This policy and these terms and conditions shall apply from 6 October 2020:
In the course of your interaction with IN2COM, you may share personal information with us, so that we can identify you as an individual, an employee of a company, etc. (such as your full name, e-mail address, address and telephone number). These are your personal data.
The processing of personal data by IN2COM as a controller:
IN2COM collects, records and processes personal data from customers and users of its services. For example, data is communicated by the person concerned when making contact or when IN2COM is providing services on behalf of its customers.
Personal data is always processed in compliance with the principles of the privacy legislation and the General Data Protection Regulation, being the European Regulation 2016/679 of 27 April 2016 on the protection of personal data. Personal data is processed lawfully, properly and transparently in accordance with the regulations for their category and for a specified and explicit purpose.
The data processing shall be limited to what is necessary and the retention period of the personal data shall be limited to the time needed to fulfil the purposes of the processing. You can request more information about this (see rights of data subject). Personal data is adequately protected by technical and organisational measures; IN2COM processes your personal data for the following purposes, among others:
- Customer management;
- Recruitment of new employees, HR;
- Information about our professional and social activities, or any other subject that may interest you;
- To be able to contact you if this is necessary for us to be able to carry out our services;
- For the further implementation of agreements;
- To inform you about changes to our services and products;
- To be able to offer you our service and check the quality;
- Processing your payment;
- To fulfil legal obligations;
- For statistical processing;
- When the legitimate interest of the company requires it, but it is always clear to the person concerned;
Other data are collected in an automated way by “cookies” and other systems/applications that collect information. More information can be found on our website.
In connection with these objectives, processors/subcontractors may be appointed by IN2COM in order to ensure that our services are provided in the best possible way, such as our suppliers, accountants, lawyers, insurance companies, administration, etc. Personal data may be passed on to these parties if necessary. These professional parties act in accordance with the applicable privacy legislation and in accordance with guarantees such as our terms and conditions (infra). You can obtain information about this from our Data Protection Officer.
IN2COM as Processor
In the services IN2COM provides on behalf of the customer ‘e.g. customer service’, IN2COM sometimes gets access to (personal) data of the customer. In such cases, the customer will have the role of “Controller” and IN2COM the role of “Processor”, as described in the GDPR. IN2COM has ‘Data Protection Terms and Conditions’ with its customers and professional parties which can be found at the bottom of this document or a data protection agreement or other legally binding acts. In these cases, as a data subject, you will need to contact the Controller regarding your question or your question will be sent to the Controller to be answered by IN2COM.
Rights of the data subject
If you want to consult, transfer, amend, correct, limit or delete your data, you can send an e-mail to this effect free of charge, provided that you provide proof of your identity, to the e-mail address at which you can reach our Data Protection Officer; Infosecurity@in2com.com. In the same way, you can also object to the processing of personal data or if you wish to terminate the communication.
You also have the right to ask not to be contacted for direct marketing purposes, either by IN2COM, in which case you can send your request to Infosecurity@in2com.com , or by any company, in which case you can register on the ‘don’t-call-me’ register provided for by law through the following website: www.bel-me-niet-meer.be or www.ne-m-appelez-plus.be.
The data will be adjusted or deleted as far as possible and as far as the technical possibilities allow. Your request will be dealt with as quickly as possible. Your request will be met as far as possible, except if this turns out to be impossible due to the company’s interest or a legal obligation. In the event that IN2COM acts as a Processor, the question should be addressed to the Processor.
In the event of a data incident that threatens your rights and the protection of your personal data, the supervisory authority will be informed and, in the event of a high risk to the rights and freedoms of natural persons, you will be informed as a data subject.
Security and confidentiality
IN2COM is making considerable efforts to implement security measures, adapted at technical and organisational level, in order to avoid the destruction, loss, falsification, modification, unauthorised access or accidental communication to third parties of personal data collected on the website, as well as any other unauthorised processing of that data. In no event shall IN2COM be held liable for any direct or indirect damage resulting from the incorrect or illegal use by a third party of the personal data.
All data will always be treated confidentially.
If you have the impression that your data is not properly secured or there are indications of misuse, please contact us at Infosecurity@in2com.com.
Accuracy of your data
Anyone who provides data to IN2COM guarantees that this data is correct and complete. The communication of incorrect data or data belonging to third parties may result in the user being temporarily or permanently denied access, in whole or in part, to the products and services of the IN2COM.
