Pri­va­cy Poli­cy

First of all, we are exci­ted that you are inte­res­ted in BMI Leisu­re.

In this pri­va­cy state­ment, we docu­ment the way Per­so­nal Data is pro­ces­sed by us.

It is pos­si­ble that we will ask you to share cer­tain Per­so­nal Data with us, inclu­ding but not limi­ted to your first name, last name, e‑mail address (iden­ti­fi­ca­ti­on data). Con­cer­ning cer­tain legal obli­ga­ti­ons, you might have to pro­vi­de us with addi­tio­nal data for us to com­ply with said obli­ga­ti­ons.

We only collect Per­so­nal Data that is necessa­ry to inform you about our pro­ducts and ser­vices, to exe­cu­te agree­ments with you, and to con­ta­ct you.

The legal grounds for the pro­ces­sing of your Per­so­nal Data are the exe­cu­ti­on of an agree­ment, a legal obli­ga­ti­on, our legi­ti­ma­te inte­rest, and, in some cases, your con­sent (Arti­cle 2).

The pro­ces­sing of your Per­so­nal Data is sub­ject to this pri­va­cy state­ment. In case you have ques­ti­ons or remarks, plea­se con­ta­ct privacy@​bmileisure.​com.

By pro­vi­ding Per­so­nal Data you are deemed to have ack­now­led­ged the use of your Per­so­nal Data in accordance with this pri­va­cy state­ment.

Arti­cle 1 – Defi­ni­ti­ons

Affi­lia­ted Com­pa­ny” means a com­pa­ny which BMI Leisu­re is affi­lia­ted, pro­vi­ded that such com­pa­ny meets the con­di­ti­ons for an affi­lia­ted com­pa­ny” as set out in Arti­cle 11 of the Bel­gi­an Com­pa­ny Code.

Con­trol­ler” has the mea­ning as defi­ned in the Gene­ral Data Pro­tec­tion Regu­la­ti­on 2016/679. BMI Leisu­re will be qua­li­fied as the Con­trol­ler, which deter­mi­nes the pur­po­ses and means of the pro­ces­sing of Per­so­nal Data.

Per­so­nal Data” has the mea­ning as defi­ned in the Gene­ral Data Pro­tec­tion Regu­la­ti­on 2016/679, which is any infor­ma­ti­on rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son (also cal­led the data sub­ject”).

Pro­ces­sor” has the mea­ning as defi­ned in the Gene­ral Data Pro­tec­tion Regu­la­ti­on 2016/679, which pro­ces­ses Per­so­nal Data on behalf of the Con­trol­ler.

BMI Leisu­re” is the tra­de­na­me of Busi­ness & Mar­ke­ting Impro­ve­ment NV, a com­pa­ny with a regis­tered office situa­ted at 2440 Geel, Mol­se­weg 160, regis­tered in the Bel­gi­an Cross­road Bank for Enter­pri­ses with num­ber 0562.755.594.

Web­site” means the web­site www​.bmi​leisu​re​.com.

Arti­cle 2 – Pur­po­ses and legal grounds

Cli­ent data

In the frame­work of our ser­vices and com­mer­cial acti­vi­ties we collect and pro­cess iden­ti­ty and con­ta­ct data of our cli­ents, their per­son­nel, col­la­bo­ra­tors, asso­cia­tes, and any use­ful con­ta­cts. The pur­po­ses of this pro­ces­sing are the exe­cu­ti­on of the agree­ments with our cli­ents, cus­to­mer care, book­kee­ping, and direct mar­ke­ting pur­po­ses such as the sen­ding of pro­mo­tio­nal or com­mer­cial infor­ma­ti­on. The legal grounds are the exe­cu­ti­on of an agree­ment, the ful­fill­ment of legal and regu­la­to­ry obli­ga­ti­ons, our legi­ti­ma­te inte­rest, and, in some cases, your con­sent.

Sup­plier and sub­con­trac­tor data

We collect and pro­cess the iden­ti­ty and con­ta­ct data of our sup­pliers and sub­con­trac­tors, their sub­con­trac­tors, their per­son­nel, col­la­bo­ra­tors, asso­cia­tes, and any use­ful con­ta­cts. The pur­po­ses of this pro­ces­sing are the exe­cu­ti­on of the agreement(s), supplier/​subcontractor care, book­kee­ping, and direct mar­ke­ting pur­po­ses such as the sen­ding of pro­mo­tio­nal or com­mer­cial infor­ma­ti­on. The legal grounds are the exe­cu­ti­on of an agree­ment, the ful­fill­ment of legal and regu­la­to­ry obli­ga­ti­ons, and/​or our legi­ti­ma­te inte­rest (for direct mar­ke­ting).

