The protection of your personal data is of great importance to NV De Brug and NV Frontab. The aim of this private policy is intended to inform you of the measures taken by us to ensure the protection of your personal data in compliance with the GPDR. This policy was last amended on 15th May 2018.
1. The role of NV De Brug and NV Frontab
On the one hand, we act as the authority responsible for the processing of the personal data within the different systems and procedures that apply within our company.
In any case, we take all technical and organisational measures that are required to best protect your personal data.
2. Our business activities
We collect data only insofar as it is necessary to support our business activities in the best possible way. Our business activities are as follows:
- Retail trade of tobacco products
- Retail trade of alcoholic and non- alcoholic beverages
- Retail trade of confectionery
3. What do we need?
Our private policy governs the use and storage of your data. This Privacy Statement describes the measures taken to ensure the protection of your personal data in compliance with General Data Protection Regulation.
NV De Brug and NV Frontab are responsible for the processing of the personal data that you (the person concerned) you provide us. We collect the following types of information from you :
- Last name / first name
- Email address
- Landline number / mobile number
4. How your data is collected by us?
The collection of your data is performed by us as follows;
- Directly / by telephone / by post
- Contact form on our website
5. Why do we need your data?
All personal data will be used only for our standard business activities to deliver our services. This is in compliance with article 6 of GPDR which describes the legitimate interest of the data controller.
We need your personal data in order to provide with the following services:
- Business contact by telephone, email, etc.
6. How long do we retain your data?
We retain your data as long as there is active cooperation between NV De Brug and NV Frontab and its clients / suppliers / ... up to 3 years after the active cooperation. After that period, your personal data will be deleted from our systems. If you wish your personal data to be deleted sooner, without violating the legally prescribed periods, you can request it by contacting us by email via email@example.com
7. Transfer to third parties
The information you provide us will not be sold of rented to third parties or parties that do not belong to NV De Brug or NV Frontab. If we consider the transfer of your contact details to other parties as appropriate, we will seek prior authorisation from you and inform you of the data we will transfer.
If we use external processors within NV De Brug and NV Frontab, the data transfer will always be determined in a processor agreement. In this way, it will be stipulated that the processors will never be allowed to continue to use your personal data on their own initiative.
8. Minimum data processing
The personal data collected by us are correct and are only used for our own purposes. We limit the collection of your personal data to a minimum quantity as required for our business activities.
9. Automatic processing and profiling
NV De Brug and NV Frontab do not carry out profiling, nor do they process your personal data in a fully automatic way to establish your profile.
10. How do we secure all the data?
We take measures, both at technical and organisational levels. Technically speaking, we ensure that the equipment of our employees are encrypted, we operate with an appropriate password policy and appropriate definition of the rights for our uses so that the right person accesses only the data that is needed.
As far as the organisation is concerned, we have developed a number of procedures and guidelines that apply to the whole organisation. This includes the information security policy as well as clear guidelines with respect to responsibilities and powers.
11. What are your rights?
Your rights as the person concerned;
- Right of access
- Right to modify data
- Right to delete data
- Right to transfer data
- Right to object
- Right to the limitation of the processing
Should you have a complaint regarding the way your data has been processed, please contact the person responsible for information security via firstname.lastname@example.org or by post at Dijk 1 - 8660 Adinkerke. Our information security officer will examine your complaint will work with you to solve the problem.
If you consider your personal data have not been processed in compliance with the law, please contact the Privacy Commission – Drukpersstraat 35, 1000 Brussels, Tel.: 0032 2 274 48 00 or email@example.com and file a complaint.