Privacy Policy

Privacy Policy

Last updated: 18 May 2026

1. Controller

The controller responsible for the processing of personal data described in this Privacy Policy is Verbeke Louis, acting as a Belgian sole proprietorship (student-onderneming), enterprise number (KBO/CBE) 1037.679.373, registered at Holeindestraat 21, 9270 Laarne, Belgium, VAT number in application ("we", "us", "our"). For any privacy request, contact us through the contact form on readyaiact.com or at the email address used for our official correspondence.

This policy explains how we process personal data when you visit readyaiact.com (the "Website") or purchase our digital template products. We process personal data in accordance with Regulation (EU) 2016/679 (GDPR) and applicable Belgian law.

2. Personal data we process

  • Order and account data: name, email address, billing address, country, and VAT or company number where provided.
  • Payment data: payment is processed by Shopify and its payment processors. We receive confirmation of payment and limited transaction details; we do not store full payment card numbers.
  • Communication data: the content of messages you send us through the contact form or by email.
  • Technical and usage data: IP address, browser type and device information, pages visited, and similar information collected through cookies and similar technologies, including for security and basic analytics.

3. Purposes and legal bases

  • Performing the contract (Article 6(1)(b) GDPR): processing and delivering orders, providing the digital products, customer support, and sending transactional emails.
  • Legal obligations (Article 6(1)(c) GDPR): keeping accounting and tax records and complying with applicable law.
  • Legitimate interests (Article 6(1)(f) GDPR): securing the Website, preventing fraud and abuse, and improving our offering through limited analytics; you may object as described in Section 7.
  • Consent (Article 6(1)(a) GDPR): sending marketing or waitlist emails where you have opted in, and non-essential cookies where required. You may withdraw consent at any time.

4. Recipients and processors

We share personal data only with service providers acting on our instructions as processors, or where required by law:

  • Shopify International Ltd. (and Shopify, Inc.) — hosting of the Website and store, order processing, and payment facilitation.
  • Payment processors engaged through Shopify Payments to process transactions.
  • Email delivery used to send transactional and, where applicable, opt-in emails.
  • Analytics limited to measuring Website usage, where applicable.

We do not sell personal data.

5. International transfers

Some providers, including Shopify, may process personal data outside the European Economic Area. Where this occurs, the transfer is governed by appropriate safeguards, in particular the European Commission's Standard Contractual Clauses (SCCs) and, where applicable, additional technical and organisational measures, in accordance with Chapter V GDPR.

6. Retention

  • Order, invoicing, and accounting data: retained for the legally required period, which under Belgian law is up to 7 years for accounting and tax records.
  • Contact and support messages: retained for as long as needed to handle your request and a reasonable period thereafter.
  • Marketing/waitlist data: retained until you withdraw consent or unsubscribe.
  • Technical/usage data: retained for a limited period for security and analytics purposes.

7. Your rights

Subject to the conditions of the GDPR, you have the right to: access your personal data; rectify inaccurate data; request erasure; restrict processing; object to processing based on legitimate interests or to direct marketing; and data portability. Where processing is based on consent, you may withdraw consent at any time without affecting prior lawful processing.

To exercise your rights, contact us through the contact form on the Website. You also have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit / Autorité de protection des données), Drukpersstraat 35, 1000 Brussels, contact@apd-gba.be, www.gegevensbeschermingsautoriteit.be.

8. Cookies

The Website uses strictly necessary cookies to operate the store and cart, and may use functional or analytics cookies. Where required, non-essential cookies are used only with your consent, which you can manage or withdraw via your browser settings or any cookie controls provided on the Website.

9. Security

We and our processors apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or misuse. No method of transmission or storage is fully secure, and we cannot guarantee absolute security.

10. Changes

We may update this Privacy Policy from time to time. The version published on the Website is the version in force. Material changes will be reflected by updating the "Last updated" date above.