Sparklecloud
nl flag

Privacy Policy

Effective Date: 29-06-2026
Last Updated: 29-06-2026

SparkleCloud.AI (“SparkleCloud”, “we”, “us”, or “our”) respects your privacy. This Privacy Policy explains how we collect, use, store, disclose, protect, and delete personal data when you visit our website, use our software-as-a-service platform, create an account, contact us, or otherwise interact with our services.

This Privacy Policy applies to the SparkleCloud.AI website, platform, modules, AI features, CRM features, CMS features, dashboards, automations, integrations, support services, and related services.

By using SparkleCloud.AI, you acknowledge that your personal data will be processed as described in this Privacy Policy.

1. Who We Are

SparkleCloud.AI is operated by:

Brightness Subscriptions BV
Trading as: SparkleCloud.AI
Graftermeerstraat 22C
2131AC Hoofddorp
The Netherlands

Chamber of Commerce / CoC / KvK: 81921985
VAT: NL862270480B01
Website: https://sparklecloud.ai
Privacy email: privacy@sparklecloud.ai
General email: info@sparklecloud.ai
Telephone: +31(0) 23-5574211

For privacy-related questions, requests, or complaints, please contact us at:

privacy@sparklecloud.ai

2. Our Role as Controller or Processor

Depending on the situation, SparkleCloud.AI may act either as a controller or as a processor under applicable data protection laws, including the General Data Protection Regulation (“GDPR”).

We act as a controller when we determine the purposes and means of processing personal data, for example when we process:

  • account registration data;

  • billing and subscription data;

  • website visitor data;

  • customer communication data;

  • support data;

  • marketing data;

  • security logs;

  • platform usage data.

We act as a processor when we process personal data on behalf of a customer using the SparkleCloud.AI platform, for example where a customer uploads, stores, manages, or processes personal data in a workspace, CRM, CMS, website, webshop, dashboard, automation, AI feature, or integration.

Where we act as a processor, the customer is responsible for determining the lawful basis and purpose of processing. In those cases, we process personal data according to the customer’s documented instructions and any applicable data processing agreement.

3. Personal Data We Collect and Store

We may collect and store the following categories of personal data.

3.1 Account and Profile Data

When you create or use an account, we may collect:

  • name;

  • email address;

  • company or organisation name;

  • job title or role;

  • user permissions;

  • workspace or tenant information;

  • login details;

  • password or authentication credentials, stored in hashed or encrypted form;

  • profile settings;

  • language settings;

  • notification preferences;

  • account status.

3.2 Customer and Contract Data

When you become a customer, request information, or enter into an agreement with us, we may collect:

  • company name;

  • contact person details;

  • business email address;

  • telephone number;

  • billing address;

  • contract details;

  • subscription plan;

  • order history;

  • customer notes;

  • sales correspondence;

  • administrative correspondence.

3.3 Billing and Payment Data

For paid services, we may collect or process:

  • invoice details;

  • billing address;

  • VAT number;

  • payment status;

  • payment method metadata;

  • transaction references;

  • subscription information;

  • accounting records.

Payments may be processed by third-party payment providers. We do not store full payment card details unless explicitly stated. Payment providers process payment data according to their own privacy and security policies.

3.4 Platform, Workspace, and Customer Content

When you or your organisation use SparkleCloud.AI, you may upload, create, process, or store information in the platform. Depending on how the service is used, this may include:

  • website content;

  • webshop content;

  • CRM records;

  • lead and customer records;

  • project data;

  • task data;

  • automation data;

  • forms and form submissions;

  • uploaded files;

  • documents;

  • images;

  • media;

  • dashboard data;

  • monitoring data;

  • integration data;

  • internal notes;

  • messages;

  • comments;

  • settings and configuration data;

  • AI prompts;

  • AI input data;

  • AI-generated output.

You are responsible for ensuring that you have the necessary rights, permissions, and lawful basis to upload or process personal data in SparkleCloud.AI.

3.5 Technical, Usage, and Security Data

When you visit our website or use the platform, we may automatically collect:

  • IP address;

  • browser type and version;

  • device type;

  • operating system;

  • referring URLs;

  • pages viewed;

  • date and time of access;

  • login timestamps;

  • session information;

  • usage activity;

  • module and feature usage;

  • API usage data;

  • error logs;

  • diagnostic information;

  • audit logs;

  • security events;

  • performance data.

3.6 Support and Communication Data

When you contact us, we may collect:

  • name;

  • email address;

  • company name;

  • telephone number;

  • message content;

  • support ticket details;

  • attachments you provide;

  • records of communications;

  • feedback;

  • survey responses;

  • feature requests.

