TrustBuilder Privacy Statement for Business Relations
TrustBuilder is committed to protecting and respecting your privacy.
- Last date of revision: March 1, 2023
- WHO DOES THIS PRIVACY STATEMENT APPLY TO?
- This Privacy Statement applies to TrustBuilder nv, with registered offices at Poortakkerstraat 93, 9051 Gent, company number 0466.701.444.
- TrustBuilder nv (“We”) processes various personal data in the context of its activities. We act as data controller for the processing of your personal data when you visit our website.
- We are committed to protect the personal data entrusted to us in a correct and transparent manner, in accordance with the applicable law and in particular with respect of the General Data Protection Regulation 2016/679 of 27 April 2016 (“GDPR”).
- WHAT IS COVERED BY THIS PRIVACY STATEMENT?
- With this Privacy Statement we would like to inform you about why and how we process your personal data as data controller when you visit our site, who we give that information to, what your rights are and who you can contact for more information or queries.
- When we refer to “the Site”, we mean the webpages on:
- The site may link to other websites. Whilst we try to link only to sites that share our high standards and respect for privacy, we are not responsible for the content or the privacy practices of other websites. This Privacy Statement only relates to data collected by us.
When linking to any such sites, we strongly recommend you to review the privacy statements on these sites, before disclosing any personal information.
Please be aware that, when you visit our pages on Facebook, LinkedIn, Instagram and Twitter, cookies are used by Facebook, LinkedIn, Instagram and Twitter. In this way, we can obtain information – in an anonymised way – about the public that visits our social media pages.
For more information about why and how your personal data are processed in this respect, we refer to the following privacy and cookie policies:- Cookie policy Facebook: https://www.facebook.com/policies/cookies/
- Privacy policy Facebook: https://www.facebook.com/about/privacy/
- Cookie policy LinkedIn: https://www.linkedin.com/legal/cookie-policy
- Privacy policy LinkedIn: https://www.linkedin.com/legal/privacy-policy
- Privacy policy Instagram: https://privacycenter.instagram.com/policy
- Cookie policy Instagram: https://privacycenter.instagram.com/policy
- Privacy and cookie policy Twitter: https://twitter.com/en/privacy
- FOR WHAT PURPOSES DO WE PROCESS PERSONAL DATA?
- Our website is mainly informative, which means that we will only process personal data about you in exceptional cases.
- In particular, we may process your personal data in order to handle enquiries, requests and complaints sent through the contact form.
- ON WHAT LEGAL GROUNDS DO WE PROCESS YOUR PERSONAL DATA?
- When you contact us through the contact form or through a general contact address, your personal data will in principle be processed for the purposes of our legitimate interests (namely the interest to handle all enquiries, requests and complaints sent via this form in the best possible way).
In this respect, we will always determine case by case whether our interests are not overridden by your interests, fundamental rights and freedoms. If you would like more information about this, you can always contact us. - For sending electronic direct marketing, We will always ask your explicit consent, unless We have obtained your e-mail address in the context of the sale of related products or services and you have not opposed to such use of your data. You may unsubscribe at any time by clicking ‘Unsubscribe’ at the bottom of the direct marketing message.
- When you contact us through the contact form or through a general contact address, your personal data will in principle be processed for the purposes of our legitimate interests (namely the interest to handle all enquiries, requests and complaints sent via this form in the best possible way).
- WHAT ARE YOUR RIGHTS?
- You have several rights concerning the personal data we process about you. In particular, you have the right to:
- gain access to your personal data and request a copy thereof;
- ask that We update or correct your personal data when you believe they are incorrect or incomplete;
- ask that We delete your personal data, or restrict the way in which We use such personal data when you believe that We have no (longer a) lawful ground to process it;
- withdraw consent to the processing of your personal data (to the extent such processing is based on your consent);
- receive your personal data in a structured, commonly used and machine-readable format and to transfer such data to another party (to the extent the processing is based on consent or on the execution of a contract);
- object to the processing of your personal data for which We use legitimate interest as a legal ground, in which case We will cease the processing unless We have compelling legitimate grounds for the processing.
- You also have the right to object at any time to the processing of personal data for direct marketing by contacting us (see below) or by clicking the unsubscribe link in the direct marketing messages We sent. In that case, We will no longer process your personal data for direct marketing purposes.
- In order to exercise any of your rights, you can send us a request, indicating the right you wish to exercise,
- by sending an e-mail to [email protected];
- by sending a written query to: TrustBuilder, Kris Van Opstaele, Poortakkerstraat 93, 9051 Ghent.
