Where quality and trust meet.
By appointment only

Privacy Policy

Safe & Secure Online

1. Identity and contact details of the data controller

Right to erasure of data (right to be forgotten)

The Data Controller attaches great importance to your privacy and therefore processes your personal data in accordance with the European Regulation 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data (hereinafter "GDPR") as well as any future or additional legislation implementing it, where applicable.

ATTENTION: As part of our main activities, we enter into relation with our customers as the processor of personal data provided by our customers in the function of the service offered by Quest for Financials BVBA which the customer wishes to appeal to. For this reason, if you have questions, complaints or wish to exercise your rights regarding this data, you need to directly contact the involved data processing officer.

For further questions or comments regarding the way we handle your personal data, you can always contact us, either by email at info@qff.be or by mail to the aforementioned postal address.

2. What does "processing personal data" mean?

The processing of personal data (hereinafter "data") includes any processing of data that can identify you as a natural person. You can read about which data are involved in this Privacy Policy. The term ‘processing’ is very broad and covers, among other things, collecting, storing, using your data, or sharing it with third parties.

3. What data do we process?

Below we clarify which data we process as data controller from you. Depending on the specific situation, your preferences, and the way in which you contact us, we do not process all of the data listed below from you.

Main activity

In the context of our main activities, we process the following data:

  • General identification data (name, first name, …);
  • General contact information (name, first name, email address, address, telephone number, …);
  • Company-related data to the extent that it is possible to identify a natural person based on that data;
  • Order and payment details;
  • Post-sale data;
  • Feedback, testimonials and promotional content such as photos and videos;
Suppliers - service providers
  • General identification data (name, first name, address, gender);
  • General contact information (name, first name, email address, address, telephone number);
  • Company-related data to the extent that it would be possible to identify a natural person based on that data;
  • Contractual data (e.g. company name, address, VAT number, agreement, etc.);
  • Payment and billing information (e.g. payment card details, invoices, etc.);
  • Feedback, testimonials, quotes, promotional content such as photos and videos (e.g. reviews and experiences related to our (collaboration), testimonials, quotes, presence at events, etc.);
Visiting the website

From the visitors of our website https://qff.be we process the following data:

  • IP address, browser type, location data, how the individual ended up on the website, interests and the way in which the individual navigates through the webpage (via strictly necessary, analytical and marketing cookies);
  • Name, first name, email address, contact subject, and contact message (if applicable through the online contact form), telephone number.

4. For what purposes do we process your data?

The personal data is processed exclusively within the context of the company and specifically for the following purposes:

  • Within the framework of our main activities;
  • Organizing events, competitions and meetings;
  • Participating in fairs;
  • Comply with administrative and tax obligations;
  • Communication with customers and prospects.

5. On what processing grounds do we process your data?

We process your data for the purposes described below and do not collect and process any more and no other types of data than those necessary for these purposes. We only process your data to the extent based on one of the processing grounds listed in the GDPR, and as shown below.

Legal obligation

Certain data is processed by us in order to comply with legal or regulatory obligations imposed on us. For example, in the context of tax and accounting obligations or in the field of data protection.

Necessary for the execution of the agreement

Certain data are processed by us because it is necessary for entering into, executing or terminating an agreement with you as the party concerned. For example, for contacting, scheduling, responding to a request, or retrieving information in the context of entering into a contractual relationship, but also the effective execution of the contractual assignment within the scope of our main activity, in order to be able to provide you with our services or to be able to receive yours.

Legitimate interest

Certain data is processed by us on the basis of our legitimate interest, which in specific cases outweighs any possible disadvantage to your rights. For example, for promoting our activities to business contacts; improving the quality of our services; training employees and evaluating and maintaining data and statistics relating to our activities, in the broadest sense; preserving and using evidence in the context of liability, procedures or disputes and with the perspective of archiving activities; and ensuring security, both online on this website and in our company buildings.

Permission

Certain data is processed by us based on your consent. For example, for promoting activities to potential business contacts; the use of certain analytical or marketing cookies; the posting of photos that contain personal data on our website and social media channels.

6. Origin of the data

Most of the data we process from you is obtained directly from you. As part of our service, it is possible that we obtain data about you from external service providers or public sources.

7. Who do we share your data with?

We do not pass on your data to third parties, unless this is strictly necessary in light of the aforementioned purposes, or if we are legally obliged to do so.

