Privacy Policy

Last updated: 15/05/2026

Triple Bio BV (“we”, “us” or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use and protect personal data when you visit our website, contact us, or interact with us in a professional context.

Triple Bio BV is based in the Netherlands and processes personal data in accordance with the General Data Protection Regulation (GDPR), also known in Dutch as the AVG. Under the GDPR, organisations must have a valid reason for processing personal data, explain clearly how that data is used, and keep it no longer than necessary.

1. Who we are

Triple Bio BV
info@triple.bio
Langegracht 70
2312 NV Leiden
The Netherlands

Triple Bio BV is the data controller for the personal data described in this Privacy Policy.

2. What personal data we collect

We may collect and process the following personal data:

  • name;
  • email address;
  • company name;
  • job title;
  • phone number, if you provide it;
  • any information you choose to include when contacting us;
  • basic technical information about your visit to our website, such as IP address, browser type, device information and pages visited.

We do not intentionally collect special categories of personal data, such as health data, political views, religious beliefs or similar sensitive information.

3. How we collect personal data

We collect personal data when you:

  • contact us by email or through a contact form;
  • subscribe to updates, if this option is available;
  • interact with us as a potential partner, investor, supplier, adviser or stakeholder;
  • visit our website.

Some technical data may be collected automatically through cookies or similar technologies. Please see section 8 below.

4. Why we use your personal data

We may use your personal data to:

  • respond to your enquiries;
  • manage professional relationships;
  • share relevant updates about Triple Bio BV, where appropriate;
  • operate and improve our website;
  • comply with legal and administrative obligations;
  • protect our rights, systems and business.

Under the GDPR, personal data may only be processed when there is a valid legal basis, such as consent, contractual necessity, legal obligation or legitimate interest.

For Triple Bio BV, the relevant legal bases are usually:

  • your consent, for example if you sign up to receive updates;
  • our legitimate interest in communicating with professional contacts and operating our business;
  • compliance with a legal obligation, where applicable.

5. How long we keep your data

We keep personal data only for as long as necessary for the purpose for which it was collected, unless a longer retention period is required by law. The GDPR does not set one fixed retention period, but organisations must not keep personal data longer than necessary.

For example:

  • contact enquiries may be kept for as long as needed to respond and manage the relationship;
  • business records may be kept for the period required under Dutch law;
  • marketing or update preferences are kept until you unsubscribe or withdraw consent.

6. Who we share your data with

We may share personal data with trusted service providers who help us operate our website, manage communications, host data, or provide professional services.

Where these providers process personal data on our behalf, we take appropriate steps to ensure they protect it securely and only use it according to our instructions. Dutch guidance notes that companies should have data processing agreements with parties that process personal data for them.

We do not sell your personal data.

7. International transfers

Some of our service providers may process data outside the European Economic Area. Where this happens, we take steps to ensure that appropriate safeguards are in place, in line with GDPR requirements.

8. Cookies and website analytics

Our website may use cookies or similar technologies to make the site work properly, understand how visitors use it, and improve performance.

Where required, we will ask for your consent before placing non-essential cookies, such as analytics or marketing cookies. Cookie compliance in the Netherlands is connected to both GDPR and Dutch telecommunications rules.

You can usually adjust cookie settings through your browser.

9. How we protect your data

We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or disclosure.

However, no website or digital system can be guaranteed to be completely secure.

10. Your rights

Under the GDPR, you have rights over your personal data. These may include the right to:

  • access the personal data we hold about you;
  • correct inaccurate or incomplete data;
  • request deletion of your data;
  • object to certain types of processing;
  • restrict how we use your data;
  • withdraw consent where processing is based on consent;
  • request a copy of your data in a portable format.

The Dutch Data Protection Authority, Autoriteit Persoonsgegevens, explains that individuals have privacy rights under the GDPR, including rights to access, rectification and deletion.

To exercise your rights, please contact us at:

[privacy email address]

11. Complaints

If you have concerns about how we handle your personal data, please contact us first so we can try to resolve the issue.

You also have the right to lodge a complaint with the Dutch Data Protection Authority, the Autoriteit Persoonsgegevens.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.