Personal data-Privacy policy

Discover how LegalOps collects, processes and protects your personal data.

Introduction

This Policy is established by LegalOps, a Limited Liability Company (hereinafter "We", "the Data Controller" or "LEGALOPS"), registered with the Crossroads Bank for Enterprises under number 1029.306.887 and with its registered office at 53 Rue de Wansijn, 1180.

LEGALOPS shall be understood as the Data Controller within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (hereinafter, "GDPR"), in that it processes the personal data of users of its website https://legalops.be (hereinafter, "the website"). Users are hereinafter also referred to as "data subjects" or "you".

The purpose of this Policy is to transparently explain how your personal data is collected, processed and stored by LEGALOPS in order to demonstrate its compliance with legal requirements.

For LEGALOPS, respect for privacy and data protection are indeed among the core values it upholds.

Key concepts

Within the meaning of this Policy, "personal data" means any information that allows you, as a natural person, to be identified directly or indirectly.

For example: a surname, a first name, an email address.

"Processing of personal data" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means.

For example: collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

"Data Controller" means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing; in this case, LEGALOPS is the Data Controller.

"Processor" means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Data Controller.

What personal data do we process? And by what means do we access it?

Categories of processed data

For the purposes of the processing listed below, LEGALOPS processes the following relevant and necessary categories of personal data:

Personal identification dataPresentation
Electronic identification data: email address;
Any other data voluntarily provided by the data subject, in particular in the "Message" field provided in the contact form.

Special categories of data

In principle, LEGALOPS does not process special categories of personal data revealing your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data or data concerning your sex life or sexual orientation, without your explicit consent.

Non-personal data

It is possible that LEGALOPS may also collect non-personal data.

This data is qualified as non-personal data because it does not allow the direct or indirect identification of a particular person. It may therefore be used for any purpose whatsoever. Thus, anonymised data used for aggregate analysis or market research purposes is not considered personal data.

However, in the event that non-personal data is combined with personal data, so that identification of data subjects becomes possible, this data will be treated as personal data until their association with a particular person is made impossible.

Collection methods

Your personal data is collected directly from you, in particular when you contact LEGALOPS via the contact form available on the website.

Consequences of not providing this data

The provision of certain of the above-mentioned data is necessary to access certain features offered on the website, in particular contacting LEGALOPS.

In the event that the data subject does not provide the personal data requested by LEGALOPS, it will be unable to respond to their contact request.

Why do we process your personal data? And on what legal bases do we process your personal data?

We process your personal data for specific purposes based on the relevant legal grounds, as set out in the following table:

Legal basis	Purpose
Art. 6, 1., c) GDPR: Processing is necessary for compliance with LEGALOPS' legal obligations.	Your personal data is processed for the purpose of managing your requests related to the exercise of your rights.
Art. 6, 1., f) GDPR: Processing is necessary for the purposes of the legitimate interests pursued by LEGALOPS.	Your personal data is processed for the following purposes: Management of your contact requests, questions, opinions and remarks, in the legitimate interest of LEGALOPS to offer you services that meet your expectations; Safeguarding and defending the interests of LEGALOPS, in its legitimate interest to defend itself if a conflict arises in its relationship with you. Regarding processing based on this particular legal basis, we always ensure a balance between your rights and interests and those of LEGALOPS.
Processing not yet envisaged	LEGALOPS may carry out processing not yet provided for in this Privacy Policy. In this case, you will be contacted by us before any reuse of your personal data to inform you of the processing not yet envisaged and to give you the opportunity, if applicable, to refuse it.

Who has access to your personal data?

Internal communication

Access to your personal data is strictly limited, within LEGALOPS, to authorised persons only, in particular for managing your exchanges with LEGALOPS in the event of contact.

External communication

We do not sell or transfer your personal data to third parties in any way.

However, in the course of our activities, we may share your data with our trusted partners and subcontractors, acting in accordance with our instructions, namely the website hosting company.

It is also possible that LEGALOPS may be required to disclose certain of your personal data to authorised third parties, in particular in the following cases:

Authorities or legal advisors in case of suspected criminal or inappropriate behaviour;
Authorities, legal advisors or any other similar party, when required by law or when invited to do so by said authority.

