1. Introduction
This Privacy Statement explains how SkyNRG B.V. (“SkyNRG”, “we”, “us”, “our”) collects, uses and protects your personal data when you visit our website at https://skynrg.com and related sites, communicate with us, or interact with our marketing and commercial activities. We are committed to handling your personal data responsibly and in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable national data protection legislation.
2. What Personal Data We Collect
We collect and process the following categories of personal data depending on how you interact with us.
| CATEGORY | EXAMPLES | SOURCE |
|---|---|---|
| Identity data | First name, last name, job title | Provided by you or collected via our CRM |
| Contact data | Email address, company name | Provided by you or collected via our CRM |
| Technical data | IP address (anonymized for analytics), browser type, device information | Collected automatically via our website |
| Usage data | Pages visited, time spent on site, click behavior | Collected automatically via cookies and analytics tools, with your consent |
| Marketing data | Communication preferences, consent records (including newsletter opt-in), event sign-ups | Provided by you |
| Commercial relationship data | Company name, correspondence records, meeting notes, account history | Collected in the course of our business relationship |
| Cookie consent data | Consent timestamp, preferences selected, consent ID | Recorded automatically by Cookiebot when you respond to our cookie banner |
We do not knowingly collect sensitive personal data (special categories under Article 9 of the GDPR) through our website or commercial activities. If this changes we will update this statement accordingly.
3. How and Why We Use Your Personal Data
We process your personal data only where we have a lawful basis to do so. The table below sets out our processing activities; their purpose and the legal basis we rely on. Newsletter communications and other marketing outreach are listed separately to reflect that they operate under distinct legal bases and consent frameworks.
| PURPOSE | DATA USED | LEGAL BASIS |
|---|---|---|
| OPERATING AND IMPROVING OUR WEBSITE | Technical and usage data | Legitimate interests |
| WEBSITE CONTACT / ENQUIRY FROM SUBMISSIONS | Name, email, phone, company name, message content | Legitimate interests |
| NEWSLETTER SUBSCRIPTION AND DISTRIBUTION | Name (optional), email address | Consent |
| OTHER MARKETING COMMUNICATION TO EXISTING CONTACTS AND LEADS (VIA HUBSPOT) | Name, email, company, interaction history | Legitimate interests or contract performance |
| COLD OUTREACH TO NEW B2B PROSPECTS (VIA HUBSPOT) | Name, email, company, job title (professional sources) | Legitimate interests |
| MANAGING COMMERCIAL RELATIONSHIPS AND BUSINESS DEVELOPMENT | Identity, contact and commercial relationship data | Legitimate interests or contract performance |
| RESPONDING TO ENQUIRIES AND COMMUNICATIONS | Identity and contact data | Legitimate interests or contract performance |
| STORING AND MANAGING B2B CONTACT RECORDS IN OUR CRM (HUBSPOT) | Identity and contact data | Legitimate interests or contract performance |
| LOGGING AND MANAGING COMMERCIAL EMAIL COMMUNICATIONS | Contact and commercial relationship data | Legitimate interests |
| LINKEDIN INSIGHTS TAG (AD MEASUREMENT AND RETARGETING) | Page visits, LinkedIn member data (if logged in) | Consent |
| RECORDING AND MANAGING COOKIE CONSENT (COOKIEBOT) | Consent record, timestamp, preferences | Legal obligation |
| ENRICHING CONTACT RECORDS USING AUTOMATED TOOLS | Identity and contact data (professional / firmographic) | Legitimate interests or contract performance |
| ANALYTICS AND WEBSITE OPTIMISATION | Anonymized IP, browser/device, behavior data | Consent |
| COMPLIANCE WITH LEGAL OBLIGATIONS | As required by applicable law | Legal obligation |
Where we rely on legitimate interests as our legal basis, we have assessed that our interests are not overridden by your rights and interests. You have the right to object to processing based on legitimate interests at any time (see section 7).
Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
4. Newsletter Communication
Our newsletter is managed separately from other marketing communications and has its own sign-up and opt-out process.
| Signing up | You can subscribe to our newsletter by ticking an opt-in checkbox on our website forms. We do not use pre-ticked boxes, and subscribing is never a condition of submitting an enquiry or other form, the two are entirely independent. You can subscribe to our newsletter by ticking an opt-in checkbox on our website forms. We do not use pre-ticked boxes, and subscribing is never a condition of submitting an enquiry or other form, the two are entirely independent. We also recommend a double opt-in process, meaning you will receive a confirmation email before being added to the mailing list. This gives you an additional step to confirm your subscription. |
| What you will receive | Subscribers receive company updates, product and service news, and relevant industry content. Emails are sent via HubSpot and may include open and click tracking. |
| Unsubscribing | You can unsubscribe at any time by clicking the unsubscribe link in any newsletter email. Once unsubscribed, your email address is added to a suppression list to ensure you are not accidentally re-added. Your address is retained on that list but will no longer be used for marketing purposes. Please note that withdrawing your consent does not affect the lawfulness of any processing carried out before you unsubscribed. |
Newsletter consent is separate from other marketing activity. If you are an existing contact or lead, you may receive other communications from us based on legitimate interest or contractual necessity, these are independent of your newsletter subscription and managed separately.
5. Our CRM and Commercial Data Practices
We use HubSpot as our CRM platform to manage commercial contacts, business development, and marketing activity beyond the newsletter. These communications are separate from the newsletter and may be sent on a different legal basis.
| Existing clients and active leads | If you are an existing client or active lead, we may contact you about relevant services, proposals, or updates connected to our business relationship. The information we hold may include your name, job title, company, email address, phone number, and a record of communications. We rely on legitimate interest or contract performance as our legal basis for this activity. Commercial email communications may be logged in HubSpot as part of our account management. |
| Prospecting and cold outreach | We may contact professionals at organizations we believe could benefit from SkyNRG’s services. We use only professional contact details such as business email addresses, and we rely on legitimate interest (for this activity. A Legitimate Interest Assessment is maintained internally to document our basis for doing so. |
| Data enrichment | We may use automated tools to supplement contact records with additional professional or company information relevant to our business relationship. Enrichment is limited to professional and firmographic data and is carried out on the basis of legitimate interest. |
| Your right to object | You can object to any of the above at any time. To unsubscribe from the newsletter, use the unsubscribe link in any email. To opt out of CRM-based outreach, reply to any email or contact us at privacy@skynrg.com, we will action your request within 30 days and update your record accordingly. Where you object to direct marketing specifically, we will stop that processing immediately. |
6. Data Retention
We do not keep your personal data for longer than is necessary for the purposes described in this statement. Our standard retention periods are as follows.
| Data category | Retention period |
|---|---|
| Website visitor and analytics data | Data will be anonymized or deleted upon request. Where no explicit preference is indicated, the data will automatically be anonymized. |
| Website enquiry form submissions | Duration of follow-up plus 2 years, or as required for a contractual relationship |
| Newsletter subscribers | Until opt out; suppression list retained indefinitely to honor opt-out |
| CRM – Existing B2B contacts and clients | Data will be anonymized or deleted upon request. Where no explicit preference is indicated, the data will automatically be anonymized. |
| CRM – Cold outreach prospects | Reviewed every 12 months; deleted if no engagement or business relationship has developed |
| Cookie consent records | Duration of the consented relationship plus 3 years (accountability obligation) |
| Email and communication logs | 2 years from the date of the communication |
| Legal and compliance records | As required by applicable law |
When data is no longer required we will delete or anonymize it securely. Where deletion is not immediately possible, for example due to backup systems, we will isolate the data and prevent further processing until deletion is possible.
7. Your Rights
Under the GDPR you have the following rights in relation to your personal data. You can exercise any of these rights by contacting us using the details in section 9. We will respond within one calendar month of receiving your request. We may need to verify your identity before processing your request.
- Right of access: you can request a copy of the personal data we hold about you.
- Right to rectification: you can ask us to correct any inaccurate or incomplete data we hold about you.
- Right to erasure: you can ask us to delete your personal data where there is no longer a lawful basis for us to hold it.
