MICHAELDDEV

Privacy policy

FULL privacy Policy

Last Updated:

22 January 2026

Always consult all Terms & Conditions Policy, Privacy Policy and/or my Cookies Policy .

Trader Identification (Imprint / Legal Notice)

  1. Trader Identification (Imprint / Legal Notice)

  • Legal name: Micle Michael (sole proprietor)

  • Trade name: michaelddev (currently NOT a registered trademark)

  • Registered address (visits by prior written consent only): 55 Rollegemstraat, 8880 Ledegem, West Flanders, Belgium

  • KBO/CBE/Enterprise Number: 1024504003

  • Email (all matters): support@michaelddev.com

  • Phone (basic rate; no premium): +32 494 62 47 94

  • Place of establishment: Belgium

  • Service scope: Worldwide (Belgian law applies; see Section 28 on consumer mandatory protections)

  • Tax note: I operate under the Belgian small business exemption (Kleineondernemingsregeling / franchise de la taxe). No VAT is charged at present; if my status changes, VAT will be added as required by law.

  • Brand note:michaelddev “ is my chosen trade/website name; ( michael + developer ) it is NOT YET a registered or copyrighted trademark.

  • Audience: This online checkout is for consumers (B2C) only.

  • B2B Clients: Please DO NOT purchase online — email support@michaelddev.com for tailored business terms.

    By using this website and/or purchasing any service, you (“Client”, “you”, “your”) agree to these general website terms & conditions.

    Any other terms & conditions presented upon purchase will overall reflect with the terms & conditions presented below aswell as with all your general rights imposed by law, but, may differ or have more details for specific products and/or services. In order to NOT overpopulate these terms & conditions and to have a lasting impact on the user I decided to provide personalized terms & conditions for all services and digital products that I sell. The terms & conditions presented upon the purchase of a service/product in question and will prevail over these terms.It is therefore recommended to refer to the terms & conditions presented upon purchase on website and through email, more information below)

Privacy Policy

— michaelddev

(Micle Michael)

Who is the data controller?

Controller: Micle Michael, sole proprietor, trading as michaelddev
Address: 55 Rollegemstraat, 8880 Ledegem, West Flanders, Belgium
KBO/CBE: 1024504003
Email (all matters): support@michaelddev.com
Phone: +32 494 62 47 94 (basic rate; no premium)

This Privacy Policy explains how I collect and use personal data when you browse my website (michaelddev.com, michaelddev.eu), book consultations, buy digital content (reports, templates, tutorials), purchase NFTs, request security assessments, or otherwise interact with me.

What data I collect

Data you give me

  • Identity & contact: name, email, phone, billing country/address (if provided).

  • Booking & order details: chosen service, timeslot, price, purchase history.

  • Project material: descriptions, URLs, code snippets, contract addresses, wallets you share, screenshots, documents you upload.

  • Communications: emails, messages, call notes; (recordings only if you explicitly consent).

  • Marketing opt-ins: newsletter/tips preferences.

  • Withdrawal/consent records: the exact text you agreed to (e.g., digital-content waiver), date/time, IP.

Data collected automatically

  • Technical logs: IP address, device/browser info, pages viewed, time on page, referrer (through my host/analytics).

  • Cookie/SDK identifiers: per your choices in the Cookie Policy and banner.

  • Transaction evidence for NFTs/digital delivery: wallet address you provided/confirmed; blockchain transaction hashes for delivery proof.

Data from others / public sources

  • Third party payment processors may store payment related information, not directly me (status/metadata; AML/KYC, etc).

  • Scheduling/video/tools (meeting metadata).

  • Public OSINT & on-chain data used in desk-based security/risk assessments (block explorers, WHOIS, code repos, public posts).

I do not handle or interact with special-category data (e.g., health, beliefs) or other fragile information. Please avoid sending it.

