Privacy Policy
Your privacy
Your privacy is very important to us. This means we save your data securely and ensure it remains properly protected at all times. We tell you what we do with your data when we use it respectfully to improve our service to you.
We start from the principle that everyone has control over his or her personal data, and everyone is entitled to not share it with us or stop sharing it with us. This privacy declaration states what personal data we can collect from you, how we use this data, and who we might share it with. We explain what we do to protect your privacy, how you can have your say, and what checks are carried out to ensure compliance with this declaration.
This privacy declaration is applicable for the collection, management, use and sharing of your data by Yellow Jersey, registered at the Kruispuntbank van Ondernemingen (national companies register) under the number 0670.543.875. This privacy declaration should be read in conjunction with our cookie policy. We can modify our privacy declaration at any time, and communicate this via our website (www.yellowjersey.be) where we will also make the latest version available. This privacy declaration was reviewed and last modified on 24 May 2019.
Our contact details:
Yellow Jersey NV
Veldkant 31
2550 Kontich
Belgium
info@yellowjersey.be
When is this declaration applicable?
This privacy declaration is applicable when you visit our websites, contact our sales and marketing employees, or send us an application. By visiting our websites, contacting our sales and marketing employees, or sending us an application, you consent for us to collect your personal data and use it as described in this privacy declaration.
If you use our websites unlawfully, we reserve the right to process your data. This is the case, for example, if you violate the conditions of use or property rights, or threaten the security of our websites or service provision.
Which data do we collect?
We collect your data to be able to provide and improve our services, and to inform you about our activities, promotions, or the products and services you have purchased. You provide some of this information to us directly, for example via forms on our website, with your business card, when placing orders, or in your email correspondence with us.
We distinguish different types of personal data. This enables us to propose
and offer our products and services:
User data: we can use this to identify or contact you. For example: your name,
address, phone numbers, preferred language, gender, email addresses, contact
details on social media;
Traffic data: we need this technical information, such as your IP address,
to ensure our electronic communication runs smoothly;
Sensitive data: we do not process any sensitive data.
Why do we collect this data?
We process personal data for various reasons, whereby we only ever process the
data required for the purpose intended. With your permission, where it is required,
we collect your personal data for the following specific purposes:
To process your requests about our products and services.
When you visit our websites or are in touch with our sales and marketing employees
to collect or request information about our products and services, or when you
subscribe to our newsletter, for example, we need your address. We then use all
the information we receive about you to provide you with the information you request,
in the manner you indicate.
To offer you the best service.
We keep your records to improve our customer service. We need this information to
set up, maintain and support our products and services correctly. This means we can
contact you for the next step in our collaboration, or to request feedback about our
services. We also need to be able to inform you about any technical problems or
disruptions on our side.
To inform you about our products, services and activities.
We can use your data to inform you about new and existing products, services, special
offers, workshops, events, webinars, training and vacancies, amongst other things, to
provide you with direct marketing or create a profile for you so that we can inform
you about things we think will be of interest to you. We can do this in writing,
electronically or by phone. We also use your data for the newsletters you subscribe to.
You will only receive communication by email if you have given your explicit permission
for this, where this is required.
To process your application.
If you apply for a vacancy with us, we need your contact details and information about
your career to contact you and process your application. Your application details can
only be accessed by people who need it to perform their tasks. We never share your
application information with companies or people who are not part of our company or
group, unless you explicitly agree to this.
Who manages your data?
All personal data is managed by Yellow Jersey. The data is only accessible to people within Yellow Jersey who need it to perform their tasks.
We also use external processors. This means, among other things, that we temporarily provide data to third parties if they need it for specific tasks when we do not have the resources to do this ourselves. In this case, we always ensure that your data is handled confidentially and used securely by agreeing this contractually with the processors. This means a processor will never be able to use your data for their own initiatives, and your data must be deleted as soon as a processor has completed their task.
We can pass your personal data on to any legal successors and affiliated organisations, such as subsidiaries and sister companies, for the same purposes as stated in this privacy declaration. We work with third parties or hire contractors for some aspects of our products and services. Your data is only passed on for the same purposes as agreed with Yellow Jersey itself. We make sure that they manage your data securely and respectfully in the same way we do.
In some cases we use anonymous, aggregated data for commercial purposes or external reporting. This data can never be traced back to a specific individual.
We never sell or lease your data to companies or people who are not part of our company or group. We treat your data as confidential information.
If we provide personal data to third parties in any other way, this is always done with explicit communication to provide information about the third party and the purposes for passing it on and processing it. Where legally required, we ask for your explicit permission. You always have the option to object to this.
How do we secure your data?
We provide maximum protection for your personal data and privacy. Our employees are trained to deal with confidential data correctly. We employ people who are responsible for the security of our infrastructure, and we purchase specialist services to ensure the security of our IT infrastructure. We also take all sorts of technical measures to protect your personal data. Should a data breach occur with unfavourable consequences for your personal data, you will be personally informed under the conditions required by law.
Our websites sometimes contain links to third-party sites that have usage conditions which do not fall under the scope of this privacy declaration. Among other things, this includes the embedded videos from YouTube that you watch. Please read their policy carefully with regard to protecting your personal data.
