contact and Complaints
If you have any questions or complaints regarding this privacy policy, please contact us at hello@calculus.group.
You also have the right to lodge a complaint with your local data protection authority.