Privacy Policy

Through this Privacy Policy Mercell Nederland B.V. (hereinafter: Mercell Nederland) informs you about the use of your personal data within our software applications, websites and release notes.

Your privacy is important to us. Personal data will only be used for the purpose for which they were entered. The way we do this is recorded in the Mercell Nederland ISMS (Information Security Management System), this Privacy Policy and in our Processor Agreement (at the bottom of this page).

This privacy statement is divided into a general part, a part for customers relating to the software of Mercell Nederland, a part for the use of the website of Mercell Nederland and a part for the Release notes (digital newsletter). This Privacy Statement applies as of May 25, 2018 and replaces previous statements from Mercell Nederland.

Mercell Nederland B.V. is located in Utrecht at the Rijnzathe 32 and is registered at the Chamber of Commerce under number 30148169.


Mercell Nederland supplies software (SaaS) in support of purchasing and contract management processes applicable in all markets. We process personal data for the delivery of our products and associated services to users. We process these in our own software and those of sub-processors. We never sell or provide your information to third parties. We will only share your information:

  1. At your request or
  2. in case Mercell Nederland is requested to do so by a court.

The processing of personal data is always done in a manner that is in accordance with the requirements set by the General Data Protection Regulation (EU 2016/679 Regulation, hereinafter AVG) and any other legislation and regulations. This Privacy Statement explains in more detail how Mercell Nederland deals with such data.

Mercell Nederland does not process special personal data of users. The privacy risks of the Mercell Nederland processing are low.

This Privacy Statement applies as of May 25, 2018 and replaces previous statements from Mercell Nederland.

The Mercell Nederland software

This section describes the data processing within the Mercell Nederland software:

Processing Personal Data of Users

Mercell Nederland processes (personal) data of Users (buyers, colleagues, consultants, suppliers etc. Mercell Nederland customers receive a license on the software and therefore more functionality.

The same category and type of personal data are processed for all Users. To enable Users to get in touch with each other, they need certain data. In this context Mercell Nederland processes the following data:

  • Salutation;
  • First Name;
  • Insertion;
  • Last name;
  • Phone number
  • E-mail address;
  • (business) address details
  • LinkedIn profile (not required)
  • Photo (not required)

Certain technical data will be gathered during the use of the software. This concerns data required for proper operation of the Mercell Nederland software. Depending on the activity you perform with the software, Mercell Nederland processes the following data in this context:

  • IP address;
  • Login name;
  • Time of operations in the software.

Mercell Nederland processes personal data of its Users; for those data processing operations Mercell Nederland is a processor in the sense of the AVG. This means that Mercell Nederland processes personal data based on the need and the instructions from its users. The users of Mercell Nederland must therefore be regarded as the Processing Officer for this data processing, in the sense of the AVG. Users will have their own privacy policy that Mercell Nederland is not responsible for.

Mercell Nederland has drawn up a register of processing that is part of a Processing Agreement with users to be concluded. This register can be obtained from Mercell Nederland on request.

Right of access, correction or deletion

Requests for inspection, correction or removal can be submitted by the Processor. Individual persons (data subjects) can apply for a request for deletion. They need to request this form the contact person of the Processor who can submit the request to Mercell Nederland.

NB: In many cases, the request for deletion will have to take account of archiving principles by law.

The Commercial Website of Mercell Nederland

This section describes the data processing within the Mercell Nederland website (accessible via

Google Analytics

The website of Mercell Nederland uses Google Analytics to measure how often and in which way the website is visited. To perform this measurement, Google will store certain information, such as your IP address, on its servers in the United States. The privacy statement of Google can be consulted (among other things) at Mercell Nederland has not allowed Google to use the obtained information for other purposes than for the services provided to Mercell Nederland.


In order to analyse the behaviour of users on the website, the Hotjar software is also used on the Mercell Nederland website. This software carries out measurements and also stores your IP address, device information and visitor behaviour. For more information, please visit


Both the website and the software use technical and functional cookies. A cookie is a small text file that the browser places on your computer, smartphone or tablet. Mercell Nederland uses cookies to remember your settings and preferences and thereby increase your ease of use. Mercell Nederland asks you for permission for this when you visit the Mercell Nederland website. You can set in your browser that you do not want to store cookies on your computer. You can read more about this process at You can also delete previously saved cookies.

The Mercell Nederland release note

Mercell Nederland regularly sends a release note by e-mail to users in which they are informed about new and / or adapted functionality of the software, news about Mercell Nederland and related matters. Mercell Nederland only adds your data to the release notes file if you have explicitly given permission in your account. It concerns the following data:

  1. Salutation;
  2. First name;
  3. Surname;
  4. E-mail address.

Each release note contains a link with which you can unsubscribe.

Sub-processors Mercell Nederland

Mercell Nederland uses the following sub-processors for its hosting

Servicedesk software

Customer support questions and requests to Mercell Nederland are recorded in special support software. This application is called Freshdesk ( Mercell Nederland only adds your personal data to the support software when you submit a support question or request to Mercell Nederland.

The recorded data are only used for the purpose for which they are intended, being able to provide support. It concerns the following data:

  1. First name;
  2. Surname;
  3. E-mail address;
  4. Phone number;
  5. Organization;

For more information about the privacy policy of this software, please visit

Other aspects in the GDPR/AVG

Compliance manager

Organizations have the possibility to appoint an internal supervisor for the processing of personal data. Such a person is called a Compliance manager. The Compliance manager monitors the application and compliance with the Personal Data Protection Act and the General Data Protection Regulation within the organization. Mercell Nederland has appointed a Compliance manager, available at

Reporting duty data leaks

Mercell Nederland has developed a procedure for reporting (possible) data leaks. In the event that a (possible) data breach occurs, Mercell Nederland will inform its users within 24 hours so that the Processing Officer can report it to the authorities if necessary.

Processing agreement

Mercell Nederland has drawn up a Processing Agreement in consultation with lawyers of the IT industry sector organization ‘Nederland ICT’. Users can download this agreement here.