3.7 Marketing and Website Data

If you subscribe to updates, request a demo, download resources, attend events, or interact with marketing content, we may collect:

  • name;

  • email address;

  • company name;

  • marketing preferences;

  • newsletter subscription status;

  • campaign interactions;

  • website analytics data;

  • cookie identifiers, where applicable.

3.8 Cookies and Similar Technologies

We may use cookies, pixels, local storage, and similar technologies to:

  • operate the website and platform;

  • keep users logged in;

  • remember preferences;

  • secure our services;

  • analyse website usage;

  • improve performance;

  • support analytics;

  • support marketing, where permitted.

Where required by law, we ask for consent before placing non-essential cookies.

4. How We Collect Personal Data

We collect personal data in the following ways.

4.1 Directly From You

We collect personal data directly from you when you:

  • create an account;

  • complete a form;

  • request a demo;

  • subscribe to a service;

  • purchase a paid plan;

  • contact us;

  • request support;

  • upload data to the platform;

  • configure your workspace;

  • use modules or integrations;

  • submit feedback;

  • send us messages.

4.2 Automatically Through the Website or Platform

We collect certain technical, usage, and security data automatically when you visit our website or use SparkleCloud.AI. This includes log data, device data, usage events, error logs, security logs, analytics data, and diagnostic data.

4.3 Through Cookies and Similar Technologies

We collect data through cookies and similar technologies when you visit our website or use our services, depending on your cookie preferences and applicable law.

4.4 From Customers or Workspace Administrators

If you are invited to SparkleCloud.AI by your employer, client, customer, or another organisation, that organisation may provide us with your name, email address, role, permissions, or other account-related information.

4.5 From Third-Party Services and Integrations

If you or your organisation connects SparkleCloud.AI with third-party services, we may receive personal data from those services as needed to provide the integration. Examples may include authentication providers, payment processors, analytics tools, CRM systems, email tools, communication tools, automation tools, or other connected platforms.

5. Why We Use Personal Data

We use personal data for the following purposes.

5.1 To Provide and Operate the Service

We process personal data to:

  • create and manage user accounts;

  • provide access to the platform;

  • operate workspaces and tenant environments;

  • store and process customer content;

  • enable CRM, CMS, website, webshop, automation, dashboard, monitoring, and AI features;

  • process integrations;

  • deliver customer support;

  • maintain service availability;

  • provide requested functionality.

5.2 To Manage Customers, Contracts, and Payments

We process personal data to:

  • manage subscriptions;

  • process orders;

  • issue invoices;

  • process payments;

  • administer contracts;

  • manage renewals;

  • communicate about plans, orders, billing, and services;

  • comply with tax and accounting obligations.

5.3 To Improve and Secure the Platform

We process personal data to:

  • monitor performance;

  • troubleshoot errors;

  • improve functionality;

  • develop new features;

  • detect and prevent fraud, abuse, and misuse;

  • protect accounts and workspaces;

  • investigate security incidents;

  • maintain audit logs;

  • ensure platform reliability;

  • protect the rights and safety of SparkleCloud.AI, customers, users, and others.

5.4 To Communicate With You

We process personal data to:

  • respond to questions;

  • provide support;

  • send service-related messages;

  • notify users about important platform changes;

  • send security alerts;

  • communicate about account, billing, legal, or administrative matters;

  • handle privacy requests.

5.5 For Marketing, Where Permitted

We may process personal data to:

  • send newsletters;

  • send product updates;

  • provide commercial information;

  • invite you to demos or events;

  • measure campaign performance;

  • personalise website or marketing content.

We only send marketing communications where permitted by law. You can unsubscribe at any time.

5.6 To Comply With Legal Obligations

We process personal data where necessary to:

  • comply with tax and accounting laws;

  • comply with business administration requirements;

  • respond to lawful requests from authorities;

  • maintain legally required records;

  • establish, exercise, or defend legal claims.

6. Legal Bases for Processing

Where the GDPR applies, we rely on the following legal bases:

  • Performance of a contract: when processing is necessary to provide the service, manage accounts, deliver subscriptions, process payments, or provide support.

  • Legal obligation: when processing is required for tax, accounting, regulatory, or legal compliance.

  • Legitimate interests: when processing is necessary for security, fraud prevention, platform improvement, business operations, customer communication, service reliability, and protection of our rights, provided those interests are not overridden by your rights and freedoms.

  • Consent: when we rely on your permission, for example for certain cookies, marketing communications, or optional processing.

  • Processor instructions: when we process personal data on behalf of a customer acting as controller.

