PRIVACY STATEMENT – SPRONKEN ORTHOPEDIE N.V.
Last update on 23/08/2018.
The website www.spronken.com (hereinafter: the “Website”) is owned by:
Spronken Orthopedie N.V. (hereafter “Spronken”, “We” and “Our”)
Transportlaan 9, 3600 Genk
Telefoon: +32 (0)89 500 500
At Spronken we value your privacy.
We respect and protect your privacy, and find it important that you feel comfortable on our website. We therefore want to inform you in an open and transparent manner about the use of your personal data.
1. Why this Privacy Statement?
Through this Privacy Statement, we give you an insight into what information we have collected about you. As soon as you visit our website and make use of our services, you inevitably share personal data with us. For example: name, date of birth, address, contact details, IP address.
Via this personal data, we have the option to identify you as a natural person. You are identifiable as soon as we can establish a direct or indirect link between one or more personal data and you as a natural person.
We promise that we will only collect and use your personal data within the legal limits in accordance with the GDPR (regulation 2016/679).
2. Who does your personal data end up with?
2.1. Processing controller
Spronken is a ‘controller’ in the sense of the GDPR. In concrete terms, this means that we only determine which personal datais collected, voor welke doeleinden we die persoonsgegevens verzamelen en for which purposes we collect that personal data and with which means we will process that personal data.
As a controller, we are free to use so-called ‘data processors‘. A processor is a natural or legal person who processes personal data at the request of or in the name of the controller. The processor always acts in accordance with the instructions of the controller.
Spronken uses the following categories of processors:
- Companies/organisations that we have engaged for marketing purposes;
- Companies/organisations that we have engaged for hosting purposes;
- Companies/organisations that we have engaged for administrative purposes;
- Companies/organisations that we have engaged for communication purposes;
- Companies/organisations that we have engaged for security purposes;
All processors mentioned above are – under the GDPR – obliged to ensure the security and confidentiality of your personal data. A processing agreement has been concluded with all our processors.
3. What data do We collect?
We will only process the personal data that we really need to achieve the objectives for which we process them (also see Article 4).
We process the following categories of personal data:
- Personal identification data
(gender, name, first name and date of birth);
- Contact details
(place of residence, telephone number and email address);
- Electronic identification data (IP address, cookies);
We collect this personal data when you use our Website or when you use our services. Other personal data can still be collected at a later date.
4. Why do we need your personal data?
We collect your personal data to offer you an optimal, safe and personal user experience. As you make more intensive use of our Website and our services and care, we will also collect more personal data. We have the right to temporarily not perform certain operations or to cancel them completely if your personal details are missing, incorrect or incomplete.
The processing of personal data is essential for the operation of our Website and the associated services and care.
We will only process personal data for the following specific purposes:
- Customer management: customer administration, order management, deliveries, invoicing, support, complaint monitoring and sending newsletters.
If you visit our Website, we may also collect some data for statistical purposes. We need this information to optimise the use of our Website. Think of: which pages were visited, which content was found interesting, ... When you visit the Website, you declare that you agree with the data collection for statistical purposes as described above.
You always choose whether to share your personal data with us or not. That way you have a certain control. If certain personal details are incomplete or apparently incorrect, we have the right to suspend certain expected actions temporarily or permanently.
5. Transfer of personal data?
Your personal data is processed for internal use within Spronken. We can also reassure you: we will never sell, transfer or communicate your personal data to third parties, unless you have given us your explicit permission in advance or if there is a legal obligation.
6. Save my personal data?
We keep your personal data for as long as this is necessary to achieve the objectives set out in Article 3. We will remove your personal data from our database as soon as we no longer need them to achieve these goals or when you validly exercise the right to delete your personal data.
7. What are your rights?
7.1 Guarantee of a lawful and safe processing
Your personal data is always processed for legitimate purposes, as set out in Article 3. They are collected and processed in an appropriate, relevant and proportional manner, and are not kept longer than necessary to achieve the stated objectives.
7.2 Right to inspection
If you prove your identity (e.g. through a copy of your identity card), we are happy to inform you about what personal data we hold about you and what we do with that information.
Right to view is free of charge.
7.3 Right to removal
You have the right to obtain the removal of your personal data in the following cases:
- When we no longer need your personal data for the intended purposes;
- When you withdraw your consent to the processing of your personal data and there is no other legal basis that allows the processing of your personal data;
- If you have lawfully submitted an objection to the processing of your personal data;
- When your personal data is processed unlawfully;
- When we have to delete your personal data based on a legal obligation.
Please note, in certain cases we cannot help but keep your personal data for a certain period of time, even though you might prefer to be deleted 100% from our database.
7.4 Right to correction
If the information we have about you is incorrect or incomplete, we can always correct this at your request. If certain personal details (e.g. your email address or telephone number) would no longer be up to date, please inform us.
7.5 Right to restriction
In some cases you have the right to request that we limit the processing of your personal data. This applies, for example, when there is a dispute regarding the accuracy of the data, if the data is necessary for legal proceedings or during the time required for Spronken to determine that you can validly exercise your right to delete.
7.6 Right to object
You have the right to object at any time to the processing of your personal data for direct marketing purposes, profiling purposes or purposes arising from our legitimate interests. We will no longer process your personal data unless we can prove that there are compelling legal reasons that override your right to object.
7.7 Right to data portability
You have the right to receive the personal data that you have shared with us in a digitally readable standard format. In addition, you may transfer that personal data yourself or let us transfer it to another controller unless this is technically impossible.
7.8 Right to withdraw your permission
You have the right to withdraw your permission at any time, for example if you have given your permission for direct marketing or profiling purposes.
8. How can you exercise your rights?
If you want to exercise one of the rights stated above, you can send an email firstname.lastname@example.org or send a written request and proof of identity by letter to Spronken, Transportlaan 9, 3600 Genk. We promise to respond at the latest 1 month after we have received your request.
9. Possibility of submitting a complaint
9.1 Privacy Commission
If you do not agree with the way we handle your personal data, you have the right to submit a complaint to the competent supervisory authority. For Belgium this is possible via the website of the privacy committee..