| ICT Recht

This Privacy policy was last updated in July 2018

Dear visitor,

We value and respect your privacy. We have drafted this privacy and cookie policy to explain to you why we may process personal data and how your privacy is protected when you entrust your personal data to us.

In our processing of personal data, we comply with laws and regulations that apply to us, including the General Data Protection Regulation (GDPR). We wholeheartedly support the notion that you should be in control of your personal data. Therefore, we do our utmost to inform you as well as possible about our processing activities and your rights with respect to your data, using clear and plain language. 

If you nevertheless have any questions or desire more information, please contact Legal ICT via +32 (0)2 535 77 55 or info@legalict.com.

SUMMARY

• We provide legal services, information and books relating to ICT and Internet law. If you would like to know how your organisation can comply with the GDPR and other laws and regulations, please don’t hesitate to contact us.
• Data you provide when you contact us, will be used to respond to you.
• When you purchase something from us, we process your data to prepare or perform a contract with your company or another kind of professional organisation you work for.
• You may receive our newsletter with information about our services and important developments of our company, if you have actively subscribed to it. If you have purchased any product or service from us, we may also use your contact details to send you information about similar products or services.
• We use appropriate security measures to protect your data.
• We do not sell your data to any third party in any way.

HOW WE PROTECT YOUR PRIVACY AND IMPLEMENT YOUR RIGHTS

Here are some important things we do to protect your privacy and personal data and to implement your rights. For example, we:

• clearly state our identity as a ‘controller’ of your personal data and how you can contact us with questions or requests about your privacy;
• clearly explain (in this privacy and cookie policy) for what legitimate purposes and interests and under which legal basis we process personal data;
• clearly state which kinds of parties may need to receive your personal data from us and why;
• first request your express consent to the processing of your personal data in cases where your consent is required, giving you the right to withdraw your consent at any time;
• limit our processing of personal data and how long we store it to what we deem necessary for our legitimate purposes;
• implement appropriate security measures to protect your personal data, and demand the same of any party processing personal data on our instructions;
• respect your right to request inspection of your personal data and have them corrected or deleted, or to restrict our processing of it.

If you would like to know more about why we may need to process personal data and how we protect it, please continue reading this Privacy Policy.

OUR PURPOSES AND LEGAL BASIS FOR PROCESSING PERSONAL DATA

Your personal data is any information which says something about you, as an identified or identifiable human being. This includes not just your name, but also online identifiers, such as an IP address or cookie ID. (To improve readability we sometimes refer to your personal data by simply saying ‘your data’.)

By interacting with us, you may cause us to process some of your personal data. Which of your data we may process and why, depends on how you choose to interact with us and the context in which you provide information to us.

In general, we process personal data for the following purposes:

• to give you access to our website at legalict.com;
• to enable you to contact us and request services, products, or information from us;
• to prepare or perform an agreement with your organisation to provide our services;
• to analyse statistics and optimise our website;
• to market and advertise our services and, if you have given consent, use cookies and similar technologies for this purpose;
• if you have subscribed to our newsletter, we send you electronic messages to keep you up to date about our commercial developments and offers;
• if you have already purchased our services, we may send you electronic messages about similar services if we consider this relevant for you;
• to enable you to apply for a job at Legal ICT, and to process your application;
• to process and respond to your questions and requests, for example via a contact form on our website or via e-mail.

The following section provides some key examples of how you may interact with us and which personal data may be processed by us as a result and why.

Visiting our website

By visiting our website, you may automatically provide us with some technical information transferred by your web browser. This automatic transfer (contrary to a form you consciously fill out) typically includes the following categories of data:

• public IP address of your device;
• requested page and time;
• ‘user agent’ information, which typically includes information such as your operating system and browser type, version and language.

These kinds of data are necessary to enable you to access the website (such as your IP-address), or to correctly load its content (such as ‘user agent’ information). This processing is based on your consent (because you chose to access our website), and our legitimate interest to enable you to properly access and use our website and its features. We may also process such data for our legitimate interest to safeguard the security of our website, to find and fix bugs, and to make other improvements.

Browsing our website will also cause cookies to be saved on and read from your device. More information about our use of cookies is provided further below.

Contacting us and requesting services or information from us

We publish our contact details and a contact form on our website, to enable you to contact us with a question or request. In this case, any information that is provided by you is used to respond to your question or request. We do our utmost to always respond in a prompt and helpful manner.

Purchasing and receiving services from us

When you (on behalf of your organisation) proceed to request, purchase and/or use the right to use any of our products and/or services, further information may be requested from you or your organisation (such as bank account and other information for invoicing and payment) and processed accordingly. This processing is based on the legal ground of our legitimate interest in performing a contract with your organisation or taking steps at your request before entering into a contract with your organisation. In addition, invoices are stored to comply with legal (tax) obligations, as contained in relevant (tax) laws.

Applying for a job with us

On our ‘working at Legal ICT’ section of our website, we provide the opportunity to apply for a job with us. For this purpose, you will typically need to provide information such as your name, contact details, CV or resume, and motivation letter.

Screening

As a part of the application and screening process, we may look up publicly accessible information about you online, such as your publicly accessible social media profiles, if you have any. If we find any such information, we may use it in the application process in order to make a decision about hiring you or not. We don’t reject applicants based on the screening alone, and if we find anything in the screening process that we deem important for our decision-making process, we will discuss it with the applicant.

Legal basis

The legal grounds for processing your information in the context of your application for a job with us are your consent, to take actions at your request before entering into a contract with you, and our legitimate interest to assess your application in order to decide whether to hire you.

Recipients

During the application process, your application and associated information may be sent to our external HR consultants, if we require their help concerning your application. With your consent, we may forward your application to other entities within our corporate group, if your application may be (more) relevant to another entity than the entity where you have applied.

Newsletter

You have the option to subscribe to our newsletter with information about our services and important developments of our company. Your subscription will remain active until you unsubscribe. Each newsletter includes an option to unsubscribe.

When you react to content (such as a blog post) on our website
It is possible to react to certain content on our website, such as our blog posts. In that case we ask you to submit your name and e-mail address. In addition, you have the option to submit the (domain) name of your website.

If we decide to publish your reaction, your name (and website, if provided by you) will be published with your reaction. Your e-mail address will not be published but is required for us to be able to contact you about your reaction if necessary. In exceptional cases we may need to contact you about your reaction to ask you something about it or to give you a private response rather than a public one on our website.

The information you submit with your response, will be stored by us for as long as our content with your reaction stays published.

In order to defend our website against automated spam, we use the services of Akismet. When you submit your reaction, some data may be processed by Akismet for this purpose. For more information about this, please be referred to the privacy policy of Akismet.

Other questions or communications

If you use e-mail, phone or our contact form to ask us a question or provide feedback, we use the information provided by you to follow up on this. In this case, the legal grounds for processing your personal data are your consent and our legitimate interest to respond to your question or feedback.

RETENTION PERIODS

In accordance with the principle of data minimisation and storage limitation, we try to ensure that we don’t process more personal data than we need, and that we don’t store it for longer than we need it.

At any moment, you may request us to delete, correct, remove or block access to your personal data. For more information about your rights, please see the section “your rights regarding your data” below.

Technical data for accessing the website

Technical data to enable you to access our website and associated logs, may be stored for a period that is reasonable for the purposes described above. Such logs are normally stored for no longer than one month. An exception may apply if we are legally required to store this data (for example if we are legally compelled to do so by a competent authority), or if we need it as proof (for example of an attempt to compromise the security of our website).

Requests and correspondence

We process your request and correspondence with you for as long as the correspondence is ongoing. Individual personnel members of ours may store correspondence with you on the basis that they are also a data subject in the correspondence.

If you have provided us your contact data because you are interested in our products or services, we will keep this information for that purpose, until you ask us to remove your data.

Data processed in providing our services to your organisation

The data processed to deliver services to your organisation may be stored for 20 years, in accordance with the general limitation period of legal claims. If we are certain that your personal data is no longer needed for this, we will delete it sooner.

Job applications

Your application is stored for 6 weeks after the application process has ended. This enables us to contact you if our first candidate proves unsuitable during a trial period. If you have given us permission to store your data for a longer period, we will store your data for up to 1 year after the application has ended.

Invoices

We store invoices for 7 years, or whichever period may be prescribed under applicable tax law.

