Privacy Policy

Effective date: 1 May 2026
Website: https://bindin.io

1. Introduction

This Privacy Policy explains how Bindin (“Bindin”, “we”, “us”, or “our”) collects, uses, stores, shares, and protects personal data when you visit our website, use our application, create an account, subscribe to our services, contact us, or otherwise interact with Bindin.

Bindin is a software-as-a-service platform designed to help consultants and small businesses manage customer relationships, contacts, companies, deals, reminders, notes, and related business information.

This Privacy Policy applies to:

• visitors to our website;
• users of our application;
• customers and trial users;
• people who contact us for support, sales, or other questions;
• people whose personal data is stored in Bindin by our customers.

This Privacy Policy should be read together with our Terms of Service, Cookie Policy, and, where applicable, our Data Processing Agreement.

2. Our role under data protection law

Depending on the situation, Bindin may act as either a data controller or a data processor.

2.1 Bindin as data controller

Bindin acts as a data controller when we decide why and how personal data is processed. This usually applies to personal data we process for our own business purposes, such as:

• account registration;
• billing and subscription management;
• website analytics;
• customer support;
• product communication;
• security monitoring;
• marketing communication;
• legal and administrative purposes.

2.2 Bindin as data processor

Bindin may act as a data processor when our customers use Bindin to store or process personal data about their own contacts, clients, prospects, leads, companies, deals, reminders, notes, or related business information.

In that situation, the customer is usually the data controller, and Bindin processes that data on behalf of the customer and according to the customer’s instructions.

If you are a person whose data has been entered into Bindin by one of our customers, please contact that customer first if you want to exercise your privacy rights. We will support our customers in responding to such requests where required by law.

3. Personal data we collect

We collect personal data in several ways.

3.1 Information you provide to us

You may provide personal data directly to us when you:

• create an account;
• use the Service;
• subscribe to a paid plan;
• join a waiting list or trial;
• contact us for support;
• submit a form;
• subscribe to updates;
• request information;
• provide feedback;
• communicate with us by email or other channels.

This may include:

• name;
• email address;
• company name;
• job title or role;
• phone number, if provided;
• login credentials;
• profile information;
• billing details;
• subscription details;
• support messages;
• feedback or survey responses;
• communication preferences.

3.2 Customer Data stored in Bindin

When customers use Bindin, they may store personal data about their own business contacts, clients, prospects, leads, or other people.

This may include:

• contact names;
• email addresses;
• phone numbers;
• company names;
• job titles;
• notes;
• reminders;
• deal information;
• relationship history;
• business communication details;
• other information entered by the customer.

Customers are responsible for ensuring they have a lawful basis to enter and process this data in Bindin.

3.3 Payment and billing data

If you subscribe to a paid plan, we may collect billing-related information such as:

• billing name;
• billing address;
• email address;
• VAT number, if provided;
• subscription plan;
• invoice details;
• payment status;
• limited payment information.

Payments may be processed by a third-party payment provider, such as Stripe. We do not store full credit card numbers unless explicitly stated. Payment providers process payment data according to their own terms and privacy policies.

3.4 Technical and device data

When you visit our website or use our Service, we may automatically collect technical data such as:

• IP address;
• browser type and version;
• device type;
• operating system;
• language settings;
• time zone;
• referring website;
• pages visited;
• date and time of access;
• session activity;
• feature usage;
• application logs;
• error logs;
• approximate location based on IP address;
• cookie and tracking identifiers.

We use this data to operate, secure, improve, and understand the use of our website and Service.

3.5 Cookies and similar technologies

We may use cookies, pixels, tags, local storage, log files, and similar technologies to:

• keep the website and application working;
• remember preferences;
• manage sessions;
• improve performance;
• analyze usage;
• detect abuse or security issues;
• understand how visitors interact with our website;
• support marketing, if enabled.

Some cookies are necessary for the website or Service to function. Other cookies, such as analytics or marketing cookies, may require consent depending on your location and applicable law.

For more information, please see our Cookie Policy.

3.6 Information from third parties

We may receive personal data from third parties where permitted by law, such as:

• authentication providers;
• payment providers;
• analytics providers;
• hosting and infrastructure providers;
• support tools;
• marketing tools;
• business partners;
• public business sources;
• referral sources.

For example, if you sign in using a third-party authentication provider, we may receive your name and email address from that provider.

4. How we use personal data

We use personal data for the following purposes.

4.1 To provide and operate the Service

We use personal data to:

• create and manage accounts;
• authenticate users;
• provide access to the Service;
• store and display Customer Data;
• enable CRM features;
• process reminders and notifications;
• provide dashboards and analytics;
• manage subscriptions;
• process payments;
• provide technical support;
• respond to user requests.

