1. An overview of data protection
General
The following gives a simple overview of what happens to your personal information when you visit our website. Personal information is any data with which you could be personally identified. Detailed information on the subject of data protection can be found in our privacy policy found below.
Data collection on our website
Who is responsible for the data collection on this website?
The data collected on this website are processed by the website operator. The operator's contact details can be found in the website's required legal notice.
How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.
Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site.
What rights do you have regarding your data?
You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.
Analytics and third-party tools
When visiting our website, we may collect anonymous statistical data to improve our services. No third-party analytics services are currently in use.
2. General information and mandatory information
Data protection
The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy.
If you use this website, various pieces of personal data will be collected. Personal information is any data with which you could be personally identified. This privacy policy explains what information we collect and what we use it for. It also explains how and for what purpose this happens.
Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.
Notice concerning the party responsible for this website
The party responsible for processing data on this website is:
OnlineCommunityHub
Trading name of J.L.R. van Lent Holding B.V.
Varenmos 18
3994 KD Houten
Nederland
Telephone: +31 (0) 646220315
Email: info@onlinecommunityhub.nl
J.L.R. van Lent Holding B.V. is registered with the Dutch Chamber of Commerce (Kamer van Koophandel). The responsible party is the legal person who alone or jointly with others decides on the purposes and means of processing personal data.
Revocation of your consent to the processing of your data
Many data processing operations are only possible with your express consent. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
Right to file complaints with regulatory authorities
If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities: https://autoriteitpersoonsgegevens.nl/
Right to data portability
You have the right to have data which we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.
TLS encryption
This site uses TLS encryption (Formerly known as SSL) for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon is displayed in your browser's address bar.
If TLS encryption is activated, and you have checked that the certificate is ours, then the data you transfer to us cannot be read by third parties.
Encrypted payments on this website
If you enter into a contract which requires you to send us your payment information (e.g. account number for direct debits), we will require this data to process your payment.
Payment transactions using common means of payment (Visa/MasterCard, direct debit) are only made via encrypted SSL or TLS connections. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon in your browser line is visible.
In the case of encrypted communication, and you have checked that the certificate is ours, any payment details you submit to us cannot be read by third parties.
Information, blocking, deletion
As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected, blocked or deleted. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.
Opposition to promotional emails
We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.
3. Data collection on our website
Cookies
Some of our web pages use cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called "session cookies." They are automatically deleted after your visit. Other cookies remain in your device's memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.
You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.
Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use are stored pursuant to Art. 6 paragraph 1, letter f of GDPR. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyze your surfing behavior) are also stored, they will be treated separately in this privacy policy.
Server log files
The website provider automatically collects and stores information that your browser automatically transmits to us in "server log files". These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
These data will not be combined with data from other sources.
The basis for data processing is Art. 6 (1) (b) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.
Contact form
Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.
We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1)(a) GDPR. You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.
(Support) Forum
The Forum can be used to comment on blogs, start discussions, request new functionality or ask questions. Any personal information that you share on the forum that are not placed within the {confidential} tags will be availiable to the public. We will process any data you enter onto the forum only with your consent per Art. 6 (1)(a) GDPR.
We will retain the data you provide on the forum until you request its deletion or delete the data yourself, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.
Registration on this website
You can register on our website in order to access additional functions offered here. The input data will only be used for the purpose of using the respective site or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration.
To inform you about important changes such as those within the scope of our site or technical changes, we will use the email address specified during registration.
We will process the data provided during registration only based on your consent per Art. 6 (1)(a) GDPR. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will continue to store the data collected during registration for as long as you remain registered on our website. Statutory retention periods remain unaffected.
Processing of data (customer and contract data)
We collect, process, and use personal data only insofar as it is necessary to establish, or modify legal relationships with us. This is done based on Art. 6 (1) (b) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract. We collect, process and use your personal data when accessing our website (usage data) only to the extent required to enable you to access our service or to bill you for the same.
Collected customer data shall be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.
Data transmitted when entering into a contract with online service
We transmit personally identifiable data to third parties only to the extent required to fulfill the terms of your contract, for example, to companies entrusted to deliver goods to your location or banks entrusted to process your payments. Your data will not be transmitted for any other purpose unless you have given your explicit permission to do so. Your data will not be disclosed to third parties for advertising purposes without your explicit consent.
The basis for data processing is Art. 6 (1) (b) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.
Data transferred when signing up for services and digital content
We transmit personally identifiable data to third parties only to the extent required to fulfill the terms of your contract with us, for example, to banks entrusted to process your payments.
Your data will not be transmitted for any other purpose unless you have given your explicit permission to do so. Your data will not be disclosed to third parties for advertising purposes without your explicit consent.
