Passa al contenuto

Data Manifesto & Privacy Statement

OPEN STATEMENTTransparency Is Non-NegotiableYour Data, Your ControlSecurity Is a Priority, Not an AfterthoughtMinimalism in Data CollectionEthical Data Processing​When We Handle your DataHow We Handle Your DataHow We Protect Your DataYour RightsWhat We Never DoContact the Data Protection AuthorityAmendmentsA Collaborative Commitment

OPEN STATEMENT

XTROVERSO™ is a registered tradename of WIGEPA B.V., a private limited company incorporated under Dutch law, with its registered office in Amersfoort, the Netherlands (KvK number 70402787) XTROVERSO™. All data processing activities are carried out by WIGEPA B.V. under the name XTROVERSO™, in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and other applicable data protection laws.

This Manifesto is designed to reflect the principles of transparency and fairness in data handling, in line with Article 13 of the General Data Protection Regulation (EU) 2016/679 (“GDPR”)

If you have any questions about this Manifesto or about how we handle your personal data, please contact our Legal & Compliance Department at legal@xtroverso.com or send a mail to 

WIGEPA B.V. (attn. Legal & Compliance), 

De Stuwdam 33-35, 

3815 KM Amersfoort, 

The Netherlands.

We are committed to responding to all privacy-related inquiries promptly and transparently.

Transparency Is Non-Negotiable

You have the right to know how your data is collected, stored, and used. We ensure that every interaction with your data is clearly communicated, and we never hide behind complex legal jargon or ambiguous policies.

Your Data, Your Control

Your data belongs to you. We empower you to access, update, and delete your information at any time. Consent is the foundation of all our data-handling practices, and we only use your data for the purposes you agree to.

Once you have withdrawn your consent, we will no longer process your data. As a result, we will delete them, unless there is another legal basis for further processing of the data as provided by article 6 GDPR (e.g. storage requirements or insofar as processing is necessary for the performance of the contract).

Security Is a Priority, Not an Afterthought

We implement industry-leading security measures to protect your data from unauthorized access, breaches, or misuse. From encryption to secure storage practices, safeguarding your information is at the core of everything we do.

Minimalism in Data Collection

We only collect the data we truly need to provide and improve our services. Nothing more, nothing less. Your trust is far too important to risk for unnecessary data collection.

Ethical Data Processing​

We process data in a way that aligns with our mission to empower entrepreneurs. We use your data responsibly to personalize services, provide relevant insights, and create value—never to exploit or sell.

When We Handle your Data

The type of data we collect and use is limited to the information you provide to us. This is the case, among other things, if you:

  • contact us in any way;
  • sign up for the newsletter;
  • fill in the contact form;
  • enter into a contract with us or request one of our other services;
  • visit our website.

How We Handle Your Data

  • Collection: We collect only essential information, such as your contact details, business preferences, and service interactions. Data is gathered transparently, with your full consent.
  • Storage: All data is stored in secure servers, compliant with GDPR and other global privacy standards. Our infrastructure includes encryption, regular audits, and best-in- class cybersecurity measures.
  • Processing: Your data is processed to enhance your experience with Xtroverso, from personalizing services to creating insights that support your business growth. Every process is designed with fairness, relevance, and necessity in mind.
  • Retention periods: your data is retained to enable you to continue using our services for as long as necessary to fulfill the purposes for which it was collected, or as required by law.
  • Automated decision-making: we ensure that no data is processed in automated decision-making. Automated decision-making is decisions made by computers or systems without human intervention.
  • Third Parties: To deliver our services efficiently and securely, we rely on a limited number of carefully selected third-party service providers. These include systems that support our business operations and secure infrastructure.
  • International Data Transfers: All personal data is processed exclusively within the European Union, and we ensure that every external provider we engage adheres to the strict data protection standards required under the GDPR. We will not transfer your data outside the EU without a valid legal basis, and we never allow third parties to use your data for their own purposes.

