Object

This Charter is established by SILO Brussels  located at Rue de Meudon 54, 1120 Brussels , registered with the Crossroads Bank for Enterprises under number: 0722.956.539 (hereinafter referred to as “the person responsible for treatment”). to inform visitors to the website hosted at the address www.silobrussels.be  (hereinafter referred to as the “website”) of the manner in which data is collected and processed by the controller. of treatment. This Charter is part of the wish of the data controller to act in complete transparency, in compliance with the law of December 8, 1992 relating to the protection of Politique de confidentialité with regard to the processing of personal data. and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing the Directive 95/46/EC (hereinafter referred to as the “General Data Protection Regulation”). The data controller pays particular attention to the protection of the privacy of its users and therefore undertakes to take the reasonable precautions required to protect the personal data collected against loss, theft, disclosure or unauthorized use. If the user wishes to react to one of the practices described below, he or she can contact the data controller at the postal address or email address specified in the “contact data” point of this Charter.

Consent

By accessing the website and using it, the user declares to have read the information described below, accepts this Charter and expressly consents to the data controller collecting and processing, in accordance with the terms and principles described in this Charter, his personal data that he communicates through the website and/or during the services offered on the website, for the purposes indicated below. The user has the right to withdraw consent at any time. Withdrawal of consent does not compromise the lawfulness of processing based on consent previously given.

What data do we collect?

By visiting and using the website, the user expressly consents to the data controller collecting and processing, according to the methods and principles described below, the following personal data:

• its domain (automatically detected by the controller’s server), including the dynamic IP address;
• their e-mail address if the user has previously revealed it, for example by sending messages or questions on the website, by communicating with the controller by e-mail, by participating in discussion forums, by accessing the restricted part of the website subject to identification, etc. ;
• all information concerning the pages that the user has consulted on the website;
• any information that the user has given voluntarily, for example in the context of information surveys and/or registrations on the website, or by accessing the restricted part of the website through identification (access to his personal account).

The data controller may also collect non-personal data. This data is called non-personal because it does not directly or indirectly identify a particular person. They may then be used for any purpose, for example to improve the website, the products and services offered or the advertising of the controller. In the event that non-personal data is combined with personal data, so that the identification of the data subjects is possible, these data will be treated as personal data until it is impossible to link them to a person particular.

Purposes of processing

Personal data is only collected and processed for the purposes mentioned below:

• ensure the management and control of the execution of the services offered;
• sending and tracking orders and invoicing;
• sending promotional information about the controller’s products and services;
• possibly sending free samples or offering services under preferential conditions;
• answer user questions;
• produce statistics;
• improve the quality of the website and the products and/or services offered by the data controller;
• transmit information about new products and/or services from the data controller;
• for direct marketing actions;
• allow better identification of the user’s interests.

The data controller may be required to carry out processing operations which are not yet provided for in this Charter. In this case, the data controller will contact the user before reusing their personal data, in order to inform them of the changes and give them the possibility, where appropriate, to refuse this reuse.

The duration of the conversation

The data controller only retains personal data for the time reasonably necessary for the purposes pursued and in accordance with legal and regulatory requirements. A customer’s personal data is kept for a maximum of 3 years after the end of the contractual relationship between this customer and the data controller. Shorter retention periods apply for certain categories of data, such as traffic data which is only kept for 12 months. At the end of the retention period, the data controller makes every effort to ensure that the personal data has been made unavailable.

Data access and copying

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven his identity (requiring a copy of the identity card), obtain free of charge the written communication or a copy of the personal data concerning him which have been collected. The Data Controller may require payment of a reasonable fee based on administrative costs for any additional copies requested by the User. When the user submits this request electronically, the information is provided in commonly used electronic form, unless the user requests otherwise. A copy of their data will be communicated to the user no later than one month after receipt of the request.

Right of rectification

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven their identity (by attaching a copy of the identity card), obtain free of charge, as soon as possible and at the latest within one month, the rectification of their personal data which is inaccurate, incomplete or irrelevant, as well as complete them if they prove to be incomplete.

• the processing is necessary for the execution of a mission of public interest or relating to the exercise of public authority vested in the controller;
• processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data (in particular where the person concerned is a child ).

