Privacy policy

 

Who we are

This privacy policy (“Privacy Policy”) governs the processing of your personal data as a part of your use of our Website (the “Website”) and the accompanying services (jointly referred to hereinafter as “Services”). This processing is performed by GeoPostcodes as data controller, with a registered office at Rue des Poissonniers 13 1000 Bruxelles, Belgium (“we”, “our“), listed with the CBE (Crossroads Bank for Enterprises) under the number BE0665934989 in accordance with the applicable legislation relating to the protection of personal data.

By using our Website and/or our Services, or you acknowledge that you have carefully read this Privacy Policy and that you unreservedly agree with it. We reserve the right to change the Privacy Policy as we deem fit. Such changes will be communicated through the Website. You can withdraw your permission at any time by addressing a request to [email protected].

This Privacy Policy was last updated on the 20/12/2022.

When you use the Website and/or Services, we process personal data relating to you. Your personal data will be processed inter alia for the following purposes (including the legal grounds):

When and on what basis?

  • Use of the website (consent and, if applicable, legitimate interest)
  • Use of the application (consent and, if applicable, legitimate interest)
  • Applying for vacancies and/or job offers (permission)

Which ones?

  • Identification information (name, first name address, e-mail, telephone, etc.)
  • Contact information

What is the reason for this?

  • Carrying out of orders (processing necessary for the execution of the contract)
  • Customer management (processing necessary for the execution of the contract)
  • Improve the customer’s user experience on the website and mobile application
  • Responding to contact requests
  • Making the application process possible

In principle, we obtain the above-mentioned personal data directly from you. However, if you choose to register through a social media account (for example Facebook, LinkedIn), this information is collected through your social media profile. We recommend that you consult the privacy policy of your social media service provider to determine which data is processed by your social media service provider when you use the social media login function.

In addition to the above-mentioned objectives, we can also process your personal data:

  1. To provide you in a personalized and efficient manner with the information on products and services that you request, either through the Website, by email, by telephone or through social media channels.
  2. To process your personal data so that we can provide the Services.

  3. For direct marketing purposes, i.e. to be able to provide you with targeted communication, promotional and other offers and any other advertisements that we or our selected partners may have available. We will ask your prior permission for this.

  4. To perform statistical analyses to improve our Website and/or Services or to develop new products or services.

  5. To provide to a financial institution or payment service provider, to enable your financial institution and the payment service provider to fulfill his, her or its statutory obligations.

  6. To transmit to the police or the judicial authorities as proof of possible crimes or if there are founded suspicions of an unlawful deed or crime that you committed by means of your registration in or the use of the Website or the Services.

  7. Within the context of a possible merger with, acquisition of/by or demerger by a third party, even if such third party is outside the EEA.

Remember that we can use so-called “cookies” or similar technology as part of the Website and/or the Services. Cookies are small text files that are stored on the hard drive of a device and that contain certain information, which sometimes includes personal data. For more information regarding our use of cookies, please read our cookie policy.

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

We do not send your personal data to third persons in a way that you can be identified without your express permission to do so if this is not necessary to provide the Services.

We can rely on external processors to offer the Website and/or Services to you. We ensure that third-party processors may only process your personal data on our behalf and pursuant to our written instructions. We guarantee that all external processors are selected with the necessary care, so that we can rest assured of the security and integrity of your personal data.

We can transmit anonymized and/or aggregated data to other organizations that can use these data to improve products and services, and to organize bespoke marketing, presentation and the sale of products and services.

We and our external processors will only process your identifiable personal data in the EEA.

We can transfer our anonymized and/or aggregated data to organizations outside the EEA. If such transfer is made, we shall ensure that there are appropriate guarantees to warrant the security and integrity of your personal data, and that all personal data rights that you might enjoy under applicable mandatory law are guaranteed.

Through the following organizations, a transfer will take place outside the EEA (European Economic Area) : 

  • Google Analytics: United-States 
  • Portal: AWS RDS in US-east-1 (North Virginia)

The data retention period varies according to the nature of the service provided. We retain your data:

  • For as long as is necessary to fulfill the purposes for which your data is collected and processed.

  • For as long as is necessary to comply with our legal, contractual and statutory obligations and to carry out our business operations.

You have the right to request access to all the personal data that we process about you. However, requests for access that are clearly submitted with a view to causing us inconvenience or damage will not be dealt with.

You have the right to request that any personal data about you that is incorrect or inaccurate be corrected free of charge. If you have registered on our Website, you can personally correct much of such data through your profile. If such a request is submitted, you must also enclose proof showing that the personal data for which you request correction is incorrect.

You have the right to withdraw previously granted permission for the processing of your personal data. You can withdraw your permission at all times by sending an email to [email protected], or by removing your profile (if applicable).

You have the right to request that personal data relating to you be removed if this is no longer needed in the light of the objectives that are outlined in this Privacy Policy or if you withdraw your processing permission. However, you must consider that a removal request to us will be assessed in the light of statutory or regulatory obligations or administrative or judicial orders, which may prevent us from removing the respective personal data.

Instead of requesting removal, you can also request that we restrict the processing or your personal data if (a) you dispute the correctness of such data, (b) the processing is unlawful or (c) the data is no longer necessary for the objectives stated but you need it to defend yourself in judicial proceedings.

You have the right to object to the processing of personal data if you can show that there are serious and justified reasons regarding special circumstances warranting such an objection. However, if the envisaged processing is noted as direct marketing, you have the right to object to such processing free of charge and without giving any reason for this.

If your personal data is processed on the basis of permission or on the basis of a contract where the data is processed automatically, you have the right to receive the personal data provided to us in a structured manner and in a generally used format that can be read by a machine and, if technically possible, you have the right to directly transmit such data to another service provider. We will be the only persons to assess the technical viability of this.

If you wish to submit a request to exercise one or more of the above-mentioned rights, you can send an email to [email protected]Such request must clearly state what right you wish to exercise and why. We will notify you immediately when such a request has been received. If it appears that the request is founded, we will grant the request as quickly as is reasonably possible and no later than thirty (30) days after the request has been received. Additional legitimation regarding your identity could be requested.

If you have a complaint regarding our processing of your personal data, you can always contact us at the following email address [email protected]. If you are still dissatisfied with our answer, then you are at liberty to file a complaint with the Belgian Data Protection Authority. For more information, go to www.dataprotectionauthority.be.