The basis for data processing is Art. 6 (1) (b) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.
Download key security - server authorization
To protect download keys from unauthorized use, our website operates a server authorization system. When a new server or environment makes a download request using your download key for the first time, the following data is collected:
- The IP address of the requesting server
- The date and time of the request
- The download key used
You will be notified by email that a new server has attempted to use your download key. You can then approve or deny the request via your account. Until approved, the download request will not be fulfilled.
Once approved, the IP address is stored in association with your download key and account. Within your account ("My Accounts" → "My Devices (2FA)") you can at any time:
- View all IP addresses authorized for your download key
- Add a description to identify each server
- Add additional authorized servers manually
- Remove authorized servers
This data is processed on the basis of Art. 6 (1) (b) GDPR (performance of a contract - protecting the integrity of your license) and Art. 6 (1) (f) GDPR (legitimate interest - preventing unauthorized use of download keys and protecting the rights of other license holders).
IP addresses of authorized servers are retained for as long as your account exists or until you remove them. IP addresses of denied or pending requests are retained indefinitely. This is necessary to prevent repeated authorization requests from the same server, which would otherwise result in repeated email notifications to you.
4. Analytics and advertising
Newsletter analytics
The collected usage information of the (automated) newsletters sent out by our website is tracked anonymous. We use this information to improve our newsletter (content). Usage information can not be traced back to you.
5. Newsletter
Newsletter data
If you would like to receive our newsletter, we require your name and a valid email address as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive this newsletter. We store your IP address as technical measure to protect our service. No additional data is collected or is only collected on a voluntary basis. We only use this data to send the requested information and do not pass it on to third parties.
We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1) (a) GDPR. You can revoke consent to the storage of your data and email address as well as their use for sending the newsletter at any time, e.g. through the "unsubscribe" link in the newsletter. The data processed before we receive your request may still be legally processed.
The data provided when registering for the newsletter or on our website will be used to distribute the newsletter until you cancel your subscription when said data will be deleted. Data we have stored for other purposes (e.g. email addresses for the members area) remain unaffected.
Unsubscribing from a newsletter that is linked to a free subscription automatically terminates that free subscription and the services linked to that subscription.
6. Plugins and tools
Social Sharing buttons
Our website makes use of Social Sharing buttons. When displaying the buttons no information will be shared with the relevant Social Media platforms. When you choose to share a page via one of the buttons, the Social Media platform’s server will be informed on which page you are visiting (the page you are sharing). It is possible that the Social Media platform will add that information to to your personal profile with that Social Media platform. This is beyond our control.
Social Sharing is used to help make our website better findable and to help you share valuable content with your followers. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR.
YouTube
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited. If you're logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account. YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR. Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.
Vimeo
Our website uses plugins from Vimeo, which is operated by Vimeo. The operator of the pages is Vimeo, Inc., 555 West 18th Street, New York, New York 10011, USA. If you visit one of our pages featuring a Vimeo plugin, a connection to the Vimeo servers is established. Here the Vimeo server is informed about which of our pages you have visited. If you're logged in to your Vimeo account, Vimeo allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account. Vimeo is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR. Further information about handling user data, can be found in the data protection declaration of Vimeo under https://vimeo.com/privacy.
Prezi
Our website uses plugins from Prezi, which is operated by Prezi. The operator of the pages is Prezi Inc, Karen Tang, 450 Bryant Street, San Francisco, CA 94107, USA. If you visit one of our pages featuring a Prezi plugin, a connection to the Prezi servers is established. Here the Prezi server is informed about which of our pages you have visited. If you're logged in to your Prezi account, Prezi allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Prezi account. Prezi is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR. Further information about handling user data, can be found in the data protection declaration of Prezi under https://prezi.com/privacy-policy/.
7. Third-Party Websites
There are a number of places on our website or through our services where you may click on a link to access other websites that do not operate under this Privacy Policy. For example, if you click on an advertisement or a search result on our website, you may be taken to a website that we do not control. These third-party websites may independently solicit and collect information, including personal information, from you and, in some instances, provide us with information about your activities on those websites. We recommend that you consult the privacy statements of all third-party websites you visit by clicking on the "privacy" link typically located at the bottom of the webpage you are visiting.
8. Payment service providers
Mollie
Our website accepts payments via payment processor Mollie. The payment provider is Mollie B.V., Keizersgracht 313, 1016 EE Amsterdam, The Netherlands.
When you select a payment method processed by Mollie (such as iDEAL, credit card, Bancontact, or bank transfer), the payment data you provide will be supplied to Mollie based on Art. 6 (1) (b) GDPR (processing for contract purposes). Mollie processes this data to execute and verify your payment.
