What’s this document that I’m reading?
Why is this Policy included on the Website?
This Policy is designed to make the Website compliant with the General Data Protection Regulation (EU) 2016/679, together with the relevant Belgian statutes (the “Rules”). Failure to comply with the Rules may lead to civil and/or criminal sanctions.
It’s important that you read this Policy in full before accessing and using the Website. In fact, your access and use depend on your acceptance of and compliance with this Policy. If you do not agree with this Policy in part/whole, you must not access or use the Website.
Tell me more about this Policy…
The Policy applies to the Website and the products and services it offers (the “Services”). In addition, we alone own and control the information about the Website’s users. We only collect, distribute, secure and store users’ information with the view to improving the Services generally and specifically. We will never sell or rent your information to anyone, and it will never be disclosed to anyone except as may be required by Belgian law.
Kindly note that the words “our,” “us” and “we” refer those who manage, own or operate the Website. The words “you” or “your” refer to you, as a user of the Website.
What if I’m underage?
The Website does not knowingly collect, distribute, secure and/or store information pertaining to persons under the age of sixteen (16) years (“children”). If you are a child, please note that you must not access or use the Website under any circumstances. If you are a child, have accessed the Website and are reading this Policy, you should as soon as possible have a parent, guardian or ward contact us at firstname.lastname@example.org . We will irretrievably delete all information pertaining to you as a child at the earliest opportunity.
What do you use to operate the Website?
We process your personal data as a means of offering our Services to you. The GDPR defines ‘personal data’ as, “…any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person…”
Can you use my personal data without my consent?
No. Unless you provide us with clear and explicit consent to do so, we cannot process your personal data (unless the Rules so require us to). Having said that, however, our use of your personal data is necessary for you to use the Website and access the Services. Without it, the Services and Website will not be available to you.
What personal data do you collect from me?
To use the Website and access the Services, we need your:
Telephone number (cell or landline).
What about data that is not ‘personal data’ as defined by the GDPR?
We may, to facilitate your use of the Website and access to the Services, process your:
Internet browser (e.g. Google Chrome, Microsoft Edge, Mozilla Firefox).
Operating system (e.g. Apple, Linux, Windows).
Internet service provider.
Device (e.g. personal computer, smartphone).
Referral site or source.
Browsing behavior while on the Website.
Tell me more about the data you process, even if it’s not personal…
Our overall use of your data may be described as follows:
Login credentials: Includes your username, password, full name, language preference, nickname, role, email address, phone number, website, biography, company, billing address, shipping address and newsletter preference. Storing this data is a matter of convenience; once it is stored, and once you do not clear your internet browser’s browsing history, you won’t need to enter it again.
Social media: Platforms such as Facebook, Instagram, Snapchat and Twitter may send us data according to what’s contained in their own Privacy Policies. This data typically includes your full name, profile picture, gender and friends’ list. You can change the ‘privacy’ and/or ‘security’ settings of each social media platform if you do not want that platform to send that data to us. If you ‘like’ an item listed on the Website, your ‘like’ will appear on your social media account while you are logged in to it. If you are on a webpage that uses social media add – ins, your browser will send certain data to the social media platform to which that add – in relates; this is entirely beyond our control.
Market research: We may from time to time ask you to participate in market research. Your personal data may be used to carry out that research, and if it is, it will be used anonymously. Kindly note that you are under no obligation to participate in any aspect of any market research which we carry out. We do not share any data linked to your market research participation with anyone.
Newsletters: The Website issues newsletters. These newsletters inform the Website’s users of offers, promotions and other news regarding the Website. We use a two – step verification system for our newsletters; this means you must verify your consent to receive our newsletters twice. We will send the verifications to the email address you provided us with. Each newsletter contains a link which allows you to unsubscribe from (or opt – out of receiving) our newsletters.
Orders: We need your full name, email address, billing address, shipping address and payment details to process orders made through the Website. We will save this data to complete your order and may provide it to specific third parties if the order’s completion depends on it (e.g. PayPal or Mikropakket). With orders, we will only process your personal data for the purposes outlined in this sub – paragraph.
How do you make decisions regarding my personal data?
We can use your personal data to make decisions automatically. What we mean by this is that, for example, we can instantly determine the most suitable shipping options and prices for you based on your location. We derive this data from your billing address and shipping address. It is crucial that we use your personal data to make these decisions automatically. This is because there are some locations that we do not ship to.
What security measures do you have in place for my data?
We respect your privacy and are committed to protecting your data (whether personal or otherwise) from unauthorized access and use. To that end, we use Secure Socket Layer (“SSL”) certificates to secure the Website’s network connections.
For how long do you store my data?
We will store your data for as long as is necessary to carry out the processes outlined in this Policy.
Who do you share my data with?
We enter into data processing agreements with third parties such as PayPal and Mikropakket. Under these agreements, we provide your data to third parties, subject strictly to the terms and conditions which we stipulate. The third parties collect, distribute, secure and/or store your data to process accounting, orders, payments, etc. They are, according to the GDPR, ‘processors.’ The GDPR defines ‘processor’ as, “a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller…”
The GDPR defines ‘controller’ as, “…the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law…”
Within which location(s) do you transfer my data, if any?
We will only process your data within the European Union (the “EU”), and/or to countries which, in our estimation, have effective data protections law and regulations in place. For your information, the EU consists of the following countries: Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden and the United Kingdom.
Does the Website contain links to third – party websites?
Should I expect the Policy to change from time to time?
We reserve the unconditional right to amend the provisions of the Policy. In addition, we may amend the Policy at any time and at our sole discretion. We will provide notice of any amendments by posting the revised Policy to the Website. All amendments will be effective immediately upon their posting to the Website.
What are my legal rights?
Your data, which we process, includes ‘personal data’ as defined by the GDPR. You therefore have the following legal rights in respect of your data; namely, you may:
Request access to the personal data we have collected about you.
Ask for a copy of the personal data we have collected about you, or have that copy sent to a third party per your request.
Request the personal data we have collected about you be amended, updated, or deleted from our records.
File a complaint against us regarding our data processing methods to the Belgian Data Protection Authority if you think that our data processing methods are unlawful.
Withdraw your consent for us to process your data at any time, with or without notice to us.
How may I get into contact with you?