We carefully process and secure personal data to guarantee their integrity and confidentiality and, by taking the necessary technical and organisational measures, to prevent them from being lost and unlawfully used.
The controller of your personal data.
Corda Campus - Corda 6
Kempische steenweg 293 box 38,
Telephone number: +32 11 600 600
registered in the Belgian Crossroads Bank for Enterprises under number BE 0634.869.948.
- Personal data that are collected
2.1. The data that you communicate to us
You can perform a number of acts on our website for which we request you to provide a number of personal data:
- form of address, surname and first name: so that we can address you correctly when we communicate with you;
- email address: to send newsletters containing information on our products, services or relevant offers that might interest you, based on your data such as previous orders.
Do you no longer wish to receive any newsletters? Such consent can be withdrawn free of charge and without giving any reasons, at any point in time. To do so, you can unsubscribe by way of the unsubscribe link at the bottom of every newsletter or by sending an email to email@example.com.
- Telephone number: for any communication by telephone
- Company namer: for drawing up business invoices.
On various pages where personal data are requested, it is clearly pointed out to you which data you are obliged to communicate (indicated by the symbol *) or which are optional.
2.2. Automatically generated data
- IP address: an IP address is a number that your Internet Service Provider has allocated to your computer to provide you access to the internet. In general, it is presumed that an IP address does not contain any personally related information because, usually, an IP address is dynamic (it changes every time you connect to the internet). We use your IP address to combat any fraud when you place an order, for example in the case of a third party making unauthorised use of your account;
- the type and version of your navigation system;
- the internet page you last visited.
2.3. The personal data that are communicated by commercial partners
Scapta’s commercial partners guarantee it that they have obtained consent to transmit the respective personal data for direct marketing purposes.
- Roularta Business Information (Trendstop)
Chemin du Cyclotron 6
- Bisnode Belgium
- Graydon Belgium NV
Uitbreidingstraat 84-box 1
2600 Antwerp (Berchem)
VAT BE 0422.319.093
For more information on the personal data processing by said commercial partners, we would like to refer you to the statements that these parties provide on their respective websites on this.
2.4. Photograph and images
If we organise events, we will also make photographs and videos of them, which will later use in our internal and external communication through, for example, Facebook, our website, LinkedIn, Print Media, etc. Therefore, please take into account that photographs can be made of you at such events. You can inform reception if you would not want this.
- Purposes of the processing
3.1. General purposes
Your personal data are collected:
- to be able to deliver to you the services offered on the website;
- to do market research to improve the technical and substantive quality of the website;
- to adjust the content of our website to every individual visitor;
- for commercial direct marketing purposes;
- to communicate regarding registration for events or demos;
- to manage the technical administrative work of the website;
- to show personalised advertisements;
- after having made the data anonymous (data are stored in a form that enables the data subject not to be identified longer than necessary), to compile statistics or to conduct surveys relating to the number of visits to the various website components.
3.2. Communication to third parties
Your personal data are kept strictly confidential and are in no case communicated to third parties for commercial purposes. However, we de use suppliers to provide our services, such as providing IT support and dispatching newsletters. Such suppliers are contractually obliged to process such data solely as instructed by Scapta. In addition, they are contractually obliged to adequately secure such data to prevent loss of and unauthorised access the said data.
- The lawfulness of processing such data
- by way of verifiable consent: by communicating your personal data, you must expressly accept our privacy statement and you thereby agree to Scapta collecting your personal data and processing them in accordance with such privacy statement;
- is necessary to execute an agreement;
- is necessary to further legitimate interests, in particular, winning new customers.
- Period for which the data are kept
All personal data are kept for the period that is necessary for Scapta to provide the service or established within the framework of statutory obligations.
- Rights of the data subject
6.1. Right to access and rectification
You have the right at any moment whatsoever to peruse your personal data and to rectify the respective incorrect personal data.
6.2. Right to data erasure
You have the right at any moment whatsoever to erasure for the processing of your personal data referred to in point 2.3 of this privacy statement. However, Scapta need only comply with the erasure if the processing is contradictory to other statutory obligations that have the result that the data must be kept.
6.3. Right to the restriction of the processing and opposition to the processing
You can [exercise] your right to restrict the processing or to oppose the processing of your personal data. You can oppose the processing of your personal data at all times and without giving any reason.
