Tomeco Privacy Policy

1. This privacy policy (“Privacy Policy”) governs the processing of your personal data in connection with your use of our Website (the “Website”) and the services associated with it. This processing is carried out by Tomeco as the data controller, with its registered office at 2320 Hoogstraten (“we,” “us”), registered with the CBE under number 0642.906.003, in accordance with applicable data protection laws.
2. By using our website or services, you acknowledge that you have carefully read this Privacy Policy and agree to it without reservation. We reserve the right to modify this Privacy Policy from time to time at our discretion. Any such changes will be communicated via the Website.
3. “Cookies” or similar technologies may be used as part of the website or the services. Cookies are text files that are stored on a device’s hard drive and contain certain information, including, in some cases, personal data. For more information about the use of cookies, please refer to our cookie policy.
4. This Privacy Policy was last updated on .

What data we process and why

1. When you use the Website and/or Services, we process personal data relating to you:
   ◦ When? Use of Services, use of Website
   ◦ What? Identification data
   ◦ Why (purpose)? Processing of requests
   ◦ Legal basis? Legitimate interest
2. ◦ When? Contact us
   ◦ What? Identification details
   ◦ Why (purpose)? Sending related information and updates
   ◦ Legal basis? Consent

Generally, we collect the personal data listed above directly from you. In addition to the information mentioned above, we may also process your personal data:

1. To provide you with personalized and efficient information about the products and services you request, whether via the website, email, phone, or social media channels.
2. To process your personal data so that we can provide you with proper service
3. For direct marketing purposes, i.e., to provide you with targeted communications, promotions, offers, and other advertisements from us or our selected partners. We will ask for your consent for this.
4. To conduct statistical analyses in order to improve our Website and/or Services, or to develop new products or services.
5. To provide to a financial institution or payment service provider, so that your bank and the payment service provider can fulfill their obligations.
6. To be provided to the police or judicial authorities as evidence of potential crimes or if there are reasonable grounds to suspect that an unlawful act or crime has been committed through your registration with or use of the Website or the Services.
7. In connection with a potential merger with, acquisition of or by, or spin-off by a third party, even if that third party is located outside the EEA.

If and when your registration on the website or your use of the website or services can be considered (a) a violation of the terms and conditions or intellectual property rights, (b) a threat to the security or integrity of our services, (c) a risk to the Website, Services, or systems of ours or our subcontractors due to viruses, Trojan horses, spyware, malware, or any other form of malicious code, or (d) is in any way illegal, unlawful, discriminatory, or offensive, we may process your data in the interest of ourselves, our partners, or third parties.

Do we share your information?

1. We may use third-party processors to provide you with the best possible website experience. We ensure that third-party processors may only process your personal data on our behalf and in accordance with our written instructions.
2. We will not share your personal data with third parties in a way that identifies you unless it is necessary to provide our services, and we will not do so without your explicit consent.
3. We may share anonymized data with other organizations, which may use this data to improve their products and services and to tailor their marketing, presentation, and sales of products and services.

Where do we process data?

1. We and our third-party processors will process your personally identifiable information only within the European Union.
2. We may transfer your anonymized data to organizations outside the European Union. If such a transfer takes place, we will ensure that appropriate safeguards are in place to guarantee the security and integrity of your personal data, and that all rights relating to personal data that you would otherwise enjoy under applicable law are guaranteed.
3. If personal data and/or anonymized data is transferred, the following legal safeguard is implemented:
   ◦ Which one? Webflow
   ◦ Country outside the EEA? USA
   ◦ Legal safeguard? US-EU Privacy Shield
   

How we process data

1. We will do our utmost to process only the personal data necessary to achieve the purposes set out in this policy. We will process your personal data in a lawful and transparent manner. We will also do our utmost to keep your personal data accurate and up to date.
2. Your personal data will only be processed until you withdraw your consent to its processing. Withdrawing your consent may mean that you will no longer be able to use the website’s services, either in whole or in part. If you have registered on our website, we will delete your personal data when you delete your profile, unless a legal or regulatory obligation or a judicial or administrative order prevents us from doing so.
3. We will take appropriate technical and organizational measures to protect your personal data against unauthorized access or theft, as well as against accidental loss, alteration, or destruction. Access by our staff or the staff of our third-party processors is granted only on a need-to-know basis and is subject to strict confidentiality obligations.
   

Your rights regarding personal data

1. You have the right to request access to all personal data we process about you. However, requests for access that are clearly submitted with the intent to cause us inconvenience or harm will not be processed.
2. You have the right to request that any personal data about you that is incorrect or inaccurate be corrected free of charge. If you have registered on our website, you can correct much of this information yourself via your profile. If you submit such a request, you must also include proof that the personal data for which correction is requested is incorrect.
3. You have the right to withdraw your previously given consent to the processing of your personal data. You can do this by sending an email to info@tomeco.be.
4. Instead of erasure, you may also ask us to restrict the processing of your personal data if (a) you contest the accuracy of that data, (b) the processing is unlawful, or (c) the data is no longer necessary for the purposes for which it was collected, but you need it to defend yourself in legal proceedings.
5. You have the right to object to the processing of your data if you can demonstrate that there are serious and legitimate grounds related to your particular situation that justify such an objection. However, if the intended processing constitutes direct marketing, you have the right to object to such processing free of charge and without having to provide a justification.
6. If your personal data is processed based on consent or a contract and the processing is carried out by automated means, you have the right to receive the personal data you have provided in a structured format.
7. If you wish to submit a request to exercise one or more of the rights listed above, please send an email to info@tomeco.be. This request must clearly state which right you wish to exercise and why. It must also be dated and signed and accompanied by a digitally scanned copy of your ID card. If the request is found to be valid, we will comply with it as soon as reasonably possible and no later than thirty (30) days after receiving the request.
8. If you have any concerns regarding our processing of your personal data, please feel free to contact us at any time. If you remain dissatisfied with our response, you may file a complaint with the competent data protection authority, the Belgian Privacy Commission.