Per­son­nel data

We pro­cess the Per­so­nal Data of our employees in rela­ti­on to our per­son­nel and our staf­fing ser­vices and our sala­ry admi­nis­tra­ti­on ser­vices.

Other data

Bes­i­des cli­ent, supplier/​subcontractor, and per­son­nel data, we pro­cess the Per­so­nal Data of other peop­le, such as poten­ti­al new clients/​prospects, use­ful con­ta­cts wit­hin our sec­tor, net­wor­king con­ta­cts, etc.

The­se data are collec­ted through our Web­site or through other chan­nels. The pur­po­ses of pro­ces­sing are in the inte­rest of our com­mer­cial acti­vi­ty, direct mar­ke­ting, and public rela­ti­ons. The legal ground is our legi­ti­ma­te inte­rest and, in some cases, the exe­cu­ti­on of an agree­ment or your con­sent.

More spe­ci­fi­cal­ly, we can use the Per­so­nal Data we collect from you for the fol­lowing pur­po­ses:

(i) to pro­vi­de you with infor­ma­ti­on about our pro­ducts and ser­vices;
(ii) to pro­vi­de you with our pro­ducts and ser­vices and to exe­cu­te an agreement(s) with you;
(iii) to inspect and pro­cess poten­ti­al com­p­laints or requests;
(iv) to help us eva­lua­te, cor­rect, or impro­ve our Web­site and all rela­ted pro­ducts and ser­vices of BMI Leisu­re;
(v) for direct mar­ke­ting pur­po­ses;
(vi) for inter­nal rea­sons, such as cor­po­ra­te admi­nis­tra­ti­on and archi­ving pur­po­ses.
In the cour­se of pro­vi­ding our ser­vices to you, in some cases, we might ana­ly­ze your infor­ma­ti­on to build indi­vi­du­al pro­files.

The aim is to pro­vi­de you with per­so­na­li­zed ser­vices that are rele­vant and inte­res­ting for you. The pro­filing is based on your Per­so­nal Data but is not used for auto­ma­ted indi­vi­du­al decisi­on making which pro­du­ces legal effects or has simi­lar­ly signi­fi­cant effects on you. By using your data to dis­co­ver your inte­rests, we can offer you an opti­mal ser­vice and expe­ri­ence.

Arti­cle 3 – The Con­fi­den­tia­li­ty of your per­so­nal data

Every time you as a user sub­mit Per­so­nal Data, we shall hand­le this infor­ma­ti­on in accordance with the sti­pu­la­ti­ons of this pri­va­cy state­ment and any legal obli­ga­ti­ons app­li­ca­ble to the pro­ces­sing of Per­so­nal Data, inclu­ding the Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR) 2016/679.

We shall estab­lish appro­pria­te mea­su­res and pro­ce­du­res to secu­re and pro­tect the Per­so­nal Data we collect via the Web­site or via elec­tro­nic cor­re­spon­dence.

In this way, we under­ta­ke to pre­vent, as far as pos­si­ble, ille­gal pro­ces­sing of Per­so­nal Data and unin­ten­tio­nal loss or liqui­da­ti­on of your Per­so­nal Data. Howe­ver, des­pi­te the­se pre­cau­ti­ons, we can­not gua­ran­tee that your Per­so­nal Data is pro­tec­ted when it gets dis­play­ed or repor­ted via unse­cu­red means in ano­t­her way other than via the Web­site or other­wi­se com­mu­ni­ca­ted.

We opti­mi­ze the secu­ri­ty of your Per­so­nal Data by limi­t­ing the access to your Per­so­nal Data to per­sons on a need-to-know” basis (for examp­le only BMI Leisu­re employees or asso­cia­tes who need your Per­so­nal Data for the pur­po­ses as descri­bed in Arti­cle 2 will have access to the data).

Arti­cle 4 – How do we collect your per­so­nal data and how long is it kept?

BMI Leisu­re collects your Per­so­nal Data:

(i) when you sub­mit Per­so­nal Data via the Web­site;
(ii) When you sub­scri­be to our news­let­ter;
(iii) when you enter into an (employ­ment) agree­ment with us;
(iv) when you call or mail us or cor­re­spond with us via ano­t­her way than the Web­site
We can com­bi­ne the Per­so­nal Data we collect via the Web­site with infor­ma­ti­on that you pro­vi­de us in ano­t­her way or which third par­ties deli­ver to us.

