Legal

Privacy statement

Numaga is a product of Replikate. We ask organisations to put AI into production with confidence — so it would be odd to be careless with data ourselves. In plain language, here is what personal data we process through this website and why.

Last updated: June 2026

1. Who is responsible?

The data controller is Replikate, Graafseweg 274, 6532 ZV Nijmegen, the Netherlands. Privacy questions or a request about your data? Email security@replikate.nl.

2. What data do we process?

Contact form. Your name, email address, optionally your organisation, and the content of your message.

Booking a demo or emailing us. If you book a demo or email us, we process your email address and whatever you share to handle your request.

Usage statistics. Aggregated, non-identifiable figures about website use.

Technical logs. Our hosting keeps standard security logs (such as IP address and timestamp) for availability and security.

3. Why, and on what legal basis?

To respond to your request and take (pre-)contractual steps — basis: performance of a contract or legitimate interest (Art. 6(1)(b) and (f) GDPR).

To keep the website secure, working and improving — basis: legitimate interest (Art. 6(1)(f) GDPR).

4. Cookies and analytics

We use no tracking or marketing cookies and build no profiles. For website statistics we use Plausible Analytics: privacy-friendly, cookieless and EU-hosted, with no cross-site tracking. That is why there is no cookie banner.

We only store your language choice locally in your browser (localStorage). That is purely functional and never leaves your device.

5. No external hitchhikers

This website loads fonts, scripts and images from our own servers — not from external CDNs. That way no visitor data leaks to third parties. The only external service is the cookieless analytics above.

If you book a demo via the button, you go to Google Appointment Scheduling; Google’s privacy policy applies to making that appointment.

6. Who do we share data with?

We never sell your data. We only engage processors needed to deliver the service (such as our Dutch hosting provider and the analytics service) and sign data processing agreements with them. Data stays within the EU.

7. How long do we keep it?

No longer than necessary. We keep contact details for at most 24 months after the last contact, unless a customer relationship develops or the law requires longer.

8. How do we secure it?

Replikate works to ISO 27001 and takes appropriate technical and organisational measures. The infrastructure is sovereign and hosted in the Netherlands.

9. Your rights

You have the right to access, rectification, erasure, restriction, objection and data portability. Send your request to security@replikate.nl. If we cannot resolve it together, you can lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

10. Changes

We may update this statement. The current version is always on this page.