Privacy Policy

Last Updated: December 18, 2025

Effective Date: December 1, 2025

At Northstar, we take your privacy seriously. This Privacy Policy explains how we collect, use, protect, and handle your personal information when you visit our website or use our services. We are committed to transparency and protecting your data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) for European users.

Information We Collect

Personal Information You Provide

We collect information that you voluntarily provide to us when you interact with our services. This includes information you submit through contact forms, service inquiries, or when requesting information about our arcade game development services.

Contact Form Data:

  • • Your name and professional title
  • • Email address for correspondence
  • • Subject matter and inquiry details
  • • Message content and project information
  • • Service preferences and requirements

Automatically Collected Information

When you visit our website, certain technical information is automatically collected to help us understand how our site is being used and to improve your experience.

Technical Data:

  • • IP address and approximate geographic location
  • • Browser type, version, and language settings
  • • Device information including operating system
  • • Pages visited, time spent, and navigation patterns
  • • Referring website and search terms used
  • • Date and time of access to our services

Cookies and Tracking Technologies

We use cookies and similar technologies to collect information about your browsing activities. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

How We Use Your Information

We process your personal data only for specific, legitimate purposes and in compliance with applicable data protection laws. The legal basis for processing varies depending on the purpose.

Service Delivery and Communication

We use your contact information to respond to your inquiries, provide requested services, and communicate about ongoing projects. This includes sending project updates, technical documentation, and service-related notifications.

Legal Basis: Contractual necessity and legitimate business interest

Website Improvement and Analytics

We analyze how visitors use our website to improve functionality, user experience, and content relevance. This helps us understand which services are most valuable to our clients and optimize our offerings accordingly.

Legal Basis: Legitimate business interest (with your consent for non-essential cookies)

Marketing Communications

With your explicit consent, we may send you information about our services, industry insights, and updates relevant to arcade game development in European markets. You can opt out of marketing communications at any time.

Legal Basis: Your explicit consent (opt-in)

Legal Compliance and Protection

We may process your data to comply with legal obligations, enforce our terms and conditions, protect our rights and property, and prevent fraud or abuse of our services.

Legal Basis: Legal obligation and legitimate business interest

Data Sharing and Third Parties

We do not sell your personal information to third parties. We share your data only in specific circumstances and with trusted partners who help us operate our business and serve you better.

Service Providers

We work with carefully selected service providers who assist with website hosting, email communications, analytics, and other technical services. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

Analytics Partners

We use analytics services to understand website usage patterns. These services may collect data about your browsing activities across multiple websites. You can control analytics cookies through our cookie preferences.

Legal Requirements

We may disclose your information when required by law, court order, or governmental request, or when necessary to protect our rights, prevent fraud, or ensure safety.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the acquiring entity. We will notify you of any such change and the choices you may have regarding your data.

Data Security and Protection

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction.

Technical Safeguards

  • • Encrypted data transmission (SSL/TLS)
  • • Secure server infrastructure
  • • Regular security updates and patches
  • • Firewall and intrusion detection systems

Administrative Safeguards

  • • Strict access controls and authentication
  • • Employee confidentiality agreements
  • • Regular security training and awareness
  • • Incident response procedures

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to promptly addressing any security incidents that may occur.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

Retention Periods:

  • Contact form inquiries: Retained for 24 months after last communication or until you request deletion
  • Project-related data: Retained for the duration of the project plus 3 years for legal and warranty purposes
  • Marketing communications: Retained until you unsubscribe or withdraw consent
  • Analytics data: Typically anonymized after 14 months in accordance with analytics service policies
  • Legal and compliance records: Retained for periods required by applicable law (typically 7 years)

After the retention period expires, we securely delete or anonymize your personal data. If you request deletion of your data before the retention period expires, we will comply unless we have a legal obligation to retain it.

Your Privacy Rights

Under the GDPR and other applicable data protection laws, you have several rights regarding your personal information. We are committed to facilitating the exercise of these rights.

Right to Access

You have the right to request a copy of the personal data we hold about you. We will provide this information in a structured, commonly used, and machine-readable format within one month of your request.

Right to Rectification

If your personal information is inaccurate or incomplete, you have the right to request that we correct or update it. We will make the necessary changes promptly.

Right to Erasure

You may request deletion of your personal data under certain circumstances, such as when it is no longer necessary for the purposes collected, or when you withdraw consent. We will comply unless we have a legal obligation to retain the data.

Right to Restrict Processing

You can request that we restrict how we process your personal data in certain situations, such as while we verify the accuracy of the data or assess whether you have legitimate grounds for erasure.

Right to Data Portability

You have the right to receive your personal data in a portable format and to request that we transfer it directly to another service provider where technically feasible.

Right to Object

You may object to the processing of your personal data for certain purposes, including direct marketing. We will stop processing your data for those purposes unless we have compelling legitimate grounds to continue.

Right to Withdraw Consent

Where we rely on your consent to process personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

How to Exercise Your Rights

To exercise any of these rights, please contact us through our contact page. We will respond to your request within one month. If your request is complex or we receive multiple requests from you, we may extend this period by two additional months, and we will inform you of any such extension.

You also have the right to lodge a complaint with your local data protection authority if you believe we have not handled your personal data in accordance with applicable law.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may take the following actions:

  • Avoid filling out contact forms, account registrations, or any data-submitting features
  • Disable cookies through your browser settings (see our Cookie Policy for more details)
  • Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided on our Contact page. We will process your request promptly and in accordance with applicable data protection laws.

International Data Transfers

Northstar operates primarily within the European Economic Area (EEA). If we transfer your personal data outside the EEA, we ensure appropriate safeguards are in place to protect your information in accordance with GDPR requirements.

Safeguards for International Transfers:

  • • Standard Contractual Clauses approved by the European Commission
  • • Adequacy decisions recognizing equivalent data protection standards
  • • Binding Corporate Rules for transfers within multinational organizations
  • • Your explicit consent for specific transfers where appropriate

Children's Privacy

Our services are not directed to individuals under the age of 16, and we do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately. We will take steps to delete such information from our systems.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make significant changes, we will update the "Last Updated" date at the top of this page and may provide additional notice through our website or email.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our website after any changes indicates your acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy, want to exercise your data rights, or have concerns about how we handle your personal information, please contact us:

General Inquiries

Visit our contact page to submit your privacy-related questions or requests.

Data Protection Officer

For specific data protection matters, you can reach our Data Protection Officer through the contact form with the subject line "Data Protection Inquiry".

Northstar
Keizersgracht 424
1016 GC Amsterdam
Netherlands