We are committed to the protection of your personal data and value the privacy of the users of our website and our customers. This means that we do everything in our power to protect your privacy as much as possible and to ensure that you can entrust us with your data with peace of mind, without it being misused.
What can be understood as "data processing" and who is responsible for it?
Any type of handling of personal data is meant. This term includes any operation or set of operations involving personal data or a set of personal data, whether or not performed by automated means, such as the collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, blocking, erasure or destruction of data. We, Thermalux, are responsible for processing your personal data.
Why are your personal data being processed?
The processing of your personal data is first and foremost necessary to have contact with you, for example when you use the contact page on our website or if you contact us directly. In addition, your personal data are required for the performance of the agreement that may come into existence between Thermalux and you. Finally, we process your personal data for direct marketing.
In particular, we use your personal data for the following purposes:
- to establish, maintain and/or perform a contractual relationship with you;
- to analyze, modify and, where necessary, improve the content of the website;
- To detect or avoid fraud and/or other illegal activities;
- to facilitate the visit and use of the website as well as your user experience;
- to respond to requests, for example event registration, meetings, request for more information about a product, etc;
- to inform you about the evolutions of the website and its functionalities;
- for direct marketing purposes;
- for any other purposes for which you have expressly agreed.
What happens to my personal data when you visit our website?
1. The information that you provide to us yourself:
Use our contact form
If you wish to use the contact form, we ask you to provide personal data. You provide us with personal data at that time. This data is used to fulfill our possible contractual obligations with you and the service for you and for direct marketing purposes.
This data is stored on secure servers of Thermalux or those of (one of) its processor(s) (e.g. hosting company), which are also strictly bound to confidentiality with regard to your personal data.
If you send us an e-mail or other messages (for example via the online contact form), we may store those messages. Depending on the situation, we may ask you for personal information that is relevant and necessary for the situation in question. This data is stored on secure servers of Thermalux or those of (one of) its processor(s).
2. The data collected based on your use of the website
3. The data from third parties
Thermalux does not receive your personal data via third parties. We do not collect or use information for purposes other than those described in this privacy statement, unless we have obtained your express permission for this in advance.
4. Data processors (processors)
It is possible that your personal data will be processed by a data processor if this is necessary for the proper provision of services and to respond to specific requests from the customer/prospect/contact (e.g. the secure storage of personal data on servers of Thermalux marketing partners or a hosting company that provides services on behalf of Thermalux).
Thermalux will always ensure that any data processor who processes data on its behalf complies with the standards of the prevailing privacy legislation and, insofar as this data processor is not located within the European Economic Area, that it is subject to comparable data protection regulations such as those in the EEA applies. To the extent possible, Thermalux will seek the necessary guarantees from this third party/data processor with regard to the adequate security and protection of personal data that it would receive from Thermalux.
How long will personal data be kept?
Thermalux will retain the personal data it processes for no longer than necessary to fulfill the purposes set forth in this privacy statement for which the personal data were collected.
How are your personal data secured and protected?
We strive for the best possible protection of your personal data. Employees of Thermalux, as well as those of processors or any other third party who is strictly bound to confidentiality with regard to your personal data, are trained to handle personal data correctly.
We take appropriate technical and organizational measures to ensure a level of security that is tailored to the possible risks, taking into account, among other things, the state of the art, implementation costs, the nature, scope and context, the processing purposes and the risks for your rights and freedoms. Although we strive for the highest possible security, a data breach, for example as a result of a hacking attack, can never be completely ruled out.
In the event of a security breach that may pose a risk to your rights and freedom, we are obliged to report this data breach, the details and the possible risks to the Data Protection Authority without unreasonable delay and in any case within 72 hours after we become aware of it. taken from the possible data breach.
If the breach of security potentially poses a significant risk to your rights and freedoms, we are also obliged to inform you of this as soon as possible, unless (1) we have taken appropriate technical and organizational protective measures and these measures have been applied to the personal data affected by the breach, in particular the measures that make the personal data incomprehensible to unauthorized persons, such as encryption, (2) we have subsequently taken measures to ensure that the high risk to your rights and freedoms is unlikely to recur and (3) when the communication would require disproportionate effort. In that case, a public notice or similar measure will be issued instead, informing the data subjects in an equally effective manner.
What are your rights regarding your personal data?
Your personal data are and remain your personal data. You retain full control. We therefore apply optimal transparency, fairness and legality towards you for its use, whereby you retain control of your personal data and what happens to it. Below you will find your legal rights in relation to your personal data.
1. The right to view your data
You have the right to ask us at any time what data we have about you and/or to what extent it is processed. If your personal data is processed, you also have the right to inspect that personal data, why it is processed, to whom the personal data is provided and the duration of the processing of your personal data.
You also have the right to a copy of your personal data being processed, which will be provided to you free of charge. If you request additional copies, we may charge a reasonable fee based on the administrative costs involved. If you submit your request for a copy electronically, this copy will be provided to you in a common electronic form, unless you request another arrangement. Please note that we may ask for proof of identity to verify that the personal data you request to inspect or copy is yours.