You may also use these contact details if you wish to make a complaint to us relating to the processing of your personal data.
- If you are unhappy with the way We handle your personal data, you have the right to lodge a complaint with a supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement.
- You have several rights concerning the personal data we process about you. In particular, you have the right to:
- HOW DO WE OBTAIN PERSONAL DATA?
- We may obtain your personal data when you contact us through the contact forms, register for a webinar, request gated content, visit our website or interact in any other way with TrustBuilder.
- WHICH PERSONAL DATA DO WE COLLECT?
- We may collect any personal data that you provide to us when you contact us using the contact form on the site.
- TO WHOM CAN WE DISCLOSE YOUR PERSONAL DATA?
- We may disclose your personal data to affiliated companies or third parties that reasonably require access to these data for one or more of the purposes referred to above. The following external parties may for instance be involved:
- external service providers We rely on for various business services (e.g. analytics and search engine providers, to help us improve and optimize our service);
- law enforcement authorities and public authorities in accordance with the relevant legislation;
- external professional advisors (e.g. attorneys or consultants of the company).
- With your explicit consent, We may transfer personal data to third parties (e.g. marketeers) for direct marketing purposes, including targeted advertising.
We do not sell or sell access to your personal information to third parties.
- We may disclose your personal data to affiliated companies or third parties that reasonably require access to these data for one or more of the purposes referred to above. The following external parties may for instance be involved:
- WHAT COOKIES DO WE USE AND HOW CAN YOU MANAGE THEM?
- What are cookies?
A cookie is a small simple file that is sent along with pages of this website and stored by your browser on the hard drive of your computer or another device. The information stored therein may be returned to our servers or to the servers of the relevant third parties during a subsequent visit. - What are scripts?
A script is a piece of program code that is used to make our website function properly and interactively. This code is executed on our server or on your device. - What is a web beacon?
A web beacon (or a pixel tag) is a small, invisible piece of text or image on a website that is used to monitor traffic on a website. In order to do this, various data about you is stored using web beacons. - Cookies
- Technical or functional cookies
Some cookies ensure that certain parts of the website work properly and that your user preferences remain known. By placing functional cookies, we make it easier for you to visit our website. This way, you do not need to repeatedly enter the same information when visiting our website and, for example, the items remain in your shopping cart until you have paid. We may place these cookies without your consent. - Statistics cookies
We use statistics cookies to optimize the website experience for our users. With these statistics cookies we get insights in the usage of our website. We ask your permission to place statistics cookies. - Marketing/Tracking cookies
Marketing/Tracking cookies are cookies or any other form of local storage, used to create user profiles to display advertising or to track the user on this website or across several websites for similar marketing purposes. - Social media
On our website, we have included content from Facebook, Twitter, LinkedIn and Instagram to promote web pages (e.g. “like”, “pin”) or share (e.g. “tweet”) on social networks like Facebook, Twitter, LinkedIn and Instagram. This content is embedded with code derived from Facebook, Twitter, LinkedIn and Instagram and places cookies. This content might store and process certain information for personalized advertising.Please read the privacy statement of these social networks (which can change regularly) to read what they do with your (personal) data which they process using these cookies. (You can find links to these statements in paragraph 2.3) The data that is retrieved is anonymized as much as possible. Facebook, Twitter, LinkedIn and Instagram are located in the United States.
- Technical or functional cookies
- Placed cookies
Leedfeader
Marketing/Tracking
Usage
Sharing data
This data is not shared with third parties.
Marketing/Tracking
Name
_lfaExpiration
2 yearsFunction
To store and track audience reachBing Ads
Marketing/Tracking, Functional
Usage
Sharing data
This data is not shared with third parties.
Marketing/Tracking
Name
Expiration
13 monthsFunction
Store and track visits across websitesName
Expiration
1 dayFunction
Store and track visits across websitesFunctional
Name
Expiration
persistentFunction
Name
Expiration
persistentFunction
Google Analytics
Statistics, Functional
Usage
We use Google Analytics for website statistics. Read more
Sharing data
For more information, please read the Google Analytics Privacy Statement.
Statistics
Name
Expiration
2 yearsFunction
Store and count pageviewsName
Expiration
1 yearFunction
Store and count pageviewsName
Expiration
1 dayFunction
Store and count pageviewsPosts View Counter
Functional
Usage
We use Posts View Counter for website statistics. Read more
Sharing data
This data is not shared with third parties.
Complianz
Functional
Usage
We use Complianz for cookie consent management. Read more
Sharing data
This data is not shared with third parties. For more information, please read the Complianz Privacy Statement.