Looking at, correcting or deleting data?
This article lists your principal rights under data protection law. We have tried to summarize them for you in a clear and legible way.
To exercise any of your rights, please send us a written request in accordance with article 1 of this Privacy Policy. We will respond to your request without undue delay, but in any event within one month of the receipt of the request. In the event of an extension of the term to respond or in the event we do not take action on your request, we will notify you.
The right to access
You have the right to confirmation as to whether or not we process your personal data and, in the event we do so, you have the right to access such personal data, together with certain additional information that you also find listed in this Privacy Policy.
You have the right to receive from us a copy of your personal data we have in our possession, provided that this does not adversely affect the rights and freedoms of others. The first copy will be provided free of charge, but we reserve the right to charge a reasonable fee if you request further copies.
The right to rectification
If the personal data we hold about you is inaccurate or incomplete, you have the right to have this information rectified or, taking into account the purposes of the processing, completed.
The right to erasure (right to be forgotten)
In some circumstances, you have the right to the erasure of your personal data without undue delay.
Those circumstances include:
(a) The personal data are no longer needed in relation to the purposes for which they were collected or otherwise processed;
(b) You withdraw your consent, and no other lawful ground exists;
(c) The processing is for direct marketing purposes;
(d) The personal data have been unlawfully processed; or,
(e) Erasure is necessary for compliance with EU law or Belgian law.
There are certain exclusions to the right to erasure. Those exclusions include where processing is necessary,
(a) for exercising the right of freedom of expression and information;
(b) for compliance with a legal obligation; or,
(c) for the establishment, exercise or defense of legal claims.
The right to restrict processing;
You have the right to restrict the processing of your personal data (meaning that the personal data may only be stored by us and may only be used for limited purposes), if:
(a) You contest the accuracy of the personal data (and only for as long as it takes to verify that accuracy);
(b) The processing is unlawful and you request restriction (as opposed to exercising the right to erasure);
(c) We no longer need the personal data for the purposes of our processing, but you require personal data for the establishment, exercise or defense of legal claims; or,
(d) You have objected to processing, pending the verification of that objection.
In addition to our right to store your personal data, we may still otherwise process it but only:
(a) with your consent;
(b) for the establishment, exercise or defense of legal claims;
(c) for the protection of the rights of another natural or legal person; or,
(d) for reasons of important public interest.
We will inform you before we lift the restriction of processing.
The right to data portability
To the extent that the legal basis for our processing of your personal data is consent, and such processing is carried out by automated means, you have the right to receive your personal data from us in a structured, commonly used and machine-readable format. However, this right does not apply where it would adversely affect the rights and freedoms of others.
You also have the right to have your personal data transferred directly to another company, if this is technically possible, and/or to store your personal data for further personal use on a private device.
The right to object to processing
You have the right to object to the processing of your personal data on grounds relating to your particular situation, but only to the extent that the legal basis for the processing is that the processing is necessary for:
(a) The performance of a task carried out in the public interest or in the exercise of any official authority vested in us;
(b) The purposes of the legitimate interests pursued by us or by a third party.
If you make such an objection, we will cease to process the personal information unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the establishment, exercise or defense of legal claims.
You have the right to object to our processing of your personal data for direct marketing purposes (including profiling for direct marketing purposes). If you make such an objection, we will cease to process your personal data for this purpose.
The right to complain to a supervisory authority
If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence, your place of work or the place of the alleged infringement. In Belgium, you can submit a complaint to the Authority for the protection of personal data (Data Protection Authority), Drukpersstraat 35, 1000 Brussel (contact@apd-gba.be).
No direct marketing?
You are entitled to object to your personal data being used for direct marketing without giving any reason. You can contact us by email or post for this.
How long do we keep your personal data?
Your personal data will not be kept longer than necessary to achieve the purposes for which they were collected.
(a) If you send us an e-mail for more information about our services, your personal data will be kept for 3 years after the last contact;
(b) Data for the management of our customer database is kept for 7 years after the end of the agreement or 3 years if no agreement has been concluded;
In the event you withdraw your consent or you object to our use of your personal data, and such objection is successful, we will remove your personal data from our databases. Please note that we will retain the personal data necessary to ensure your preferences are respected in the future. However, we are entitled to keep your personal data if this is necessary to comply with our legal obligations, in order to file a legal claim or defend ourselves against a legal claim, or for evidential purposes. When the retention of the personal data is no longer required, we will destroy or delete it in a secure manner, or make it available to you.
International transfers
We try to limit the transfer and processing of personal data to countries within the European Economic Area or to countries that guarantee an adequate level of protection, equivalent to the level guaranteed under the GDPR and this privacy policy. In the event of processing outside the borders of the European Economic Area, we will provide you with further explanation upon written request.
Questions?
We are always here to provide appropriate answers to any questions you may have about our privacy policy, or if you want to contact us to modify your data. You can contact us by email, in writing or by phone using the contact details above. You can also use these contact details to submit a complaint which we will process correctly as quickly as possible. If you are not satisfied with our response, you can always contact the relevant authorities and, more specifically, the Data Protection Authority. Contact details are available on their website.