Privacy Policy –
Privacy Statement
The QSHE-app (hereafter: ‘app’) is an initiative of
DENYS NV (hereafter: ‘DENYS’):
Name: DENYS NV
Address: Industrieweg 124, 9032 Wondelgem
Telephone: +32 9 254 01 11
Email: info@denys.com
Company number: BE0416.585.801
Competent court: RPR Gent
The app is provided by Denys at no cost.
1. Why this Privacy Statement?
Every person (hereafter the “User”) who uses the app discloses a certain amount of
personal data. The personal data is information that allows DENYS to identify
you as a natural person, regardless of whether we actually do this. You are
identifiable as soon as it is possible to create a direct or indirect link
between one or more data and you as a natural person.
We only use and process
your personal data in accordance with the Privacy Act and the other applicable
regulations. Every reference in this Privacy Statement to the ‘Privacy Act’ is
a reference to the Belgian Act of 8
December 1992 on Privacy Protection in relation to the Processing of Personal
Data. Every reference to the Regulation is a reference to the Regulation of 27 April 2016 on the
Protection of Natural Persons with regard to the Processing of Personal Data
and on the Free Movement of such Data.
By using the app, the
User declares having read this Privacy Statement and explicitly agrees to the
possible collecting and processing of personal data as described in this
document. DENYS reserves the right to modify this Privacy Policy at all times.
Every substantial change will be clearly communicated towards the User. We
advise you to consult this document regularly.
We also refer you to our
Data Protection Notice which you can find on our website www.denys.com.
2. Who is responsible for the processing of
personal data?
2.1 Controller
DENYS is responsible for the processing and decides
alone or in cooperation with others which personal data are being collected as
well as the purposes and the technical and organisational means with regard to
the processing of those personal data.
2.2 Processor(s)
DENYS is free to rely on data processors. A processor
is the natural or legal person who processes your personal data upon request
and on behalf of the data controller. The processor is required to ensure the
security and confidentiality of the data. The processor shall always act on the
instructions of the data controller.
3. On what legal grounds are
my data processed?
In accordance with the Regulation we process personal
data on the following legal grounds:
·
On the basis of the execution of the contract agreed
upon with you or the execution of pre-contractual steps taken at your request;
or
·
On the basis of compliance with legal or regulatory
provisions with regard to the management of the contractual relationship;
· On the basis of your consent to send promotional offers (direct
marketing).
4. Which personal data are
being processed?
DENYS commits to only collect and process your
personal data that are necessary for achieving the purposes pursued by DENYS. A
non-exhaustive list of personal data that might be processed can be found here:
·
Last name, first name and contact information;
·
E-mail address;
·
Telephone number;
·
Birth date;
·
Sex;
·
Nationality;
·
Profession;
·
Information with regard to your connection
(IP-address, localisation, etc.).
This data is collected at the time of using the app.
Other personal data may be collected later. These data are necessary for the
functioning of the app. In case of an error in the app we collect data and
information on your phone called Log Data.
This Log Data may include information such as your device Internet
Protocol (IP) address, device name, operating system version, the configuration
of the app when utilizing, the time and date of your use of the app, and other
statistics.
We also use cookies in order to
recognise the User and to offer the User a personalised user experience, to
remember technical choices (for example, language choices or a user profile),
and to detect and correct any errors that might be present on the app. Cookies
are files with a small amount of data that are commonly used as anonymous
unique identifiers. These are sent to
your browser form websites that you visit an are stored on your device’s
internal memory. The app does not use
these ‘cookies’ explicitly. However, the
app may use third party code and libraries that use ‘cookies’ to collect
information and improve their services.
You have the option to either accept or refuse these cookies and know
when a cookie is being sent to your device.
If you choose to refuse our cookies, you may not be able to use some
portions of the app.
5. For which purposes are my personal data
being used?
DENYS collects your personal data for the sole purpose of
offering every User of ours a safe, optimised and personal user experience of
our app. The processing of your personal data is therefore essential for the
proper functioning of the app. If these data are missing, are incorrect or
incomplete, DENYS reserves the right to suspend or cancel certain operations.