Functional
Name
Expiration
365 daysFunction
Read to determine which cookie banner to showName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store accepted cookie policy IDName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store if the cookie banner has been dismissedName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store cookie consent preferencesName
Expiration
365 daysFunction
Store information about cookies that have been detected on the siteElementor
Statistics (anonymous)
Usage
We use Elementor for content creation. Read more
Sharing data
This data is not shared with third parties.
Statistics (anonymous)
Name
Expiration
persistentFunction
Store performed actions on the websiteWistia
Marketing/Tracking, Statistics
Usage
We use Wistia for video display. Read more
Sharing data
For more information, please read the Wistia Privacy Statement.
Marketing/Tracking
Name
Expiration
persistentFunction
Store performed actions on the websiteStatistics
Name
Expiration
persistentFunction
Store if the user has seen embedded contentLeadfeeder
Marketing/Tracking
Usage
We use Leadfeeder for advertising. Read more
Sharing data
For more information, please read the Leadfeeder Privacy Statement.
Google Adsense
Marketing/Tracking
Usage
We use Google Adsense for showing advertisements. Read more
Sharing data
For more information, please read the Google Adsense Privacy Statement.
Marketing/Tracking
Name
Expiration
persistentFunction
Store and track conversionsName
Expiration
persistentFunction
Provide ad delivery or retargetingMatomo
Statistics (anonymous)
Usage
We use Matomo for website statistics. Read more
Sharing data
This data is not shared with third parties.
Google Ads
Statistics, Marketing/Tracking
Usage
We use Google Ads for advertising. Read more
Sharing data
For more information, please read the Google Ads Privacy Statement.
Marketing/Tracking
Name
Expiration
expires immediatelyFunction
Store information for remarketing purposesLinkedIn
Statistics, Marketing/Tracking, Functional
Usage
We use LinkedIn for display of recent social posts and/or social share buttons. Read more
Sharing data
For more information, please read the LinkedIn Privacy Statement.
Statistics
Name
ln_orExpiration
1 dayFunction
Used to determine if Oribi analytics can be carried out on a specific domainMarketing/Tracking
Name
Expiration
2 yearsFunction
Store browser detailsName
Expiration
1 monthFunction
Provide ad delivery or retargetingName
Expiration
3 monthsFunction
Store browser detailsName
Expiration
30 daysFunction
Provide ad delivery or retargetingName
Expiration
1 dayFunction
Store performed actions on the websiteName
Expiration
2 yearsFunction
Store performed actions on the websiteName
Expiration
sessionFunction
Provide functions across pagesFunctional
Name
Expiration
10 yearsFunction
Store privacy preferencesName
Expiration
sessionFunction
Provide functions across pagesHubSpot
Marketing/Tracking, Functional, Preferences
Usage
We use HubSpot for marketing automation (automated email marketing). Read more
Sharing data
For more information, please read the HubSpot Privacy Statement.
Functional
Name
Expiration
30 minutesFunction
Store anonymized statisticsName
Expiration
sessionFunction
Store ID’s of experiments and sessions for A/B testingName
Expiration
6 monthsFunction
Store ‘do not track’ signalsPurpose pending investigation
Name
Expiration
Function
Name
Expiration
Function
Name
Expiration
Function
Preferences
Name
Expiration
13 monthsFunction
Store browser detailsName
Expiration
30 minutesFunction
Store if a message has been shownJetpopup
Functional
Usage
We use Jetpopup for popup creation. Read more
Sharing data
This data is not shared with third parties.
Zoho SalesIQ
Marketing/Tracking, Functional
Usage
We use Zoho SalesIQ for Contact Forms.
Sharing data
For more information, please read the Zoho SalesIQ Privacy Statement.
Marketing/Tracking
Name
Expiration
1 dayFunction
This cookie identifies unique visits for a visitor in the websiteFunctional
Name
Expiration
5 minsFunction
This cookie stores the minimization and maximization state of an embed on the website.Google Fonts
Marketing/Tracking
Usage
We use Google Fonts for display of webfonts. Read more
Sharing data
For more information, please read the Google Fonts Privacy Statement.
Marketing/Tracking
Name
Expiration
expires immediatelyFunction
Read user IP addressYouTube
Marketing/Tracking, Functional
Usage
We use YouTube for video display. Read more
Sharing data
For more information, please read the YouTube Privacy Statement.
