General policy in the field of data processing and protection
The Public Waste Agency of Flanders respects your rights in the processing of your personal data. This statement explains how we collect, process and use your personal data. This privacy statement indicates the general policy in the field of data processing and protection of:
Public Waste Agency of Flanders (OVAM)
KBO number: 0842399963
Who processes your personal data?
The Public Waste Agency of Flanders (OVAM) is responsible for the processing of your personal data that are described and explained in this statement. We use Abusol BVBA as a processor for the organization of the event and Mollie B.V. as a sub-processor for the payments. They can use sub-processors. We only process personal data if this is necessary to organize the event. We always process the data in accordance with the provisions of the General Data Protection Regulation (General Data Protection Regulations (GDPR) (EU) 2016/679 ), and with the provisions of the Belgian-federal and Flemish regulations on the protection of natural persons in the processing of personal data.
If you have general questions about how we process your personal data, you can contact the OVAM data protection officer (dpo) by sending an e-mail to firstname.lastname@example.org. You can also contact the dpo with comments and suggestions and to exercise your rights.
When will we collect and process your personal data?
We collect and process your personal data when you registrate for the event. By registrating at the event, you give permission to make pictures of you at the event. We can also process your personal data if you ask us a general question.
What data do we process?
We process your personal data. These are the data that you identify or that link to you as a natural person. The data we process are contact information you provide us when registering your attendance, geo-location at the event, information collected when we record our event and payment information.
What do we process your personal data for?
We process your personal data to provide a good service at the event. We use your personal data for sending invitations, badge printing, payment registration, visitor reception and reporting.
What are the bases for the processing of your personal data?
Processing of personal data occurs only if one of the following conditions is met:
The data subject has given permission for the processing of his personal data for one or more specific purposes. This by completing the registration form on the website.
How long do we keep your personal data?
According to the general rule, we may only keep your personal data during the period in which they are necessary to provide certain services. We therefore keep your data as long as one year after the event. Then we keep your data during the period in which we have to be able to account for the services provided. After expiry of that limitation period, the data will be deleted, unless the data subject has given permission to process his personal data to keep in touch with other similar events.
In the custody, a distinction is made between the period in which your file is active and the period in which it becomes passive. Your file is active as long as you use the service provided. All employees who need your data in order to carry out their duties then have access to your data. Afterwards your file becomes passive and only a limited number of employees of the competent service have access to your data.
Do we share your personal data with others?
Your data is mainly processed internally by our employees. We may appeal to third parties who process your data for certain specific services. We provide your data to those processors as mentioned above so that they can provide the service in question. We exercise control at all times. You can request an overview of the processors to whom we appeal.
Are your personal data transferred outside the European Union?
We will not pass your details on to countries outside the European Union or international organisations. These are countries or organisations that are located outside the territory of the European Economic Area (European Union + Iceland, Norway and Liechtenstein). We may do so if we use a cloud service provider. In that case, we take all possible measures to ensure that your data is protected in accordance with European, federal and Flemish regulations.
What are your rights?
If we process your personal data in the general interest, you can oppose the processing of your data at any time. We then weigh up whether your individual interests outweigh the general interest that we aim for with the processing. If we are no longer allowed or unable to process your data, it is also not possible to grant you the service or the benefit you claim.
You can always view the data we process about you and have it corrected if necessary. You can contact the data protection officer via email@example.com. We will then request proof of your identity via the "Request for rights to personal data" form so that your details are not communicated to someone who is not entitled to it.
You can also contact the Data Protection Officer if you feel that your data is no longer relevant and should therefore be deleted.
If you do not agree with the way we process your data, you can contact our data protection officer via firstname.lastname@example.org. In addition, you can submit a complaint to the competent supervisory authority.
We have the right to change and adjust the policy. We always report changes and adjustments via the website.