How We Protect Your Data

  • Encryption: All data, whether in transit or at rest, is encrypted to the highest industry standards.
  • Access Control: Access to your data is restricted to authorized personnel who need it to deliver our services.
  • Regular Audits: We conduct frequent security and privacy audits to ensure our systems remain robust and compliant.
  • Backup Systems: We maintain secure backup systems to protect against data loss or damage, ensuring continuity without compromising privacy.

Your Rights

We empower you to take full control of your data. We respect your right to

  • Access: You can view and request a copy of the data we store about you.
  • Update: You can correct or update any inaccuracies in your information.
  • Delete: You can request the deletion of your data at any time, and we’ll ensure it’s permanently removed from our systems.
  • Manage your consent: You have the right to change your data preferences and permissions at any time.
  • Restrict processing: In certain cases, you may ask us to limit the way we use your data: for example, while we’re verifying its accuracy or handling an objection.
  •  Data portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format, or ask us to transfer it to another provider where technically feasible.
  •  Object to processing: You can object to the processing of your personal data when it is based on legitimate interest, including for direct marketing purposes.
  •  Not to be Subject to Automated Decisions: You have the right not to be subject to decisions based solely on automated processing - including profiling - if those decisions significantly affect you, unless you’ve explicitly consented or it’s required by law.

What We Never Do

  • Sell Your Data: Your data is never sold, shared, or monetized in any way outside the scope of providing Xtroverso services.
  • Exploit Information: We don’t use your data to manipulate or exploit decisions.
  • Ignore Privacy Laws: We comply with all relevant privacy laws and go beyond them to ensure your trust and security.

Contact the Data Protection Authority

If you feel that your data protection rights have not been adequately respected, you have the right to lodge a complaint with the competent supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens (Dutch Data Protection Authority). You can find more information at www.autoriteitpersoonsgegevens.nl.


Amendments

We reserve the right to amend this Manifesto at any time and for any reason. We will publish the amended version on our website. If required by law, you will be notified in case of important changes.

A Collaborative Commitment

At Xtroverso™, protecting your data is not just our responsibility—it’s a shared commitment between us and our community. By choosing to work with us, you’re partnering with an organization that values integrity, transparency, and trust above all else.

Together, we build not just a thriving community of freelancers and entrepreneurs but also a foundation of respect and security that sets a new standard for ethical data handling.

Your data. Your trust. Our responsibility

Data Governance and Relationship Table


EntityDepends on / Related toNature of Relationship
XTROVERSO™WIGEPA B.V.XTROVERSO™ is a tradename operated by WIGEPA B.V., the legal data controller.
WIGEPA B.V.GDPR, EU LawAll data processing activities must comply with GDPR and Dutch law.
User / ClientXTROVERSO™Provides personal data, gives consent, exercises privacy rights.
XTROVERSO™User / ClientCollects, stores, and processes personal data for service delivery with transparency and consent.
XTROVERSO™Legal & Compliance Dept.Handles data inquiries and GDPR-related communication.
XTROVERSO™Third-party service providersEngages vetted providers for infrastructure and business operations under GDPR-compliant terms.
XTROVERSO™EU JurisdictionData is processed only within the EU, and no international transfers occur without legal basis.
User / ClientDutch Data Protection AuthorityCan escalate complaints if rights are violated (Autoriteit Persoonsgegevens).
XTROVERSO™Security MeasuresUses encryption, access control, audits, and backups to protect data.
XTROVERSO™Privacy StatementMay amend this document and notify users if legally required.
XTROVERSO™Automated Decision-MakingDoes not use fully automated decision-making processes.
User / ClientConsent and Rights ManagementMay access, update, delete, restrict, or object to the processing of their data.
XTROVERSO™Data Minimalism PrincipleCollects only essential data to fulfill contractual obligations and user requests.

WIGEPA BV

Certified by ZENTRIQ™.  

Aligned with  ISO 37000 |  27001, GDPR | 37301 | 30414 | 45001 | 37001.  

Dedicated to protecting leadership integrity, governance culture, and societal trust.