Marketing/Tracking
Name
Expiration
sessionFunction
Store location dataName
Expiration
sessionFunction
Store and track interactionName
Expiration
8 monthsFunction
Store user preferencesFacebook
Marketing/Tracking, Functional
Usage
We use Facebook for display of recent social posts and/or social share buttons. Read more
Sharing data
For more information, please read the Facebook Privacy Statement.
Marketing/Tracking
Name
Expiration
2 yearsFunction
Store last visitName
Expiration
1 yearFunction
Store account detailsName
Expiration
3 monthsFunction
Store a unique session IDName
Expiration
3 monthsFunction
Provide ad delivery or retargetingName
Expiration
90 daysFunction
Store logged in usersName
Expiration
3 monthsFunction
Store and track visits across websitesName
Expiration
2 yearsFunction
Provide fraud preventionName
Expiration
30 daysFunction
Store a unique user IDName
Expiration
2 yearsFunction
Store browser detailsName
Expiration
1 yearFunction
Store account detailsFunctional
Name
Expiration
1 weekFunction
Read screen resolutionName
Expiration
90 daysFunction
Provide fraud preventionName
Expiration
sessionFunction
Store and track if the browser tab is activeTwitter
Functional, Marketing/Tracking
Usage
We use Twitter for display of recent social posts and/or social share buttons. Read more
Sharing data
For more information, please read the Twitter Privacy Statement.
Functional
Name
Expiration
persistentFunction
Provide load balancing functionalityMarketing/Tracking
Name
Expiration
persistentFunction
Store if the user has seen embedded contentInstagram
Marketing/Tracking
Usage
We use Instagram for display of recent social posts and/or social share buttons. Read more
Sharing data
For more information, please read the Instagram Privacy Statement.
Miscellaneous
Purpose pending investigation
Usage
Sharing data
Sharing of data is pending investigation
Purpose pending investigation
Name
e_event-trackerExpiration
Function
Name
persist:window.wizardData.persist_keyExpiration
Function
Name
Expiration
Function
Name
wpseoFrontendInspectorOpenExpiration
Function
Name
WP_DATA_USER_2Expiration
Function
Name
ss-survey-takenExpiration
Function
Name
loglevelExpiration
Function
Name
e_kit-elements-defaultsExpiration
Function
Name
ziwsSessionIdExpiration
Function
Name
utsdbExpiration
Function
Name
siqlsdbExpiration
Function
Name
inwebofr-_zldpExpiration
Function
Name
inwebofr-nextreconExpiration
Function
- Consent
When you visit our website for the first time, we will show you a pop-up with an explanation about cookies. As soon as you click on “Save preferences”, you consent to us using the categories of cookies and plug-ins you selected in the pop-up, as described in this Cookie Policy. You can disable the use of cookies via your browser, but please note that our website may no longer work properly.
Manage your consent settingsYou have loaded the Cookie Policy without javascript support. On AMP, you can use the manage consent button on the bottom of the page.
- What are cookies?
- ARE YOUR PERSONAL DATA PROTECTED?
- We employ strict technical and organizational (security) measures to protect your personal data from access by unauthorised persons and against unlawful processing, abuse, damage, accidental loss and destruction both online and offline.
- TECHNICAL MEASURES
- Access control and authentication:
- An access control system applicable to all users accessing the IT system is implemented. The system allows creating, approving, reviewing and deleting user accounts.
- The use of common user accounts is avoided. In cases where this is necessary, it is ensured that all users of the common account have the same roles and responsibilities.
- When granting access or assigning user roles, the “need-to-know principle” shall be observed in order to limit the number of users having access to personal data only to those who require it for achieving TrustBuilder’s processing purposes.
- Where authentication mechanisms are based on passwords, TrustBuilder requires the password to be at least eight characters long and conform to very strong password control parameters including length, character complexity, and non-repeatability.
- The authentication credentials (such as user ID and password) shall never be transmitted unprotected over the network.
- Logging and monitoring:
- Log files are activated for each system/application used for the processing of personal data. They include all types of access to data (view, modification, deletion).
- Security of data at rest:
- Server/Database security:
- Database and applications servers are configured to run using a separate account, with minimum OS privileges to function correctly.
- Database and applications servers only process the personal data that are actually needed to process in order to achieve its processing purposes.
- Workstation security:
- Users are not able to deactivate or bypass security settings.
- Anti-virus applications and detection signatures is configured on a regular basis.
- Users don’t have privileges to install or deactivate unauthorized software applications.
- The system has session time-outs when the user has not been active for a certain time period.
- Critical security updates released by the operating system developer is installed regularly.
