We are very delighted that you (“data subject”, “user”, “visitor”, “you”, “your”, “yours”) have shown interest in our enterprise. Data protection is of a particularly high priority for the management of the WebsiteProjects sprl (“EU Agenda”, “controller”, “we”, “us”, “our”). The use of www.euagenda.eu (“Internet pages of EU Agenda”, “Website”) is possible without any indication of personal data; however, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.
The processing of personal data of a data subject shall always be in line with the laws of Belgium (primarily) – “applicable law” – including the General Data Protection Regulation (“GDPR”), and in accordance with the country-specific data protection regulations applicable to EU Agenda.
By means of this data protection declaration, our enterprise would like to inform the general public of the nature, scope, and purpose of the personal data we may collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.
As the controller, EU Agenda has implemented numerous technical and organisational measures to ensure the most complete protection of personal data processed through this website. However, Internet-based data transmissions may in principle have security gaps, so absolute protection may not be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative means, e.g. by telephone.
We have written this policy to help you understand how EU Agenda gathers, processes, analyses and uses users’ data to provide the Website services and functionality to users. Out main aim with this policy is to comply with relevant legislation and to act, in our best ability, to prevent unlawful and offensive use, management, damage, destruction or misapplication of users’ data. EU Agenda, to the best of its abilities, aims to securely store and process all users’ data.
When you sign up to an account with EU Agenda you are required to provide personal information. Personal data is required to be able to link the account to an individual or a company, ultimately helping EU Agenda to identify the user. Personal information includes, but is not limited to, users first and last names, home or business address, telephone number or email address. The gathering and use of personal data by EU Agenda is mainly used to establish and provide services via personal user accounts. This is done to enable EU Agenda to properly render its services and benefits to its user base. User personal information will be treated confidentially at all times. Any other information that cannot be used to identify a user is considered general information (data that cannot be used to directly identify includes, but not limited to, reference to users username, Internet browser information, gender, age or education). Please note that EU Agenda stores all data for record keeping purposes. EU Agenda does not delete user information once account is closed unless directly requested by the user or under the applicable law. EU Agenda secures and protects all data with industry standard methods according to the best known practices.
EU Agenda does implement security safeguards designed to protect your personal data, such as SSL (Secure Sockets Layer). We regularly monitor our systems for possible vulnerabilities and attacks. Although, we cannot warrant the security of any information that you provide us. There is no guarantee that such data will not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards.
EU Agenda sometimes will be sending you communication via email, examples of such emails include an email welcoming you to the site, a new user notification, verification emails, or any other emails that are required to operate your account such as emails related to financial transactions via the website, account management email, or system notifications. You can stop some of these emails only if you terminate your account with EU Agenda.
You might also receive emails that EU Agenda believes will be useful for you as a user of the website. Such emails might include promotion notifications, announcements of new services or products delivered via the site, surveys, periodic newsletters, information and updates on new functionality or new developments on the site, and event information or other promotional or commercial communication. You can manage how and when you receive such emails from EU Agenda by managing to which emails you are subscribing, using unsubscribe link inside each email, configuring and updating your account e-mail preferences on EU Agenda website.
Feel free to contact us at firstname.lastname@example.org if you have any queries in regards to your data protection In regards to our Website.
Definitions. The data protection declaration of EU Agenda is based on the terms used by the European legislator for the adoption of the GDPR. Our data protection declaration should be legible and understandable for the general public, as well as our customers and business partners. To ensure this, we would like to first explain the terminology used.
In this data protection declaration, we use, inter alia, the following terms:
The data controller shall, at any time, provide information upon request to each data subject as to what personal data are stored about the data subject. In addition, the data controller shall correct or erase personal data at the written request or indication of the data subject, insofar as there are no statutory storage obligations. The Data Protection Officer particularly designated in this data protection declaration, as well as the entirety of the controller’s employees are available to the data subject in this respect as contact persons.
We may contact you by any electronic means such as email and other ways through Internet pages of EU Agenda, including text messages and push notifications. We may send you messages about the availability of Internet pages of EU Agenda, security, or other service-related issues as well as changes of this Privacy Statement.
