Privacy Policy

Last Updated: August 1, 2025

At Floatist, we respect your privacy and comply with GDPR and other laws. This Policy explains how we handle personal data for our yacht charter management SaaS. “We” means Floatist BV (the Netherlands), with its registered office at Weesperstraat 107, 1018VN Amsterdam. If you’re a charter operator (our customer), this applies to data you provide about your staff and guests. Guests: Your operator shares limited data with us—contact them for details. You can reach us at hello@floatist.com

1. What Data We Collect

From Operators: Names, emails, signatures, fleet details, and usage logs. From Guests/Staff: Names, emails (via operator-shared access). Automatically: IP addresses, device info, usage patterns (for improvements). We don’t collect sensitive data unless you provide it (e.g., in notes or crew lists).

2. How We Use Your Data

Provide Floatist services (e.g., contract signing, check-ins). Backups and support. Anonymized analytics to improve Floatist. Legal compliance (e.g., audits). We don’t sell data or use it for marketing without consent.

3. Legal Basis for Processing

Contract: To deliver Floatist (GDPR Art. 6(1)(b)). Legitimate Interests: Improvements, security (Art. 6(1)(f)). Consent: Where needed (e.g., optional features; Art. 6(1)(a)).

4. Sub-Processors

We use trusted partners like Docuseal (for signing/storage). Full list available on request. All comply with GDPR via DPAs. We authorize sub-processors but notify you of changes.

5. Storage Duration

Data is kept for 10 years (for backups/legal needs), then deleted. Inactive accounts: Data deleted after 1 year of non-use.

6. Security Measures

We use encryption, access controls, audit logs. Docuseal handles e-signatures securely. We report breaches within 72 hours if required.

7. Your Rights

Under GDPR, request access, correction, deletion, restriction, or portability. Object to processing or withdraw consent. Email hello@floatist.com—we respond within 1 month. Complain to Dutch Data Protection Authority if needed.

8. Data Transfers

Data may go outside EEA (e.g., to sub-processors). We use Standard Contractual Clauses or adequacy decisions for protection.

9. Data Subject Rights

Under GDPR, you have the right to request access to your data, correction, deletion, restriction of processing, and data portability. You may also object to processing or withdraw your consent at any time. To exercise your rights, email hello@floatist.com — we’ll respond within one month. If you believe your rights are being violated, you can lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

10. Termination

This Privacy Policy is tied to your subscription agreement. Upon termination, data will be deleted unless otherwise required by law.

11. Contact Information

Questions? Email hello@floatist.com or write to: Weesperstraat 107, 1018VN Amsterdam, the Netherlands.

12. Jurisdiction

Dutch law applies. Disputes in Dutch courts.

Changes: We’ll notify you of updates. Continued use means acceptance.

By signing a Floatist quote or otherwise agreeing to use the Floatist platform, you acknowledge and accept this Privacy Policy.