- Network/Communication security:
- Whenever access is performed through the Internet, communication is encrypted through cryptographic protocols.
- Traffic to and from the IT system is monitored and controlled through Firewalls and Intrusion Detection Systems.
- Mobile/Portable devices:
- Mobile and portable device management procedures are defined and documented establishing clear rules for their proper use.
- Mobile devices that are allowed to access the information system is pre-registered and pre-authorized.
- Application lifecycle security:
- During the development lifecycle, best practice, state of the art and well acknowledged secure development practices or standards is followed.
- Data deletion/disposal:
- Software-based overwriting will be performed on media prior to their disposal. In cases where this is not possible (CD’s, DVD’s, etc.) physical destruction will be performed.
- Shredding of paper and portable media used to store personal data is carried out.
- Physical security:
- The physical perimeter of the IT system infrastructure is not accessible by non-authorized personnel. Appropriate technical measures and organizational measures are in place to protect security areas and their access points against entry by unauthorized persons.
- Server/Database security:
- Access control and authentication:
- ORGANIZATIONAL MEASURES
- Security management:
- Security policy and procedures:
- TrustBuilder must document a security policy with regard to the processing of personal data.
- Roles and responsibilities:
- Roles and responsibilities related to the processing of personal data is clearly defined and allocated in accordance with the security policy.
- During internal re-organizations or terminations and change of employment, revocation of rights and responsibilities with respective hand-over procedures is clearly defined.
- Access Control Policy: specific access control rights are allocated to each role involved in the processing of personal data, following the need-to-know principle.
- Resource/asset management: TrustBuilder has a register of the IT resources used for the processing of personal data (hardware, software, and network). A specific person is assigned the task of maintaining and updating the register (e.g. IT officer).
- Change management: TrustBuilder makes sure that all changes to the IT system are registered and monitored by a specific person (e.g. IT or security officer). Regular monitoring of this process takes place.
- Security policy and procedures:
- Incident response and business continuity:
- Incidents handling / Personal data breaches:
- An incident response plan with detailed procedures is defined to ensure effective and orderly response to incidents pertaining personal data.
- TrustBuilder will report without undue delay to the relevant controller any security incident that has resulted in a loss, misuse or unauthorized acquisition of any personal data.
- Business continuity: TrustBuilder establishes the main procedures and controls to be followed in order to ensure the required level of continuity and availability of the IT system processing personal data (in the event of an incident/personal data breach).
- Incidents handling / Personal data breaches:
- Human resources:
- Confidentiality of personnel: TrustBuilder ensures that all employees understand their responsibilities and obligations related to the processing of personal data. Roles and responsibilities are clearly communicated during the pre-employment and/or induction process.
- Training: TrustBuilder ensures that all employees are adequately informed about the security controls of the IT system that relate to their everyday work. Employees involved in the processing of personal data are also properly informed about relevant data protection requirements and legal obligations through regular awareness campaigns
- Security management:
- HOW LONG WILL YOUR PERSONAL DATA BE STORED?
- Your personal data will not be retained longer than necessary for the purposes described above.
- As a general rule, personal data obtained through our website are stored for a period of 3 years.Personal data processed in the context of direct marketing, for example for our newsletters, will in principle be stored for a period of 3 years from the last contact with our company.
- Depending on the specific situation, we may however retain your personal data for a longer period. This will in particular be the case if any of the following periods is longer : (i) as long as is necessary for the activity or service concerned; (ii) any retention period that is required by law; or (iii) the end of the period in which litigation or investigations might arise.
- ARE YOUR PERSONAL DATA USED FOR AUTOMATED DECISION-MAKING?
- Automated decisions are defined as decisions about individuals that are solely based on the automated processing of data and that produce legal effects that significantly affect the individuals involved.
- As a rule, your personal data will not be used for automated decision-making. We do not base any decisions about you solely on automated processing of your personal data.
- HOW TO CONTACT US?
- If you have any further queries about this Privacy Statement and the Sites in general, you can contact us:
- by e-mailing us at [email protected];
- by calling us at +32 (0)9 265 02 70;
- by addressing your written query to TrustBuilder, Kris Van Opstaele, Poortakkerstraat 93, 9051 Ghent.
- If you have any further queries about this Privacy Statement and the Sites in general, you can contact us:
- CHANGES TO THIS PRIVACY STATEMENT
- We may modify or amend this Privacy Statement from time to time. To let you know when we make changes to this Privacy Statement, we will amend the revision date at the top of this page. The new modified or amended Privacy Statement will apply from that revision date. Please check back periodically to see changes and additions.