The data controller may refuse to implement the user’s right of opposition when he establishes the existence of compelling and legitimate reasons justifying the processing, which override the interests or rights and freedoms of the user, or for the establishment, exercise or defense of a legal right . In the event of a dispute, the user may lodge an appeal in accordance with the “claims and complaints” point of this Charter. By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, at any time and after having proven their identity (by attaching a copy of the identity card), object, without justification and free of charge, to the processing of personal data concerning him when his data is collected for direct marketing purposes (including profiling). When personal data is processed for scientific or historical research purposes or statistical purposes in accordance with the General Data Protection Regulation, the user has the right to object, for reasons relating to his or her particular situation. , to the processing of personal data concerning him, unless the processing is necessary for the performance of a mission of public interest. The data controller is required to respond to the user’s request as soon as possible and at the latest within one month and to motivate his response when he intends not to follow up on such a request. request.

Right to restriction of processing

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven his identity (requiring a copy of the identity card), obtain the limitation of the processing of their personal data in the cases listed below:

• when the user contests the accuracy of data and only for as long as the data controller can check it;
• when the processing is unlawful and the user prefers limitation of processing to erasure;
• when, although no longer necessary for the pursuit of the purposes of the processing, the user needs it for the establishment, exercise or defense of his legal rights;
• during the time necessary to examine the well-founded nature of an opposition request submitted by the user, in other words the time for the data controller to verify the balance of interests between the legitimate interests of the responsible for the processing and those of the user.

The data controller will inform the user when the restriction of processing is lifted.

Right to erasure (right to be forgotten)

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven his identity (requiring a copy of the identity card) , obtain the erasure of personal data concerning him, when one of the following reasons applies:

• the data is no longer necessary for the purposes of the processing;
• the user has withdrawn consent to their data being processed and there is no other legal basis for the processing;
• the user objects to the processing and there is no overriding legitimate ground for the processing and/or the user exercises their specific right of opposition in relation to direct marketing (including profiling);
• the personal data have been the subject of unlawful processing;
• the personal data must be erased to comply with a legal obligation (under Union law or Member State law) to which the controller is subject;
• the personal data were collected as part of the provision of information society services aimed at children.

However, data erasure is not applicable in the following 5 cases:

• when the processing is necessary for the exercise of the right to freedom of expression and information;
• when the processing is necessary to comply with a legal obligation which requires processing provided for by Union law or by the law of the Member State to which the controller is subject, or to carry out a task in the public interest or relating to the exercise of public authority vested in the person responsible;
• when the processing is necessary for reasons of public interest in the field of public health;
• when the processing is necessary for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes and insofar as the right to erasure is likely to make it impossible or seriously compromise the realization the objectives of the treatment in question;
• when the processing is necessary for the establishment, exercise or defense of legal rights.

The data controller is required to respond to the user’s request as soon as possible and at the latest within one month and to motivate his response when he intends not to follow up on such a request. request. The user also has the right, under the same terms, to obtain, free of charge, the deletion or prohibition of use of any personal data concerning him which, taking into account the purpose of the processing, would be incomplete or irrelevant or the recording, communication or conservation of which would be prohibited or which has been retained beyond the necessary and authorized period.

Right to “data portability”

Upon written, dated and signed request sent to the data controller at the address referred to in the “contact details” point of this Charter and after having provided proof of identity (by attaching a legible copy of the identity card), the The user may at any time request to receive their personal data free of charge in a structured, commonly used and machine-readable format, in particular with a view to transmitting them to another data controller, when:

• data processing is carried out using automated processes;
• the processing is based on the consent of the user or on a contract concluded between the latter and the controller.

Under the same conditions and according to the same modalities, the user has the right to obtain from the controller that the personal data concerning him or her be transmitted directly to another person responsible for the processing of personal data, provided that this is technically possible. The right to data portability does not apply to processing which is necessary for the execution of a mission of public interest or relating to the exercise of public authority vested in the controller.

Data recipients and disclosure to third parties

The recipients of the data collected and processed are, in addition to the data controller himself, his employees or other subcontractors, his carefully selected commercial partners, located in Belgium or in the European Union, and who collaborate with the data controller. processing in the context of the marketing of products or the provision of services. In the event that the data is disclosed to third parties for direct marketing or prospecting purposes, the user will be informed in advance so that they can choose whether or not to accept this processing of their data by the third parties. By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, at any time and after having proven their identity (by attaching a copy of the identity card), oppose free of charge the transmission of your data to third parties. The data controller complies with the legal and regulatory provisions in force and will in all cases ensure that its partners, employees, subcontractors or other third parties with access to this personal data comply with this Charter. The data controller reserves the right to disclose the user’s personal data in the event that a law, legal procedure or order from a public authority makes this disclosure necessary. No transfer of personal data outside the European Union is carried out.

Use and management of “cookies”

General principles

This article provides information regarding the use of cookies on the website. This cookie management policy applies to the website. These are managed by the data controller. The website uses cookies to make navigation more useful and reliable. Some of these cookies are essential for the website to function, others help improve the user experience. Most web browsers are configured to automatically accept cookies. If the user wishes to personalize their management, they must modify their browser settings. You will find other information on this subject in the “cookies management” section of this provision. By visiting and using the website, the user expressly agrees to the management of cookies described below.

Definition of cookies

A “cookie” is a data or text file that a website’s server records temporarily or permanently on the user’s equipment (computer hard drive, tablet, smartphone, or any other device). similar) through your browser. Cookies can also be installed by third parties with whom the data controller collaborates. Cookies remember a certain amount of information, such as visitors’ language preferences or the contents of their shopping cart. Other cookies collect statistics about users of a website or ensure that graphics appear correctly and applications work properly on the website. Still others allow the content and/or advertising of a website to be adapted according to the user.

Use of cookies on the website

The website uses different types of cookies:

• Essential or technical cookies: these are cookies essential for the operation of the website, allowing good communication and intended to facilitate navigation
• Statistical or analytical cookies: these cookies make it possible to recognize and count the number of visitors and to see their browsing behavior when they visit the website. This improves user navigation and makes it easier for them to find what they are looking for;
• Functional cookies: these cookies allow specific functionalities to be activated on the website in order to improve the usability and user experience, in particular by remembering their preference choices (for example language);
• Performance cookies: these cookies collect information about how visitors use the website. They make it possible to evaluate and improve the content and performance of the website (for example by counting the number of visitors, identifying the most popular pages or clicks), and to better match commercial proposals to personal preferences. of the user;
• Advertising or commercial cookies: these are files intended to collect data relating to the profile of visitors and may be installed or read by third parties with whom the data controller collaborates in order to measure the effectiveness of an advertisement or a web page and to better adapt it to the user’s interests;
• Tracking cookies: the website uses tracking cookies via Google Analytics, with the aim of helping the data controller to measure the ways in which users interact with the content of the website, and which generates visit statistics strictly anonymously. These statistics make it possible to continually improve the website and offer the user relevant content. The controller uses Google Analytics to gain insight into website traffic, the origin of this traffic and the pages visited. This means that Google acts as a data processor. The information collected by Google Analytics is generated as anonymously as possible. For example, it is not possible to identify people who visit the website. For further information, the user is invited to consult Google’s data protection policy, available at the following address: https://www.google.com/intl/fr/policies/privacy/
• Use of sharing tools: Our website uses some social media tools in the form of sharing buttons that make it easy for visitors to share information with their friends on certain social networks. Therefore it is possible that, by visiting a page on which such a plug-in is included, you will be confronted with cookies from these websites. These sites are not managed by TKR of you | XY Design and Diffusion SA. By using these links, you agree to the privacy policies of these sites. These sites may also set a cookie if you are connected to their services. In this way, they can also collect data in order to show you, on other sites, advertisements that they consider relevant based on your interests.

The data controller may also use cookies and beacons to collect information on users’ surfing habits on the various websites and applications belonging to its advertising network. A beacon is an invisible image file that tracks the user’s navigation on one or more websites and/or applications. In addition, other commercial cookies may be installed by advertisers when their ad is displayed. Commercial cookies do not contain personal data. The information collected using commercial cookies and tags is used to measure advertising effectiveness and better personalize advertising on the Website and on other websites belonging to the advertising network or for which the controller provides advertising services. The retention period for cookies varies depending on their type: essential cookies are generally kept until the browser is closed, while functional cookies remain valid for 1 year and performance cookies for 4 years. The controller authorizes public search engines to visit the website via spiders with the sole purpose of making access and the content of the website accessible via their search engines, without the controller grants the right to archive the website. The data controller reserves the right to withdraw the authorization as formulated in this article at any time. To make offers likely to interest the user, the data controller may conclude agreements with advertising agencies on the internet. They have received authorization from the data controller to place advertisements on the website. When the user visits the website, advertising agencies may also collect information.

