Skip to main content

General terms and conditions | Billy Grace

These are the general terms and conditions of Fox Digital B.V., trading under the name of Billy Grace, having its principal office located at Leidsekruisstraat 35 (1017RG) in Amsterdam, the Netherlands and registered with the Chamber of Commerce under registration no. 85199761(hereinafter referred to as “Billy Grace”). Billy Grace offers a cloud-based software solution that enables its customers to automate marketing budgets and bids in online advertising space. Next to this, Billy Grace gives customers insights and intelligence that can be utilized to make their store more profitable.

  1. Definitions

In these general terms and conditions, all capitalised terms have the meanings set out in this article, both in their singular forms and in their plural forms.

    1. Account: the username, password and any other means of authorisation required by an End User to log in to – and use – certain parts of the Services.
    2. Agreement: the entire agreement between Billy Grace and the Customer, which in any case includes, without limitation, Billy Grace’s offer, these general terms and conditions, and any data processing agreement entered into between the parties.
    3. Confidential Information: any information that has been marked as being confidential, or that the receiving party should reasonably be able to understand is of a confidential nature.
    4. Customer: any legal entity or natural person acting in the course of a profession or business that or who enters into an Agreement with Billy Grace.
    5. Customer Data: any data stored by the Customer or individual End Users with the Services, or otherwise made available to Billy Grace by the Customer or End Users in the context of the Agreement.
    6. End Users: any natural person using the Services under the Agreement, whether or not through his or her Account.
    7. Intellectual Property Rights: all intellectual property rights and related rights, including but not limited to copyright, database rights, rights to domain names, trade name rights, trademark rights, design rights, neighboring rights, patent rights as well as rights to know-how.
    8. Materials: all websites, web applications, software, data, documentation, concepts, texts, images, opinions, reports and other products of the mind in the broadest sense of the word.
    9. Services: all work that Billy Grace will perform for the Customer under the Agreement, as described in Billy Grace’s offer. These activities may include – among other things – (i) making the Software available via the internet, (ii) configuring the Software, and (iii) maintaining the Software.
    10. Software: Billy Grace’s cloud-based software solution made available to Customer under the Agreement that enables the Customer to automate and analyses their store, as further described on the Website.
    11. Website: Billy Grace’s website, accessible via, or related sub-domains.
  1. Applicability and formation of the Agreement
    1. These general terms and conditions apply to all Agreements entered into between the parties, even if – in the event of a future offer – these general terms and conditions are not made available to the Customer again.
    2. The Agreement is concluded by fully completing the online ordering process and confirming the order upon completion of the order on the Website and/or Shopify’s App Store or website.
    3. In addition to the provisions included below, the Shopify App Store may impose conditions on obtaining the Software, using it, making payments and related matters. For this purpose, Customer should refer to the Shopify App Store’s terms of use and privacy statement and any applicable terms and conditions on Shopify’s website.
  2. Performance of the Agreement
    1. The Software can offer insight into your e-commerce store and purchase advertising space itself. The Customer is solely responsible for the correctness of the information (such as bid parameters and limits) that it enters while using the Software. 
    2. Billy Grace will make every effort to ensure that the information and Materials provided to Customer are correct but cannot provide any guarantees in this regard. Billy Grace accepts no responsibility for damage in any way caused by the use, incompleteness or inaccuracy of the information and Materials provided in the Software. It is the responsibility of the Customer to ensure that the output and results of the Software meet the Customer’s expectations and requirements.
    3. Billy Grace is not obliged to implement or configure the Services on behalf of the Customer, unless explicitly agreed upon otherwise. If the Customer requests support from Billy Grace in this regard, Billy Grace preserves the right to invoice the associated costs separately based on the customary rates of Billy Grace, but only if the Customer is informed of these additional costs in advance.
