Privacy GDPR – GDPR
The person responsible for the AVG - GDPR and other privacy laws and regulations is:
SEOboost BV – Body2fit.be
Email: [email protected]
Manager: Tom Noreilde
Contact our privacy officer?
You can reach us about the Privacy statement on the following information:
SEOboost BV – Body2fit.be
Email: [email protected]
Information about the processing of your personal data.
What does the 'processing of personal data' mean?
Within the meaning of the GDPR, personal data is understood to mean data relating to the circumstances of a person. This concerns, for example, your name, your address, your date of birth, etc.
So-called identification numbers also count as personal data if they can be linked to a person. Identification numbers include, for example, your telephone number, your customer number, your e-mail address, your bank account number, your credit card number and the IP address of your computer.
If such data is made unrecognizable and can no longer be associated with your person (this is also known as anonymization), it is no longer considered personal data.
The processing of personal data includes everything that can happen to the information, such as collecting, storing, adapting, changing, retrieving, transferring, linking or deleting.
2. We always process your data in accordance with the rules of Article 6 of the GDPR
The processing of personal data is only permitted if there is a legal basis for it, for example if you have given us your consent, if you wish to make a purchase from us or if we can demonstrate that we have a legitimate interest in processing your personal data. data.
We process your personal data for the processing of an order that you have placed in our online shop (i.e. when you conclude a purchase agreement with us).
This concerns, for example, information about which items you have placed in the shopping cart (also temporarily) and which items you ordered at what time.
If you agree and give us permission, we will also collect and process additional information about you. This concerns, for example, information about the way you visit and use our website and about your registration for our newsletter. With this additional information we can improve the quality of our website and our service.
In any case, we need your consent (or have previously obtained your consent) for all actions beyond the actual processing of an order, such as:
- Sending our newsletter
We may process your personal data without your consent, where prior consent is not possible for valid reasons, but the processing of your data is permitted by law.
There are also other cases where we process your personal data without your consent. This is then done on the basis of legitimate interests of our company or the interests of a third party (Article 6, paragraph 1, letter f GDPR).
For example, there is a legitimate interest of our company in the following cases:
- Sending newsletters to existing customers
- Making your address available to third parties or to subsidiaries of our company for advertising purposes
- Sending catalogs
If we want to claim these legitimate interests, the GDPR requires that we first check that your personal rights and freedoms are not compromised.
3. We do not keep your data longer than necessary
Your personal data will be deleted when we no longer need it and none of the aforementioned legal bases still exist. In certain cases, legal obligations may require us to retain your personal data.
When we keep your data longer for other reasons, for example to improve our service, we will only do this if you have given us your consent or if we have a legitimate interest in doing so.
If we are unable to delete your personal data for technical reasons, your data will in any case be excluded from further processing ("blocked").
4. Data protection: data transfer over a secure SSL connection
We are aware that protecting your data when shopping online is important to you. Therefore, your personal data (address, customer number, order data, etc.) is stored with us using the so-called SSL technology (Secure Socket Layer SSL 3.0, RC4 with 128-bit encryption (high), RSA 1024 bits, depending on the browser used. ) encrypted. This way we prevent unauthorized third parties from gaining access to your data. You can recognize the secure connection in your browser by the following two points: it says 'https: // …' instead of 'http: // …' in front of the web address and a closed padlock is displayed.
Would you like more information about our SSL certificate? Then double click on the displayed padlock in your browser.
When we process your personal data, if you can identify yourself, you have various rights against us under the GDPR.
1. Right of access
You can ask us whether we process personal data relating to you.
If this is the case, according to the GDPR, you can request information from us on the following topics:
(1) the purposes for which your personal data is processed;
(2) the categories of personal data being processed;
(3) the recipients or categories of recipients to whom your personal information has been or will be disclosed;
(4) the planned duration of the storage of your personal data or, if specific information about it is not available, criteria for determining the storage duration;
(5) the right to request the modification or erasure of your personal data, the right to restriction of processing of your personal data and the right to object;
(6) the right to lodge a complaint with a supervisory authority;
(7) any available information about the origin of your personal data, unless you have provided your personal data yourself;
(8) automated decision-making and profiling according to Article 22, paragraphs 1 and 4 of the GDPR and, where relevant, useful information about the underlying logic, as well as the effects and expected consequences that the automated decision-making and profiling will have on you.
You have the right to request information about whether your personal data is transferred to third countries (ie countries that are not members of the European Union) or international organisations. If this is the case, you have the right to be informed about the transfer of personal data in accordance with Article 46 of the GDPR.