Why I process data?

purposes & legal bases

Purpose Examples Legal basis (GDPR) but not limited to: Provide services / fulfill contracts ,scheduling, delivering consultations; preparing reports/roadmaps; providing tutorial access; minting/transferring NFTs; sending confirmations/receipts,Contract Art. 6(1)(b)Digital content delivery & evidence,Early-supply waiver; durable-medium email; TX hash for NFT delivery,Contract; Legal obligation (consumer law),Customer support & complaint handling,Email replies, re-delivery/repair of non-conforming digital items,Contract; Legitimate interests Art. 6(1)(f)Security & fraud prevention,Anti-abuse checks, rate-limiting, chargeback defense, sanctions screening,Legitimate interests; Legal obligation where applicable,Desk-based risk assessment reports,OSINT on tokens/dApps/sites you ask me to review; link-risk checks,Contract (your request); Legitimate interests (safe service),Record-keeping & accounting,Invoices, tax compliance,Legal obligation Art. 6(1)(c)Marketing (opt-in),Newsletters, updates,Consent Art. 6(1)(a),Analytics & improvements,Site performance metrics (non-essential only with consent)

When I am processor?

(and a DPA applies)

In some Security Testing engagements (e.g., code audits/pentests with log access), I may process personal data on your behalf. In those cases we will execute a Data Processing Agreement (DPA) under Art. 28 GDPR (and SCCs for non-EEA transfers if needed). For desk-based OSINT with only public info, I act as an independent controller.

Cookie DECLARATION

Cookies & similar tech

I use a third party provider to handle all cookie related aspects. ( https://www.cookiebot.com/ )

See the Cookie Policy for details on types, purposes, vendors, and retention. Also see the Cookie Declaration available in both the Privacy Policy and this Cookie Policy for a detailed breakdown. Non-essential cookies/SDKs run only with your consent via the banner; change choices anytime via /cookie-settings presented in the black icon left down of the website.

Translations & language tools

The site may display translations via Weglot, Google Translate, or AI. These providers may process text or page content to provide translations. Translations are provided for convenience; the English version controls (see Terms). Avoid entering personal data into free-text fields you ask me to translate unless necessary.

Third-party recipients (processors/sub-processors)

I use reputable providers to run the website. Depending on what you use, personal data may be processed by:

  • Hosting/CMS & infrastructure: e.g., Squarespace, CDN, security/firewall.

  • Payments: e.g., Stripe/PayPal (card and anti-fraud data handled by them).

  • Scheduling & video: e.g., AcuityScheduling/Calendly/YouCanBook.me; Zoom/Google Meet; Telegram/Whatsapp (if you choose).

  • Email & newsletters: e.g., Squarespace Solutions.

  • File storage & productivity: e.g., Google Workspace/Drive, Dropbox.

  • Cookie Agreement Statement : e.g., Cookie Bot ( https://www.cookiebot.com/ ) via the cookie banner and/or cookie icon left down.

  • Analytics & consent: e.g., consent-management platform; privacy-mode analytics.

  • Blockchain/IPFS services: e.g., Etherscan, IPFS/Arweave gateways (for metadata access).

I only engage providers with appropriate safeguards and contracts. Exact vendors may change; major changes will be reflected here or in the Cookie Policy.

International transfers

My website is managed through providers that may store/process data outside the EEA (e.g., US, worldwide). Where this happens, I rely on them insuring adequacy decisions or Standard Contractual Clauses (SCCs) with supplementary measures as needed. By interacting with my website or making payments through my website or setting appointments on my website you agree to interact with those providers and you must be aware of the fact that the information you provide may travel outside the EEA when interacting with those well recognized providers. I am NOT personally transferring any data outside the EEA and I do NOT manage the transfers of data outside the EEA by any of the following providers mentioned below :

Acuity Scheduling : Based in US

Squarespace : Based in US

Cookiebot : Based in EU

Weglot : Based in EU

Crypto Widgets by CoinGecko : Based in Singapore ( It does NOT collect information, it provides public available information )

Google Analytics : Based in US

Stripe : All payments on this website are managed by Stripe. Stripe is based in the US. Therefore Stripe handles all information you provide outside of the EEA. Stripe is a recognized high quality provider that has in place multiple security measures to safeguard the process and insure legal compliance with the EU. (e.g., Standard Contractual Clauses ; etc )

How long I keep data (retention)

Categories of retention may include but not limited to: - Consultation notes, emails, chat logs Up to 24 months after last meaningful contact, Accounting/receipts, contract records 7 years (Belgian bookkeeping law) Consent/withdrawal & waiver records Up to 5 years (defense of claims) Security assessment artefacts (desk-based) Up to 12 months unless otherwise required by SOW or law Security testing artefacts (with DPA) Per SOW/DPA (shortest feasible; secure deletion afterwards)Server logs/security logs Up to 12 months (shorter where feasible)Marketing lists Until you unsubscribe (removed immediately afterwards)NFT delivery proofs (TX hashes/wallet provided)As part of order records (min. 5 years for proof of delivery/defense of claims)

I may retain minimal data longer if reasonably needed for legal claims or compliance.