7. AI Features and User Content

SparkleCloud.AI may include AI-assisted features. These features may process prompts, uploaded content, project data, CRM data, website content, automation data, integration data, or other information submitted by users.

We use such data to provide the requested AI functionality, generate outputs, maintain security, troubleshoot issues, and improve service reliability.

Unless otherwise agreed in writing, you should not submit highly sensitive personal data, special category data, medical data, financial account data, government identification numbers, or confidential third-party data into AI features unless you have a lawful basis and appropriate safeguards in place.

AI-generated output may be inaccurate, incomplete, outdated, or unsuitable for your intended use. You are responsible for reviewing and validating AI output before relying on it.

We do not claim ownership of your uploaded content. You are responsible for ensuring that you have the rights and permissions necessary to submit any content to SparkleCloud.AI.

8. Sharing Personal Data

We do not sell personal data.

We may share personal data with the following categories of recipients where necessary.

8.1 Service Providers

We may use third-party service providers to help operate SparkleCloud.AI, including:

  • hosting providers;

  • infrastructure providers;

  • payment processors;

  • email delivery providers;

  • analytics providers;

  • customer support tools;

  • security and monitoring tools;

  • authentication providers;

  • accounting and administration providers;

  • communication tools;

  • integration partners selected or configured by the customer.

These providers may only process personal data as necessary to provide their services to us, unless they act as independent controllers under their own terms.

8.2 Customers and Workspace Administrators

If your account is part of a customer workspace, the relevant customer or workspace administrator may be able to access, manage, export, delete, or restrict data associated with that workspace.

8.3 Legal, Security, or Compliance Reasons

We may disclose personal data if necessary to:

  • comply with applicable law;

  • respond to lawful requests from public authorities;

  • protect the rights, property, or safety of SparkleCloud.AI, our customers, users, or others;

  • detect or prevent fraud, abuse, or security incidents;

  • enforce our agreements, terms, or policies;

  • establish, exercise, or defend legal claims.

8.4 Business Transfers

If we are involved in a merger, acquisition, financing, restructuring, sale of assets, or similar business transaction, personal data may be transferred as part of that transaction, subject to appropriate safeguards.

8.5 With Your Consent or Instruction

We may share personal data when you direct us to do so, connect an integration, invite another user, export data, or otherwise provide consent.

9. International Transfers

We may process and store personal data in countries outside your country of residence, including countries outside the European Economic Area.

Where required, we use appropriate safeguards for international transfers, such as:

  • European Commission Standard Contractual Clauses;

  • data processing agreements;

  • technical and organisational security measures;

  • transfer impact assessments where applicable.

10. Security Measures

We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, disclosure, or destruction.

These measures may include:

  • encrypted connections using HTTPS/TLS;

  • access controls;

  • role-based permissions;

  • password hashing;

  • authentication safeguards;

  • logging and monitoring;

  • backup procedures;

  • separation of customer workspaces where applicable;

  • restricted access for authorised personnel only;

  • security reviews and updates;

  • incident response procedures.

No method of transmission or storage is completely secure. We cannot guarantee absolute security.

If we become aware of a personal data breach, we will take appropriate steps in accordance with applicable law.

11. Data Retention and Deletion

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required by law.

The following retention periods apply:

  • Account and profile data: retained for as long as the account is active. After account closure, this data is deleted or anonymised within 30 days.

  • Customer and contract data: retained for the duration of the customer relationship and deleted or anonymised within 30 days after termination, unless retention is legally required.

  • Uploaded content, project data, CRM data, website data, webshop data, CMS data, automation data, dashboard data, monitoring data, integration data, and other data stored in the SaaS platform: retained while the relevant account, workspace, or customer environment is active. After account, workspace, or environment deletion, this data is deleted or anonymised within 30 days.

  • AI prompts, AI inputs, and AI-generated outputs: retained as part of the relevant workspace or project data and deleted according to the same retention period, unless otherwise agreed in writing.

  • Billing, invoice, payment, and accounting records: retained for 7 years to comply with Dutch tax and accounting obligations.

  • Platform usage logs, IP addresses, login records, audit logs, and technical security logs: retained for up to 12 months, unless longer retention is necessary to investigate fraud, abuse, security incidents, or legal claims.

  • Support correspondence: retained for up to 24 months after the support request has been closed.

  • Marketing consent records: retained until consent is withdrawn or the data is no longer necessary.

  • Cookie preferences: retained for the duration stated in the cookie banner or cookie settings tool.

  • Backups: encrypted backups are rotated and overwritten within 90 days.

