Calmer AgencyCalmer Agency
Start free

Privacy

Privacy Policy.

This explains what personal data Calmer Agency processes, why, and the choices you have. We keep it plain, and we keep it EU-first.

Who we are

Calmer Agency is a client-operations platform for marketing agencies, based in Zaandam, the Netherlands (KvK 68142706). For the data agencies enter about their own clients, the agency is the controller and Calmer Agency acts as processor on their behalf. For account and billing data, Calmer Agency is the controller. Last updated: June 2026.

What we collect

Information you give us: your name, work email, password (stored hashed), agency details and billing information.

Data you put into the workspace: client names and contacts, files, messages, performance figures and reports you create.

Technical data we need to run the service: IP address, device and browser type, and basic usage/log data.

How we use it

To provide and secure the service, to process payments and your subscription, to provide support, and to send essential service messages. We do not sell your data, and we never use your or your clients' content to train AI models. On our public website we may use marketing and retargeting cookies, but only with your consent (see Cookies below). We never advertise using the data you or your clients put into the workspace.

Legal bases (GDPR)

We rely on performance of our contract with you (running your account), our legitimate interests (keeping the service safe and improving it), your consent where required (for example optional communications), and legal obligations (such as tax and accounting).

Where your data lives

Your account and client data are stored in Switzerland and the EU (Exoscale), so they stay under EU/Swiss jurisdiction. The interface itself is served from the EU/Switzerland on Exoscale, and no client data is stored outside the EU/EEA and Switzerland. Every sub-processor operates under a Data Processing Agreement. See our Security page for how we protect it.

Client ad-account access

When you ask a client for access to their ad platforms, that access runs through each platform's own official connection. We do not store client usernames or passwords. The resulting access is held encrypted within the EU, and the client can revoke it at any time from the platform itself.

Sub-processors

We keep this list short and EU-first:

  • Hosting, content delivery & edge: Exoscale (Switzerland and the EU), where your data is stored and from where the interface is served.
  • Payments: Mollie (EU), for subscriptions and SEPA/iDEAL/card mandates.
  • Email delivery: Mailjet (EU), for transactional and client emails you send.
  • Product analytics: PostHog (EU region), privacy-friendly and EU-hosted.

The current, full list is available on request through the contact form.

When we share information

Only with the sub-processors above to run the service, when the law requires it, or as part of a business transfer (in which case this policy continues to apply). Never for sale.

How long we keep it

We keep your data while your account is active. After you close your account we delete or anonymise personal data within a limited period (and no later than twelve months), unless we must keep specific records longer for legal reasons such as invoicing.

Your rights

You can access, correct, export, restrict or delete your personal data, object to certain processing, and withdraw consent at any time. Agencies can export and permanently delete their data from inside the app (Settings → GDPR). To exercise a right, use the contact form below.

Cookies

We use cookies in three ways. First, essential cookies needed to keep you signed in and the service working, including a small first-party referral cookie (up to 60 days) so the agency who referred you can be credited if you sign up later. Second, analytics, through PostHog in the EU region, to understand how the site is used. Third, marketing and retargeting cookies, which may involve providers such as Meta and Google. Analytics and marketing cookies load only after you accept them in the cookie banner. You can withdraw consent at any time by clearing the cookies and site data for this site in your browser, which makes the banner appear again.

Children

Calmer Agency is a business tool and is not directed at children. We do not knowingly collect data from anyone under 18.

Data Processing Agreement

Agencies who need a DPA for their own clients can request one through the contact form, and we will send it.

Changes

We may update this policy. When we do, we will revise the date above and, for material changes, let you know in the app.

Contact

Privacy questions or requests? Email contact@calmeragency.com or use the contact form. If you already use Calmer, in-app support reaches us fastest.