Per­so­nal Data will be kept and pro­ces­sed by us for the dura­ti­on that is requi­red in rela­ti­on to the pur­po­ses of the pro­ces­sing depen­ding on whe­ther we have a con­trac­tu­al rela­ti­ons­hip with you or not.

Cli­ent data and sup­plier or sub­con­trac­tor data will be remo­ved from our sys­tems after 7 years after the ter­mi­na­ti­on of the agree­ment invol­ved, except for the Per­so­nal Data that we have to store for a lon­ger dura­ti­on based on spe­ci­fic legal obli­ga­ti­ons or in case of pen­ding litigation(s).

Data collec­ted through the Web­site or through any other chan­nel (other data) will not be kept lon­ger than 5 years after the last use­ful con­ta­ct bet­ween us and you.

Per­son­nel data will be remo­ved after 5 years after the ter­mi­na­ti­on of the employ­ment rela­ti­on.

We avoid the collec­tion of Per­so­nal Data that is not rele­vant for the pur­po­ses as set out in Arti­cle 2.

Arti­cle 5 – Trans­fer for per­so­nal data

We will not trans­fer your Per­so­nal Data to third par­ties out­side the Euro­pean Eco­no­mic Area, except to sub­con­trac­tors or employees who retain the Per­so­nal Data on ser­vers in the United Sta­tes, have under­ta­ken to do so under the Pri­va­cy Shield or in accordance with the Euro­pean Com­mis­si­on’s Stan­dard Con­tract Terms and ther­eby pro­vi­de an ade­qua­te level of secu­ri­ty for the pro­ces­sing of Per­so­nal Data.

Fur­ther­mo­re, we will not trans­fer your Per­so­nal Data to third par­ties insi­de the Euro­pean Eco­no­mic Area without your per­mis­si­on, except:

(i) to Affi­lia­ted Com­pa­nies;
(ii) when the­se data are necessa­ry to per­mit employees, agents, sub­con­trac­tors, sup­pliers, or com­mer­cial part­ners to pro­vi­de a ser­vice or accom­plish a task in the name of BMI Leisu­re, inclu­ding but not limi­ted to pro­vi­ding mar­ke­ting sup­port, accom­plish mar­ket rese­arch, or pro­vi­ding user ser­vices;
(iii) if it is requi­red or per­mit­ted by the app­li­ca­ble law.
Any trans­fer of Per­so­nal Data to one of the third par­ties men­tio­ned in the list abo­ve is in accordance with the sti­pu­la­ti­ons of the Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR) 2016/679.

We ensu­re that mea­su­res are taken to make sure that third par­ties can­not use your Per­so­nal Data for other pur­po­ses than the pur­po­ses men­tio­ned exhaus­tively in Arti­cle 2 and that the­se third par­ties have taken the necessa­ry tech­ni­cal and orga­niz­a­tio­nal mea­su­res to pro­tect the­se data.

We will have data pro­ces­sing agree­ments in place with the afo­re­men­tio­ned third par­ties in order to ensu­re the secu­ri­ty of the Per­so­nal Data.

We shall take all necessa­ry pre­cau­tio­na­ry mea­su­res to assu­re that our employees and asso­cia­tes who have access to Per­so­nal Data will pro­cess the­se Per­so­nal Data exclu­si­ve­ly in accordance with this pri­va­cy state­ment and the obli­ga­ti­ons under the app­li­ca­ble pri­va­cy regu­la­ti­ons.

Arti­cle 6 – Rights of the data sub­ject

By vir­tue of both Bel­gi­an and Euro­pean legis­la­ti­on con­cer­ning data pro­tec­tion, you have the rights as men­tio­ned below. If you want to exer­cise the­se rights, you have to send us a writ­ten request and pro­vi­de a copy of your ID card to privacy@​bmileisure.​com.

We will pro­vi­de you with infor­ma­ti­on wit­hin one (1) mon­th of rece­i­pt of the request on the action that will be taken. We can extend this one-mon­th peri­od to a maxi­mum of three (3) mon­ths, in which case you will be infor­med about the rea­sons for such delay wit­hin one (1) mon­th of the ori­gi­nal request.

The right of access to Per­so­nal DataY­ou have the right to inst­ruct us to pro­vi­de you with any Per­so­nal Data we hold about you, pro­vi­ding the rights of other data sub­jects are not affec­ted.