    4. When using the Services, the Customer is obliged to comply with any reasonable advice and instructions provided by Billy Grace.
    5. Billy Grace is entitled to engage third parties in the performance of the Agreement. Any costs associated with this will only be at the Customer’s expense if this has been agreed in advance.
  3. Accounts
    1. In order to make use of the Services, the Customer and/or End User must create an Account via the Website. The Customer itself is responsible for ensuring that login details are treated confidentially. Accounts are personal and may not be used by multiple people.
    2. Billy Grace may set a limit on the number of End Users that may use the Service. 
    3. All actions that are carried out via an Account will be at the Customer’s expense and risk. Billy Grace is entitled to assume that these actions have been carried out by the Customer itself or with the Customer’s consent.
    4. If the Customer suspects or concludes that an Account is being misused, it must immediately take any measures that may be necessary to prevent (further) misuse, for instance by changing the password. If it is not possible for the Customer to take appropriate measures itself, the Customer must immediately inform Billy Grace, in order to enable Billy Grace to take the necessary measures.
  4. Rules of use
    1. The Customer is forbidden from using the Software for any purpose that violates applicable laws and regulations, or in a way that is otherwise unlawful. Furthermore, it is explicitly forbidden to use the Software:
      1. to willfully distribute malware or any other harmful software; 
      2. to store or disseminate materials that infringe any intellectual property rights or other third party rights;
      3. to store or disseminate materials that are threatening, libelous, defamatory, obscene, pornographic, terroristic or offensive;
      4. in any manner that may cause hindrance for other users of the Software, or that may damage the systems and networks of Billy Grace or third parties.
    2. The Customer warrants that any End Users that make use of the Software are bound to the rules of use for the Software. 
    3. If Billy Grace finds that the Customer has violated these terms and conditions, or receives a complaint about this, it will give the Customer a warning. If this does not lead to a satisfactory solution, Billy Grace may intervene itself. In urgent or serious cases, Billy Grace may intervene without warning.
    4. Billy Grace is entitled to hand over the name, address and other identifying details of the Customer and/or End Users to a third party who complains that the Customer and/or the End User is infringing its rights, provided that the applicable legal and/or judicial requirements for this have been met.
    5. The Software may contain hyperlinks to third party websites. Billy Grace is not responsible for the contents of such websites. Use of any information or materials from third party websites shall be at your own risk.
    6. Billy Grace is not responsible for any third party services that can be used via the Software. Use of these services shall be at Customer’s own responsibility and risk.
    7. Billy Grace shall not be liable for Customer Data stored or distributed using the Software or for the use made of the Software by Customer and/or its End Users. Customer indemnifies Billy Grace from claims of third parties, including Customer’s End Users, based on the assertion that the use of the Software by Customer and/or its End Users or Customer Data stored using the Software infringes its rights, constitutes a violation of the rules of use or is otherwise unlawful.
  5. Availability
    1. Unless the Parties expressly agree otherwise in a service level agreement, the availability and the maintenance of the Software will always be on the basis of best efforts and with due observance of the provisions of this article.
    2. Billy Grace will endeavour to keep the Software available as much as possible but cannot guarantee uninterrupted availability. Billy Grace will be entitled to take the Software temporarily out of operation for the purpose of maintenance activities.
    3. If any obstruction, loss or other threat arises or may arise for the operation of Billy Grace’s computer systems or network or third-party computer systems or networks, for instance due to excessive sending, uploading or downloading of data, network attacks, poorly protected systems, or activities of viruses or other harmful software, Billy Grace will be entitled to take all measures that it deems reasonably necessary to avert or prevent this threat. Billy Grace will inform the Customer of this as soon as possible.
  6. Maintenance
    1. Billy Grace actively maintains the Software. Maintenance causing impact to the availability of the Software will be announced in advance and will, where possible, be carried out when use of the Software is averagely low. Emergency maintenance however can be carried out at any moment and without prior notice.
