Privacy Policy

Last updated: October 12, 2025

At PlanLoom, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our scheduling platform.

1. Data Controller

The data controller responsible for your personal data is:

Qraft B.V. (trading as PlanLoom)

KVK: 54912148

Vestigingsnummer: 000024627097

Email: privacy@planloom.com

2. Data We Collect

Account Information

  • Full name
  • Email address
  • Password (encrypted)
  • Timezone preference
  • Organization details

Booking Information

  • Invitee name and contact details
  • Invitee email address
  • Phone number (optional)
  • Meeting notes and preferences
  • Scheduled date and time

Technical Data

  • IP address
  • Browser type and version
  • Cookies and similar technologies

3. Legal Basis for Processing

We process your data under the following legal bases:

  • Contract Performance: Processing necessary to provide our scheduling services
  • Consent: For optional features like analytics and marketing communications
  • Legitimate Interests: To improve our services and prevent fraud
  • Legal Obligation: To comply with applicable laws and regulations

4. Data Storage & Security

🇪🇺 EU Data Hosting

All your data is stored on servers located within the European Union. Your data never leaves EU jurisdiction.

We implement appropriate technical and organizational measures to protect your data:

  • Data encryption in transit (TLS/SSL) and at rest
  • Strict access controls and authentication
  • Regular backups with encrypted storage

5. Data Retention

  • Active accounts: Data retained for the duration of your subscription
  • Deleted accounts: Data deleted within 30 days unless legally required to retain
  • Booking history: Retained for 7 years for accounting purposes

6. Third-Party Services

We use the following trusted third-party services:

Stripe (Payment Processing)

Payment information is processed by Stripe. We never store your credit card details. Stripe is PCI-DSS compliant.

Email Service Provider

We use EU-based email service providers to send transactional emails (booking confirmations, reminders).

7. Your GDPR Rights

Under GDPR, you have the following rights:

Right to Access

Request a copy of your personal data

Right to Rectification

Correct inaccurate or incomplete data

Right to Erasure (Right to be Forgotten)

Request deletion of your personal data

Right to Data Portability

Receive your data in a structured, machine-readable format

Right to Restrict Processing

Limit how we use your data

Right to Object

Object to processing based on legitimate interests

To exercise these rights, contact us at privacy@planloom.com

8. Cookies

We use cookies to enhance your experience and analyze site usage.

For detailed information about the cookies we use, please see our Cookie Policy.

9. Children's Privacy

Our service is not intended for children under 16. We do not knowingly collect data from children.

10. Data Breach Notification

In the event of a data breach that poses a risk to your rights, we will notify you and the relevant supervisory authority within 72 hours as required by GDPR.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through our service.

12. Supervisory Authority

You have the right to lodge a complaint with your local data protection authority. In the Netherlands, this is:

Autoriteit Persoonsgegevens (Dutch DPA)

Website: autoriteitpersoonsgegevens.nl

Email: info@autoriteitpersoonsgegevens.nl

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@planloom.com

← Back to PlanLoom