Privacy Policy

Who are we?

Big Industries NV (“Big Industries NV”, “we”, “us”, “our”) assists organizations in ensuring compliance with European and international privacy and data protection legislation. Big Industries NV is based in Belgium.

Why do we have a privacy policy?

Because of the nature of our business we have to process a lot of personal data. To make sure your data is protected and only used where needed we are committing ourselves to keep the highest standards on privacy. Under the GDPR (that is the new privacy law applicable within the EU) we are obliged to inform you what we do with personal data collected via electronic means. This privacy policy is therefore applicable to all information transferred to us through electronic means (website, e-mail).

 Please do note when you contact us through another electronic medium like Facebook or Twitter, the privacy policy of that website precludes this privacy policy in case of collision.

How can you reach us?

For any questions, enquiries or other actions on privacy matters you can contact us through the following channels:

  • Phone: +32 3 450 80 30

  • E-mail: info@bigindustries.be

  • Address: Veldkant 33a, 2550 Kontich

  • Website: https://bigindustries.be

What information do we collect and wherefore do we use it?

For the processing of the following data, we ask your permission. We will also process your personal data when it is necessary for the execution of the contract between you and Big Industries NV.

Information collection

 

 

 

 

 

 

 

 

 

 

 

Who has access to your data?

We, as well as our employees, have access to your data, strictly when necessary to perform a processing described above. We’ll store your data in a Microsoft Office environment, hosted and controlled by Cronos. Big Industries NV is part of the Cronos Group and Crosspoint Solutions. Your data might be transferred for internal administration or recruitment purposes within this group of undertakings. We will not transfer your data to anyone outside the EEA (European Economic Area) without your specific consent.

How long is my data kept?

In order to keep our database as up-to-date as possible, we will initially keep your data for 2 years. If there has been no contact within that period, we’ll delete your data. We’ll send you an e-mail a month before the end of this period. If you wish we’ll keep your data, you can give your consent via that e-mail for another year. If legislation requires us to keep your personal data longer (for example billing information) we will keep your data for the period described in the law.

What are my rights?

Right of access

Every person has the right to access his data. This means that we have to inform you what happens with your data and further detail your rights. In this policy you will find the answers to those questions.

We also have to provide you with a copy of your personal data. You will receive a copy on simple request through one of the above stipulated channels. Please do note that only the first copy is free of charge. We will send you the information through e-mail unless you specifically request to receive the information by post, or when an e-mail is not possible due to technical circumstances.

 It is possible that certain documents may contain personal data from other persons who enjoy the same protection as you. We therefore might have to anonymise certain documents, which could take some time. We will always inform you if we are unable to fulfil the request within one month.

Right to rectification (Right to correction)

If we are in possession of incorrect or no longer up-to-date data, we will adapt this again on simple request through one of the above-mentioned channels. If we assume that the data we have of you is no longer up-to-date, we might contact you to verify this.

 Right to erasure (Right to be forgotten)

Under a limited number of circumstances, you can ask us to delete your data. When you meet one of the criteria below, we will delete your data without delay. We will however keep your e-mail address and/or phone number and/or address and/or name on a black list, so our system will notice that you no longer wish to be contacted.

 Criteria for erasure:

  • We no longer process or need your data
  • You withdraw your consent to processing which was based solely on consent
  • You invoked your right to object (see below)
  • Your data was unlawfully processed
  • There is a legal obligation to delete the data
  • Your data was collected in relation to the offer of information society services.

 To the right to be forgotten there are also some exceptions in which case we cannot delete your data. If this would be the case, we will inform you about this. The reasons not to abide your request would be one of the following:

  • The right of freedom of expression and information prevails
  • For compliance with a legal obligation
  • For reasons of public health
  • For archiving, research or statistical purposes in accordance with article 89 of the GDPR
  • For the establishment, exercise or defence of legal claims.
Right to restriction of processing

You can request restriction of processing of your data where you assume that we are in possession of inaccurate data, or that our processing is unlawful, but you do not want us to erase your data, or if the data is needed for your legal claims or if you invoke the right to object to processing. We will cease processing (with the exception of storage) until the matter has been clarified. When the reason for restriction is no longer valid, we’ll notify you on lifting of the restriction.

Right to notification

When you invoke the above-mentioned rights, with the exception of the right to access, we’ll communicate your request to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort. We shall inform you about those recipients at your request.

Right to data portability

Any data you handed us, that we process based on consent, and which we process via automated means, will be transferred to you or another controller (if technically feasible) upon request in a machine-readable format.

Right to object

When we process data based on legitimate interest or on the basis of public interest, you have the right to object to it. We’ll investigate your objection and will only continue processing after the investigation if we can prove that we have a legal reason to continue the processing. The conclusion of the investigation will be communicated to you.

 When you object to direct marketing, we will no longer send you any direct marketing starting immediately from the moment we receive your request.

Can I withdraw consent?

Yes, at any point in time you can withdraw your consent to the processing of data. There are however two exceptions. First, if there is another legal ground for processing your data, we still will process your data on that legal ground. Secondly, withdrawing consent may not be used to circumvent contractual obligations. In short, if you withdraw consent it will only work towards the future, all previous processing will be deemed legal. If the necessity to perform a contract is present the data will be processed further on that basis.

I want to file an official complaint, where can I go?

If we were not able to satisfy your request, you always have the right to lodge a complaint. You can do so by contacting the Belgian supervisory authority via https://www.privacycommission.be/en/contact-us in an official language of Belgium.

I see some fields on your website are mandatory to fill. Why is that?

In order to comply with legal obligations or for contractual reasons, we sometimes need a minimum of information. To be able to reach out to you and identify you we only ask your name and an e-mail address. Everything else you provide to us is on a voluntary basis.

What about profiling/automated decision making?

We don’t process your data via automated decision making.

Cookies