DENYS commits to solely process your personal data for
the following purposes:
-
To allow the User access to his/her user profile and
to use the app;
-
To manage the contractual relationship to which the User
is a party;
-
To offer a personalised service to the User by sending
newsletters, offering personalised products, providing support and complaint
follow-up;
-
To detect and protect Users against fraud, mistakes
and/or criminal behaviours;
-
Send promotional offers if you have expressly agreed
to this (direct marketing). In this case, you remain free to withdraw your
consent at any time.
When using the app of DENYS, some data are being
collected for statistical purposes. Such data is necessary to optimise your
user experience. These data are: IP address, probable location of consultation,
hour and day of the consultation and the pages that are being consulted. When
you use the app, you explicitly agree to this collection of data for
statistical purposes.
The User always provides
his/her personal data to DENYS and thus retains some control. If some data are
incomplete or seemingly incorrect, DENYS retains the right to postpone certain
expected actions temporarily or permanently.
6. Who receives your personal
data?
Your personal data are
processed for internal use within DENYS only. Your personal data will not be
sold, passed on or communicated to any third parties, except in case you have
given us your explicit prior consent.
DENYS has taken every legal
and technical precaution to avoid unauthorised access to and use of the data.
In the event of a data breach, DENYS will immediately take every possible
measure to limit the damages to a minimum.
7. How long do we store your
personal data?
Your data is stored as long as
necessary to achieve the ends pursued. They will be erased from our database as
soon as they are no longer necessary for the ends pursued or if you validly
exercise your right to erasure.
8. What are my rights?
8.1 Guarantee of a legitimate
and secure process of your personal data
Your personal data are always processed for the
legitimate purposes explained in point 5. They are collected and processed in
an appropriate, relevant and non-excessive manner, and are not kept longer than
necessary to achieve the intended purposes.
8.2 Right to access
If you can prove your identity, you have the right to
obtain information about the processing of your data. Thus
you have the right to know the purposes of the processing, the categories of
data concerned, the categories of recipients to whom the data are transmitted,
the criteria used to determine the data retention period, and the rights that
you can exercise on your data.
8.3 Right to rectification of
your personal data
Inaccurate
or incomplete personal data may be corrected. It is primarily the responsibility
of the User to make the necessary changes in his "subscription area"
himself, but you can also request us in writing.
8.4 Right to erasure (or “right to be forgotten”)
You
also have the right to obtain the erasure of your personal data under the following
assumptions:
-
Your personal data are no longer necessary for the
intended purposes;
-
You withdraw your consent to the processing and there
is no other legal ground for processing;
-
You have validly exercised your right of opposition;
-
Your data has been illegally processed;
-
Your data must be deleted to comply with a legal
obligation.
The
deletion of data is mainly related to visibility; it is possible that the
deleted data are still temporarily stored.
8.5 Right to limitation of
processing
In certain cases, you have the right to request the
limitation of the processing of your personal data, especially in case of
dispute as to the accuracy of the data, if the data are necessary in the
context of legal proceedings or the time required to DENYS to verify that you
can validly exercise your right to erasure.
8.6 Right to object
You have the right to object at any time to the
processing of your personal data for direct marketing purposes. DENYS will stop processing your
personal data unless it can demonstrate that there are compelling legitimate
reasons for the processing which prevail over your right to object.
8.7 Right to data portability
You have the right to obtain any personal data that
you have provided us in a structured, commonly used and machine
readable format. At your request, this data may be transferred to
another provider unless it is technically impossible.
8.8 Right to withdraw your
consent
You may withdraw your consent to the processing of
your personal data at any time, for example for direct marketing purposes.
9. How to exercise my rights?
If you wish to exercise your rights, you must send a
written request and proof of identity by registered mail to DENYS, Industrieweg 124, 9032 Wondelgem
or by email to dataprotection@denys.com. We
will respond as soon as possible, and no later than one (1) month after receipt
of the request.
10. Possibility to lodge a complaint
If you are not satisfied with the processing of your
personal data by DENYS, you have the right to lodge a complaint with the
competent Data Protection Authority (for Belgium: https://www.dataprotectionauthority.be/).