    2. Billy Grace may from time to time add or change functionalities of the Software. Suggestions and feedback of the Customer are welcome, but ultimately Billy Grace decide which functionality will be added or changed.
    3. Billy Grace shall notify changes to the Software 30 days after the changes are made. Minor changes that, in the opinion of Billy Grace, do not affect the functionality of the Software in a meaningful way, will be made without prior notice.
  7. Support
    1. The Customer is requested to consult the online documentation regarding the Software via the Website before submitting a support request by e-mail. 
    2. If the online documentation does not facilitate a solution, the Customer may contact the Billy Grace helpdesk by e-mail. Availability and up-to-date contact details are available on the Website. Billy Grace endeavours to respond to helpdesk requests as soon as possible.
  8. User limits
    1. Billy Grace may impose a limit on the capacity the Customer may or can use within the framework of the Services on a monthly basis. Examples include a maximum number of Accounts or a maximum quantity of data storage or network traffic.
    2. If the usage limits are exceeded, Billy Grace may charge additional costs, or (after providing a written warning) limit the use of the Services to the permitted capacity.
    3. If no limit has been set for the capacity, a fair use policy will apply to the Services concerned. This must be understood to mean that the Customer may use a maximum of twice the capacity used by other Billy Grace customers under similar circumstances.
    4. Billy Grace is not liable for the consequences of the Services not functioning properly if the Customer exceeds the applicable usage limit, whether or not based on fair use.
  9. Intellectual Property Rights
    1. Unless otherwise agreed in writing, all Intellectual Property Rights pertaining to the Software and other Materials developed or provided by Billy Grace under the Agreement shall remain with Billy Grace or its suppliers.
    2. The Customer only acquires a non-exclusive, non-transferable and non-sublicensable right to use the Software and other Materials for the term of the Agreement, and only for its own use.
    3. The Customer is forbidden from modifying the Software and other Materials or modifying or removing any indications of Intellectual Property Rights from these.
    4. The Customer is expressly not entitled to access the source code or the source files of the Software and other Materials, except in those circumstances in which this is permitted pursuant to mandatory law.
    5. The Customer is forbidden from reverse engineering the Software and other Materials (for instance through decompilation), except in those circumstances in which this is permitted pursuant to mandatory law.
    6. Billy Grace can take technical and other measures to protect the Software or Materials. Where such security measures have been implemented, the Customer may not remove or circumvent these.
  10. Customer Data and privacy
    1. All rights to the Customer Data shall remain with the Customer. Billy Grace will only use the Customer Data to the extent necessary for the provision of the Services.
    2. If and in so far as the Customer Data consists of personal data within the meaning of the General Data Protection Regulation (‘GDPR’), the parties shall enter into a data processing agreement which is attached to these general terms and conditions as a schedule.
    3. If the Agreement is terminated, regardless of the reason for such termination, Billy Grace will destroy or delete the Customer Data as soon as possible and is not obligated to provide a copy thereof to the Customer.
  11. Confidentiality
    1. The parties will treat Confidential Information of the other party as strictly confidential and use it only for the purpose for which it is provided.
    2. The receiving party will ensure that the Confidential Information of the disclosing party is given the same level of protection as its own confidential information, but at least a reasonable level of protection.
    3. The parties will also impose the obligation described above concerning Confidential Information on their employees and any third parties engaged.
    4. The obligation to treat Confidential Information as confidential will not apply if and insofar as the receiving party can prove that the Confidential Information:
      1. was already in the possession of the receiving party prior to date on which it was provided;
      2. is available from a third party without this party acting in breach of any duty of confidentiality in respect of the disclosing party by providing it;
      3. is available from public sources such as newspapers, patent databases, publicly accessible websites or services; or
      4. was developed independently by the receiving party and without the use of any information of the disclosing party.
