Introduction
4.ST Services Systems Software Support Technologies Belgium NV (‘4.ST’) considers
your privacy as very important, which is why we have drawn up this privacy policy
with the GDPR in mind.
You
have the right to know which personal data we process about you and
how we do this. A clear answer to the following questions can be
found in this privacy policy:
Who
is responsible for the processing of your personal data?
What
do some of the important terms mean in this policy?
What
personal data do we collect from you, why do we do this, what do we
do with it and how long do we keep it for?
How
do we protect your personal data?
Who
has access to your personal data? Are your personal data transferred
internationally?
What
are your rights?
Who
do you contact in case of questions regarding this privacy policy?
Changes
to the privacy policy and the cookie policy.
Who is responsible for the processing
of your personal data?
The
responsible for the processing of your personal data is 4.ST, with
registered office at Romeinse straat 10, bus 4, B-3001 Leuven.
You
can contact us by phone on +32 16 40 40 54 or by email at .
For
questions regarding the processing of your personal data, please
send an email to .
What
do some of the important terms mean in this policy?
GDPR: the
General Data Protection Regulation (EU) 2016/679 of the European
Parliament and of the Council of 27 April 2016 on the protection of
individuals with regard to the processing of personal data and on
the free movement of such data entered
into force on 25 May 2018 (also
known as GDPR - General Data Protection Regulation).
Personal
Data: means
any information relating to an identified or identifiable natural
person (‘data subject’); an identifiable natural person
is one who can be identified, directly or indirectly, in particular
by reference to an identifier such as a name, an identification
number, location data, an online identifier or to one or more
factors specific to the physical, physiological, genetic, mental,
economic, cultural or social identity of that natural person.
Processing of
personal data: means
any operation or set of operations which is performed on personal
data or on sets of personal data, whether or not by automated means,
such as collection, recording, organisation, structuring, storage,
adaptation or alteration, retrieval, consultation, use, disclosure
by transmission, dissemination or otherwise making available,
alignment or combination, restriction, erasure
or destruction.
Cookies: Cookies
are small files which are stored on a user's computer when visiting
a website. 4.ST does not use cookies on its websites.
Controller: 4.ST
Services Systems Software Support Technologies Belgium NV, abbreviated
to 4.ST.
Processor: means
a natural or legal person, public authority, agency or other body
which processes personal data on behalf of the Controller.
Processor
agreement: a binding written agreement
between the processor and 4.ST that states which data can be
processed by the processor and in which the processor provides
sufficient guarantees to protect the personal data that it
processes.
When
do we collect personal data, what personal data do we collect, why
and how long do we retain them?
|
Source
|
Categories
of personal data
|
Purpose
|
Retention
|
|
From you
when you fill out the contact form on the website
|
Identification
data
|
Necessary
to contact you in the context of your question. Contract as legal
basis.
|
Until
after we have contacted you, unless the contact results in a
further relation.
|
|
From
you when you contact us by telephone or email
|
Identification
data
|
Necessary
to contact you in the context of your question. Contract as legal
basis.
|
Until
after we have contacted you, unless the contact results in a
further relation.
|
|
From you when you
send us your application letter.
|
Identification
Data and all the information you have mentioned in your
application letter.
|
Necessary
to contact you in the context of your question. Contract as legal
basis.
|
Until
after we have contacted you, unless the contact results in a
further relation.
|
How
do we protect your personal data?
Since
4.ST considers your privacy as important, we make every effort to
protect your personal data adequately. We have taken all appropriate
technical and organizational measures to protect your personal data
against a possible data breach or access by unauthorised persons.
Who
has access to your personal data and do we internationally transfer
your personal data?
INTERNAL
TO 4.ST
Within
our organization, only authorized employees and the persons we
designate have access to your personal data. Only those persons who
need access for the proper performance of their duties or for the
needs of the service are granted this access.
