PRIVACY AND COOKIE STATEMENT

1. General 

2. Who is Gidsenbond Brugge vzw? 

3. What are personal data and what is meant by processing personal data?

4. What personal data do we collect? 

5. What processing do we do? 

a. General. 

b. The register of processing operations. 

c. Overview of processing operations. 

(1) Manage members and guides. 

(2) Manage customers and suppliers. 

(3) Accounting. 

(4) Payroll administration. 

(5) Internal Mailings. 

(6) External mailings. 

(7) Website. 

(8) Google analytics 

6. How long do we keep your personal data? 

7. Your Rights. 

a. General. 

b. Right of inspection (GDPR article 15) 

c. Right of rectification (GDPR article 16) 

d. Right to erasure (“right to be forgotten”) (GDPR Article 17) 

e. Right to restriction of processing (GDPR article 18) 

f. Right to portability (GDPR article 20) 

g. Right to object and other rights (GDPR article 21-22) 

8. Cookies. 

a. General. 

b. Which cookies do we place? 

c. You can manage your cookies yourself. 

9. Security of your personal data. 

10. Changing the privacy and cookie policy. 

 


1. GENERAL

- Gidsenbond Brugge attaches great importance to your privacy and wishes to process (your) personal data in a legal, fair and transparent manner. We handle your data in full accordance with applicable laws and regulations, including the General Data Protection Regulation. This privacy statement explains how Gidsenbond Brugge processes personal data about you. This Privacy Statement applies to all personal data that Gidsenbond Brugge processes. This may concern personal data about you as a customer, supplier, visitor to our websites, applicant, etc.

- This document describes what information about you is collected by us, what this information is used for and with whom and under what conditions this information may be shared with third parties. We also explain to you how we store your data and how we protect your data against misuse and what rights you have with regard to the personal data you provide to us.

- With this privacy and cookie policy we want to give you clarity about the way we handle your data. If you have any questions about this document or the processing of data (request for access, change or deletion of data), you can ask them by e-mail via info@bruges-guides.com

- More information about the Belgian Data Protection Authority and about privacy can be found on the websites of the Belgian Data Protection Authority ( https://www.privacycommission.be ).

- The relevant legislation to which this document generally refers is referred to as “GDPR”. This is the European regulation “ Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data ”, as well as the relevant national legislation that further completes this law.

- Finally, you always have the right to file a complaint with the Data Protection Authority (see www.privacycommission.be/nl - Drukpersstraat 35, 1000 Brussels - +32 (0)2 274 48 00).

 

2. WHO IS GIDSENBOND BRUGGE VZW?

- Gidsenbond Brugge vzw is the controller within the meaning of the GDPR Act.

- Gidsenbond Brugge vzw is known under (KBO) number 0407.588.060 and has its registered office and offices at Gentpoortstraat 67, 8000 Brugge and can be reached via the e-mail address: info@bruges-guides.com 

 

3. WHAT ARE PERSONAL DATA AND WHAT IS MEANT BY PROCESSING OF PERSONAL DATA?

- Personal data is any information about an identified or identifiable natural person. This may concern the name and contact details of a person, a date of birth, financial data (account number, VAT number, etc.), a photo and any other data that is or can be linked to a natural person, including e-mail address, telephone number. , policy number or login code.

- Processing of personal data means any operation or set of operations on personal data. These operations are particularly varied and include collection, storage, use, modification, communication of this data up to and including destruction.

 

4. WHAT PERSONAL DATA DO WE COLLECT?

- Identification data : for example, in many cases we keep the surname, first name, in order to be able to make correct identification, the address to be able to send correspondence

- Contact details : we use the telephone number or e-mail address to contact the persons concerned if necessary.

- Financial data : such as your bank account number (for payment), VAT number, etc.

- No special categories of personal data within the meaning of GDPR articles 9 and 10 are kept

 

5. WHAT PROCESSING DO WE DO?

A. GENERAL

- We use your data exclusively for the purpose of our services. This means that the purpose of the processing is always directly related to the assignment we carry out.

- In terms of scope, the most important processing of company data are the processing of guides, members, customer, supplier and personnel data. An information sheet regarding the processing is made available to the staff members.

- Your data will not be shared with third parties, other than to comply with accounting and other administrative obligations. These third parties are all bound to confidentiality on the basis of the agreement between them and us or an oath or legal obligation.

- Gidsenbond Brugge does not engage in profiling and does not make automated decision-making within the meaning of GDPR article 22

 

B. THE REGISTER OF PROCESSING

- The processing operations of Gidsenbond Brugge have been inventoried in a “Register of processing activities”, as prescribed by the GDPR.

