Privacy Statement

Last updated: March 11, 2026

1. Who we are

Connect the Blox is a blockchain analytics consultancy operated by Tijmen Smit, based in the Netherlands. We provide training, coaching, and consulting services in blockchain analytics. For questions about this privacy statement, contact us at tijmen@connecttheblox.com.

2. What data we collect

When you use our contact form, we collect the following personal data:

• Name and email address (required)
• Service interest, group size, industry, and message content (optional/contextual)
• Marketing consent status and timestamp
• IP address (for security and rate limiting purposes only)

3. Why we collect it (legal basis)

We process your personal data on the following legal bases under the GDPR:

• Consent (Art. 6(1)(a)): When you check the consent box and submit the contact form, you consent to receiving information about our services.
• Legitimate interest (Art. 6(1)(f)): We process your IP address for security purposes (rate limiting, spam prevention) to protect our service.

4. How we use your data

• To respond to your inquiry within one business day
• To send you a confirmation email acknowledging receipt of your message
• To provide information about our services when you have consented
• To protect our service from abuse (rate limiting, spam filtering)

5. Third-party processors

We use the following third-party services to process your data:

• Brevo (Sendinblue): Email delivery and contact management. Your name, email, and form data are stored in Brevo to manage communication. Brevo processes data within the EU. Brevo Privacy Policy.
• Netlify: Website hosting and serverless function execution. Netlify processes server logs including IP addresses. Netlify Privacy Policy.
• Cloudflare: CDN, security, and CAPTCHA verification (Turnstile). Cloudflare Privacy Policy.

6. Data retention

We retain your contact data for as long as necessary to fulfill the purpose for which it was collected, or until you request deletion. Contact form submissions and associated data are retained for a maximum of 2 years after last interaction, after which they are deleted.

7. Your rights

Under the GDPR, you have the right to:

• Access your personal data
• Rectify inaccurate personal data
• Erase your personal data ("right to be forgotten")
• Restrict processing of your personal data
• Data portability — receive your data in a structured format
• Object to processing based on legitimate interest
• Withdraw consent at any time without affecting the lawfulness of prior processing

To exercise any of these rights, email tijmen@connecttheblox.com. We will respond within 30 days.

8. Cookies and tracking

This website does not use cookies for analytics or tracking purposes. We do not use Google Analytics, Facebook Pixel, or any other tracking technology. Cloudflare Turnstile may set a functional cookie for CAPTCHA verification, which is strictly necessary for security.

9. Data security

We implement appropriate technical and organizational measures to protect your personal data, including HTTPS encryption, CORS protection, rate limiting, input validation, and content security policies.

10. Changes to this statement

We may update this privacy statement from time to time. Changes will be posted on this page with an updated "last updated" date. We encourage you to review this statement periodically.

11. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).