At Vesselstatement.com (registered in the Netherlands, CoC Number 92141838, located at Hegedyk 6, Boksum 9031XJ), we are committed to protecting your privacy and handling your personal data responsibly.
As a data controller under the EU General Data Protection Regulation (GDPR) and the Dutch General Data Protection Regulation (AVG), we process your data in a transparent, secure, and lawful manner. This Privacy Policy explains how we collect, use, share, and protect your information when you use our website and services for generating annual renewable vessel statements for 0% VAT compliance, in line with EU Directive 2006/112/EC and Dutch VAT laws.
We collect personal data necessary to provide our services:
We do not collect sensitive data (e.g., health or biometric information) unless voluntarily provided in support contexts, and only with your explicit consent.
We use your data solely to fulfil our contractual obligations and improve services:
We do not use your data for marketing without consent.
We retain your data only as long as necessary:
After retention periods, data is securely deleted or anonymised. You can request earlier deletion via your rights below.
Under GDPR/AVG, you have the following rights regarding your data. To exercise them, contact us at support@vesselstatement.com (response within 1 month; free of charge unless manifestly unfounded):
Request a copy of your personal data we hold.
Correct inaccurate or incomplete data.
Request deletion of your personal data.
Limit processing during disputes.
Receive data in a machine-readable format (JSON/CSV).
Oppose processing based on legitimate interests.
We also handle complaints — escalate to the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl if unsatisfied.
We implement technical and organisational measures (e.g., encryption, access controls, regular audits) to protect your data. Authorised employees access data on a strict need-to-know basis.
In the event of a personal data breach, we will notify the Autoriteit Persoonsgegevens within 72 hours. If high-risk (e.g., exposure of vessel/financial data), we will inform you without undue delay via email. Report suspected breaches to support@vesselstatement.com.
Our operations are EU-based, but subprocessors (e.g., Stripe) may involve non-EU entities. We ensure adequacy via EU-approved mechanisms like Standard Contractual Clauses (SCCs) or Binding Corporate Rules. No data is transferred without appropriate safeguards.
In compliance with the EU Data Act (Regulation (EU) 2023/2854, effective September 12, 2025), you have enhanced rights to access, port, and switch your data generated through our service (e.g., vessel statements, input details) in a structured, machine-readable format at no additional cost.
To request portability or switching assistance, contact support@vesselstatement.com — we will provide the data within one month. We do not impose unfair terms that hinder switching, such as proprietary formats.
We use cookies and similar technologies for functionality and analytics. Essential cookies do not require consent; others do (via banner). IP addresses in log files are anonymised. See our Cookies Policy for full details.
Our services are not directed at children under 18. We do not knowingly collect data from minors. If we become aware of such collection, we will delete it promptly.
We may update this policy to reflect legal changes or service evolutions. Continued use after posting constitutes acceptance. For major changes, we'll notify you by email at least 30 days in advance.
For questions about this Privacy Policy, your data, or to exercise your rights: