Who are we?
In The Air BV, Jan Van Mirlostraat 6/201, 2050 Antwerp
We provide you with this Privacy Policy because we comply with the GDPR/AVG – Legislation in force since 25/05/2018.
If you still have questions after reading this policy, you can contact our data protection officer or DPO at any time via:
info@gdprbegeleiding.be
WHAT:
In it, we explain how we handle your personal data, what your rights are, how you can exercise them, etc.
Terms used:
Personal data: the GDPR/AVG refers to any information that could directly or indirectly identify a natural person. Referred to hereafter as “data”. It does NOT concern company data!
Processing: collecting, recording, organising, structuring, storing, adapting or amending, retrieving, consulting, using, disclosing by forwarding, disseminating or making available in another way, aligning or combining, protecting, deleting or destroying personal data.
WHICH:
We process the following personal data related to you:
Name, address, telephone and/or mobile phone number and e-mail address, possibly company address and VAT number.
We obtained this data in the following manner:
- You provided it to us yourself during or prior to personal contact
- By registering and logging in on our website: www.intheair.aero
We do not collect data in any other way.
PURPOSE:
We collect your personal data to contact you or stay in touch with you regarding services and/or goods to be delivered, to follow up on services and/or goods delivered or to be able to answer your questions. This is a pre-contractual or contractual relationship.
If we exceptionally receive other personal data from you privately, it will only be used for one specific purpose and will only be stored temporarily.
STORAGE:
We will retain your data for as long as you use our Internet application and as long as we need your personal data to provide you with a particular service or product.
SECURITY:
For this processing, we take appropriate technical and organisational measures to optimally protect your data, taking into account the nature of the data and the risks involved. We do not store any special personal data and have implemented the following measures to secure your data:
The computers on which the data is processed are protected as standard with a user name and a complex password.
All the computers are equipped with a Small Office Security solution, which of course is always kept up-to-date and automatically performs multiple scans. All Windows installations are updated automatically. The installation is checked at least once a month and, if necessary, launched manually.
The data is stored on a part of the disk that is set up as a “data vault” It is encrypted and only accessible after booting up the computers + Windows login + opening the safe and is secured by a long, complex password. Windows login + opening the safe and a long and complex password.
To avoid data loss if the computers are lost, we perform daily backups to an encrypted cloud environment.
Our employees are fully informed about the secure handling of your personal data and are bound to confidentiality by their employment contract.
No records are kept on paper given the possibility of online registration, and it is not accessible to unauthorised persons.
History teaches us that risk cannot be completely ruled out, and if we become aware of any unauthorised access to our IT systems or any unauthorised alteration, corruption or possible loss of your data, we will immediately take all the necessary measures to minimise and avoid this risk in the future. This will also minimise any potential damage to you.
TRANSFER:
We pass on your data to the following parties for the purposes listed below;
The accountant, to meet our legal accounting requirements;
For employees: The social secretariat, for the purpose of calculating your wages;
The supplier of this application for the purpose of ensuring the security and operation of the Internet application.
P.S. This only concerns your general personal data and it will not be passed on to organisations and/or persons for marketing purposes.
For other parties, we will only do so with your express consent or on your instructions
We have concluded processing agreements with the above-mentioned parties which stipulate that they, too, must comply with the GDPR/AVG guidelines.
At all times we will ensure that your personal data will NOT be stored outside the EEA without a proper guarantee from any relevant parties that they too comply in full with GDPR/AVG legislation.
YOUR RIGHTS:
The following is a list of your rights concerning the processing of your personal data, whether they apply to you and how you can exercise them:
Consultation: You have the right to consult your personal data that we possess and, if it contains any errors or is incomplete, to ask us to correct it, supplement it or even delete it.
Please note: If you ask us to delete your data, we can only do so if we no longer need your data for reasons other than those mentioned in point 3, Purpose.
These mainly relate to tax and social legislation.
Transfer: If you want to change your service provider, we will transfer your personal data to the new organisation in a digitally readable standard format.
Objection to automated decision-making and profiling: This is not applicable as we do not do this.
Objection to data processing: This only applies if your data is used for direct marketing purposes, but we do not do this either, so it does not apply.
Right to transparency: You are informed of the content of this Privacy Policy via this link, as an attachment to every electronic contact and it is visibly displayed in our offices.
A copy can be provided on simple request.
If you wish to exercise one or more of these rights, please submit your request in writing with proof of your double Opt-In verification by e-mail and we will respond within 30 days.
COMPLAINTS:
If you do not agree with the way we handle your personal data, respect your rights or with this Privacy Policy, please let us know first so we can provide you with an appropriate response.
You can submit a complaint at any time to the Data Protection Authority = GBA(the former Privacy Commission) at www.gegevensbeschermingsautoriteit.be[2}[3] {4]at Rue de la Presse 35, 1000 Brussels or by e-mail to contact@apd-gba.be or by phone to 02/274.48.00
MISCELLANEOUS:
This Privacy Policy shall enter into force on 1 May 2021, i.e. at the same time as the web application becomes available online.
We reserve the right to amend this Privacy Policy at any time.