Skip to main content
Return to Main System

Privacy Protocol

Data Processing & Security Framework

This document outlines the data collection, processing, and protection protocols implemented across all Maxzilla systems and client interfaces.

Data Collection Protocols

Core System Data

  • • Contact form submissions (name, email, message)
  • • Technical consultation requests and requirements
  • • Client communication logs and project specifications
  • • System performance metrics and error diagnostics

Analytics Module Data

  • • Page navigation patterns and session duration
  • • Device specifications and browser configurations
  • • Geographic location data (country/region level only)
  • • Traffic source attribution and referral data

Processing Framework

Legal Basis

  • Legitimate Interest: Business operations and client communication
  • Consent: Analytics and performance optimization
  • Contract: Service delivery and project execution

Data Retention

  • Contact Data: 3 years after last interaction
  • Project Data: 7 years for business records
  • Analytics Data: 14 months maximum

Security Protocols

Encryption

All data transmission secured with TLS 1.3 encryption. Client data stored with AES-256 encryption.

Access Control

Role-based access with multi-factor authentication. Regular access reviews and privilege auditing.

Monitoring

24/7 system monitoring with automated threat detection. Incident response protocols activated within 1 hour.

User Rights & Controls

Data Subject Rights (GDPR)

  • Access: Request a copy of your processed data
  • Rectification: Correct inaccurate information
  • Erasure: Delete data when no longer needed
  • Portability: Export data in machine-readable format
  • Objection: Opt-out of processing for specific purposes

System Controls

  • • Cookie preferences via system access protocol
  • • Analytics module disable/enable toggles
  • • Communication preference management
  • • Data export request automation

External System Interfaces

Analytics Provider

Service: Google Analytics 4

Data Shared: Anonymized usage patterns, device info, geographic data

Purpose: Website performance optimization and user experience analysis

Privacy Policy: Google Privacy Policy

Hosting Infrastructure

Service: Vercel Edge Network

Data Processing: HTTP requests, performance metrics, error logs

Location: European Union data centers (GDPR compliant)

Security: SOC 2 Type II certified infrastructure

System Administrator Contact

Data Protection Officer

Name: Max van Anen

Email: privacy@maxzilla.nl

Response Time: 72 hours maximum

Legal Entity

Company: Maxzilla Consultancy

Location: Rucphen, Netherlands

Registration: Dutch Chamber of Commerce

Jurisdiction: European Union (GDPR)

Last Updated: September 2025 •Data Policy →