Privacy Policy
Last updated: 2026-04-24
This Privacy Policy describes how Pixl SRL collects, processes and protects personal data in connection with the use of the Feen service. It is written in accordance with the General Data Protection Regulation (GDPR, EU 2016/679) and the Belgian Act of 30 July 2018 on the protection of natural persons with regard to the processing of personal data.
1. Data controller
The data controller is Pixl SRL, a Belgian private limited company, registered with the Crossroads Bank for Enterprises under number BE 0805.449.693, with its registered office at Avenue Louise 231, 1050 Brussels, Belgium. You may contact us at any time at contact@feen.be, by phone at +32 2 318 12 40, or by post at the address above.
2. Categories of data collected
We collect and process the following categories of data: (i) account data (first name, last name, business email address, hashed password, job title, VAT number and company name); (ii) financial documents and supporting documents uploaded by you (invoices, expense notes, receipts) and the metadata automatically extracted from these documents; (iii) bank connection metadata (bank name, masked account identifiers, transaction descriptions and amounts) — we never store your banking credentials, the connection is operated by a PSD2-licensed provider; (iv) public company data retrieved from the Crossroads Bank for Enterprises; (v) telemetry and usage data (pages visited, features used, technical logs), aggregated where possible.
3. Purposes and legal bases for processing
Data is processed for the following purposes: (a) performance of the contract with the Customer, including provision of the Service, support and billing (Article 6.1.b GDPR); (b) compliance with legal obligations, in particular accounting and tax obligations that apply to Pixl and to our Customers (Article 6.1.c GDPR); (c) legitimate interest in improving and securing the Service, preventing fraud and producing anonymous usage statistics (Article 6.1.f GDPR); (d) consent for sending non-essential marketing communications and for certain non-strictly-necessary cookies (Article 6.1.a GDPR). Consent may be withdrawn at any time.
4. Retention periods
Accounting documents and related data are retained for ten (10) years from the date of closure, in accordance with Article III.86 of the Belgian Code of Economic Law. Account data is retained for the duration of use of the service and deleted, upon request, within a maximum of thirty (30) days following the request — subject to legal retention obligations. Marketing data is retained for a maximum of three (3) years after the last contact. Technical logs are purged after twelve (12) months.
5. Recipients and processors
We use carefully selected processors, bound by data processing agreements (DPAs) compliant with the GDPR. The main categories of processors are: (i) hosting and database (Supabase, EU infrastructure); (ii) subscription payment processing (Stripe Payments Europe, Ltd, Ireland); (iii) marketing site hosting (Netlify, European infrastructure); (iv) a cloud provider for application processing and storage (European infrastructure); (v) communication and support tools (transactional messaging and email). Your data may also be shared with your own chartered accountant, if you explicitly decide to do so from your customer area.
6. International transfers
Our data is hosted and processed primarily within the European Economic Area (EEA). Where a processor outside the EEA is exceptionally involved, Pixl ensures that the transfer is covered by Standard Contractual Clauses (SCCs) adopted by the European Commission, or by any other legally appropriate mechanism (adequacy decision, binding corporate rules).
7. Your rights
You have the following rights over your data: right of access, right to rectification, right to erasure ("right to be forgotten"), right to data portability, right to restriction of processing, right to object, right to withdraw your consent at any time, and right to give instructions regarding your data after your death. You may exercise these rights at contact@feen.be; we will respond within one (1) month. You also have the right to lodge a complaint with the Data Protection Authority (see section 11).
8. Cookies
The use of cookies and similar technologies on the feen.be site is described in detail in our Cookies Policy, available at feen.be/cookies. You can change your choices regarding non-essential cookies at any time from the consent banner or from your browser settings.
9. Security measures
Pixl implements appropriate technical and organisational measures to protect your data: encryption in transit via TLS 1.2 and above, encryption at rest for databases and files, role-based access controls (RBAC), two-factor authentication for administrator access, audit logs, regular security reviews and penetration tests. In the event of a data breach likely to result in a high risk to your rights and freedoms, you will be notified without undue delay in accordance with Article 34 GDPR.
10. Data protection officer contact
For any question relating to the protection of your data, you may contact our privacy officer at contact@feen.be. In the absence of a formally designated Data Protection Officer (DPO), this address centralises all GDPR requests and handles them within the legal deadlines.
11. Supervisory authority
You have the right to lodge a complaint with the Belgian Data Protection Authority (APD/GBA), Rue de la Presse 35, 1000 Brussels, Belgium — phone +32 2 274 48 00 — email contact@apd-gba.be — website www.dataprotectionauthority.be. This does not preclude any judicial remedy.
12. Changes to this policy
We may update this Privacy Policy to reflect technical, legal or operational changes. Any material change will be notified to you by email or via the Service at least thirty (30) days before it takes effect.
13. Effective date
This version of the Privacy Policy took effect on 24 April 2026. Previous versions are available on request at contact@feen.be.