We are Energy NV, with company registration number 0872.287.544 and registered office at Schoebroekstraat 8, 3583, Beringen (“ENERGY” or “we” or “us”).
This document describes how we process personal data in our capacity of controller within the context of our website www.weareenergy.eu. We may amend this privacy statement from time to time. Make sure you read the most recent version of this privacy statement whenever you visit our website. If we make any changes that considerably impact on the processing of your personal data that are already in our possession, we will notify you of this by email.
We aim to process your personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (the “General Data Protection Regulation” or “GDPR”).
If you have any questions or comments on the way we process your personal data, please contact us using the details below.
1. How do we process your personal data?
We collect and process personal data for a number of purposes, which are described below in this part of the privacy statement, including the applicable legal basis:
Visiting our website
· IP address
· Usage data
· Language preference
• Consent for non-essential cookies
• Legitimate interest, i.e. the freedom of enterprise
If you require more information about our services, such as platforms and the testing and coaching services offered on our website, you can contact us from several locations throughout our website. You will then be taken to our contact page. You can also contact us by email, phone or in other ways. We collect and process the information you provide us, regardless of the contact method.
· Identification data (name)
· Contact details (email, phone)
· Your message, questions or suggestions as well as the information you include
· Meta data (e.g. date and time)
· Legitimate interest, to follow up on the communication.
We process your data to respond to and follow up on your question, complaint or other message.
We may use your data for direct marketing purposes if you (or your company) are one of our customers and/or if you have shown a specific interest in our products or services. You may unsubscribe at any time by clicking the “unsubscribe” button at the bottom of every marketing email.
· Identification data (name)
· Contact details (email)
· Consent or
· Legitimate interest, i.e. the freedom of enterprise
We use your personal data to inform you about our products, services and activities.
2. How long do we process your personal data?
We store and process your personal data for the time necessary for the processing purposes described herein. If we no longer need to process your personal data, we will remove the data from our systems, or encode them so you can no longer be identified.
Visiting our website
Any communication is stored in active databases for a period of two (2) years; then the data are archived for an additional period of up to ten (10) years.
Up to two (2) years after the end of the agreement.
Once the retention period has expired, the data are removed from our active databases. Data may temporarily remain in backups. These backups are regularly overwritten, so the data are ultimately permanently deleted/destroyed.
3. With whom do we share your personal data?
- We do not sell or trade your personal data.
- We may share your personal data with our payment partners, judicial officers or professional advisers, such as solicitors or accountants, if this is relevant for the assistance they provide us.
- We may share your personal data with government bodies, if we are required to do so.
- We also use various suppliers and service providers who may need certain data to be able to provide us with their services (such as hosting providers). These parties may only process your personal data if we instruct them to do so.
We are committed to securing your personal data. We take appropriate security measures to limit misuse of and unauthorised access to your personal data. This ensures that only those individuals who need it obtain access to your personal data. Our security measures are updated regularly.
6. What are your rights?
In accordance with the stipulations of the GDPR, you have several rights in regards to the personal data we process about you. We will try to elucidate your rights below in a simplified manner. The exercise of your rights may be subject to additional legal requirements.
Right to information and right of access
You have the right to obtain information from us about the processing of your personal data. You have the right to be informed whether or not we process personal data about you and, if so, to gain access to those personal data and to all additional information about the processing carried out by us.
Right to rectification
If the personal data we have in our possession are incorrect, you have the right to have the incorrect data corrected without any unnecessary delays. Did you notice an error in the data we have about you? Then let us know using the contact details below.
Right to erasure
You have the right to ask us to erase your personal data. We are required to honour this request in any of the following situations:
- If we no longer need the data for the purposes for which they were collected or otherwise processed.
- If the data are processed based on your consent, if you withdraw said consent and there is no other legal basis for processing the data.
- If you object against the processing for reasons related to your specific situation and there are no legitimate reasons for the processing.
- If we have unlawfully processed your personal data.
- If the personal data have to be erased to comply with a legal requirement we are subject to.
Right to restriction of processing
In certain cases, you have the right to obtain restriction of the processing of your data. For example, if you contest the correctness of your personal data, for an amount of time that will enable us to verify the correctness of the personal data.
Right to object
You have the right to object to the processing of your personal data if you have serious and justified reasons for doing so.
Right to data portability
If we process your personal data using an automated method, based on your consent or contractual requirement, you have the right to receive the personal data about you, which you have provided us with, in a structured, commonly used and machine-readable format and you have the right to transfer these data to another controller without any impediment from our side.
Right to withdraw consent
If the processing is based on prior consent, you have the right to withdraw this consent for the future.
Automated decision-making and profiling
You have the right to request not to be subjected to solely automated decision-making, including profiling, which would have legal consequences for you or which would similarly impact you in a significant manner.
7. How can I exercise my rights?
If you want to exercise your rights based on this privacy statement, or if you have any questions, please contact us using the contact details below. We may ask you for proof of your identity, by providing a copy of the front of your ID, for example.
You have the right to submit a complaint to the Belgian Data Protection Authority:
Data Protection Authority
Rue de la Presse 35
Tel. +32 2 274 48 00 – Fax +32 2 274 48 35
This is without prejudice to possible proceedings before a civil court. If you have incurred any damage as a result of the processing of your personal data, you may submit a claim for compensation.
8. Applicable law and jurisdiction
This privacy statement is governed by and interpreted in accordance with Belgian law. In the event of a dispute, the Courts of the judicial district of Antwerp, Hasselt division, have exclusive jurisdiction.