Privacy Policy

The controller responsible for processing personal data on this platform is:

For all privacy-related requests (access, correction, deletion, objection), contact us at privacy@dailyfrozen.nl. We respond within 30 days.

We collect personal data only when strictly necessary for the operation of this platform. We never collect data speculatively.

1. Website Visitors (no account required)

IP addresses are anonymised before being stored. We retain them only for the duration of the session.

2. Company Registration

When a company registers as a partner producer or buyer, we collect:

• ✓Company name, legal address, country of registration
• ✓Chamber of Commerce number (KvK / company registration)
• ✓VAT number
• ✓Contact person: full name, job title, business email, phone number
• ✓Role on the platform: seller (producer), buyer, or both
• ✓Product categories and average trading volumes (for producers)
• ✓Preferred product categories and order frequency (for buyers)
• ✓Payment terms preference (30 / 60 / 90 days)

3. Purchase Requests (Buyers)

When a buyer submits a purchase request for a listed product, we collect:

• ✓Company name & registration number
• ✓Business email address and phone number
• ✓Quantity requested (in tonnes)
• ✓Optional message to Daily Frozen

4. Newsletter Subscribers

Email address, optional company name, preferred product categories, and language preference.

5. Credit Check Data (Buyers)

When a purchase request is approved for credit verification, the buyer's company details (name, registration number, trading volume) are submitted to Atradius Atrium for credit assessment. This is performed under our legitimate interest in protecting all parties in a transaction (Art. 6(1)(f) GDPR).

6. Deal & Transaction Data

Upon successful deal closure: deal value, product details, quantity, price per kg, commission amount, invoice reference (DF-YYYY-NNN format), and payment status. This data is processed and retained for statutory tax compliance.

1. 1
   Platform operation

   To display product listings, process purchase requests, and facilitate B2B introductions between partner producers and verified buyers.

2. 2
   Onboarding & verification

   To verify company registrations, check certifications, and ensure all parties on the platform meet our quality standards.

3. 3
   Credit assessment

   Before introducing a buyer to a producer, we run a credit check via Atradius Atrium to assess payment risk. This protects both parties. No credit decisions are made automatically — the operator reviews results and decides.

4. 4
   Deal management & invoicing

   To track deal status, generate commission invoices (DF-YYYY-NNN format), record payments, and maintain audit logs for legal and tax purposes.

5. 5
   Communication

   To notify registered companies about the status of their requests, deal progress, credit check results, and account updates. Email notifications are transactional and directly related to your activity on the platform.

6. 6
   Newsletter (with consent)

   If you subscribe, we send periodic updates about new partner products, market availability, and platform news. You can unsubscribe at any time.

7. 7
   Platform improvement

   Anonymised analytics data (Google Analytics 4 with IP anonymisation) helps us understand how users navigate the platform and where to improve. No personal data is used for this purpose.

8. 8
   Security & fraud prevention

   Rate limiting (Upstash Redis) and error monitoring (Sentry) protect the platform against abuse. No personal data is shared with these providers beyond what is technically necessary.

We work with carefully selected sub-processors, all bound by data processing agreements in accordance with Art. 28 GDPR. We only share data that is strictly necessary for each service.

Data subject to statutory retention periods is locked for further processing during that period and deleted automatically once the period expires.

Our primary infrastructure (Supabase database, Vercel hosting) is located within the European Economic Area (EEA), specifically in Frankfurt, Germany.

Where processors are located outside the EEA (Formspree, Sentry), we ensure adequate protection through:

• ✓EU Standard Contractual Clauses (SCCs) as approved by the European Commission (Art. 46(2)(c) GDPR)
• ✓EU–US Data Privacy Framework certification where applicable
• ✓Supplementary technical measures (encryption in transit and at rest)

We use a minimal number of cookies, categorised as follows:

Strictly Necessary Cookies

These cookies are essential for the operator dashboard to function. They are never set for public visitors.

Analytics Cookies

IP addresses are truncated before being sent to Google. No personal identifiers are included. We do not use Google Analytics for advertising purposes.

Managing Cookies

You can disable or delete cookies through your browser settings at any time. Disabling analytics cookies does not affect the functionality of this platform for public visitors. Disabling session cookies will prevent login to the operator dashboard.

We do not use marketing cookies, retargeting pixels, or social media tracking of any kind.

As a data subject under GDPR, you have the following rights. To exercise any of them, contact privacy@dailyfrozen.nl. We respond within 30 days.

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction:

We may update this Privacy Policy from time to time to reflect changes in our data processing activities, applicable law, or best practices. Material changes will be announced via a prominent notice on our platform and, where applicable, via email to registered users.

The current version of this policy is always available at dailyfrozen.nl/privacy. The effective date is stated at the top of this page.

Continued use of the platform after a material change constitutes acceptance of the updated policy. If you do not agree with the changes, you may request deletion of your account at privacy@dailyfrozen.nl.