We may use user’s personal data (which can include your communications) needed to investigate, respond to and resolve complaints and issues with our services provided via Internet pages of EU Agenda (e.g., bugs, failures etc.). We use your data (which may include your communications) if we think it is necessary for security purposes or to investigate possible fraud or other violations of other legal documents published on Internet pages of EU Agenda.
It is possible that we will need to disclose information about you when required by law, subpoena, or other legal process or if we have a good faith belief that disclosure is reasonably necessary to (1) investigate, prevent, or take action regarding suspected or actual illegal activities or to assist government enforcement agencies; (2) enforce our agreements with you, (3) investigate and defend ourselves against any third-party claims or allegations, (4) protect the security or integrity of our website (such as by sharing with companies facing similar threats); or (5) exercise or protect the rights and safety of data controller, EU Agenda personnel, or others. We attempt to notify EU Agenda about legal demands for their personal data when appropriate in our judgment, unless prohibited by law or court order or when the request is an emergency. We may dispute such demands when we believe, in our discretion, that the requests are overbroad, vague or lack proper authority, but we do not promise to challenge every demand.
We can also share your personal data as part of a sale, merger or change in control, or in preparation for any of these events. Any other entity which buys us or part of our business will have the right to continue to use your data, but only in the manner set out in this Privacy Statement.
On the website of EU Agenda, users are given the opportunity to subscribe to our enterprise's newsletter. The input mask used for this purpose determines what personal data are transmitted, as well as when the newsletter is ordered from the controller.
EU Agenda informs its customers and business partners regularly by means of a newsletter about enterprise offers. The enterprise's newsletter may only be received by the data subject if (1) the data subject has a valid e-mail address and (2) the data subject registers for the receipt of newsletter. A confirmation e-mail will be sent to the e-mail address registered by a data subject for the first time for the receipt of newsletter, for legal reasons, in the double opt-in procedure. This confirmation e-mail is used to prove whether the owner of the e-mail address as the data subject is authorised to receive the newsletter.
During the registration for the newsletter, we also store the IP address of the computer system assigned by the Internet service provider (ISP) and used by the data subject at the time of the registration, as well as the date and time of the registration. The collection of this data is necessary in order to understand the (possible) misuse of the e-mail address of a data subject at a later date, and it therefore serves the aim of the legal protection of the controller.
The personal data collected as part of a registration for the newsletter will only be used to send our newsletter. In addition, subscribers to the newsletter may be informed by e-mail, as long as this is necessary for the operation of the newsletter service or a registration in question, as this could be the case in the event of modifications to the newsletter, or in the event of a change in technical circumstances. There will be no transfer of personal data collected by the newsletter service to third-parties. The subscription to our newsletter may be terminated by the data subject at any time. The consent to the storage of personal data, which the data subject has given for receipt of the newsletter, may be revoked at any time. For the purpose of revocation of consent, a corresponding link is found in each newsletter. It is also possible to unsubscribe from the newsletter at any time directly on the website of the controller, or to communicate this to the controller in written.
The newsletter of EU Agenda may contain so-called tracking pixels. A tracking pixel is a miniature graphic embedded in such e-mails, which are sent in HTML format to enable log file recording and analysis. This allows a statistical analysis of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, EU Agenda may see if and when an e-mail was opened by a data subject, and which links in the e-mail were called up by data subjects.
Such personal data collected in the tracking pixels contained in the newsletters are stored and analyzed by the controller in order to optimize the shipping of the newsletter, as well as to adapt the content of future newsletters even better to the interests of the data subject. These personal data will not be passed on to third-parties. Data subjects are at any time entitled to revoke the respective separate declaration of consent issued by means of the double-opt-in procedure. After a revocation, these personal data will be deleted by the controller. EU Agenda automatically regards a withdrawal from the receipt of the newsletter as a revocation.
The website of EU Agenda contains information that enables a quick electronic contact to our enterprise, as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by e-mail or via a contact form, the personal data transmitted by the data subject are automatically stored. Such personal data transmitted on a voluntary basis by a data subject to the data controller are stored for the purpose of processing or contacting the data subject. There is no transfer of this personal data to third-parties.