- The fields of the register have been drawn up in accordance with the provisions of art. 30 of the GDPR.

- The complete register can be consulted by the board of directors of the Brugge Guides Association.

 

C. OVERVIEW OF PROCESSING

(1) Manage members and guides

- The personal data of guides are managed in a reservation system to manage guiding tours.

- The financial data such as the bank account number are kept for the purpose of payment.

- The guides with a volunteer status are additionally managed in a separate list.

- For practical operation, the Guides Association uses internal XLS documents. These include: used for keeping track of further training, registrations of activities, etc.

- Every year, a list of guides to be insured is also passed on to the FTG (Federation of Tourist Guide Groups).

(2) Manage customers and suppliers

- Customers' personal data are also managed in the reservation system in order to record reservations and prepare invoices if necessary.

- Purchase/delivery of products: this involves processing the personal data that you have provided to us, namely identification and contact details: such as name, address and place of residence (for the purpose of delivery).

- The financial data such as the bank account number are kept for the purpose of payment.

(3) Accounting

- We use the services of a recognized accounting firm to maintain our administration and accounting.

- The accounting firm has taken the necessary technical and organizational measures to protect your data against loss and unauthorized use.

- The accounting firm is obliged to maintain confidentiality and will treat your data confidentially. They do not use your personal data for purposes other than those described above.

(4) Payroll administration

- The hours worked by the staff are transferred to a recognized social agency.

- Pay slips are issued to employees on paper in a closed envelope.

(5) Internal Mailings

- Emails are sent to members and/or guides on an ad hoc basis.

- The content of the mailings is determined by the members of the Board of Directors.

- The mailings contain practical information about the operation of the Guides Association, as well as general information, for example the Mini-Bruggelink, with facts and activities in and around Bruges.

- You can easily unsubscribe by sending an email to. info@bruges-guides.com 

(6) External mailings

- Emails are also sent to external organizations to inform them of the activities organized by the Guides Association.

- You can easily unsubscribe from this by sending an email to info@bruges-guides.com 

(7) Website

- The website of Gidsenbond Brugge allows quick contact with the organization via a general email address and via a contact form.

- No other transfer of these personal data takes place to third parties.

Public part

- The website includes a public part that is accessible to everyone.

- It contains an overview of the walks offered by the Guides Association, an overview of the planned activities and further general information about the Guides Association.

Login share

- The website also includes a login section, which only guides and members have access to.

- For this purpose, the personal data of all guides and members are also managed on the website.

- Members and guides have access to: registration of activities, booking reservations, overview of published documents, etc.

- The guides have additional access to an overview of the guided tours carried out per quarter.

(8) Google analytics

- Components of Google Analytics are integrated on our website. This is a web analytics service. Web analytics is the collection and analysis of data about the behavior of visitors to websites. Web analytics includes the processing of, among other things, these data: the website from which one arrived at this website (referrer), sub-pages visited, frequency and duration of web access. Web analytics is used to optimize a website.

- When you visit an EU website, the IP address is anonymized. Google uses this data, among other things, for reports on the use of the website.

- The company behind the Google analytics component is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA. Google, Inc is part of Alphabet Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.

- Google Analytics also places a cookie for the purpose of online advertising and handling of the commissions due, and collects data such as personal data, IP address (not anonymized), time and frequency of access. The personal data is stored and processed in the USA. Alphabet, Inc. has the option to further pass on the collected data to third parties.

- The data subject can prevent collection of some of this data via his browser cookie settings. The data subject can also use the browser add-on that can be found at https://tools.google.com/dlpage/gaoptout . This add-on tells Google not to send information to Google Analytics.

- More information can be found at https://www.google.com/intl/en/policies/privacy/ , http://www.google.com/analytics/terms/us.html and https://www.google.com/analytics/ .

 

6. HOW LONG DO WE KEEP YOUR PERSONAL DATA?

- Gidsenbond Brugge does not store your personal data for longer than necessary to achieve the purposes for which your personal data is processed, and in any case as long as specific regulations require

- Based on applicable administrative obligations, we must keep invoices with your (personal) data, so we will keep this data for as long as the applicable period runs.

 

7. YOUR RIGHTS

A. GENERAL

- Under applicable national and European legislation, you as a data subject have certain rights with regard to the personal data processed by or on behalf of us. We explain below what these rights are and how you can invoke these rights.

- You have the right to file a complaint with the competent Data Protection Authority at any time if you suspect that we are using your personal data incorrectly.