6.4. Right to oppose automated decision-making
You have the right not to be subjected to automated decision-making, including profiling, if this is accompanied by legal consequences for the data subject. Profiling is the processing of personal data by means of an automated process without human intervention, whereby personal aspects of a natural person are evaluated with reference to such personal data.
This does not apply if:
- the decision is necessary for the formation or execution of an agreement;
- the decision is granted by a statutory provision;
- the decision is founded on the data subject’s explicit consent.
Scapta does not use automated decision-making.
- Filing a complaint
You have the right to file a complaint with a supervisory authority regarding the way in which Scapta deals with collecting and processing your personal data. Complaints relating to our privacy statement can also be sent to firstname.lastname@example.org.
You can report complaints to the privacy commission at: https://www.privacycommission.be/nl/node/245
- Security and confidentiality
Scapta has developed technically and organisationally adapted security measures to prevent personal data collected from being destroyed, lost, forged, changed, accessed without permission or disclosed to third persons by mistake and to prevent any other unauthorised processing of such data.
Under no circumstances can Scapta be regarded liable for any direct or indirect damage arising from incorrect or unlawful use of the personal data by a third party.
Cookies and similar technologies, however, do not allow systematic collection of data which could identify the users of our website. They only help us to improve the operation of our website, to understand the interests of our users and to measure how effective the content of our website. is.
9.2. What is a cookie?
9.3. Types of cookies at www.scapta.com
Cookies can be subdivided according to their origin, function and life span.
- First-party cookies are those cookies that we have stored on the scapta.com domain. They make our website function properly and raise the quality of our services.
- Third-party cookies are cookies that are stored by a domain name other than the one of the website visited by the user. If a user visits a website and a third party stores a cookie by way of such website, said cookie is a third-party cookie. For cookies stored by third parties, we would like to refer you to the statements that such parties provide on their respective websites about this. Please note: we cannot exercise any influence whatsoever on the content of such statements, nor on the content of the cookies of said third parties. These anonymous cookies serve to improve your user experience and make it more personal.
We can further subdivide the first-party and third-party cookies into the following, for example:
- Functional cookies are cookies that ensure that our website functions properly. They contain information regarding your options and preferences on our website (e.g. cookies to remember your login or registration, language preference and your products in your shopping cart). Functional cookies are, of course, first-party cookies.
- Non-functional cookies are cookies that can be stored for statistical, social, targeting and commercial purposes. They have nothing to do with the mere technical support of the website. Non-functional cookies can be first-party or third-party cookies.
- Cookies for statistical purposes make it possible to see which pages of the website you visit, where your computer is located, etc. (Google analytics, Google tag manager, Kameleon and Hotjar).
- Cookies for social purposes enable the user to share the content of the website visited via social media (Facebook, Twitter, LinkedIn, and YouTube).
- Cookies for targeting purposes make it possible to create a profile based on your surfing behaviour, so that the advertisements shown are geared to your interests (Criteo, Target2Sell, Facebook and SalesSycle).
- Cookies for commercial purposes keep track of how many and which advertisements were show to a user (Doubleclick, Google Adwords, Bing ads).
Below you will find a list of the various first-party non-functional cookies that you can find on our website:
- Facebook pixel: This cookie looks at what messages and links you are looking at. In this way, we can show you relevant advertisements on Facebook.
Below you will find a list of the various third-party non-functional cookies that you can find on our website:
- Facebook: This cookie looks at what products and pages you view. In this way, we can show you relevant advertisements on Facebook.
- LinkedIn: This cookie looks at what products and pages you view. In this way, we can show you relevant advertisements on Facebook.
- Google Analytics: here, an analytical cookie is used to collect statistical data. By using Google Analytics, we measure how you use www.scapta.com and how you found our website. These statistics provide us with a better understanding of how often our website is visited, which parts of our website is visited most often and at what levels we can optimise our website. This information is collected anonymously.
- Google Tag Manager: here, an analytical cookie is used to collect statistical data. These data enable us to improve our website.
- Hotjar: This cookie looks at what products and pages you view. In this way, we can make our website more user-friendly.
Cookies can be divided according to their life span.
- Permanent cookies: These cookies remain on the user’s device for the duration specified in the cookie. They are activated every time the user visits the website that stored such cookie (e.g. cookies stored by social media such as Facebook, Google Analytics, etc.). Most of the non-functional cookies are permanent cookies.