The data controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the applicable laws or regulations to which the controller is subject. If the storage purpose is not applicable, or if a storage period prescribed by the applicable laws expires, the personal data are routinely blocked or erased in accordance with legal requirements.
Furthermore, the data subject shall have the right to obtain information as to whether personal data are transnationally transferred or to an international organisation. Where this is the case, the data subject shall have the right to be informed of the appropriate safeguards relating to the transfer. If a data subject wishes to avail himself of this right of access, you may at any time contact our Data Protection Officer or another employee of the controller.
If any one of the aforementioned reasons applies, and a data subject wishes to request the erasure of personal data stored by EU Agenda, the data subject may at any time contact our Data Protection Officer. The Data Protection Officer of EU Agenda shall promptly ensure that the erasure request is complied as soon as possible. Where the controller has made personal data public and is obliged pursuant to Article 17(1) to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform other controllers processing the personal data that the data subject has requested erasure by such controllers of any links to, or copy or replication of, those personal data, as far as processing is not required. The Data Protection Officer of EU Agenda will arrange the necessary measures in individual cases.
If any one of the aforementioned conditions is met, and a data subject wishes to request the restriction of the processing of personal data stored by EU Agenda, you may at any time contact our Data Protection Officer. The Data Protection Officer will arrange the restriction of the processing.
The data controller shall collect and process the personal data of applicants for the purpose of the processing the application procedure. The processing may also be carried out electronically. This is the case, in particular, if an applicant submits corresponding application documents by e-mail or by completing a web form on the website to the controller. If the data controller concludes an employment contract with an applicant, the submitted data will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If no employment contract is concluded with the applicant by the controller, the application documents shall be automatically erased two months after notification of the refusal decision, provided that no other legitimate interests of the controller are opposed to the erasure.
Art. 6(1) lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is party, as is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Article 6(1) lit. b GDPR. The same applies to such processing operations which are necessary for carrying out pre-contractual measures, for example in the case of inquiries concerning our products or services. If EU Agenda is subject to a legal obligation by which processing of personal data is required, such as for the fulfilment of tax obligations, the processing is based on Art. 6(1) lit. c GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in EU Agenda and his/her name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third-party. Then the processing would be based on Art. 6(1) lit. d GDPR. Finally, processing operations could be based on Article 6(1) lit. f GDPR. This legal basis is used for processing operations which are not covered by any of the abovementioned legal grounds, if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third-party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. Such processing operations are particularly permissible because they have been specifically mentioned by the European legislator. It considered that a legitimate interest could be assumed if the data subject is a client of the controller (Recital 47 Sentence 2 GDPR).
Where the processing of personal data is based on Article 6(1) lit. f GDPR our legitimate interest is to carry out our business in favour of the well-being of all our employees and the shareholders.
The criteria used to determine the period of storage of personal data is the respective statutory retention period. After expiration of that period, the corresponding data is routinely deleted, as long as it is no longer necessary for the fulfilment of the contract or the initiation of a contract.
We clarify that the provision of personal data is partly required by law (e.g. tax regulations) or can also result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary to conclude a contract that the data subject provides us with personal data, which must subsequently be processed by us. The data subject is, for example, obliged to provide us with personal data when our company signs a contract with him or her. The non-provision of the personal data would have the consequence that the contract with the data subject could not be concluded. Before personal data is provided by the data subject, the data subject must contact our Data Protection Officer. Our Data Protection Officer clarifies to the data subject whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and the consequences of non-provision of the personal data.
As a responsible company, we do not use automatic decision-making but we may use profiling according to this Privacy Statement rules.Name and Address of the Controller.
The controller for the purposes of the GDPR, the applicable law and other applicable data protection laws and other provisions related to data protection is:
Rue Fritz Toussaint 25
1050 Brussels, Belgium
The Data Protection Officer of the controller is:
Mr. Pietro Spigai
Rue Fritz Toussaint 25
1050 Brussels, Belgium
Any data subject may, at any time, contact our Data Protection Officer directly with all questions and suggestions concerning data protection.