2. The right to correct your data
You may request us at any time to correct your incorrect personal data or, if it is incomplete, to supplement it. Any data processor who has received and/or processed the personal data will be immediately informed by us of your request for improvement, unless this proves to be impossible or requires a disproportionate amount of effort. Again, please note that we may request proof of identity to verify that the personal data you are requesting correction is yours.
3. The right to have your data erased
You have the right to request that we erase your personal data without unreasonable delay. We may ask you for proof of identity to verify that the personal data you request deletion is yours.
We are obliged to erase your personal data without unreasonable delay (1) when the personal data is no longer necessary for the purposes for which it was collected or processed, (2) when you withdraw your consent to the processing of your personal data and there is no other legal basis for the processing (e.g. the need to process your personal data for the performance of a contract between you and Thermalux), (3) when you object to the processing and there are no other overriding legitimate grounds for the processing, (4 ) when the personal data has been processed unlawfully, (5) when the personal data must be erased pursuant to a legal obligation to which we are subject.
Where your personal data has been disclosed to a third party data processor and we are required to delete it, we will take reasonable steps, including technical measures, taking into account available technology and implementation costs, to inform any data controller processing the personal data. state that you have requested that any link to, copy or reproduction of your personal data be deleted.
The above does not apply to the extent that the processing of your personal data is necessary (1) for the exercise of the right to freedom of expression and information, (2) for compliance with a legal processing obligation to which the controller is subject, (3) for the purpose of archiving in the public interest, scientific or historical research or statistics and (4) for the establishment, exercise or substantiation of a legal claim.
4. The right to request the limited processing of your data
You also have the right to ask us to restrict the processing of your personal data if one of the following four situations occurs:
You contest the accuracy of the personal data: In that case, the processing of your data may be limited for the time we need to verify the accuracy;
You request the restriction of the use of your personal data instead of deletion when the processing has been unlawful;
We no longer need your data, but you still need it to establish, exercise or defend your rights in a court of law;
If you have objected to the processing of your personal data, the processing may be limited pending the answer as to whether our legitimate grounds outweigh yours.
Any data processor who has received and/or processed the personal data will be notified by us immediately on de be informed of your request for processing restriction, unless this proves impossible or requires a disproportionate amount of effort.
5. The right to have your personal data returned and the right to transfer it to another controller
If the processing of your personal data is based on consent or on an agreement, you have the right to request the return of the data you entrust to us or to ask us, to the extent technically possible, to transfer your personal data to another party. controller, so that you can easily switch to another service provider.
6. Right to object to the processing of your personal data
If the processing is based on your consent or on an agreement, you can always withdraw your consent or terminate the agreement free of charge.
If the processing of your personal data is based on a general interest or on a legitimate interest of the person processing your data, you can object to this at any time for reasons relating to your specific situation. We will then cease processing unless we can demonstrate that compelling legitimate grounds for the processing override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
You always have the right to object to the processing of your personal data for direct marketing, free of charge and without giving reasons. The processing of your personal data for direct marketing will be stopped immediately following your request.
If you believe that the processing of your personal data violates applicable privacy legislation, you have the right, without prejudice to other options for legal or administrative appeal, to file a complaint with the Data Protection Authority.
You also have the right to take legal action before a Belgian court against the Data Protection Authority if your complaint is not handled, if you have not received information about the progress or outcome of your complaint within three months or if you feels aggrieved by the legally binding decision taken by the Data Protection Authority.
Without prejudice to your right to file a complaint with the Data Protection Authority, you also have the right to seek legal action against and, if you can effectively demonstrate this in detail, compensation from the controller if you you believe that your rights under applicable privacy legislation have been violated.
The use of "cookies"
During your visit to the site, ‘cookies’ may be placed on the hard drive of your computer. A cookie is a text file containing pieces of technical information (internet settings) that is placed by the server of a website in the browser of your computer or on your mobile device when you consult a website.
When you visit our website, different types of cookies may be used. The ‘functional cookies’ are the cookies that are necessary to facilitate the functioning of the website and ensure a personalized experience (for example, where applicable, the language setting).
The ‘analytical cookies’ ensure that we can map the statistics of the website. By using Google Analytics, a web analysis service offered by Google Inc., such analytical cookies are placed on your computer to analyze how visitors use the website (which pages are the most popular, what problems visitors encounter certain pages, etc.). The data collected as part of Google Analytics is stored on the servers of Google Inc. in the United States of America. By using this website, you consent to the processing of information by Google in the manner and for the purposes described above.
‘Performance cookies’ can be used to measure how many visitors have visited a particular web page or to list popular web pages. We can also find out how you arrived at our website. Based on this information, we ensure that our website can be improved and we optimize the user experience.
This privacy statement is tailored to the use of and features on this website. Any adjustments and/or changes to this website, may result in changes to this privacy statement. Thermalux may also be required to adapt this privacy statement to new legislation and/or recommendations of the Data Protection Authority or recommendations of the European Data Protection Authority. It is therefore advisable to consult this privacy statement regularly.
Applicable law and competent courts
This privacy statement is subject to the exclusive application of Belgian law. In the event of a dispute about the validity, application, interpretation or enforcement of this privacy statement, only the courts of the judicial district of Antwerp, Turnhout division have jurisdiction to hear such disputes.
Before legal action would be taken, the user and Thermalux expressly agree with the mutual intention to first try to solve the dispute amicably by contacting each other directly.