- Session cookies: These cookies enable us to simplify a user’s actions and to link them to one another during a browser session. A browser session starts when a user opens a browser screen and ends when the browser screen is closed. Session cookies are stored temporarily. All session cookies are removed as soon as you close the browser. Most of the functional cookies are session cookies.
9.4 Accepting cookies
9.5 Removing or switching off cookies
You can change your cookie settings in your web browser if you do not want websites to store cookies on your computer or you wish to remover your cookies. Such settings are mostly to be found in the “Options” or “Preferences” web browser menu. You can also adjust your settings to refuse all cookies or only the third-party cookies. However, if you do not wish to make use of any cookies, we can unfortunately not guarantee that our website will work properly. For example, it may be that a few functions of the webshop are lost or even that certain pages can no longer be seen at all. Moreover, refusing cookies does not mean that you will no longer see any advertisements at all. The advertisements are then no longer adjusted to your interests and are repeated more often. The manner in which your settings are adjusted differs from one browser to the next. The following links may make it easier to understand our settings better. If not, you must consult the “Help” function in your web browser for more details.
- Internet Explorer
You will see a list of all the organisations that stored cookies on your own computer and any login name by way of the following website: http://www.youronlinechoices.com. You can switch off cookies of specific parties here.
9.6. More information about cookies
You will find useful information on cookies here: www.aboutcookies.org
GENERAL PROCESSOR AGREEMENT UNDER THE GDPR
In the following paragraphs we set out how Scapta will comply with the obligations under the GDPR legislation to offer a guarantee with regard to the protection of personal data at the controller, being our customer, and Scapta as the processor.
Unless otherwise agreed, the words or expression “Controller”, “Processor”, “data subject”, “personal data”, “processing” and “breach in connection with personal data” have the same definition as described in article 4 of regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation)” or “GDPR”.
- Scapta’s obligations
2.1. Data processing
Scapta will only process data based on specific instructions from the customer.
Scapta only processes personal data that is strictly required for carrying out the agreement. Access to the data is restricted by Scapta to persons acting under its authority and who are involved with providing the services entrusted to Scapta by the controller.
A confidentiality obligation applies to the personal data that Scapta receives from the controller, unless a legal ruling orders Scapta to share the data and subject to data provision by order of the controller.
Scapta binds itself to process the personal data in a strictly confidential way and not to copy it, make it public or process the data in any way whatsoever without the explicit permission of the controller, unless the law so requires.
2.2. Technical and organisational measures
Scapta binds itself to take appropriate technical and organisational measures to protect the personal data and its processing. This will take place in such a way that the processing of the personal data complies with the requirements of the GDPR, and the protection of the rights of the data subject is guaranteed.
With the assessment of the appropriate security level, Scapta devotes special attention to the risks associated with the destruction, loss, changes to or the unlawful provision of or unlawful access to the sent, saved or otherwise processed data, be this accidently or wrongfully.
2.3. Scapta’s notification obligations
Scapta will immediately inform the controller if in its opinion an instruction from the controller comprises a breach of the GDPR or of other legal provisions concerning data protection. In that case Scapta has the option of suspending compliance with the instruction concerned until it is confirmed or changed by the controller.
Scapta provides the controller with all information it needs to comply with its own obligations relating to breaches concerning personal data in accordance with the procedure described in the GDPR.
Unless bound by law or explicitly required by the controller, Scapta will pass no data whatsoever relating to any breach in connection with data to a third party.
2.4. Processing by Scapta
Scapta undertakes to employ no other processor without specific or general, prior written permission from the controller. In the event of general written permission, Scapta will inform the controller of each intended change, in particular the addition or replacement of processors, so the controller can object to the changes as the case may be.
Should Scapta recruit another processor, Scapta is bound to impose the same obligations concerning the protection of the personal data as those determined in this agreement concluded between Scapta and the controller.
In any case Scapta remains fully liable with respect to the controller for processing by the other processor.
Within the context of our assignment we carry out the following processing:
- Provision of support on the databases of the customers
- Data migration in the context of setting up new systems or parts of them
- Analysis of data flows at the customer
- Access to the customer’s IT systems for the implementation of software solutions
2.5. Sending data outside the European Economic Area
Scapta will not send or process any personal data outside the European Economic Area without prior written agreement from the controller.
2.6. After termination of the agreement
When the agreement between Scapta and the customer is terminated, all the customer’s data will be archived and erased after 6 months.