ECfDT B.V. (“ECfDT”) protects your privacy and personal data. Therefore, we conduct our services in compliance with the General Data Protection Regulation (GPDR).

This privacy policy applies if you’re using the software of ECfDT or ECfDT Group B.V., more specific: the Portfolio Management Tool (hereinafter jointly: the “Software”), if you’re visiting our website at (the “Website”) or if you use any other online services rendered by or through ECfDT (“services”).

Personal data

Our Software is created to help organisations balancing the amount of initiatives, improving their impact and executing them more efficiently and faster. For this purpose we store and process your email address and password.

You can add additional personal data to your profile such as your first and last name, telephone number and picture. This data is not required as the tool provides all functionality in case you do not provide this data.

Every change you enter into the Portfolio Management Tool is logged. E.g. if you enter a risk, upload a document or change the planned gates this is logged by the Software. This information is made available for you and your colleagues. Your colleagues can use it to find out who made a change in case they want additional information on that change. An easy-to-use function (the timeline) shows as from October 2015 changes captured by the tool.

Use and purpose of client specific data

An account is only accessible with the email address extension to which the license is granted. Only those who have access to this email address extension are eligible to use the account. All personal data is, like all other data, sent encrypted via the Internet. In case the customer terminates the contract with ECfDT, the data will be prepared and transferred to the customer based on a legal customer request.

For security purposes ECfDT registers all (attempted) logins. We store and process your personal login data to provide, maintain, protect and improve our services.

Your name, email address and other information you choose to provide on the Software will be viewable and discoverable by your colleagues.

From time to time, we may use your personal data to send you important notices, such as communications about (new) Software functionalities and changes to our general terms and conditions and the Privacy Policy. We will not use your personal data for other purposes than those set out in this Privacy Statement.

Website visitors

Like most website operators, ECfDT collects non-personal data of the sort that web browsers and servers typically make available, such as the browser type, device type, language preference, referring site, and the date and time of each visitor request. ECfDT’s purpose in collecting non-personal data is to better support you in performing your job and to better understand how ECfDT’s visitors use its Site.

ECfDT also collects potentially personal data like Internet Protocol (IP) addresses. ECfDT does not use such information to identify its visitors, however, and does not disclose such information, other than under the same circumstances that it uses and discloses client specific data, as described in this document.

If you contact us by email through the Website, we may keep a record of your contact information and correspondence, and may use your email address, and any information that you provide to us in your message, to respond to you.

‘Remember me’ function

To provide a comfortable login users are offered an option to remember their identity on the client. If the checkbox “Remember me” in the login screen is selected the identity of the user is stored as an encrypted token in the so called “localStorage” of the browser (Similar to the cookies functionality). The token itself does not contain personal data. If the same user connects to the website on a later moment the browser will check if the encrypted token is available in “localStorage” and if so the user is logged in. If the token is not found the login screen will be presented. If the token is available in the “localStorage” the token can actively be deleted by the user by using the “logout” option.


ECfDT takes reasonable steps to protect personal client specific data as you transmit it to our Website or Software and to protect such information from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. The Software is based on a SQLServer,, C# and HTML5 environment. The data is send over TLS and is stored in the database and encrypted on the file server. However, you should keep in mind that no Internet transmission is ever completely secure or error-free.

For the purpose of the Software, we use a login security. All passwords are saved encrypted and protected against XSS and code injection. However, you must protect your password to prevent unauthorized third parties from accessing your data.

Account deletion

Your data is yours. You can remove it anytime you want. Upon termination of a server, the server is first scrubbed before release. If you have problems with viewing or editing your personal data or you want to have your account deleted, please send us an e-mail at: markvanderpas[at]


Although most changes are likely to be minor, ECfDT may change its Privacy Policy from time to time. ECfDT encourages visitors to frequently check this page for any changes to its Privacy Policy. Your continued use of our Software after any change in this Privacy Policy will constitute your acceptance of such change.

Governing Law

This Privacy Policy is governed by and construed in accordance with the laws of the Netherlands. You agree to submit any dispute arising out of your use of this web site to the exclusive jurisdiction of the courts of Amsterdam, the Netherlands.

Questions or Comment

If you have questions or comments about this Privacy Policy, please email our managing director and data protection officer M.A.M. van der Pas: markvanderpas[at] You may also contact us by postal mail at

ECfDT b.v.
Willem II Singel 2