The right to rec­ti­fi­ca­ti­on of Per­so­nal Data­We kind­ly ask you to help to make sure that the Per­so­nal Data in our records are as accu­ra­te and up-to-date as pos­si­ble. If you belie­ve that the Per­so­nal Data sub­mit­ted to us are incor­rect or incom­ple­te, plea­se noti­fy us as descri­bed abo­ve. We will cor­rect or adapt your Per­so­nal Data as soon as pos­si­ble.

The right to the era­su­re of Per­so­nal DataIn some cir­cum­s­tan­ces, you have the right to the era­su­re of your Per­so­nal Data without undue delay. Tho­se cir­cum­s­tan­ces inclu­de:

(i) the unne­ces­si­ty to hold the Per­so­nal Data any lon­ger in rela­ti­on to the pur­po­ses for which they were collec­ted or other­wi­se pro­ces­sed;
(ii) the with­drawing of the con­sent to con­sent-based pro­ces­sing;
(iii) the pro­ces­sing that is for direct mar­ke­ting pur­po­ses; and
(iv) in case the Per­so­nal Data has been unlaw­ful­ly pro­ces­sed.
Howe­ver, the­re are cer­tain gene­ral exclu­si­ons of the right to era­su­re. Tho­se gene­ral exclu­si­ons inclu­de whe­re pro­ces­sing is necessa­ry:

(i) for exer­cis­ing the right of free­dom of expres­si­on and infor­ma­ti­on;
(ii) for com­pli­an­ce with a legal obli­ga­ti­on; or
(iii) for the estab­lish­ment, exer­cise, or defen­se of legal claims.
The right to restrict the pro­ces­sing of Per­so­nal DataIn the fol­lowing cir­cum­s­tan­ces you have the right to restrict the pro­ces­sing of your Per­so­nal Data:

(i) for con­tes­ting the accu­ra­cy of the Per­so­nal Data;
(ii) when the pro­cess is unlaw­ful but you don’t want the Per­so­nal Data to be era­sed; or
(iii) when you objec­ted to pro­ces­sing, pen­ding the veri­fi­ca­ti­on of that objec­tion.
Whe­re pro­ces­sing has been restric­ted on this basis, we may con­ti­nue to store your Per­so­nal Data. Howe­ver, we will only pro­cess it with your expli­cit con­sent, for the estab­lish­ment, exer­cise, or defen­se of legal claims, for the pro­tec­tion of the rights of ano­t­her natu­ral or legal per­son, or for rea­sons of important public inte­rest.

The right to objec­tY­ou have the right to object to our pro­ces­sing of your Per­so­nal Data.

The right to data por­ta­bi­li­tyIf you wish to exer­cise your right to data por­ta­bi­li­ty, we will send the Per­so­nal Data in a struc­tu­red, com­mon­ly used, and machi­ne-read­a­ble for­mat to a con­trol­ler of your choice.

The right to with­draw con­sent­To the extent that the legal basis for our pro­ces­sing of your Per­so­nal Data is con­sent, you have the right to with­draw that con­sent at any time. Howe­ver, the with­dra­wal will not affect the law­ful­ness of pro­ces­sing befo­re the with­dra­wal.

The right to com­p­lain to a super­vi­so­ry aut­ho­ri­ty­Y­ou can file a com­p­laint with the Data Pro­tec­tion Aut­ho­ri­ty (“Gege­vens­be­scher­mings­au­to­rit­eit”) by sen­ding an e‑mail to contact@​apd-​gba.​be or by sen­ding a writ­ten request to the Data Pro­tec­tion Aut­ho­ri­ty with a regis­tered address loca­ted at 1000 Brussels, Druk­pers­straat 35.

Arti­cle 7 – Third-par­ty link

The Web­site may con­tain links to web­sites of third par­ties which are not con­trol­led by us. Alt­hough we will do our utmost to make sure that the links on the Web­site lead exclu­si­ve­ly to web­sites that share the safe­ty and con­fi­den­tia­li­ty stan­dards of BMI Leisu­re, we are not respon­si­ble for the pro­tec­tion and con­fi­den­tia­li­ty of data, among Per­so­nal Data that you sub­mit on other web­sites after you have left the Web­site.

Befo­re sub­mit­ting Per­so­nal Data we recom­mend that you pro­ceed care­ful­ly and con­sult the pri­va­cy state­ment which app­lies on the web­site con­cer­ned.