How data is secured

The third party providers present on my website are well recognized high quality providers that have multiple security measures in place to secure data.

  • TLS in transit; encryption at rest where supported

  • Least-privilege access; MFA on admin accounts

  • Device hardening and secure backups

  • Vendor due diligence and contractual safeguards

  • Segregated sandbox/VPS for suspicious links

  • Breach response plan (I will notify you and cooperate with authorities where legally required)

I personally do NOT store any client information outside of the Squarespace platform, Acuity Scheduling platform, etc. At most information such as phone numbers, emails, etc is saved in my personal devices to facilitate communication,proof outcomes or compliance proof. They can be deleted at any time if it is proven to be non-necessary information, email me on support@michaelddev.com and demand the information to be deleted. Otherwise within maximum 21 days of non-interaction I delete all non-relevant, non-essential information and delete them regardless of interaction each month (if deemed non-relevant/non-essential).

Your rights (GDPR)

You can access, rectify, erase, restrict, object to certain processing, and port your data. Where processing is based on consent, you can withdraw it at any time (it won’t affect past lawful processing). To exercise rights, email support@michaelddev.com. I will respond within maximum 1 month generally within 48 hours (extendable for complexity).

You also have the right to complain to the Belgian Data Protection Authority (Autorité de protection des données / Gegevensbeschermingsautoriteit). See their website for contact options. I’d appreciate the chance to resolve concerns directly first.

Belgian Data Protection Authority (Autorité de protection des données / Gegevensbeschermingsautoriteit)
Address: Rue de la Presse 35, 1000 Bruxelles, Belgium.
Telephone: +32 (0)2 274 48 00
Email: contact@apd-gba.be
Website: https://www.dataprotectionauthority.be

Children USAGE

My services are for adults (18+) only. I do not knowingly collect children’s data. If you believe a minor provided data, contact me to delete it.

Marketing communication

I send marketing only if you opt in (or where otherwise permitted by law). You can unsubscribe anytime via the link in emails or by contacting support@michaelddev.com. Transactional/administrative emails (e.g., booking confirmations, receipts, delivery notices) will still be sent.

NFTs, tutorials & digital content specifics

  • NFT delivery: I log the wallet address you provided and the transaction hash as proof of supply and for chargeback defense.

  • Tutorial/video access: access is personal; hosting may rely on third-party platforms subject to their uptime/privacy.

  • Digital-content waiver: if you request immediate supply, I store your express waiver of the 14-day withdrawal right (per EU rules) and email you a durable-medium confirmation. ( all information upon purchase )

  • More information about each situation or product is provided in contract.

    Security assessments & link-risk alerts

  • Desk-based OSINT on targets you submit; I minimize personal data and focus on technical and public signals.

  • No intrusive actions unless separately contracted and authorized.

  • If personal data is processed on your behalf (e.g., logs), we’ll sign a DPA first.

  • More information about each situation or product is provided in contract.

Sanctions

export

&

unlawful use

I may screen for sanctioned jurisdictions/parties as legally required or for legitimate interests in preventing unlawful use. I may refuse or terminate services where compliance risks exist aswell as fully cooperate with any law authority if required.

Do you have to provide data?

For bookings/purchases, some data is necessary (identity, contact, payment metadata) to perform the contract. If you don’t provide it, I can’t deliver or set for a delivery of the service digitally. For non-essential cookies/marketing, you’re free to decline and more information is provided inside the cookie banner. Continued use of this website means acceptance of the privacy policy, terms & conditions policy, cookie policy and any other policies presented site-wide.

Changes to this policy

I may update this Privacy Policy to reflect changes in law. The version posted here applies. When changes occur, I’ll take reasonable steps to inform you (e.g., banner or email).

Contact

Questions or requests? support@michaelddev.com or by phone ( beginning of page for info )
Postal: 55 Rollegemstraat, 8880 Ledegem, West Flanders, Belgium ( with prior consent only )