ARTICLE 1. GENERAL
Last updated on 25th of July 2019.
Company name: VITAL SIGNS B.V.
Company address: Eikenstraat 93, 8530 Harelbeke
Company number: +32 472 56 06 62
Hereinafter referred to as the Company, or the Processor.
During the user contacts with the company, certain data about him or her will be collected and processed. Since the user can be identified as a person on the basis of these data, these data are ‘personal data’.
All information about which personal data the company processes and how the company deals with this in a correct way, can be found below.
ARTICLE 3. THE PERSONAL DATA COLLECTED FROM THE COMPANY
The company may provide the following personal information in various forms as a result of the consumer’s use of the Site including the Webshop:
The identification and contact details: name, first name, address, e-mail address and telephone or mobile phone number; The financial information: bank account number, the BIC code and the name of the account holder; The login data associated with the user account: user name, email address, password and login history; Other data and content that are exchanged, communicated and shared through the use of the products and services of the company; Other data provided by using the (mobile) website, such as the pages visited, websites and searches by means of cookies; The user gender and date of birth, and the date of collection of the sample, are exchanged data with the accredited laboratory. The company never knowingly collect personal data from minors without the consent of a parent or guardian, which must be given to use the products, services and (mobile) website of the company. If personal data of minors are processed in good faith, the company will delete these from his files as soon as possible after knowledge of them.
The data subject is not obliged to provide his/her data to the company or to agree to the processing. Nevertheless, in certain cases, it will be necessary to communicate personal data to the company so that a correct service can be provided and the applicable legislation can be complied with.
ARTICLE 4. THE PROCESSING OF PERSONAL DATA
The personal data will be processed by the company for the following purposes:
The conclusion and implementation of the agreement (placing the order, processing the payment, sending the order and communicating the result), as well as the invoicing and the follow-up and collection of these invoices, whether or not via third parties; Allow the exchange, creation, and deletion of certain information; Personalizing the products and/or services to be delivered and the associated support services, usage information, service messages or other related (electronic) messages; Compliance with the regulations applicable to the company in the broadest sense; Other specific purposes for which separate permission can be requested.
ARTICLE 5. THE PERIOD OF STORAGE OF PERSONAL DATA
The company will not keep the personal data longer than is necessary for the execution of the requested service, taking into account the contractual and legal obligations of the company.
ARTICLE 6. THE TRANSFER OF PERSONAL DATA
To process a request for products and services (placing the order, processing the payment, sending the order and communicating the result), the company needs to disclose the information within the company including the IT services, and the company needs to disclose limited and pseudonymised data with third parties including the accredited laboratory, SendCloud, Shopify, Mollie, and SendGrid.
The accredited laboratory shall have access exclusively to the gender and date of birth of the user, to the collection date and the sample sent by him or her, and to the test results created therein, in a pseudonymized manner.
If the user sends offensive or objectionable content or engages in any disruptive behaviour on the Site, the company can use whatever information that is available about the user to stop such behaviour. This may involve informing relevant third parties such as law enforcement agencies about the content and the behaviour. Additionally, the company may disclose information:
If the company is under a duty to disclose or share information in order to comply with any legal obligation; To protect the rights, property or safety of the consumer or others; To prevent and detect fraud, security or technical issues, IP address may be supplied to regulatory authorities in connection with fraud or other formal investigations.
ARTICLE 7. DATA SECURITY
In order to protect the personal data in the best possible way, the company takes all appropriate measures and applies best practices to prevent the loss, misuse, disclosure, unauthorised access or alteration of the personal data. The necessary measures are taken at both the technical and organisational level to provide an adequate level of security.
Payment data are always protected in accordance with the standard encryption methods that are commonly used. to protect sensitive financial information.
ARTICLE 8. THE RIGHTS OF THE CONSUMER
The data subject always has the right to inspect and correct the personal data processed by the company.
The data subject is also entitled to the deletion of his/her personal data, the restriction of the processing of his/her personal data and the transferability of his/her personal data, insofar as the applicable regulations provide for this.
The data subject may at any time withdraw his or her consent to certain processing operations and object to the processing of personal data for serious and legitimate reasons. The data subject also has the right to object to the use of his or her personal data for direct marketing purposes, to the transfer of his or her personal data to third parties (when this transfer is not necessary for the provision of services) and to the creation of a profile.
For this purpose, you can contact the company using the contact information provided in this Privacy statement & policy.
The data subject also has the right to lodge a complaint with the supervisory data protection authority:
Press Office 35
ARTICLE 9. COOKIES