PRIVACY STATEMENT of ENS CVBA version 1.0

Who are we?

Name: ENS cvba

Address: 9de Liniestraat 11EB-3200 Aarschot

Ondernemingsnummer: 0539.774.811

As we comply with the GDPR/AVG – Legislation coming from effective since 25/05/2018, we present to you this privacy statement.

Should there nevertheless be any questions after reading this statement, you can always contact our data protection officer or DPO (Data Protection Officer) contact through this channel:

info@gdprbegeleiding.be

  1. WHAT:

In it, we explain how we handle your personal data handling, what your rights are, how to assert them, etc.

  • Terms used :
  • Personal data: By this the GDPR/AVG means any info that a natural person, directly or indirectly could identify. Further referred to as “data.” The So is NOT about corporate data!!!
  • Processing: collect, record, organize, structure, store personal data, update or modify, retrieve, consult, use, provide by by means of forwarding, distributing or otherwise making available compose, align or combine, screen, erase or destroy any data.

2.WHICH:

We process the following personal data about you:

  • Name, address, phone number and/or cell phone number and e-mail address

This data came to us by:

  • 1. Dat u ze zelf aan ons heeft bezorgd tijdens of voorafgaand bij een persoonlijk onderhoud
  • 2. Door de registratie en het inloggen op onze website: www.ensolutions.be

We do not collect data by any other means.

3.GOAL:

We do this for the purpose of getting in touch with you or to remain regarding services and/or goods to be provided, following up on services and/or goods provided or to respond to any questions you may have. This is a pre-contractual or contractual relationship.

Should we, by exception, nevertheless provide other personal data received from you privately, it will only be used for 1 well-defined purpose And preserved only temporarily…:

4.PROTECTION:

We will keep your information for as long as you use our internet application and for as long as we need your personal data to give you provide a particular service or product.

Specifically:

  • Trade books: 7 years in original or electronic form where the retention period begins from January 1 of the year following the closure of the fiscal year. Here we follow Article III.86 Code of Economic Law and article 9 of the R.D. of 12/09/1983 implementing of the law of 17/07/1975 on corporate accounting.
  • Justifying records: 7 years in original or electronic form in which the retention period begins that follows the conclusion of the fiscal year. Here we follow Article II.86 Code of Economic Law.
  • Modest that do not serve as evidence against third parties: 3 years in original or copy whereby again Article III.86 of the Code of Economic Law applies ..:

5.SECURITY:

For this processing, we take appropriate technical and organizational measures to best protect your data taking into account the nature of the data and the associated risks. We do not store any special personal data and have the following measures in place for the security of your data:

  • The computers on which data are processed are protected by default with a username and a complex password.
  • All computers are equipped with a Small Office Security solution thewhich of course is always kept “up-to-date” and automatically multiple scans. All Windows installations are automatically provided with updates provided. The installation is checked at least once a month and possibly started manually.
  • The data is stored on a part of the disk set up as a “data vault.” It is encrypted and can only be accessed after booting from the computers + Windows login + opening the safe using Kaspersky and a long and complex password.
  • To avoid data loss in case of loss of the computers, we make daily backups to an encrypted cloud environment.
  • The data is first compressed, then encrypted with at least AES256 bit key and this form stored at the off-site location. Those responsible of backups cannot read data this way since the encryption key is known only by us and in a special “password manager” saved.
  • All passwords are managed by Kaspersky password manager and in the cloud environment stored.
  • Our employees are fully informed about the safe handling of your personal data and are bound by their employment contract to secrecy held.
  • Honor no records are kept on paper given the possibility of online registration and are not accessible to unauthorized persons.

History teaches us that no risk is fully avoided and should we be aware of unauthorized access to our IT systems or unlawful modification, damage or possible loss of your data, we will immediately take all necessary measures to minimize and avoid this risk in the future. This will also keep the potential damage to you very limited…:

6. TRANSFER:

We provide your data to the following parties and for purposes listed below;

  • The bookkeeper to meet our legal accounting requirements;
  • For employees: The social secretariat for the purpose of calculating wages;
  • The supplier of this application for the purpose of security and operation of this Internet application.

P.S. This concerns only your general personal data and these will not be passed on to organizations and or individuals for marketing purposes.

For other parties, we do so only after express permission from you or on your behalf.

With the above parties, we conclude processor agreements stipulating that they too must adhere to address the GDPR/AVG guidelines.

At all times, we will watch over the fact that your personal data will NOT be stored outside the EEA without a solid guarantee from any affected parties that they, too, will fully comply with GDPR/AVG legislation.You

7.YOUR RIGHTS:

The following is a summary of your rights regarding the processing of your personal data, whether it/they apply and how you can can assert these:

  • Insight: You have the right to request access to what information we hold about you and should there be any errors or omissions, ask for correction, addition and even removal.
  • Caution: If you request removal, this can only be carried out provided that we have your data no longer needed for reasons other than those cited in our purpose description point 3.

Think especially about tax and social legislation.

  • Portability: If you wish to change service providers, we will change your personal data in a digitally readable standard format, to the new organization hand over.
  • Objection Against automated decision making and profiling: Since we have this not performing this is also not applicable.
  • Objection Against data processing: This only applies if your data is be used for direct marketing but since we also do not perform this is therefore not applicable.
  • Straight On transparency: You will be informed of the contents of this privacy statement via this link, attached to any electronic contact and visibly placed in our offices.

A write-off can be provided to you upon simple request.

If you wish to assert 1 or more of these rights please then request this in writing with proof of your duplicate Opt-In verification by email and we will respond within 30 days.

8. COMPLAINTS:

Should you disagree with how we handle your handle personal data, respect your rights or this privacy statement, let please let us know first so we can respond appropriately

You can always complain to the Data Protection Authority = GBA (the old Privacy Commission) at www.gegevensbeschermingsautoriteit.be. 1000 Brussels, Press Street 35 or by mail to contact@apd-gba.be or by phone at 02/274.48.00

9.VARIA:

This privacy statement is effective January 28, 2019, viz. at the same time as the web application is displayed online.

We reserve the right to change this privacy statement to change at any time.