    5. If a party receives an order from a competent authority to hand over Confidential Information, it will be entitled to proceed to hand it over. The disclosing party will however be informed as soon as possible (in advance) of the order, unless this is legally prohibited. If the disclosing party states that it intends to take measures against the order (for instance, via preliminary relief proceedings), the receiving party will wait before handing over the information until a decision has been taken on this, insofar as this is permitted by law.
  12. Terms of payment
    1. In exchange for the Services, the Customer will be required to pay the prices stated in the offer or during the ordering process on the Website. Unless expressly indicated otherwise, all prices are exclusive of value added tax (VAT) and other duties levied by the government.
    2. Unless otherwise agreed, by entering into the Agreement, the Customer grants a SEPA authorization to Billy Grace and/or Shopify to automatically debit the amounts owed by the Customer from the Customer’s bank account. The Customer hereby agrees to Billy Grace sending electronic invoices. All invoices sent by Billy Grace are subject to a 14-day payment term.
    3. The Customer shall ensure a sufficient balance in the bank account designated for the direct debit. If a debit cannot be made, the Customer shall pay the amounts invoiced by Billy Grace by other means before the end of the due date.
    4. If the Customer disagrees with the contents of an invoice, the Customer will be entitled to suspend payment of the disputed (though not any other) part of the invoice. If an invoice is disputed, Billy Grace must be informed of this, in writing, within the payment term. After being informed of an invoice being disputed, Billy Grace will assess whether or not this is justified as soon as possible. If it proves to be unjustified, the Customer must pay the amount outstanding within 14 days.
    5. If – except in the situation described in the preceding paragraph – the Customer fails to pay an invoice, or pay it in full, within the payment term, the Customer will be in default by operation of law. In such case, Billy Grace is entitled (i) to charge the Customer the statutory interest for commercial transactions on the outstanding amount, and (ii) to suspend provision of all or part of the Services until the Customer has paid the outstanding amount in full.
    6. If the Customer continues to fail to pay an invoice following a demand for payment or a notice of default, Billy Grace will be entitled to refer the claim for collection. Any extrajudicial costs and legal expenses incurred by Billy Grace, including the costs of legal experts, lawyer’s fees, bailiff costs and the costs of debt collection agencies, will in such a case be completely at the Customer’s expense.
    7. Billy Grace is authorised to adjust its rates on an annual basis on the basis of the CBS (“Centraal Bureau voor de Statistiek”) consumer price index (all households), series 2015=100, for January relative to January of the preceding year. In such case, the Customer is not entitled to terminate the Agreement, unless the price increase amounts to more than 5 percent.
    8. The Customer is not entitled to set off any of its payment obligations against any claims it has on Billy Grace, for whatever reason.
  13. Liability
    1. Per calendar year, Billy Grace’s liability for loss, damages or other claims based on an attributable breach (including breaches of warranties or indemnities), an unlawful act or any other ground is limited to the amount that the Customer owes Billy Grace under the Agreement (exclusive of VAT) over a period of 12 months prior to the loss, damages or claims arising, regardless of the number of events. 
    2. Without prejudice to the provisions above, Billy Grace will expressly not be liable for indirect loss or damage. Indirect loss or damage will be understood to include: lost profits, missed savings, reduced goodwill and damage or loss due to business interruption.
    3. Billy Grace will only be liable in connection with an attributable failure in the performance of the Agreement if the Customer gives Billy Grace proper notice of default without delay and in writing, offering Billy Grace a reasonable period in which to remedy the failure, and Billy Grace continues to attributably fail to comply with its obligations even after that period. The notice of default must contain as detailed a description of the failure as possible in order to enable Billy Grace to put forward an adequate response.
    4. Billy Grace cannot be held liable in any way for damages caused by the use, incompleteness or inaccuracy of the information provided in the Software.
    5. Any limitations or exclusions of Billy Grace’s liability as stipulated in the Agreement will lapse if and insofar as the loss or damage is due to intent or willful recklessness on the part of Billy Grace’s management, or death or physical injury.