When a retention period expires, personal data is permanently deleted or irreversibly anonymised.

Some data may remain in encrypted backups for a limited period until the backup cycle is completed. We may retain certain data for longer if required by law, necessary to resolve disputes, enforce agreements, prevent fraud, protect security, or comply with legal obligations.

12. Withdrawing Consent and Requesting Deletion

Where we process personal data based on consent, you may withdraw your consent at any time. Withdrawing consent does not affect processing that took place before consent was withdrawn.

You can withdraw consent as follows:

  • Marketing emails: click the unsubscribe link in any marketing email or contact us at privacy@sparklecloud.ai.

  • Cookies and tracking: adjust your cookie preferences through the cookie banner, cookie settings tool, or your browser settings.

  • Other consent-based processing: send a request to privacy@sparklecloud.ai.

You can request deletion of your personal data in the following ways:

  1. Send an email to privacy@sparklecloud.ai with the subject line “Data Deletion Request”.

  2. Include the email address associated with your SparkleCloud.AI account.

  3. Describe which data you want deleted, if your request concerns specific data.

  4. We may ask you to verify your identity before processing the request.

  5. We will respond to your request within 30 days.

If you are using SparkleCloud.AI through an organisation, employer, client, customer, or workspace administrator, that organisation may be the controller of your data. In that case, we may forward your request to the relevant organisation or ask you to contact them directly.

After approval of a deletion request, we will delete or anonymise your personal data according to the retention periods described in this Privacy Policy, unless we are legally required to retain certain information.

13. Your Privacy Rights

Depending on your location and applicable law, you may have the following rights:

  • the right to access your personal data;

  • the right to correct inaccurate or incomplete personal data;

  • the right to delete your personal data;

  • the right to restrict processing;

  • the right to object to processing;

  • the right to data portability;

  • the right to withdraw consent;

  • the right not to be subject to certain automated decisions;

  • the right to lodge a complaint with a data protection authority.

To exercise your rights, contact us at:

privacy@sparklecloud.ai

We may ask you to verify your identity before responding to your request.

If you are located in the Netherlands, you may lodge a complaint with the Dutch Data Protection Authority, the Autoriteit Persoonsgegevens.

14. Customer-Controlled Data

Some personal data in SparkleCloud.AI is controlled by our customers. This may include data uploaded to a workspace, CRM, CMS, website, webshop, automation, dashboard, project, AI feature, or integration by a customer.

If your personal data has been uploaded or managed by one of our customers, you should first contact that customer to exercise your privacy rights. Where required, we will assist the customer in responding to your request.

15. Cookies

Our website and platform may use essential and non-essential cookies.

Essential cookies are necessary for the website and platform to function, including login, security, session management, account access, and service delivery.

Analytics cookies help us understand how visitors and users interact with our website and services.

Marketing cookies may be used to measure campaigns or personalise content, where permitted by law.

Where required, we ask for your consent before placing non-essential cookies. You can adjust your cookie preferences through the cookie banner, cookie settings tool, or your browser settings.

16. Marketing Communications

If you receive marketing emails from us, you can unsubscribe at any time by clicking the unsubscribe link in the email or by contacting us at privacy@sparklecloud.ai.

Even if you unsubscribe from marketing communications, we may still send service-related messages, such as security alerts, billing notices, account messages, legal updates, and important platform notifications.

17. Children’s Privacy

SparkleCloud.AI is not intended for children under the age of 16. We do not knowingly collect personal data from children.

If you believe that a child has provided personal data to us, please contact us at privacy@sparklecloud.ai. If we become aware that we have collected personal data from a child without appropriate consent, we will delete it where required by law.

18. Third-Party Websites and Services

Our website or platform may contain links to third-party websites, tools, integrations, or services.

We are not responsible for the privacy practices, security, or content of third-party services. Your use of third-party services may be subject to their own privacy policies and terms.

19. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will take reasonable steps to notify users, such as by posting a notice on our website, updating the “Last Updated” date, or sending a notification through the platform.

The updated Privacy Policy applies from the date it is published, unless stated otherwise.

20. Contact Us

If you have questions about this Privacy Policy, want to withdraw consent, want to request deletion, or want to exercise your privacy rights, contact us at:

Brightness Subscriptions BV / SparkleCloud.AI
Graftermeerstraat 22C
2131AC Hoofddorp
The Netherlands

Chamber of Commerce / CoC / KvK: 81921985
VAT: NL862270480B01
Privacy email: privacy@sparklecloud.ai
General email: info@sparklecloud.ai
Telephone: +31(0) 23-5574211
Website: https://sparklecloud.ai