📄 Privacy Policy – BuyBuildExitPro (a brand of Sirrapa Group Holding B.V.)
Last updated: September 2025

Buy Build Exit Pro (a brand of Sirrapa Group Holding B.V.), located at De Praam 15, 1747 TK Utrecht, Netherlands, is responsible for processing your personal data as outlined in this Privacy Policy. We place great importance on the careful handling of personal data. We process and protect it in compliance with the General Data Protection Regulation ("GDPR"). This Privacy Policy applies to our website (https://buybuildexitpro.com), associated services, funnels, and products (including Exit Engine Blueprint™).

 
1. Contact and legal entity

  • Legal entity: Sirrapa Group Holding B.V.
  • Trade name / brand: BuyBuildExitPro
  • Address: De Praam 15, 1747 TK Utrecht, Netherlands
  • Data Protection Officer: Armand Parris
  • Email for privacy inquiries: [email protected]
  • Phone: +31 628 776 963

2. What personal data we collect

We collect personal data that you provide to us and data from your interactions, including:

  • First and last name
  • Email address and phone number
  • Company name and business information
  • IP address, browser type, device type
  • Data you actively provide via forms, intake forms, booking (e.g. via TidyCal)
  • Purchase history, payment & invoice details
  • Website usage, funnel behaviour, email interactions (opens, clicks) via tools like Systeme.io and analytics providers
  • Cookies (functional, analytical), device/browser metadata
     

    3. Purposes and legal bases for processing

We process your personal data:

  • To provide the services/products you have requested (contract)
  • To communicate with you about inquiries, bookings, orders
  • To process payments and fulfill legal obligations (e.g. tax, invoicing)
  • For legitimate interests: improving our website/funnel performance; marketing updates (if consented)
    Where required by law
     

    4. How long we keep your data

  • Client and invoicing data: 7 years (for legal / fiscal obligations)
  • Leads / prospects: up to 12 months after last contact
  • Email subscribers: stored unless unsubscribed; unsubscribed addresses suppressed
  • Website analytics & cookies: as per cookie policy; aggregated and anonymized where possible
     

    5. Security measures

We take appropriate technical and organizational measures, including but not limited to:

  • SSL encryption for websites and data transfer
  • Role-based access control
  • Secure storage and strong password policies
  • Two-factor authentication where possible
  • Regular audits and reviews of security practices

6. Sharing of data with third parties

We only share data when necessary, for example:

  • With service providers/funnel tools: Systeme.io, TidyCal, email marketing platform, hosting, analytics tools
  • With accountants, tax consultants for invoicing/fiscal compliance
  • With legal authorities if required by law

All external processors are bound by Data Processing Agreements (DPAs) to ensure the same level of data protection.

7. Your rights

You have rights under GDPR:

  • Right to access the personal data we hold about you
  • Right to correct inaccurate or incomplete data
  • Right to delete your data (“right to be forgotten”)
  • Right to object to processing or withdraw consent
  • Right to data portability
  • Right to lodge a complaint with the Dutch Data Protection Authority

To exercise any of these rights or make requests, contact us at [email protected]. We may require identity verification (e.g. redacted ID) to ensure requests are valid.

 8. International customers & cross-border transfers

  • We operate under Dutch law and GDPR, which applies to all individuals in the EU.
  • If you are outside the EU, your personal data may be transferred to or stored in countries where our service providers are based. Wherever possible, we ensure that transfers comply with applicable data protection laws (e.g. standard contractual clauses).
     

    9. Cookies & analytics

  • We use functional and analytical cookies.
  • Analytics tools (e.g. Google Analytics, Piwik, Systeme.io tracking) are used to understand visitor behaviour and optimise user experience.
  • On first visit, we request consent for non-essential cookies. You may manage cookies via your browser.
     

    10. Updates to this policy

We may update this Privacy Policy from time to time due to changes in law, services, or technology. Any significant changes will be communicated via website and email. The version shown will reflect the latest update (date above).

 
If you have any questions about how your personal data is handled, please contact:
Sirrapa Group Holding B.V.
Email: [email protected]

This website uses cookies