  14. Force majeure
    1. Billy Grace will not be obliged to perform the Agreement if performance is prevented as a result of force majeure.
    2. The parties will in any case consider the following to be force majeure, without limitation: fire, floods, strikes, power failures, telecommunications infrastructure failures, force majeure on the part of Billy Grace’s own suppliers, network attacks, import and export impediments, war and terror. Any liquidity problems on the Customer’s part do not qualify as force majeure.
    3. To the extent that Billy Grace had already fulfilled part of the Agreement by the time the force majeure situation arose or will be able to fulfil part of the Agreement, and such partial fulfilment can be ascribed an independent value, Billy Grace is entitled to invoice for such fulfilment separately.
    4. In the event of force majeure, Billy Grace can suspend the performance of the Agreement for as long as the situation continues. If the situation lasts longer than 3 months, both parties will be entitled to terminate the Agreement in writing, without any obligation to pay the other party compensation.
  15. Duration and termination
    1. The Agreement is entered into for an indefinite period and may be terminated online via the Software by either party, with due observance of a period of notice of 30 days.
    2. The Parties may not terminate the Agreement in the interim, save for those circumstances for which an exception is expressly made in these general terms and conditions or in other parts of the Agreement.
    3. Billy Grace will be entitled to suspend the Agreement with immediate effect (in full or in part) or terminate or dissolve the Agreement with immediate effect (in full or in part) if:
      1. the Customer fails to comply with its obligations under the Agreement or fails to comply with these in time and does not remedy the failures within a reasonable period after being given notice of default. Prior notice of default is however not required in those cases where default arises by operation of law;
      2. the Customer applies for bankruptcy or is declared bankrupt, applies for a moratorium or is granted a moratorium, the Customer’s company is liquidated, or its business activities are discontinued;
      3. circumstances arise due to which performance of the Agreement is rendered impossible, or due to which Billy Grace cannot reasonably be required to maintain it unchanged.
    4. In the case of rescission of the Agreement, there will not be any cancellation obligations (“ongedaanmakingsverplichtingen”) regarding the Services that Billy Grace has already provided, and the corresponding payment obligations.
    5. Following termination or dissolution of the Agreement, any remaining claims of Billy Grace on the Customer will be immediately due and payable, regardless of the reason for such termination.
  16. Changes
    1. Billy Grace is authorised to modify these general terms and conditions and will announce any changes to the Customer at least 30 days in advance. Changes also apply to Agreements already entered into.
    2. If the Customer does not wish to accept a change, the Customer can lodge a written objection within 14 days after the announcement. If Billy Grace decides to proceed with the change despite the Customer’s objection, the Customer can terminate the Agreement, in writing, with effect from and no later than the date on which the change takes effect.
    3. The procedure described above does not apply to changes of minor significance or changes that benefit the Customer. Billy Grace may implement such changes unilaterally and with immediate effect. The Customer will be informed of such changes as soon as possible.
  17. Miscellaneous
    1. The parties can only transfer the rights and obligations arising from the Agreement to a third party with the written permission of the other party. Billy Grace will, however, be authorised to transfer the Agreement, without the Customer’s prior permission or cooperation to a parent company, sister company or subsidiary, or to a third party in the event of a merger or acquisition. Billy Grace will inform the Customer as soon as possible, in writing, after such a transfer has taken place.
    2. The Agreement is subject to Dutch law. To the extent that rules of mandatory law do not prescribe otherwise, any dispute between the parties in connection with the Agreement will be submitted to the competent court in the Netherlands in the district where Billy Grace has its registered office.
    3. If any provision in the Agreement proves to be void, voidable or otherwise invalid, this will not affect the validity of the entire Agreement. In such a case, the parties will replace that provision with a new provision that will reflect the purpose of the original clause as much as is possible under the law.