4.2 To maintain and improve Bindin

We use personal data to:

• monitor performance;
• fix bugs;
• analyze usage trends;
• improve user experience;
• develop new features;
• understand customer needs;
• test and improve security;
• maintain service reliability.

4.3 To communicate with you

We may use personal data to send:

• account-related messages;
• service notifications;
• security alerts;
• billing messages;
• subscription updates;
• support replies;
• product updates;
• policy updates;
• administrative messages.

Some communications are essential and cannot be opted out of while you use the Service.

4.4 For marketing and product updates

Where permitted by law, we may use personal data to send:

• newsletters;
• product updates;
• offers;
• onboarding tips;
• feature announcements;
• educational content.

You can unsubscribe from non-essential marketing emails at any time by using the unsubscribe link in the email or contacting us.

4.5 For security, fraud prevention, and abuse detection

We use personal data to:

• detect unauthorized access;
• prevent fraud;
• monitor suspicious activity;
• protect accounts;
• enforce usage limits;
• protect our systems;
• prevent spam, phishing, or misuse;
• investigate violations of our Terms of Service.

4.6 For legal and business purposes

We may use personal data to:

• comply with legal obligations;
• maintain business records;
• enforce our agreements;
• respond to lawful requests;
• resolve disputes;
• protect our rights;
• protect the rights of customers, users, or third parties;
• support audits, accounting, tax, and compliance activities.

5. Legal bases for processing personal data

If the GDPR or similar privacy laws apply, we rely on one or more legal bases to process personal data.

These may include:

5.1 Contract

We process personal data when necessary to provide the Service, manage your account, process subscriptions, provide support, and perform our agreement with you.

5.2 Consent

We may rely on consent for certain activities, such as optional cookies, marketing emails, or other processing where consent is required by law.

You may withdraw your consent at any time. Withdrawal does not affect processing that happened before consent was withdrawn.

5.3 Legitimate interests

We may process personal data based on our legitimate interests, such as:

• improving the Service;
• securing our platform;
• preventing fraud;
• understanding usage;
• communicating with business users;
• developing our product;
• protecting our legal rights.

We only rely on legitimate interests where those interests are not overridden by your rights and freedoms.

5.4 Legal obligation

We may process personal data where necessary to comply with legal obligations, such as tax, accounting, security, regulatory, or legal requirements.

5.5 Customer instructions

Where Bindin acts as a data processor, we process Customer Data according to the customer’s instructions and the applicable Data Processing Agreement.

6. How we share personal data

We do not sell personal data.

We may share personal data with the following categories of recipients.

6.1 Service providers

We may share personal data with trusted service providers that help us operate Bindin, such as:

• hosting providers;
• database providers;
• payment processors;
• email providers;
• analytics providers;
• authentication providers;
• customer support tools;
• monitoring and security tools;
• error tracking tools;
• professional advisors.

These providers may only process personal data as needed to provide services to us and must protect the data appropriately.

6.2 Payment providers

Payment information may be processed by third-party payment providers. These providers process payment data according to their own legal obligations and privacy policies.

6.3 Integrations selected by customers

If a customer enables an integration with a third-party service, data may be shared with that third party as required for the integration.

Customers are responsible for reviewing and accepting the terms and privacy policies of third-party integrations they enable.

6.4 Legal and compliance disclosures

We may disclose personal data if necessary to:

• comply with applicable law;
• respond to lawful requests by public authorities;
• comply with court orders or legal processes;
• enforce our Terms of Service;
• protect the rights, safety, or security of Bindin, users, customers, or others;
• investigate fraud, abuse, or security issues.

6.5 Business transfers

If Bindin is involved in a merger, acquisition, financing, restructuring, sale of assets, or similar transaction, personal data may be transferred as part of that transaction, subject to appropriate safeguards.

7. Subprocessors

Where Bindin acts as a processor, we may use subprocessors to help provide the Service.

Subprocessors may include providers for:

• cloud hosting;
• database storage;
• application hosting;
• payment processing;
• email delivery;
• authentication;
• analytics;
• monitoring;
• customer support;
• security.

We will use reasonable efforts to ensure subprocessors provide appropriate data protection and security measures.

A list of subprocessors may be provided in a separate Subprocessor List or Data Processing Agreement.

8. International data transfers

Bindin may process and store personal data in countries outside your country of residence, including countries outside the European Economic Area.

Where required by law, we use appropriate safeguards for international transfers, such as:

• Standard Contractual Clauses;
• adequacy decisions;
• data processing agreements;
• contractual safeguards;
• other legally recognized transfer mechanisms.