EXTERNAL
TO 4.ST
Outside the situations described in this privacy policy, your personal data will not be transferred
to third parties without your prior consent. Only if we are legally obliged to do so or if this has
been agreed upon in our agreement, your personal data can be transferred to third parties. In such
case, we ensure appropriate safeguards are in place to ensure your personal data is processed and
secured correctly. For certain processes however, we rely on processors. With these parties, we
enter into a data processing agreement to ensure your personal data is processed in a secure and
confidential manner. Other third parties, like e.g. external auditors, law offices, banks, insurance
companies, data controllers themselves, may also process your personal data for specific goals. Under
no circumstances, your personal data will be sold or rented.
INTERNATIONAL
Certain
personal data can, within our own operations such as international
management, be passed on internationally. When this happens, we
ensure the necessary guarantees are in place, such as "Standard Contractual
Clauses", to make sure that your personal data is processed and
secured correctly.
Which
are your rights?
If
you share data with 4.ST, you as a data subject have a number of
rights with regard to your personal data. These
are described below.
|
Right
|
Description
|
|
Right
of information
|
This
privacy policy is designed to inform you about our privacy
practices.
|
|
Right
of access
|
You can always send a request to
4.ST to get an overview of all we process about you or to obtain a
print-out of this in a readable format. When you request this
information, 4.ST will provide it with all necessary information
such as: the processing, the retention period, the legal basis for
processing and the recipients. To ensure that the request for
access has been made by you, we may ask you to send a copy of your
ID with the request. Make your passport photo, MRZ (machine
readable zone, the strip with numbers at the bottom of the
passport), passport number and national register number unreadable
in this copy. This is to protect your privacy.
This information will be sent to
you within one month.
|
|
Right
of rectification
|
You
have the right to rectify any personal data from you that we
process if you know or suspect that such data is incorrect. 4.ST
will rectify such data as soon as possible.
|
|
Right
to erasure
|
If you no longer wish 4.ST to
process your personal data, you can request (by email to
) to remove this data from our files / databases.
However, this is not an absolute
right and you should be aware that other legislation may limit
this right. E.g. you cannot request deletion of data on which a
legally defined retention period has been set and this retention
period has not yet been reached.
You can have all personal data that
we process from you on the basis of "consent" removed
immediately when you withdraw your consent. This can be done by
simple request by e-mail to .
However, if disputes are ongoing,
for example a lawsuit or other discussion that may have legal
consequences, our interest in retaining this data is more
important than your right to erasure. We cannot delete data while
such activities are in progress.
|
|
Right
of restriction of processing
|
If you do not agree with one or
more of the processing activities that 4.ST does with your data,
you can invoke a restriction on that specific processing activity.
This can be done with a simple question by e-mail to
.
|
|
Right
to object
|
You have the right to object to any
processing of your personal data for which we believe we have a
legitimate interest. The processing of relevant personal data is
stopped, unless we put forward compelling legitimate grounds for
this processing that outweigh your interests, rights and freedoms
or if these personal data are related to the establishment,
exercise or defence of legal claims.
|
|
Right
of data portability
|
If you want to move to another
similar service, you can ask 4.ST (by e-mail to )
to supply the data you have provided in a digital format so that
you can communicate it to a similar organization. This only applies for personal
data processed using consent or on the basis of a contract.
|
|
Right
to lodge a complaint
|
If you consider that our processing
of your personal data infringes the GDPR, you have the right to
lodge a complaint with the Belgium Authority:
Gegevensbeschermingsautoriteit (GBA), Drukpersstraat 35, 1000
Brussels.
|
Who
do you contact in case of questions
regarding this privacy policy?
If
you have any questions regarding this privacy policy or the exercise
of your rights in this context, you can contact the person
responsible for .
Updates
of the privacy policy
4.ST
reserves the right to update this privacy policy. It is therefore
important that you always consult the most recent version by clicking
on the link at the bottom of one
of the web pages.
