Privacy, Cookies, and Security

Last updated: June 23, 2026

MijnJuffie.nl helps learners practise for Dutch integration and NT2 exams. This page explains what data we collect, why we use it, which service providers may process it, and what choices you have.

1. Data We Collect

  • Account data: your name, email address, role, language preference, hashed password, account status, package or credit information, and notification preferences.
  • Learning data: practice answers, exam attempts, scores, writing responses, speaking recordings or transcripts, AI feedback, vocabulary items, favourites, themes, bookmarks, and progress statistics.
  • Support data: contact messages, public feedback submissions, bug reports, optional screenshots, and related message metadata.
  • Activity and security data: login events, session activity, device/browser metadata, timestamps, and rate-limit metadata. Public feedback and contact rate limits use hashed identifiers where possible instead of storing raw IP addresses.
  • Technical data: cookies, local storage, session storage, browser type, operating system, pages visited, and analytics events when production analytics are enabled.

2. How We Use Data

  • To create and secure your account, authenticate you, and route you to the correct student, instructor, or admin area.
  • To provide practice sessions, Practise Real Exam sessions, vocabulary flashcards, dashboards, and progress insights.
  • To provide optional AI feedback and evaluation for writing and speaking practice when AI features are enabled.
  • To send account, support, feedback, password reset, and opted-in product emails.
  • To prevent abuse, spam, duplicate feedback, unauthorized access, and excessive resource usage.
  • To improve the product, fix bugs, understand feature usage, and keep the service reliable.

3. AI Feedback

When you use AI feedback, the text or audio-related content needed for that feedback may be sent to an AI provider. We log usage so credits can be reserved, completed, failed, or refunded correctly. You can practise without AI feedback in supported flows, and those sessions do not use AI credits.

4. Cookies and Analytics

We use essential cookies and browser storage for authentication, language preference, navigation state, consent choices, and security. With your permission, we use Google Analytics 4 and Yandex Metrica to understand visits, page use, sign-ups, checkout starts, purchases, and product problems. Google Analytics data may also be linked to Google Ads for conversion measurement and campaign improvement.

Optional analytics and advertising storage is denied by default. You can accept or refuse optional cookies in the consent banner and change your choice later through Cookie settings in the footer. Essential storage remains active because login and core practice features depend on it.

5. Service Providers

We use trusted providers to run the service. Depending on the feature, data may be processed by:

  • MongoDB Atlas for database hosting.
  • Vercel for application hosting.
  • Mailgun for transactional and opted-in marketing emails.
  • OpenAI or another configured AI provider for optional AI feedback and evaluation.
  • Cloudflare R2 for private listening audio assets.
  • Google Analytics 4 and Google Ads for consent-based analytics, conversion measurement, and campaign improvement.
  • Yandex Metrica for production analytics, if enabled.

6. Feedback Screenshots and Files

If you upload screenshots with feedback, we accept image files only. Images are checked, metadata is removed, and files are attached to the feedback email rather than stored permanently in our database or object storage.

7. Marketing Emails

You can opt out of marketing emails from your profile or by using the unsubscribe link included in marketing emails. Account, security, and support emails may still be sent when necessary to provide the service.

8. Security

We use role-based access controls, password hashing, private server-side API keys, validation, rate limiting, sanitized email content, and restricted access to private audio assets. No online service can be guaranteed completely secure, but we design the platform to limit unnecessary data exposure.

9. Retention

We keep account and learning data while your account is active or as needed to provide the service. We keep usage ledger and activity records as needed for security, support, quota accounting, and product diagnostics. Feedback, contact messages, and email records may be retained for support history and abuse prevention.

10. Your Rights

Depending on where you live, you may have the right to access, correct, delete, export, restrict, or object to certain processing of your personal data. You may also withdraw consent where processing is based on consent. To make a request, contact us using the details below.

11. Children

MijnJuffie.nl is designed for exam preparation and is not directed at young children. If you believe a child has provided personal data without appropriate permission, please contact us.

12. Contact

For privacy, support, or security questions, contact us at contact@mijnjuffie.nl.