Data processing agreement

This data processing agreement is applicable to all processing of personal data to be undertaken by Fox Technology B.V., registered with the Chamber of Commerce under number 85199761, (hereinafter: Processor) for the benefit of another party to whom it provides services (hereinafter: Controller) on the basis of the agreement concluded between these parties (hereinafter: the Agreement).

  1. Purposes of processing
    1. Processor hereby agrees under the terms of this Data Processing Agreement to process personal data on behalf of the Controller. Processing shall be done solely for the purpose of conducting the service, and all purposes compatible therewith or as determined jointly.
    2. The personal data to be processed by Processor for the purposes as set out in the previous clause and the categories of data subjects involved are set out in Appendix 1 to this Data Processing Agreement. Processor shall not process the personal data for any other purpose unless with Controller’s consent. Controller shall inform Processor of any processing purposes to the extent not already mentioned in this Data Processing Agreement. Processor however is permitted to use personal data for quality assurance purposes, including surveys to data subjects and statistical research purposes regarding the quality of Processor’s services.
    3. All personal data processed on behalf of Controller shall remain the property of Controller and/or the data subjects in question.
  2. Processor obligations
    1. Regarding the processing operations referred to in the previous clause, Processor shall comply with all applicable legislation, including at least all data processing legislation such as the GDPR.
    2. Upon first request Processor shall inform Controller about any measures taken to comply with its obligations under this Data Processing Agreement.
    3. All obligations for Processor under this Data Processing Agreement shall apply equally to any persons processing personal data under the supervision of Processor, including but not limited to employees in the broadest sense of the term.
    4. Processor shall inform Controller without delay if in its opinion an instruction of Controller would violate the legislation referred to in the first clause of this article.
    5. Processor shall provide reasonable assistance to Controller in the context of any data protection impact assessments to be made by Controller.
    6. Processor shall, in accordance with Article 30 GDPR, keep a register of all categories of processing activities which it carries out on behalf of the Controller under this data processing agreement. At Controller’s request, Processor shall provide Controller access to this register.
  3. Transfer of personal data
    1. Processor may process the personal data in any country within the European Union.
    2. Transfer to countries outside the European Union is not permitted.
    3. Processor shall report to Controller of the countries involved.
  4. Allocation of responsibilities
    1. The authorised processing operations shall be performed in a fully automated fashion under control of Processor.
    2. Processor is solely responsible for the processing of personal data under this Data Processing Agreement in accordance with the instructions of Controller and under the explicit supervision of Controller. For any other processing of personal data, including but not limited to any collection of personal data by Controller, processing for purposes not reported to Processor, processing by third parties and/or for other purposes, the Processor does not accept any responsibility.
    3. Controller represents and warrants that the content, usage and instructions to process the personal data as meant in this Data Processing Agreement are lawful and do not violate any right of any third party.
  5. Involvement of sub-processors
    1. Processor shall only involve those third parties in the processing under this Data Processing Agreement that were listed in the Appendix or with the prior written permission of Controller, which permission may be made conditional.
    2. In any event, Processor shall ensure that any third parties are bound to at least the same obligations as agreed between Controller and Processor.
    3. Processor shall ensure that these third parties shall comply with the obligations under this Data Processing Agreement and is liable for any damages caused by violations by these third parties as if it committed the violation itself.
  1. Security
    1. Processor shall use reasonable efforts to implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk for the processing operations involved, against loss or unlawful processing (in particular from accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to personal data transmitted, stored or otherwise processed).
    2. Processor does not warrant that the security is effective under all circumstances. If any security measure explicitly agreed in this Data Processing Agreement is missing, then Processor shall use best efforts to ensure a level of security appropriate to the risk taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons.
    3. Controller shall only provide personal data to Processor for processing if it has ensured that the required security measures have been taken. Controller is responsible for the parties’ compliance with these security measures.
  2. Notification and communication of data breaches