The current list of payment methods available via Mollie is shown at checkout. We do not store your full payment details on our servers; these are handled exclusively by Mollie.
You have the option to revoke your consent at any time with future effect. This does not affect the processing of data previously collected. For more information, please refer to Mollie's privacy policy at https://www.mollie.com/en/privacy.
PayPal
Our website accepts payments via PayPal. The provider of this service is PayPal (Europe) S.à.r.l & Cie, S.C.A. (22-24 Boulevard Royal, L-2449 Luxembourg.
If you select payment via PayPal, the payment data you provide will be supplied to PayPal based on Art. 6 (1) (a) (Consent) and Art. 6 (1) (b) GDPR (Processing for contract purposes). You have the option to revoke your consent at any time with future effect. It does not affect the processing of data previously collected.
Stripe
Our website accepts payments via Stripe. The payment provider is Stripe Payments Europe, Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, D02 H210, Ireland.
If you select payment via Stripe, the payment data you provide will be supplied to Stripe based on Art. 6 (1) (b) GDPR (processing for contract purposes). Stripe processes this data to execute and verify your payment and to comply with applicable legal obligations, including fraud prevention.
We do not store your full card details on our servers; these are handled exclusively by Stripe and are subject to PCI DSS compliance standards. Stripe may transfer data outside the European Economic Area. Stripe participates in the EU–US Data Privacy Framework, providing an adequate level of data protection.
You have the option to revoke your consent at any time with future effect. This does not affect the processing of data previously collected. For more information, please refer to Stripe's privacy policy at https://stripe.com/en-nl/privacy.
9. Software licenses, invoices and legal retention periods
License and subscription data
When you purchase a software extension or subscription, we collect and store the following data to manage your license and provide access to downloads and updates:
- Name and email address
- Billing address
- Subscription type, start date and expiry date
- Download keys linked to your license
- Download history
- Payment reference (not full payment details — see Section 8)
This data is processed on the basis of Art. 6 (1) (b) GDPR (performance of a contract). It is used solely to manage your subscription, verify your license entitlement, and provide you with access to software downloads and security updates.
Invoice and financial records
Invoices and associated financial records are subject to a statutory retention obligation under Dutch tax law (Wet op de omzetbelasting / Algemene wet inzake rijksbelastingen). We are required to retain these records for a period of seven (7) years from the end of the financial year in which the transaction took place. This obligation is based on Art. 6 (1) (c) GDPR (compliance with a legal obligation).
After expiry of the statutory retention period, invoice data is deleted.
Security update obligations under the EU Cyber Resilience Act
OnlineCommunityHub publishes software extensions that fall within the scope of the EU Cyber Resilience Act (Regulation 2024/2847). As manufacturer, we are required to provide security updates for our extensions for a minimum period of five years and, where applicable, to notify license holders of security-relevant releases.
For this purpose, we retain your email address and license information for the duration of the support period applicable to your extension, even if your subscription has expired. This processing is based on Art. 6 (1) (c) GDPR (compliance with a legal obligation) in conjunction with the obligations imposed by the CRA.
We will use this data exclusively to notify you of security updates. You will not receive commercial communications on this basis unless you have separately consented to our newsletter.
Further information about our security obligations and support periods can be found on our Security & vulnerability disclosure page.
10. Location of Data
Our website and database run on a Virtual Private Server (VPS) managed by Vultr. Vultr is operated by The Constant Company, LLC, 319 Clematis Street, Suite 900, West Palm Beach, FL 33401, USA.
The server is located in Amsterdam, The Netherlands, Europe. Your data is therefore stored within the European Economic Area (EEA).
Vultr is GDPR compliant through the Data Processing Agreement we have in place with them. Vultr Privacy Notice.
11. Changelog
We may periodically modify or amend this privacy statement.
When this happens we will change the date on the top of the page and keep a change log at the end of this page. We do not have the technical means to notify our clients about any changes. We recommend that you re-examine this statement periodically so that you are always updated on the way we process and protect your personal information.
- May 20th, 2026: Updated responsible party to reflect trading name structure (OnlineCommunityHub / J.L.R. van Lent Holding B.V.); revised Mollie section (removed outdated payment methods list); added Stripe as payment provider; added Section 9 on licence data retention, statutory 7-year invoice retention, and CRA security update obligations; removed Google Analytics, Google reCAPTCHA and Facebook Like box sections (no longer in use); added reference to Security & vulnerability disclosure page.
- June 6th, 2018: added Google reCAPTCHA
- June 5th, 2018: Initial version