Privacy statement

Effective date: 26-11-2025

We know that you care about your personal data and how it is used, and we want you to feel safe and confident when interacting with SquareFloatingCity. Just as we prioritize safety and well-being in our floating neighborhood, we take your privacy seriously and handle your personal data with care.
This Privacy Policy explains what personal data we collect, why we collect it, and how we protect it, so you can trust that your information is secure within our community.

Our business is based in Delft, The Netherlands.

1. Data Controller

The data controller for your personal data is:
Square Floating City B.V.
Email: contact@squarefloatingcity.com

2 Personal Data We Collect

We may collect the following personal data when you use our website:

  • Organisation type (when requesting downloads)
  • Name
  • Email address
  • Telephone number (optional)

3. How We Collect Your Data

We collect personal data when you:

  • Voluntarily submit it through our website’s contact form
  • Enter it when requesting files from our Downloads section

We do not collect personal data through cookies or tracking technologies.

4. Purpose of Data Processing

We use your personal data for the following purposes:

  • Responding to inquiries submitted via the contact form
    Lawful basis: legitimate interest
  • Sending newsletters or updates (only if you explicitly opt in)
    Lawful basis: your consent
  • Providing access to downloadable materials and understanding the type of organisation requesting them
    Lawful basis: legitimate interest

5. Legal Basis for Processing

Your personal data is processed based on:

Legitimate interest (Art. 6(1)(f) GDPR):
To respond to inquiries submitted through the contact form.
To provide downloadable materials and understand the organisation type requesting them.

Consent (Art. 6(1)(a) GDPR):
When you have opted in to receive newsletters or updates. You may withdraw this consent at any time.

6. Data Sharing and International Transfers

  • We do not share your personal data with any third parties.
  • We do not transfer your personal data outside the European Union or European Economic Area.

7. Data Retention

We retain your personal data until you request its deletion.

Your data is stored securely using Microsoft Outlook, and access is limited to a small number of authorised personnel who require it to respond to inquiries or provide downloads.

To request deletion, contact us at contact@squarefloatingcity.com with “privacy” in the subject line.

8. Cookies and Tracking

Our website only uses:

  • Essential cookies required for basic functionality and security

We do not use:

  • Analytics cookies
  • Advertising cookies
  • Third-party tracking technologies

If this changes in the future, we will update this policy and request user consent where required.

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Access – Request a copy of the data we hold about you
  • Rectification – Correct inaccurate or incomplete data
  • Erasure – Request deletion of your data
  • Restriction – Request that we limit the processing of your personal data
  • Objection
    • Withdraw consent at any time
    • Object to receiving newsletters or updates
  • Data portability – Request your data in a structured, machine-readable format
  • Right to lodge a complaint
    You may lodge a complaint with your local supervisory authority. A list of EU supervisory authorities is available here:
    https://edpb.europa.eu/about-edpb/board/members_en

To exercise any of these rights, contact us at contact@squarefloatingcity.com with “privacy” in the subject line.
Exercising these rights does not affect the lawfulness of processing based on consent before its withdrawal.

10. Automated Decision-Making / Profiling

We do not use your personal data for automated decision-making or profiling. All decisions regarding your data and communications with us are made by humans.

11. Security of Your Data

We take appropriate technical and organisational measures to protect your personal data from unauthorised access, loss, or misuse. These measures include:

  • Industry-standard encryption for data transmitted through our website
  • Secure data storage
  • Restricted access within our organisation

12. Children’s Data

Our website is not intended for children under the age of 16.
We do not knowingly collect personal data from children. If we learn that we have collected such data without parental consent, we will delete it promptly.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. All updates will be posted on this page with an updated Effective Date.