Where necessary, we make use of external service providers (processors), to support our operational purposes such as the management of our websites and IT systems. These external service providers perform certain data processing operations on our behalf, as required. We will only share your data with these external service providers to the extent that this is necessary for the respective purpose. The data may not be used by them for other purposes.

Furthermore, these service providers are contractually obligated to ensure the confidentiality of your data through a "processor agreement" that was concluded with these parties.

Specifically, this means that we share your data, as far as relevant in your situation, with the following third parties for the following purposes, where these third parties in certain cases act as processors on our behalf:

  • Postal companies, transport and delivery companies if we need to send you something by mail;
  • Payment service providers if we receive payments from you, or vice versa;
  • External representatives and consultants or any other parties involved within the context of our main or ancillary activities;
  • The processors that assist us in the IT field in running our organization, with a view to safe and efficient digital data management within our organization;
  • Government bodies, judicial authorities and practitioners of regulated professions such as accountants and lawyers, with a view to complying with our legal obligations and defending our interests, as required.

8. How long do we store your data?

We do not store your data longer than necessary for the purpose for which the data was collected or processed. As the duration for which the data can be retained depends on the purposes for which the data has been collected, the storage period can vary in each situation. Sometimes specific legislation will require us to keep the data for a certain period. Our retention periods are always based on legal requirements and a balancing of your rights and expectations with what is useful and necessary for fulfilling the purposes. After the retention period, your data will be erased or anonymized.

9. Where do we store your data and how is it protected?

We provide appropriate security measures on a technical and organizational level, to avoid within the framework of our activities the destruction, loss, falsification, modification, unauthorized access or unlawful notification to third parties, as well as any other unauthorized processing of this data.

In addition, we also pay attention to the fact that the processors we rely on also take appropriate security measures to limit risks of incidents as much as possible.

If your data is processed outside the European Economic Area (EEA) when using specific services or software tools, this will only be done in/to countries which the European Commission has confirmed to ensure an adequate level of protection of your data, or measures will be taken to ensure the lawful processing of your data in these third countries.

10. What are your rights?

You have various rights regarding the data we process from you. If you wish to exercise one of the following rights, please contact our GDPR responsible via the contact details included under the first title of this Privacy policy.

Right of access and copy

You have the right to access your data and to obtain a copy of it. This right also includes the possibility to request further information about the processing of your data, including the categories of data that are processed about you and for what purposes this is done.

Right to correction or rectification

You have the right to have your data adjusted if you believe that we have incorrect data.

Right to erasure of data (right to be forgotten)

You have the right to request that we erase your data without unreasonable delay. However, we will not always be able to comply with such a request, including when we still need the data in function of an ongoing agreement, or when the retention of some of your data for a certain period is legally required.

Right to restriction of processing

You have the right to restrict the processing of your data. In this way, the processing is temporarily stopped until, for example, there is certainty about its accuracy.

Right to withdraw your consent

When the processing is based on your consent, you have the right to withdraw this consent at any time by contacting us. For marketing messages that you receive from us by email based on your consent, you can easily withdraw this consent by clicking on the unsubscribe link at the bottom of such a message.

Right of objection

You have the right to object to the processing of your data which is based on the legitimate interest. This must be done on the basis of reasons related to your specific situation. You can also object to the use of your data for direct marketing purposes. In marketing messages by email, there will always be an opt-out provided.

Right to portability

You have the right to obtain your data that you have provided to us with your consent or in the performance of a contract, in electronic form. In this way, they can be easily transferred to another organization. You also have the right to ask us to transfer your data directly to another organization, if this is technically possible.

Right to file a complaint with your supervisory authority

If you believe that we are handling your data in an incorrect manner, you always have the right to file a complaint with your supervisory authority in the field of data protection.

  • Belgian Data Protection Authority (DPA)
  • Printing Press Street 35
  • 1000 Brussel
    • contact@apd-gba.be

11. How can you exercise your rights?

You can exercise your rights by contacting us, either by email at info@qff.be or by post at Zeedijk 57, 8370 Blankenberge, Belgium, with the inclusion of a copy of the front of your identity card or another document with which you can be identified. The copy will only be used to identify you in accordance with the GDPR.

12. Changes

We reserve the right to change this Privacy policy. The most recent version is always available on our websites. The date on which this Privacy policy was last changed can be found at the top. In case of a substantial change to the Privacy policy, we will, if possible, inform directly those affected who could be impacted by this.