CONFIDENTIALITY AND AUTHORIZED RECIPIENTS

We do not provide your personal data to third parties, unless this is necessary to perform our agreement with you or if we are legally required to do so (for example if the judiciary authorities demand any data from us). If we need to engage any external party to process your personal data, we conclude a data processing agreement with that party in order to protect your personal data.

Our specialist hosting provider, who keeps our website online, may have technical access to any data processed via the website.This company is required to treat this information as confidential and only process it to keep our website available and running smoothly.

If you purchase a book, your address information will be processed by the delivery company to deliver the book to you.

COOKIES

Cookies are small information files that can be automatically stored on or read from the device (such as a PC, tablet or smartphone) of the website visitor, while visiting a website. This is done through the web browser on the device.

Our website uses cookies and similar technologies (collectively called ‘cookie’ for simplicity) which may store or read information on your device. Cookies are placed by us ourselves and also via our external service providers.

We use the following cookies:

Some of the relevant parties who provide these cookies are located in the United States (US). Prior to engaging any such parties, we make sure that additional safeguards are implemented, such as the Model Contract Clauses established under European Union (EU) law, and/or a certification under the EU-US Privacy Shield.These additional safeguards help to protect your personal data even when it is processed outside of the EU, as required under EU privacy laws and regulations.

Disabling cookies

You can prevent the placement of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of this and many other websites that you visit. Disabling cookies will usually result in also disabling some functionality and certain features of this website. Therefore, it is recommended not to disable cookies.

Removing cookies

Most cookies have an expiration date. This means that they will automatically expire after a certain period and no longer register any data concerning your visit of the website. Another option is to remove the cookies manually before the expiration date. To know how to do this, you may consult the instruction manual of your browser.

SECURITY

We take appropriate security measures to limit and prevent misuse of and unauthorised access to your personal data. More specifically, we take the following measures:

• Our hosting provider is ISO 27001 and ISO 9001 certified;
• Laptops and phones of our legal advisers are password-protected and encrypted;
• Online systems used for communication, collaboration and backup are protected by 2-factor authentication;
• Our physical premises are secured using measures such as access chips and CCTV;
• Access to data and systems is restricted on need-to-know basis;
• Online data transfer is protected using Transport Layer Security (TLS) technology.

We work digitally as much as possible. Old papers are shredded and digital documents are secured.

THIRD-PARTY WEBSITES

This policy does not apply to third-party websites which our website may provide a hyperlink to. We cannot guarantee that such third parties handle your personal data carefully and securely. We recommend that you read the privacy policies of their websites.

CHANGES TO THIS PRIVACY AND COOKIE POLICY

We reserve the right to change this policy. A new version may be published on our website at any time. We recommend that you check this policy regularly, so that you are informed of any changes. We will not change our purposes of processing your personal data without your prior consent or another valid legal basis.

NATIONAL SUPERVISORY AUTHORITY

If you have any complaints about our processing of your personal data, we will do our utmost to help you quickly and effectively. In accordance with EU privacy laws and regulations, you have the right to lodge a complaint with the national supervisory authority responsible for the protection of personal data against our processing of your personal data. You can contact the Belgian Data Protection Authority here.

YOUR RIGHTS WITH RESPECT TO YOUR DATA

Under the GDPR you have the right to request us:

• to access the personal data which we have about you;
• to have us correct personal data if it is incorrect;
• to have us erase personal data if it is no longer needed;
• to restrict us from certain processing activities, while keeping your data;
• to revoke your consent for processing.

To prevent that somebody pretending to be you can get access to your data or get us to erase or change it, we may ask you to provide proper proof of your identity.

We may not be able to provide our products or services to you and your organisation, or keep you adequately informed about these, without processing some of your personal data. If you revoke your consent while consent is not the only legal basis for processing your information, we may continue our processing if this is necessary and justified on another legal basis.

CONTACT DETAILS

If you have any questions about your privacy or about this privacy and cookie policy, you can contact us via the following contact details:

Company name:            Legal ICT bvba

Website:                        www.legalict.com

Address:                        Avenue Louise 65, 1050 Brussels

Company number:        0696.909.465

Telephone:                   +32 (0)2 808 17 41

e-mail:                           info@legalict.com

This privacy and cookie policy was most recently revised in July 2018.