    1. Controller is responsible at all times for notification of any security breaches and/or personal data breaches (which are understood as: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed as described in Article 4 (12) of the GDPR) to the competent supervisory authority, and for communication of the same to data subjects. In order to enable Controller to comply with this legal requirement, Processor shall notify Controller within 48 hours after becoming aware of an actual or threatened security or personal data breach.
    2. A notification under the previous clause shall be made only for actual breaches with severe impact .
    3. The notification shall include at least the fact that a breach has occurred. In addition, the notification shall:
  • describe the nature of the personal data breach including, where possible, the categories and approximate number of data subjects concerned and the categories and approximate number of personal data records concerned;
  • describe the likely consequences of the personal data breach;
  • include the name and contact details of the Data Protection Officer (if appointed) or a contact person regarding privacy subjects;
  • describe the measures taken or proposed to be taken by the controller to address the personal data breach, including, where appropriate, measures to mitigate its possible adverse effects.
    1. Processor shall document all data breaches in accordance with Article 33(5) GDPR, including the facts relating to the personal data breaches, the consequences thereof and the measures taken to correct the respective breach. At Controller’s request, Processor shall provide access hereto.
  1. Processing requests from data subjects
    1. In the event a data subject makes a request to exercise his or her legal rights under the GDPR (Articles 15-22) to Processor, Processor shall pass on such request to Controller, and Controller shall process the request. Processor may inform the data subject of this passing on.
  2. Confidentiality obligations
    1. All personal data that Processor receives from Controller and/or collects itself is subject to strict obligations of confidentiality towards third parties. Processor shall not use this information for any goals other than for which it was obtained, not even if the information has been converted into a form that is no longer related to an identified or identifiable natural person.
    2. The confidentiality obligation shall not apply to the extent Controller has granted explicit permission to provide the information to third parties, the provision to third parties is reasonably necessary considering the nature of the assignment to Controller or the provision is legally required.
  3. Audit
    1. Controller has the right to have audits performed on Processor by an independent third party bound by confidentiality obligations to verify unauthorised use of personal data by Processor personnel, and all issues reasonably connected thereto.
    2. This audit may be performed in case a substantiated allegation of misuse of personal data has arisen.
    3. Processor shall give its full cooperation to the audit and shall make available employees and all reasonably relevant information, including supporting data such as system logs.
    4. The audit findings shall be assessed by the parties in joint consultation and may or may not be implemented by either party or jointly.
    5. The costs of the audit shall be borne by Controller.
  1. Liability
    1. Parties explicitly agree that any liability arising in connection with personal data processing shall be as provided in the Agreement.
  2. Term and termination
    1. This Data Processing Agreement enters into force upon signature by the parties and on the date of the last signature.
    2. This Data Processing Agreement is entered into for the duration of the cooperation between the parties.
    3. Upon termination of the Data Processing Agreement, regardless of reason or manner, Processor shall – at the choice of Controller – return in original format or destroy all personal data available to it.
    4. Processor is entitled to amend this Data Processing Agreement from time to time. Processor shall notify the Controller of amendments at least three months prior to their taking effect. Controller may terminate if the amendments are unacceptable to it.
  3. Applicable law and competent venue
    1. This Data Processing Agreement and its execution are subject to Dutch law.
    2. Any disputes that may arise between the parties in connection with this Data Processing Agreement shall be brought to the competent court for the place of business of Processor.


Appendix 1: Stipulation of personal data and data subjects

Data subjects and personal data of different purposes
Processor shall process the below personal data of the categories data subjects from different purposes (with retention period if specified) under the supervision of Controller, as specified in article 1 of the Data Processing Agreement:


  • Names and addresses
  • Telephone numbers
  • Email addresses
  • Visitor behavior
  • Social media accounts
  • Dates of birth
  • Financial data
  • Purchasing behavior

Website visitors

  • Visitor behavior

Controller represents that the description of personal data and categories of data subjects in this Appendix 1 is complete and accurate and shall indemnify and hold harmless Process for all faults and claims that may arise from a violation of this representation and warranty.