Privacy Policy
Terms and conditions -->

Privacy Policy

Ionite is responsible for the processing of personal information on ion-AP, and its associated website and services, as described in this privacy statement.

Contact details

Ionite B.V.

Hogeweg 74
3814CG Amersfoort

Personal data we process

Ionite processes your data when you use our services and/or when you provide them to us yourself.

For public access, the ion-AP website logs requests made to the system, which includes:

  • IP address of the client
  • Information about your activities on our website

For accounts, ion-AP also processes:

  • Email address
  • Business details about the account, such as the organization’s address and registration number(s)

Furthermore, in order to provide the access point service, ion-AP needs to process any business document that is sent or received by ion-AP’s users.

Business document contents contain data such as:

  • Organization name
  • KvK, OIN number, or other ICD identifier
  • Business card information, as provided by the service provider o Trading entity name o Trading entity address o Trading entity website o Trading entity contact information

ion-AP only processes these documents in order to provide the access point services, and to comply to legal requirements and requirements from Peppol and the Peppol Authorities.

Purpose and statutory basis of the processing

Ionite processes your personal data for the following goals:

  • To provide the ion-AP service, i.e. to send and receive business documents.
  • To monitor and improve the operation of our website and services
  • To inform you about changes in ion-AP, if you have an account.

Automated decision making

Ionite does not make decisions based on automated processing that may have (significant) consequences for persons. These are decisions that are made by computer programs or systems, without involving a human (such as an employee of Ionite).

Data retention

Ionite does not keep your personal data any longer than is necessary to achieve the goals the data is collected for. We maintain the following data retention terms:

  • Account details (e-mail, name, company name) are removed when the account is removed
  • Logs (IP-address, website use) are kept for 1 year
  • Sent and Received documents are immediately removed if the user deletes them, and otherwise kept for a maximum of 2 years.

Data sharing

Ionite does not sell data processed for this service to third parties, and only provides the data to third parties when this is necessary to fullfil our obligations or to comply to relevant laws. Ionite enters into data processing agreements with organisations that process personal data in order to provide Ionite services and websites. Ionite remains responsible for the processing of that data.

Cookies or similar techniques we use

ion-AP only uses technical and functional cookies, and analytical cookies that do not invade your privacy. A cookie is a small text file that is stored on your computer when you visit our website. The cookies we use are necessary for the technical operation and ease of use of our website. You can disable cookies by configuring your browser so that cookies are no longer stored. You can also remove all stored cookies through the settings of your browser.

Request, change, or remove data

You have the right to see, correct, or remove your personal data. Additionally, you have the right to withdraw your consent to the processing of personal data, or to object to the processing of your personal data by Ionite, and you have the right to data portability. This means that you may submit a request to send the personal data we have at our disposal in a computer file to you, or an organisation specified by you. You can send a request for viewing, correction, removal, or to withdraw consent on the basis of objection to the processing of your data to To make sure that you are the one submitting the request, we ask you to send a copy of an identity document along with the request. Make sure that in this copy any photo, MRZ (machine readable zone), passport number and BSN are blanked out, to protect your privacy. We shall respond as soon as possible, but no later than 4 weeks after submission of the request. Ionite would also like to note that you have the option to file a complaint to the national Data Protection Authority, The Autoriteit Persoonsgegevens. You can do so at the following website:

Data security

Ionite takes the protection of data seriously and takes the appropriate steps to prevent abuse, loss, unauthorized access and inappropriate modifications. If you think that your data is not secured appropriately, or if you have an indication that your data is misused, please contact us at