Last updated: 19/02/2025
Sermo Benelux, located at Bernstraat 9, values the protection of your personal data. This privacy policy explains how we collect, process, and protect your data in compliance with the General Data Protection Regulation (GDPR) and Belgian law.
1. Data Controller
Sermo Benelux
Bernstraat 9
Email: [email protected]
We are responsible for processing your personal data and ensure that it is handled lawfully, fairly, and transparently.
2. What Personal Data Do We Collect?
We may collect and process the following types of personal data:
- Identification Data: Name, first name
- Contact Data: Email, phone number, address
- Billing Data: Bank details, VAT number (if applicable)
- Website Usage Data: IP address, browser data, cookies, and interactions with our website
3. Purpose of Data Processing
We process your data for the following purposes:
- Contract Execution: To provide our products and services
- Customer Support: To respond to inquiries and provide assistance
- Marketing and Communication: To inform you about offers and news (with your consent)
- Legal Obligations: To comply with tax and accounting regulations
4. Legal Basis for Processing
We process your data based on the following legal grounds:
- Contract Execution: When processing is necessary to perform a contract
- Legal Obligation: When processing is required to comply with legal obligations
- Legitimate Interest: For fraud prevention or service improvements
- Consent: When you have explicitly given consent (e.g., for marketing communications)
5. Data Retention Period
We do not retain your data longer than necessary:
- Customer data: Up to 5 years after last contact
- Billing data: Up to 7 years (legal obligation)
- Marketing data: Up to 3 years after last interaction or until consent is withdrawn
6. Data Sharing with Third Parties
We do not share your data with third parties unless:
- It is necessary to provide our services (e.g., payment processors, delivery services)
- We are legally required to do so (e.g., tax authorities)
- You have explicitly given consent
Our partners comply with GDPR and implement appropriate security measures.
7. Data Security
We implement technical and organizational measures to protect your data, including:
- Data encryption when necessary
- Restricted access to personal data for employees
- Secure servers and regular system updates
8. Your Rights as a Data Subject
You have the following rights regarding your data:
- Right of Access: Request details on how we process your data
- Right to Rectification: Correct incorrect or incomplete data
- Right to Erasure: Request deletion of your data (if legally allowed)
- Right to Restriction of Processing: Temporarily restrict data processing
- Right to Data Portability: Receive a copy of your data in a structured format
- Right to Object: Object to processing based on legitimate interest or for marketing purposes
- Right to Withdraw Consent: Withdraw consent at any time (for consent-based processing)
To exercise your rights, contact us at [email protected]. We will respond within 1 month.
9. Cookies & Tracking Technologies
Our website uses cookies. For more details, see our [cookie policy].
10. Complaints & Supervisory Authority
If you have concerns about your data processing, contact us at [email protected].
You also have the right to file a complaint with the Belgian authority:
Data Protection Authority (DPA)
Drukpersstraat 35, 1000 Brussels
Email: [email protected]
Website: www.gegevensbeschermingsautoriteit.be
11. Changes to this Privacy Policy
We may update this policy at any time. The latest version is always available on our website.