- Right to restrict processing: you can ask us to restrict how we use your data in certain circumstances.
- Right to data portability: you can request that we provide your data in a structured, commonly used and machine-readable format.
- Right to object: you can object to processing based on legitimate interests or for direct marketing purposes. Where you object to direct marketing we will stop processing immediately. Where you object to other legitimate interests processing we will assess your objection and respond accordingly.
- Right to withdraw consent: where processing is based on consent you may withdraw it at any time without affecting prior processing.
If you are not satisfied with our response you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at www.autoriteitpersoonsgegevens.nl or with the supervisory authority in your country of residence.
8. Cookies
Cookies are small text files placed on your device when you visit our website. We also use similar tracking technologies to help us operate and improve our website and understand how visitors use it.
We use Cookiebot by Usercentrics to manage cookie consent. Non-essential cookies are only placed once you have actively consented via the cookie banner. Strictly necessary cookies do not require consent and are always active.
Categories of cookies we use
- Necessary — required for the website to function and cannot be switched off. No consent is required for these.
- Preference — allow the website to remember your settings and choices, such as language or region.
- Statistics & analytics (Google Analytics 4) — collect anonymized data about how visitors interact with our site. IP addresses are anonymized before storage. These are only placed with your consent.
- Marketing & tracking (LinkedIn Insight Tag) — used to measure campaign performance and enable retargeting on LinkedIn. Information may be shared with LinkedIn, who may combine it with other data they hold. These are only placed with your consent.
- Unclassified — cookies not yet fully categorized. We are working with our providers to classify these and will update our Cookie Declaration as this is completed.
You can review or update your cookie preferences at any time via the cookie settings link in the footer of our website, or by adjusting your browser settings directly. Our full Cookie Declaration is maintained and updated automatically by Cookiebot and is available on our website.
If you need to contact us about your consent, please include your consent ID and the date of consent, both of which are available in the Cookie Declaration.
9. Sharing Your Data with Third Parties
We do not sell your personal data. We may share data with trusted third-party service providers who act as data processors on our behalf.
| Third Party | Role | Purpose | Data Shared |
|---|---|---|---|
| HubSpot Inc. | Data processor | CRM, email marketing, contact management, form processing | Name, email, phone, company, interaction history |
| Google LLC (GA4) / Google Ads | Data processor | Website analytics and usage statistics | Anonymized IP, device/browser, behavior data |
| LinkedIn Ireland Unlimited Co. | Independent controller / processor | Insight Tag: ad measurement, retargeting | Page visits, LinkedIn member data (if logged in) |
| Cookiebot / Cybot A/S | Data processor | Cookie consent management and logging | Consent record, timestamp, hashed IP |
| Hostinger / WordPress | Data processor | Website hosting and server infrastructure | All data processed on the website |
Where we transfer data outside the European Economic Area we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.
We do not share your data with third parties for their own marketing purposes without your explicit consent.
10. Security
We take appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, destruction, or alteration. These measures include:
- SSL/TLS encryption of data in transit across our website
- Access controls and role-based permissions within HubSpot and other platforms we use
- Pseudonymization and anonymization where appropriate, including IP anonymization via Google Analytics 4
- Consent management via Cookiebot, ensuring no third-party tracking scripts are activated before you have given consent
- Regular review of the security practices of our third-party processors
- Staff training on data protection obligations
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Autoriteit Persoonsgegevens and, where required, affected individuals, in accordance with our legal obligations under the GDPR.
11. Third Party Websites
Our website may contain links to third party websites. This Privacy Statement does not apply to those websites, and we are not responsible for their privacy practices. We encourage you to read the privacy statements of any third-party websites you visit.
12. Changes to This Statement
We may update this Privacy Statement from time to time to reflect changes in our practices or applicable law. The current version will always be available on our website. Where changes are material, we will take reasonable steps to notify you.
13. Contact Us
If you have any questions about this Privacy Statement or wish to exercise your rights, please contact us at: privacy@skynrg.com
This Privacy Policy was last revised and updated on 10-06-2026.