ChefBridge logoChefBridge

The bridge between talent and work

Privacy

Privacy Policy

ChefBridge treats personal data of clients and freelancers with care and full transparency. This policy explains what data we collect, why we collect it, and how you can exercise your rights.

1. Data Controller

ChefBridge B.V. is the data controller within the meaning of the General Data Protection Regulation (GDPR) for the personal data processed through our services.

  • Registered name: ChefBridge B.V.
  • Address: Salland 1, 1948 RE Beverwijk, The Netherlands
  • Chamber of Commerce (KvK): 99164116
  • VAT number: NL868837271801
  • Email for privacy matters: info@chefbridge.nl
  • Phone: +31687774773

2. Scope

This privacy policy applies to all personal data that ChefBridge processes from:

  • Freelancers (self-employed professionals) who offer their services through ChefBridge for hospitality assignments.
  • Clients (hospitality businesses) who hire freelancers through ChefBridge.
  • Visitors of our website, portal, and mobile application.
  • Contact persons of business relations and suppliers.

3. What personal data do we process?

The categories of personal data we process depend on your relationship with ChefBridge:

  • Identification data: name, date of birth, gender, nationality, copy of ID document (for freelancers).
  • Contact details: email address, phone number, home or business address.
  • Business data: Chamber of Commerce number, VAT number, IBAN, company name, billing address.
  • Professional data: work experience, certificates (including HACCP), diplomas, availability, job preferences.
  • Account data: login credentials, profile photo, language preferences.
  • Financial data: hour declarations, rates, payment history.
  • Communication data: messages, notes, reviews and ratings.

4. Purposes of processing

ChefBridge processes personal data exclusively for specific, predetermined purposes:

  • Intermediary services: matching freelancers with suitable assignments at clients.
  • Contract management: drafting and executing agreements between ChefBridge, freelancers, and clients.
  • Planning and scheduling: scheduling shifts, managing availability, and communicating about assignments.
  • Hour registration and invoicing: processing worked hours, preparing invoices, and handling payments.
  • Quality assurance: collecting reviews, managing the Freelancer Rewards programme, and evaluating performance.
  • Customer service: answering questions and handling complaints.
  • Legal obligations: complying with tax, administrative, and employment law obligations.
  • Security: protecting our systems, detecting fraud, and safeguarding the integrity of our services.

5. Legal grounds for processing

We process personal data based on the following legal grounds from Article 6 GDPR:

  • Performance of a contract: processing is necessary for the execution of our intermediary agreement with freelancers and clients.
  • Legal obligation: we process certain data to comply with legal obligations, such as tax retention requirements and identification duties.
  • Legitimate interest: for business operations, improving our services, fraud prevention, and direct communication with existing relations.
  • Consent: when we send commercial newsletters or place non-essential cookies, we request explicit consent beforehand. You can withdraw this consent at any time.

6. Sharing data with third parties

ChefBridge only shares personal data when necessary for our services or legally required:

  • Clients and freelancers: relevant contact details and profile information are shared for intermediation and execution of assignments.
  • Processors: we engage external service providers for hosting, email services, accounting, and payment processing. We conclude data processing agreements with these processors in accordance with Article 28 GDPR.
  • Government authorities and regulators: if legally required, we provide data to tax authorities, labour inspectorates, or other competent bodies.
  • Professional advisors: in exceptional cases, we share data with lawyers, accountants, or insurers in case of disputes or claims.

7. Transfers outside the EEA

ChefBridge primarily processes personal data within the European Economic Area (EEA). If data is transferred to countries outside the EEA, we ensure appropriate safeguards:

  • Adequacy decision by the European Commission.
  • Standard Contractual Clauses (SCCs) established by the European Commission.
  • Other legally permitted mechanisms that provide a comparable level of protection.

8. Retention periods

We do not retain personal data longer than necessary for the purposes for which they were collected:

  • Freelancer profiles: up to 24 months after termination of the collaboration, unless legal retention obligations require otherwise.
  • Client data: up to 24 months after the end of the last agreement.
  • Financial and tax data: 7 years in accordance with legal tax retention requirements.
  • Usage data and logs: maximum 12 months for security and analytical purposes.
  • Application data: up to 4 weeks after rejection, or longer with consent.

9. Security of personal data

ChefBridge takes appropriate technical and organisational measures to protect personal data against loss, unauthorised access, modification, or disclosure:

  • Encrypted connections (TLS/SSL) for all data transmission.
  • Encryption of sensitive data at rest.
  • Access control based on roles and the need-to-know principle.
  • Regular backups and disaster recovery procedures.
  • Periodic security audits and penetration tests.
  • Awareness training for employees.
  • Logging and monitoring of system access.

10. Your rights as a data subject

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access: you can request what personal data we process about you.
  • Right to rectification: you can request correction of inaccurate or incomplete data.
  • Right to erasure: under certain conditions, you can request deletion of your data.
  • Right to restriction of processing: you can request to (temporarily) restrict processing.
  • Right to data portability: you can receive your data in a structured, commonly used format or have it transferred.
  • Right to object: you can object to processing based on legitimate interest or for direct marketing.
  • Right to withdraw consent: you can withdraw given consent at any time without stating reasons.

11. Exercising your rights

To exercise your rights, you can contact us at info@chefbridge.nl. Clearly state which request you are submitting and include a copy of your ID for verification (mask your citizen service number and photo).

We will respond to your request within 30 days. In complex cases, we may extend this period by a maximum of two months, and we will inform you of this in a timely manner.

12. Complaints

If you believe that ChefBridge is not handling your personal data correctly, please contact us first so that we can address your complaint. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens):

  • Website: www.autoriteitpersoonsgegevens.nl
  • Postal address: Autoriteit Persoonsgegevens, Postbus 93374, 2509 AJ The Hague, The Netherlands

13. Cookies and similar technologies

Our website and applications use cookies and similar technologies. Functional cookies are necessary for the operation of the service. For analytical and optional cookies, we request consent in advance. More information can be found in our cookie policy.

14. Changes to this policy

ChefBridge may update this privacy policy in response to new developments in our services or changes in legislation. The date of the last update is stated at the top. We recommend that you consult this page periodically.

Last updated: January 2026

Need help or want to update your data?

Email us at info@chefbridge.nl or reach out via the contact page for a tailored conversation.

Contact ChefBridge