Data storage and transfers

The personal data collected by LEGALOPS is stored and processed within the European Union.

In principle, none of your personal data is transferred to third countries outside the European Union or to international organisations. Should this nonetheless become the case, we undertake to take appropriate security measures to ensure a sufficient level of protection of your personal data.

How long do we keep your data?

LEGALOPS processes your personal data for the strictly necessary duration to achieve the specific purposes, as set out above, for which the processing is carried out.

Active archive storage	Intermediate archive storage	Justification
Data related to contact requests The time necessary to process and respond to the contact request.	/	We do not need to retain this data beyond the time the request has been answered.

What security measures are in place for your personal data?

We prioritise the protection of your personal data and therefore actively work to ensure that your data is protected against loss, theft, misuse, alteration, unauthorised disclosure or use. Accordingly, we take reasonably expected measures to ensure that your personal data is processed securely and in accordance with this Policy and the GDPR.

However, data transfers over the Internet and mobile networks can never be completely risk-free. It is therefore important that data subjects also take responsibility for ensuring that their data is well protected, in particular by ensuring that their login credentials remain confidential.

If despite these security measures your data is destroyed, lost, altered or disclosed, we undertake to act quickly to identify the cause of the problem and take appropriate measures, in accordance with legal requirements regarding the protection of personal data.

What are your rights?

As a data subject regarding the processing of your personal data, you have a number of rights concerning the access and control of your personal data, including:

A right of access: by exercising this right, you can obtain upon simple request and free of charge a copy (including in electronic format) of your personal data. You can also request access to a wide range of information, including the purposes of the processing, the recipients, etc. In the event that you request additional copies, we may nevertheless charge you a reasonable fee based on administrative costs.
A right to rectification: by exercising this right, you can rectify, complete or delete your personal data that is inaccurate, incomplete or irrelevant. In the event that we have made your data accessible to other entities, we are obliged to take all necessary measures to inform these entities of your rectification request.
A right to erasure: except in certain cases, you have the right to ask us to delete your data. In the event that we have made your data accessible to other entities, we are obliged to take all necessary measures to inform these entities of your erasure request.
A right to restriction of processing: in certain circumstances, you have the right to obtain the restriction of processing of your personal data. In the event that we have made your data accessible to other entities, we are obliged to take all necessary measures to inform these entities of your request for restriction of processing.
A right to data portability: in certain circumstances, you may request to receive your personal data free of charge in a structured, commonly used and machine-readable format, in particular for the purpose of transmitting it to another data controller.
A right to object: when the processing of your data is based on our legitimate interest, you may at any time object to the use of your data for this purpose, unless we demonstrate that there are compelling legitimate grounds prevailing over your rights and interests.

To exercise these rights or for any question and/or complaint regarding this Privacy Policy, please send a written request (including in electronic format), dated and signed, to the attention of LEGALOPS at the contact details provided below.

Your request must indicate the right(s) you wish to exercise. We may ask you to provide proof of identity for security reasons, to prevent unauthorised disclosure or misuse of your personal data.

We will then have a period of one month from receipt of your request to respond. This period may be extended by 2 months, taking into account the complexity or number of requests. If applicable, this period may only be extended insofar as you have been informed and the reasons justifying the postponement have been communicated to you.

In the event that we decide not to follow up on your request, we will inform you of the reasons for our refusal or inaction.

Questions, complaints or grievances

If you wish to react to any of the practices described in this Policy, you are advised to contact us first at the following details:

LEGALOPS SRL
Rue de Wansijn 53
1180 Uccle
+32 475 53 58 89
frederic@legalops.be

You can also lodge a complaint with the Belgian data protection authority:

Data Protection Authority
Rue de la Presse, 35
1000 Brussels
Tel. +32 2 274 48 00
Fax. +32 2 274 48 35
contact@apd-gba.be

For more information on complaints and possible remedies, we invite you to consult the information available on the Data Protection Authority's website: https://www.autoriteprotectiondonnees.be

Finally, you have the option of filing a complaint before the competent national courts.

Changes to this Policy

We reserve the right, at any time, to make changes or additions to this Privacy Policy.

The latest version of our Privacy Policy will always be available on our website.