 

B. RIGHT OF INSPECTION (GDPR ARTICLE 15)

- You always have the right to inspect the data that we process or have processed that relates to your person or can be traced back to you. You can make a request to this effect to our contact person for privacy matters.

- You will then receive a response to your request within 30 days. If your request is granted, we will send you a copy of all data at the e-mail address known to us, with an overview of the processors who have this data, stating the category under which we have stored this data.

 

C. RIGHT OF RECTIFICATION (GDPR ARTICLE 16)

- You always have the right to have the data that we process or have processed that relates to your person or can be traced back to you amended.

- You can make a request to this effect to our contact person for privacy matters. You will then receive a response to your request within 30 days. If your request is granted, we will send you a confirmation that the data has been adjusted to the e-mail address known to us.

 

D. RIGHT TO ERASE DATA (“RIGHT TO FORGOTTEN”) (GDPR ARTICLE 17)

- You always have the right to have the data that we process or have processed that relates to your person or can be traced back to you deleted.

- You can make a request to this effect to our contact person for privacy matters. You will then receive a response to your request within 30 days. If your request is granted, we will send you confirmation that the data has been deleted at the e-mail address known to us.

 

E. RIGHT TO RESTRICT PROCESSING (GDPR ARTICLE 18)

- You always have the right to limit the data that we process that relates to your person or that can be traced back to you.

- You can make a request to this effect to our contact person for privacy matters. You will then receive a response to your request within 30 days. If your request is granted, we will send you a confirmation to the e-mail address known to us that the data will no longer be processed until you cancel the restriction.

 

F. RIGHT TO PORTABILITY (GDPR ARTICLE 20)

- You always have the right to have the data that we process or have processed and that relate to your person or can be traced back to you, processed by another party.

- You can make a request to this effect to our contact person for privacy matters. You will then receive a response to your request within 30 days. If your request is granted, we will send you copies or copies of all data about you that we have processed or that has been processed on our behalf by other processors or third parties at the e-mail address known to us.

- In all likelihood, we can no longer continue the service in such a case, because the secure linking of data files can no longer be guaranteed.

 

G. RIGHT TO OBJECT AND OTHER RIGHTS (GDPR ARTICLE 21-22)

- Where appropriate, you have the right to object to the processing of your personal data.

- If you object, we will immediately stop data processing pending handling of your objection. If your objection is well-founded, we will make copies and/or copies of data that we process or have processed available to you and then permanently discontinue the processing.

- You also have the right not to be subject to automated individual decision-making or profiling. We do not process your data in such a way that this right applies. If you believe that this is the case, please contact our contact person for privacy matters.

 

8. COOKIES

A. GENERAL

- Cookies are simple small text files that are stored on the hard drive or in the memory of your computer/mobile/tablet. Cookies cannot damage your computer or the files on it. We, advertisers and intermediaries can use cookies on our websites. Below is an overview of the cookies that we can use ourselves.

- Cookies allow you to be recognized on our websites when you visit them again. For example, we use cookies for statistical purposes. Including to see how often a website is visited, through which website(s) visitors arrived at our website(s) and which pages on a website are visited.

- If you have disabled cookies via your browser settings, there is a chance that certain functions will not work or that you will not be able to use certain services. In any case, you will then see the cookie information bar on every page as our websites will not be able to store (in a cookie) that you have previously visited the website and may even have already made a choice between accepting or not accepting cookies. .

 

B. WHICH COOKIES DO WE PLACE?

- Login related cookies: to remember that you are already logged in as a guide

 

C. YOU CAN MANAGE YOUR COOKIES YOURSELF

- You can decide at any time whether you want to accept or refuse cookies. On your first visit to our website(s), you will be informed in detail about the use of cookies, and you will be given the option to accept or (partially) refuse them. You can change this choice later at any time.

- You can also delete your cookies. You can refuse all cookies, or only refuse third-party cookies. See your browser manual:

9. SECURITY OF YOUR PERSONAL DATA

- Gidsenbond Brugge takes the protection of personal data very seriously and takes appropriate physical, administrative, organizational and technical measures to prevent misuse, loss, unauthorized access, unwanted disclosure and unauthorized modification.

- If you have the impression that your data is not properly secured or there are indications of misuse, or if you would like more information about the security of your personal data, you can contact Gidsenbond Brugge via info@bruges-guides.com 

 

10. CHANGES TO THE PRIVACY AND COOKIE POLICY

- This privacy and cookie policy is subject to change. Therefore, please check this page regularly to see if any changes have been made. If we make material changes, we will provide more prominent notice, for example via our websites or by email.

- This privacy and cookie policy was last changed on 25/02/2022.
 

Stay informed!

Subscribe to our newsletter.