Cookie management

Most browsers are configured to automatically accept cookies, but all allow you to customize settings based on user preferences. If the user does not want the website to place cookies on their computer / mobile device, they can easily manage or delete them by changing their browser settings. The user can also program his browser to send him a notice when he receives a cookie and thus decide whether to accept it or not. If the user wishes to block and/or manage certain cookies, he can do so by following the link linked to your browser:

• Internet Explorer: https://windows.microsoft.com/en-us/windows-vista/block-or-allow-cookies
• Chrome: https://support.google.com/accounts/answer/61416?hl=en
• Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
• Safari: https://support.apple.com/kb/PH5042

If the user does not wish to accept cookies from Google Analytics, he can indicate this via the message concerning cookies which appears during his first visit to the website or by personalizing the settings of his browser so that he refuses cookies. To no longer be tracked by Google Analytics on any website, the user is invited to consult the following website: https://tools.google.com/dlpage/gaoptout. If the user deactivates certain cookies, it is possible that certain parts of the website will not be consultable and/or usable, or that they will only be partially so.

Security

The data controller implements appropriate technical and organizational measures to guarantee a level of security of the processing and the data collected with regard to the risks presented by the processing and the nature of the data to be protected adapted to the risk. It takes into account the state of knowledge, the costs of implementation and the nature, scope, context and purposes of the processing as well as the risks for the rights and freedoms of users. The data controller always uses encryption technologies that are recognized as industry standards within the IT sector when transferring or receiving data on the website. The data controller has implemented appropriate security measures to protect and prevent the loss, misuse or alteration of information received on the website.

Communications by post, electronic or telephone

Communication by post.

If the user communicates his postal address to the controller via the website, his data is recorded in the controller’s address file to respond to his request and to keep him informed of the products and services offered by the controller. Unless the user objects, the data controller may also communicate the data concerning the user to third parties (such as corporate groups and business partners) for direct marketing purposes. If the user does not want his data to be used for direct marketing purposes, he can indicate this when registering on the website. The user can at any time consult, correct or have his data deleted from the data controller’s file. To do this, he must contact the data controller at the address referred to in the “contact data” point of this Charter, remembering to specify his exact name and address (spelled correctly). The data controller undertakes to delete his data from the list that he shares with other companies or organizations.

Communication by telephone.

If the user communicates his telephone number to the data controller via the website, he may receive a telephone call:

• from the data controller in order to communicate information about its products, services or upcoming events;
• groups of companies and business partners with whom the controller is contractually bound.

If the user does not/no longer wishes to receive such telephone calls, he or she can contact the data controller at the address referred to in the “contact details” point of this Charter, remembering to specify his or her name as well as his exact address (spelled correctly). The data controller undertakes to delete his data from the list that he shares with other companies or organizations. If the user communicates to the controller his mobile number via the website, he will only receive messages (SMS/MMS) from the controller which are necessary to answer his questions or inform him about his orders placed online.

Communication via email.

If the user communicates his e-mail address to the data controller via the website, he may receive:

• emails from the data controller in order to communicate information about its products, services or upcoming events (for direct marketing purposes), provided that the user has expressly consented to this or is already a customer with the controller and that he has communicated his e- mail address to the controller;
• emails from corporate groups and companies/organizations to which the controller is contractually bound, for direct marketing purposes, provided that the user has explicitly consented to this.

If the user does not/no longer wishes to receive such e-mails, he or she can contact the data controller at the address referred to in the “contact data” point of this Charter, remembering to specify his or her name as well. as his exact address (spelled correctly). The data controller undertakes to delete his contact details from the list that he shares with other companies or organizations.

Claim and complaint

The user can submit a complaint to the Belgian Commission for the Protection of Privacy at the following address:

• Commission for the Protection of Privacy, Rue de la Presse, 35, 1000 Brussels
• Such. +32 2 274 48 00 – Fax. +32 2 274 48 35
• commission@privacycommission.be

The user can also file a complaint with the local court of first instance. For further information on complaints and possible avenues of appeal, the user is invited to consult the following address of the Belgian Commission for the Protection of Privacy: https://www.privacycommission.be/fr/plainte -and-recourse

Data Protection Officer

The data protection officer of the data controller is: SILO Brussels .

Contact data

For any questions and/or complaints, in particular regarding the clear and accessible nature of this Charter, the user can contact the data controller:

• By email: event@silobrussels.be
• By mail: Rue de Meudon 54, 1120 Brussels

Applicable law and competent jurisdiction

This Charter is governed by Belgian law. Any dispute relating to the interpretation or execution of this Charter will be subject to Belgian law and will fall under the exclusive jurisdiction of the courts of the judicial district of Brussels.

Miscellaneous

The data controller reserves the right to modify the provisions of this Charter at any time. Changes will be posted with a warning when they come into effect.
This version of the Charter dates from 02/13/2023 .

‍