Privacy Policy

Introduction

As a consultancy and MSSP firm, DRAC is responsible for the processing of a lot of data, including personal data.

This privacy statement helps you understand our privacy policy and clarifies what personal data we collect, why it is collected, how it is used and how we guarantee the protection of your personal data.

  • RESPONSIBLE FOR THE PROCESSING OF PERSONAL DATA

DRAC BV, with its registered office at Freddy Damsstraat 9/2, 2100 Deurne and registered with the Crossroads Bank for Enterprises under number BE 0877.963.727, is responsible for the processing of your personal data.

The manager specializes in offering tailor-made talent solutions within various sectors, including IT, logistics and finance.

  • PROCESSING OF PERSONAL DATA

These personal data are processed in accordance with Regulation 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the ‘General Data Protection Regulation’).

  • WHAT PERSONAL DATA

DRAC only processes the personal data that the data subject or his/her relatives have provided themselves, including, without limitation, via the contact form, e-mail, telephone contact, etc.:

  • Identification data: surname and first name, marital status, date of birth, address, employer, position, telephone number and e-mail address, national number and company number;
  • Biometric data: copy of an electronic identity card or passport;
  • Bank details: IBAN and BIC/SWIFT bank account numbers for invoicing and payments;
  • Billing data;
  • Information about your computer or mobile device: IP address, operating system, browser type, and geographic location;
  • Communication between the client and DRAC;
  • Any other personal data that is necessary for the performance of the services and that is provided by the client himself.

DRAC may also process personal data that has not been provided by the client himself, such as:

  • Employee, directors, customer or supplier data shared by the Client;
  • Data from public sources such as the Crossroads Bank for Enterprises, the Belgian Official Gazette and the National Bank of Belgium;
  • Data obtained from third parties, such as jurisdictions, bailiffs, notaries or government agencies.
  • PURPOSES OF THE PROCESSING OF PERSONAL DATA

For each processing, only data that is relevant to the purpose is processed. The data is processed for:

Purposes

Legal basis

Compliance with applicable laws

Legal obligation

Obligations with regard to Belgian and foreign governments

Legal obligation / Legitimate interest

Execution of DRAC missions and services

Execution of the agreement

Management of requests to information

Consent / Performance of agreement

Analyzing and improving DRAC services

Legitimate interest: improvement is necessary

Customer management

Execution of the agreement

Other specific services

Execution of the agreement

Other purposes for which explicit consent has been given

Permission

  • TRANSFER OF PERSONAL DATA

Personal data will only be processed internally or shared by DRAC with third parties if this is necessary for the purposes described above.

Communication to third parties other than service providers
DRAC may transfer personal data to legal authorities or third parties if this is required to comply with legal obligations or to protect the rights of DRAC and its clients.

Notice to Third-Party Service Providers
DRAC may share personal data with third parties, such as:

External employees or partners who perform specific tasks (e.g. auditors, IT service providers, notaries).

Suppliers of software solutions for administration and customer management.

In all cases, DRAC limits the transfer of data to what is strictly necessary and required by applicable law.

  • SAFETY MEASURES

DRAC has put in place appropriate organizational and technical measures to protect the personal data against unauthorized access, loss, or misuse. Some of these measures include:

  • Advanced security of IT systems;
  • Strict confidentiality obligation for employees and subcontractors;
  • Regular review and improvement of security procedures.

While DRAC makes every effort to protect data, the company cannot be held responsible for unauthorized access by third parties despite the security measures in place.

  • RETENTION PERIOD OF PERSONAL DATA
    • Legally required retention periodPersonal data that must be retained by law will be stored for a maximum of ten years after the end of the business relationship.
    • Other personal dataAll other data will be kept for the periods provided for by applicable law, unless a longer period is required.
    • After the expiry of the retention period, the data will be deleted, unless otherwise stipulated by legal obligations.
  • YOUR RIGHTS

As a data subject, you have the following rights in accordance with privacy legislation:

  • Right to information about the purposes of processing;
  • Right of access to your personal data;
  • Right to object to processing;
  • Right to correction of incorrect or incomplete data;
  • Right to restriction of processing;
  • Right to erasure of data (“right to be forgotten”), subject to legal obligations;
  • Right to portability of your data.

The right to submit a complaint: you can always submit a complaint to the Data Protection Authority.

  • No automated decision-making, including profiling, is used in the processing of Personal Data.
  • In application of the Law of 18 September 2017, we must refer to Article 65 of the relevant Law on the personal data of our clients, the agents and the ultimate beneficial owners of the clients.


Specifically, to exercise your rights, you can always send a written request, together with a copy of your identity card or passport, to the controller, by ordinary letter to the address of DRAC BV.

  • COMPLAINTS

Regarding the processing of personal data by DRAC, you can lodge a complaint with the Data Protection Authority, with address at Rue de la Presse 35, 1000 Brussels, tel: +32 (0)2 274 48 00, fax: +32 (0)2 274 48 35 or by e-mail [email protected].

  • ALTERATIONS

DRAC reserves the right to change or amend the privacy statement below, provided that it informs you of this via the DRAC website or by e-mail.

A change or adaptation may be made in order to comply with new legislation and/or regulations applicable in the field of personal data protection, recommendations of the Belgian Data Protection Authority, guidelines, recommendations and best practices of the European Data Protection Board and decisions of the courts and tribunals on this matter.

  • USE OF COOKIES

The DRAC website uses cookies, for which we refer to our cookie policy.

  • GOVERNING LAW

Any dispute or claim relating to the processing of personal data and Privacy Statement or any information contained herein shall be governed by Belgian law and shall fall under the exclusive jurisdiction of the courts and tribunals of Antwerp (Belgium).

  • CONTACT

If you have any questions about this privacy statement or the processing of your data, please contact:

DRAC BV Freddy Damsstraat 9/2 – 2100 Deurne
Email: [email protected]

If you would like additional general information regarding the protection of your personal data, you can always contact the Commission for the Protection of Privacy at Rue de la Presse 35, 1000 Brussels, on the telephone number: 02/274.48.00 or by e-mail [email protected] (www.privacycommission.be)

Contact us

Follow us

Linkedin

Privacy PolicyCookie Policy

NL / FR / EN