Our website and/or service is not intended to collect information about website visitors who are under 16 years of age unless they have permission from their parents or guardian. However, we cannot control whether a website visitor is over 16 years of age. We therefore recommend that parents be involved in the online activities of their children in order to prevent data being collected on children without parental permission. If you are convinced that we have collected personal data on a minor without such consent, please contact us at Infosecurity@in2com.com and we will delete this information.
Intellectual property rights
The contents of this site, including brands, logos, drawings, data, product or company names, texts, images, etc. are protected by intellectual rights and belong to IN2COM or entitled third parties.
Information on the website
By using this website, you undertake to comply with and accept the following terms and conditions of use. IN2COM owns the exclusive copyright and intellectual property rights to this website, its design and entire contents. Use of this website, or parts thereof, in any form whatsoever, is prohibited without IN2COM’s prior written consent.
It is prohibited without prior written consent to store (other than necessary to view the website), reproduce, modify, publish, distribute or transmit, sell or otherwise transfer or grant any rights to third parties in respect of the information provided on and through this website.
The information on the website is of a general nature. The information is not adapted to personal or specific circumstances, and therefore cannot be considered as personal, professional or legal advice to the user.
The website may contain hyperlinks to websites or pages of third parties, or refer to them indirectly. The placing of links to these websites or pages in no way implies any implicit approval of their content.
IN2COM expressly declares that it has no control over the content or other characteristics of these websites and cannot under any circumstances be held liable for their content or characteristics or for any other form of damage resulting from their use.
This Privacy Statement can be amended from time to time, taking into account, among other things, the new laws and regulations or developments in this regard. The amendments will automatically take effect after publication.
If any of the foregoing provisions regarding the processing of personal data or any other provision should be invalid, all parties agree that it will be replaced by a provision that will approximate as closely as possible the underlying purpose of the provision in question.
The Belgian Authorities (e.g. the Data Protection Authority) and the courts competent for the registered office are, to the exclusion of all others, competent to take cognisance of disputes and complaints that might arise with regard to this website or its use or with regard to the processing of personal data or any other dispute.
For compliance with applicable laws, about rights and obligations arising from the General Data Protection Regulation or for the follow-up of a possible information security incident, please contact firstname.lastname@example.org;
IN2COM NV- 0448.951.632- Woluwelaan 158 – 1831 Machelen (Brab.)
General Data Protection Conditions for the Professional Relationships of IN2COM
IN2COM and Parties with which IN2COM has professional relationships (Customers/Suppliers/…) comply with all legal obligations, including the EU General Data Protection Regulation (EU 2016/679 – hereinafter GDPR) when processing personal data. Personal data is processed in a lawful, proper and transparent manner and for a specified and explicit purpose. The data processing is limited to what is necessary in relation to professional performance and the retention period of the personal data is limited to as long as necessary in relation to the realisation of the purposes of the processing.
Personal data is appropriately protected by technical and organisational measures. IN2COM, the customer, their employees, affiliated companies and their processors all handle the personal data in a confidential manner. IN2COM makes efforts to provide appropriate administrative, physical and technical security measures to protect personal data against accidental or unlawful destruction, accidental loss, falsification, unauthorised disclosure and unauthorised access.
Personal data will not be transferred outside the European Economic Area (EEA) unless adequate safeguards are provided in accordance with the GDPR.
The Customer expressly authorises IN2COM to appoint Processors in order to carry out the processing activities that are the subject of the agreement/relationship in force between the Parties. IN2COM shall conclude a Processing Agreement or other legal act with these Processors that shall contain protective provisions at least equivalent to those set out in this document.
The Customer/Supplier will ensure that all Personal Data provided to IN2COM by or on behalf of the Customer has been collected fairly and transparently and in compliance with applicable regulations. IN2COM will, taking into account the nature of the processing, through appropriate technical and organisational measures, provide assistance in responding to requests concerning the rights of the Data Subject to the extent possible. The Customer will reimburse these assistance services.
IN2COM as Controller
IN2COM as Processor
In the course of the services IN2COM provides for the Customer, IN2COM will sometimes have access to personal data of the Customer. In such situations, the Customer will have the role of “Controller” and IN2COM the role of “Processor”, as described in the GDPR.