9. Data retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention periods may depend on:

• the type of data;
• the purpose of processing;
• account status;
• legal obligations;
• tax and accounting requirements;
• security needs;
• dispute resolution;
• customer instructions;
• backup and disaster recovery practices.

9.1 Account data

We retain account data while your account is active and for a reasonable period after account closure where necessary for legal, security, accounting, or business purposes.

9.2 Customer Data

Customer Data is generally retained while the customer account is active.

After account termination or deletion, Customer Data may be deleted or anonymized according to our retention practices, customer instructions, and applicable law.

Some data may remain temporarily in backups until backup deletion cycles are completed.

9.3 Billing records

Billing, invoice, tax, and accounting records may be retained for the period required by applicable law.

9.4 Marketing data

Marketing contact data is retained until you unsubscribe, object, withdraw consent, or request deletion, unless we have another lawful reason to retain it.

10. Data security

We use reasonable technical, organizational, and administrative measures to protect personal data against unauthorized access, loss, misuse, alteration, disclosure, or destruction.

These measures may include:

• access controls;
• authentication controls;
• encryption where appropriate;
• logging and monitoring;
• secure hosting practices;
• backup procedures;
• least-privilege access;
• security reviews;
• vendor assessment;
• incident response procedures.

No online service can be guaranteed to be fully secure. You are responsible for keeping your login credentials confidential and notifying us if you suspect unauthorized access to your account.

11. Your privacy rights

Depending on your location and applicable law, you may have the right to:

• access your personal data;
• request correction of inaccurate data;
• request deletion of your personal data;
• restrict processing;
• object to processing;
• withdraw consent;
• request data portability;
• object to direct marketing;
• lodge a complaint with a supervisory authority.

To exercise your rights, contact us at support@bindin.io.

We may need to verify your identity before responding to your request.

If your request relates to data entered into Bindin by one of our customers, we may refer you to that customer, because the customer may be the data controller.

12. Privacy rights for Customer Data

If your personal data has been entered into Bindin by a Bindin customer, that customer is usually responsible for deciding how and why your data is processed.

Examples include situations where a consultant stores your name, email address, company name, deal information, notes, or reminders in Bindin.

In such cases, please contact the relevant customer directly to exercise your privacy rights. We will assist the customer where required by applicable law.

13. Cookies and tracking choices

You can manage cookies through your browser settings.

You may also be able to manage cookie preferences through a cookie banner or preference center if available on our website.

If you disable cookies, some parts of the website or Service may not work properly.

Where required by law, we will ask for your consent before using non-essential cookies or similar technologies.

14. Marketing choices

You may opt out of non-essential marketing communications at any time by:

• clicking the unsubscribe link in our emails;
• changing your communication preferences, where available;
• contacting us at support@bindin.io.

Even if you opt out of marketing messages, we may still send essential service messages, such as account, billing, security, legal, or transactional notices.

15. Do Not Track

Some browsers offer a “Do Not Track” signal. Because there is no common industry standard for responding to these signals, we do not currently respond to Do Not Track signals.

Where required by law, we will honor legally recognized privacy preference signals.

16. Children

Bindin is not intended for children under the age of 16.

We do not knowingly collect personal data from children under 16.

If you believe that a child has provided personal data to us, please contact us at support@bindin.io and we will take appropriate steps to delete the data where required by law.

17. Third-party websites and services

Our website or Service may contain links to third-party websites, services, or integrations.

We are not responsible for the privacy practices, content, or security of third-party websites or services.

You should review the privacy policies of any third-party services you use or enable.

18. Automated decision-making

Bindin does not currently use personal data for automated decision-making that produces legal or similarly significant effects.

If this changes, we will update this Privacy Policy where required by law.

19. Changes to this Privacy Policy

We may update this Privacy Policy from time to time.

If we make material changes, we will use reasonable efforts to notify you, for example by email, in-app notice, or by posting an updated version on our website.

The updated Privacy Policy will be effective from the date stated at the top of the policy.

Your continued use of the Service after the updated Privacy Policy becomes effective means that you acknowledge the updated policy.

20. Contact us

If you have questions about this Privacy Policy, our privacy practices, or your privacy rights, you can contact us at:

Bindin
Email: support@bindin.io
Business address: Amsterdam, The Netherlands

21. Supervisory authority

If you are located in the European Economic Area and believe that we have not handled your personal data properly, you may have the right to lodge a complaint with your local data protection authority.

If Bindin is established in the Netherlands, the relevant supervisory authority may be the Dutch Data Protection Authority, the Autoriteit Persoonsgegevens.