2. Right to rectification
You have the right to correct and/or supplement your personal data if the data is incorrect or incomplete. We will make the correction and/or addition immediately.
3. Right to restriction of the processing of your personal data
In certain cases, you can request the restriction of the processing of your personal data:
(1) where you dispute the accuracy of your personal data, the processing of your data may be restricted for a period of time so that we have time to verify the accuracy of your personal data;
(2) where the processing of your personal data is unlawful and you do not want your personal data to be erased, you may request the restriction of the processing of your personal data instead;
(3) where we no longer need your personal data for processing purposes, but you need it for a legal claim;
(4) if you have objected to the processing and it is not yet certain whether our company's grounds override yours.
Where the processing of your personal data is restricted, the data, with the exception of its storage, will only be processed with your consent, for a legal claim or to protect the rights of another natural or legal person.
When the processing of your data is restricted by us, you will be notified by us before the restriction is lifted.
4. Right to erasure ("Right to be forgotten")
In certain cases, you can ask us to delete your personal data immediately. In the following cases, we are obliged to delete the data immediately.
(1) The personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
(2) When you withdraw your consent (see below) or there is no other legal basis for the processing of your personal data;
(3) When you object to the processing of your personal data (see below) and there are no legitimate grounds for the processing;
(4) When we have unlawfully processed your personal data;
(5) When the personal data has to be erased in order to comply with a legal obligation described in Union or Member State law.
Where we have made your personal information public and we need to delete it, we must take steps to let other companies that process your personal information know that you have asked us to erase your personal information (and all copies thereof), taking into account with the available technology and implementation costs ("Right to be forgotten").
The right to erasure does not exist when the processing of your personal data is necessary:
(1) for exercising the right to freedom of expression and information;
(2) for compliance with a legal processing obligation laid down in Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(3) for reasons of public interest in the field of public health in accordance with Article 9, paragraph 2, letter h) and i), and Article 9, paragraph 3 of the GDPR;
(4) because of a legal claim.
5. Right to have third parties informed about the rectification or erasure of personal data or about the restriction of their processing
Where you have exercised the right to have the personal information you provide corrected, deleted or restricted, we are obliged to notify all third parties to whom we have provided your personal information of this change, deletion or restriction , unless this proves impossible or involves disproportionate effort. You also have the right to be informed by us about these third parties.
6. Right to data portability
You have the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format. You also have the right to transfer this information to another company to the extent technically feasible. Freedoms and rights of other persons must not be affected by this.
7. Right to object
You have the right to object to the processing of your personal data for reasons arising from your particular situation without incurring any costs. This also applies to profiling and the emails we send to existing customers.
We will cease processing your personal data unless there are compelling legitimate grounds that outweigh your interests, rights and freedoms or where the processing of your personal data is necessary for a legal claim.
Where your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, including profiling related to direct marketing.
When you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
8. Right to withdraw consent to data processing
You have the right to withdraw your consent to the processing of your personal data at any time. The withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of the consent up to the withdrawal.
9. Automated individual decision-making, including profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects on you or which otherwise significantly affects you.
This does not apply if the decision:
(1) is necessary for the formation or performance of a contract between you and us
(2) is permitted by a Union or Member State law provision that applies to us and which also provides for appropriate measures to protect your rights, freedoms and legitimate interests
(3) is based on your express consent
In the cases mentioned in (1) and (3), we take appropriate measures to protect your rights, freedoms and legitimate interests. For example, you have the right to human intervention, the right to explain your point of view and the right to challenge the decision.
10. Right to object to the supervisory authority
You have the right to lodge a complaint with a supervisory authority, in particular in the Member State where you habitually reside, have your place of work or where the alleged infringement was committed, if you consider that the processing of your personal data is contrary to the regulations of the GDPR.
What are cookies?
Cookies are small text files that are temporarily placed on your PC, tablet or mobile phone by an internet page. The following websites place cookies or similar techniques:
Below you can read which cookies we use with their functionality.
Thanks to these cookies, you do not have to enter or download the same information every time you come back to us. Think of saving products in your shopping cart or remembering a login. In addition, the chat function with our service desk is made possible by means of cookies.
Body2fit uses Google Analytics to investigate the use of the websites in order to gain insight into how and how often websites and pages are visited. Based on this information, Body2fit can make adjustments and improvements and Body2fit ensures that the websites continue to work optimally. Body2fit processes anonymous statistics about visits to the websites.
Would you rather not have cookies?
Cookies can be easily removed via your browser. Please note that the websites may not function optimally without cookies. Below you will find a list of the most commonly used browsers and a link to more information about deleting cookies:
May 1, Otegem