IN2COM will process these personal data according to the Customer’s instructions and/or in accordance with the provision of the services from the agreement between IN2COM and the Customer, or as required by law, regulatory body or competent authority. In the latter case, IN2COM will inform the Customer in advance to the extent possible, unless prohibited by the relevant law, regulatory body or competent authority. The foregoing determines the subject matter and duration of the processing, the nature and purpose of the processing, the type of personal data and the categories of data subjects.
The Customer accepts that it is the primary controller of the processing of Personal Data. IN2COM shall, taking into account the nature of the processing and the information available to it, assist the Customer to the extent possible in enforcing its obligations under Articles 32 to 36 GDPR. The customer shall reimburse all such assistance services.
- Assistance with security of processing (Article 32 GDPR).
- Assistance with data incidents (Articles 33 and 34 GDPR) – IN2COM shall inform the customer without unreasonable delay as soon as it becomes aware of a breach related to Personal Data.
- Assistance regarding a Privacy Impact Assessment (Articles 35 and 36 GDPR) – Where a type of processing presents a high risk to the rights and freedoms of natural persons, the customer shall carry out an assessment of the impact of the intended processing activities on the protection of personal data in accordance with Articles 35 and 36 GDPR prior to the processing.
Upon written request from the Customer, IN2COM shall make available the information necessary to demonstrate compliance with the obligations set out in Article 28 GDPR and, in addition, to enable audits, inspections or checks. In addition, IN2COM shall notify the customer if an instruction is manifestly in breach of the GDPR and IN2COM is aware of this. The customer shall reimburse all such assistance.
Upon the termination of this Agreement, IN2COM shall, if requested by the Customer, return or destroy the Personal Data and/or existing copies, as far as reasonably possible. IN2COM will confirm that it has done so (except where a relevant law or Authority requires IN2COM to retain a copy of the Personal Data).
For the avoidance of doubt, nothing in this point obliges IN2COM to destroy copies of data that it holds on its own behalf as Controller.
IN2COM’s total liability shall in any event not exceed the total amount of costs paid by the Customer as specified in the agreement with the Customer, up to a maximum of 2.500 euros unless otherwise agreed. For any other damage, there is a maximum of €1000. This general provision also applies to the following provisions regarding liability in this document, unless otherwise agreed between the parties. The liability of IN2COM is in any case always limited to direct damage caused by serious fault or fraud.
Liability due to use of website
However, IN2COM cannot be held liable for direct or indirect damage resulting from the use of the information on this site. If you discover any inaccuracies in the information provided via the site, please contact the site administrator. The content of the site (including links) may be adapted, modified or supplemented at any time without notice or notification. IN2COM does not guarantee the proper functioning of the website and cannot be held liable in any way for the poor functioning or temporary (un)availability of the website or for any form of damage, direct or indirect, which may arise from access to or use of the website. IN2COM may not, under any circumstances, be held liable to anyone, directly or indirectly, in any specific or other way, for damage resulting from the use of this site or of any other site, in particular as a result of links or hyperlinks, including, without limitation, any loss, work interruptions, damage to programmes or other data on the computer system, to equipment, software or other items owned by the user.
Liability for data protection as Processor
The liability of IN2COM shall always be limited to those cases specifically provided for in the GDPR within the framework of the capacity with regard to the professional relationship. IN2COM shall only be liable for damage caused by processing if, during processing, the obligations of the GDPR specifically addressed to Processors were not fulfilled or were acted upon outside or contrary to the instructions of the Controller. IN2COM’s liability is in all cases limited to direct damage and in the event of gross negligence or fraud. The Customer will indemnify IN2COM at all times against all claims from third parties.
If any of the foregoing provisions regarding the processing of personal data or any other provision should be invalid, all parties agree that it will be replaced by a provision that will approximate as closely as possible to the underlying purpose of the provision in question.
These Terms and Conditions at IN2COM are governed by Belgian law and were originally written in Dutch; in the event of interpretation, the Dutch version must be used.
The Belgian Authorities (e.g. the Data Protection Authority) and the courts competent for IN2COM’s registered office are, to the exclusion of all others, competent to take cognisance of disputes and complaints that might arise in relation to this website or its use or with regard to the processing of personal data or any other dispute.
For compliance with applicable laws, about rights and obligations arising from the General Data Protection Regulation or for the follow-up of a possible information security incident, please contact email@example.com
IN2COM NV- 0448.951.632- Woluwelaan 158 – 1831 Machelen (Brab.)