Privacy Policy TASH bv

Updated on January 1, 2024

1. Parties and Object
TASH bv (hereinafter “TASH bv” or the “Data Controller”)
Doornzelestraat 33/001 – 9000 Gent

VAT/Business Number: BE 0756.967.313
Email: info@tashco.be
Phone: +32 477 49 38 21

TASH bv establishes this Privacy Policy, aimed at transparently informing Users about the website hosted at the following address: www.tashco.be (hereinafter the “Site”), and how personal data is collected and processed by TASH bv.

The term “User” refers to any user, whether a natural or legal person, who visits the Site or in any way communicates with the Site.

In its capacity as the data controller, TASH bv determines all technical, legal, and organizational means and the purposes for processing the personal data of Users. TASH bv commits to take all necessary measures to ensure that the processing of personal data complies with the Law of July 30, 2018, regarding the protection of natural persons concerning the processing of personal data (hereinafter the “Law”) and Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, regarding the protection of natural persons concerning the processing of personal data and the free movement of such data and repealing Directive 95/46/EC (i.e., the General Data Protection Regulation (GDPR); hereinafter the “Regulation”).

TASH bv is free to choose a natural or legal person to process the personal data of users at its request and on its behalf (hereinafter the “Processor” or “Subcontractor”). In such a case, TASH bv commits to selecting a Processor that provides sufficient guarantees re garding the technical and organizational measures for the processing of personal data, in accordance with the Law and the Regulation.

2. Processing of Personal Data

The use of the Site by Users may result in the collection of personal data. The processing of this data by TASH bv, in its capacity as Data Controller or by service providers acting on behalf and for the account of TASH bv, is carried out in accordance with the Law and the Regulation.

Personal data is processed by TASH bv, in accordance with the purposes mentioned below, through the following methods:

An automated procedure:

• via the subscription form for news updates
• through the use of cookies
• through the sharing of free content
• via the contact form

3. Purpose of Personal Data Processing

In accordance with Article 13 of the Regulation, the purposes of personal data processing are communicated to the User. These purpo ses are as follows:

• Ensuring the execution of the offered and agreed services on the website www.tashco.be.
• Meeting the legal obligation to maintain customer and supplier data.

4. Personal Data that May Be Processed

The User agrees that, during the visit and use of the Site, TASH bv collects and processes the following personal data:
First name + last name, address, phone number, and email address.

TASH bv collects and processes this personal data in accordance with the conditions and principles described in this Privacy Policy.

5. Consent

By accessing and using the Site, the User declares that he/she has read and given his/her free, specific, informed, and unequivocal consent for the processing of his/her personal data. This agreement relates to the content of this Privacy Policy.

Consent is given by the positive and active action of the User checking the box for the privacy policy in the ‘hypertext link.’ This consent is an essential condition for performing certain actions on the Site or enabling the User to enter into a contractual relationship with TASH bv. Any agreement between TASH bv and a User concerning the services and goods offered on the Site is subject to the User’s acceptance of the Privacy Policy.

The User agrees that the Data Controller, in accordance with the conditions and principles included in this Privacy Policy, collects and processes his/her personal data provided on the Site or in connection with the services offered by TASH bv, for the purposes mentioned above.

The User has the right to withdraw this consent at any time. The withdrawal of consent does not affect the lawfulness of the processing based on the prior consent.

6. Retention Period of User’s Personal Data

In accordance with Article 13, paragraph 2 of the Regulation, the Data Controller retains personal data only for as long as reasonably necessary to achieve the purposes for which they are processed.

This duration, in all cases, does not exceed 5 years.

7. Data Recipients and Disclosure to Third Parties

Personal data may be disclosed to employees, collaborators, subcontractors, processors, or suppliers of TASH bv, provided adequate guarantees are offered for data security and they collaborate with TASH bv for marketing the products or providing services. They act under the direct authority of TASH bv, and are specifically responsible for collecting, processing, or outsourcing this data.

In all cases, data recipients and those to whom data is disclosed comply with the content of this Privacy Policy. TASH bv ensures that they process this data only for the intended purposes and in a discreet and secure manner.

In the event that data is provided to third parties for direct marketing or prospecting purposes, the User will be informed in advance so that he or she can give prior and explicit consent to this use of personal data.

8. Data Protection Officer (DPO)

The following individual is appointed as Data Protection Officer (DPO): Sarah Jansegers

The role of the DPO is to ensure the proper implementation of national and supranational regulations regarding the collection and pro cessing of personal data.

You can contact the DPO as follows:
Email: info@tashco.be

9. Rights of the Users

Users can exercise their rights at any time by sending an email message to the following address: info@tashco.be or a letter by post, accompanied by a copy of their ID card, to the following address: Doornzelestraat 33/001 – 9000 Gent.

a. Right of Access

In accordance with Article 15 of the Regulation, TASH bv guarantees the User’s right of access to their personal data. The User has the right to access this personal data and the following information:

• the categories of personal data concerned;
• the recipients or categories of recipients to whom the personal data has been or will be disclosed; • if the recipients are located in third countries or international organizations, the appropriate or suitable safeguards; • if possible, the proposed storage period for personal data or, if not possible, the criteria used to determine this period; • the existence of automated decision-making, including profiling, referred to in Article 22, paragraphs 1 and 4, of the Regulation, and, at least in such cases, relevant information about the underlying logic, as well as the significance and the expected consequences of such processing for the data subject.

The Data Controller may demand a reasonable fee based on administrative costs for additional copies requested by the User.

When the User submits this request electronically (e.g., via the email address), the data will be provided in electronic form and for gene ral use unless the User requests otherwise.

The copy of the data will be provided to the User no later than one month after receiving the request.

b. Right to Rectification

TASH bv guarantees the right to rectification and erasure of personal data to the User.

In accordance with Article 16 of the Regulation, incorrect, inaccurate, or irrelevant data can be corrected or deleted at any time. The User must first make the necessary changes from their user account, unless they cannot be made independently, in which case the request can be addressed to TASH bv.

According to Article 19 of the Regulation, the data controller informs each recipient to whom the personal data has been disclosed of any rectification of personal data, unless such rectification proves impossible or involves disproportionate effort. The data controller provides the data subject with information about these recipients if the data subject requests it.

c. Right to Erasure

The User has the right to obtain the erasure of their personal data as soon as possible in the cases mentioned in Article 17 of the Re gulation.

If the Data Controller has made the personal data public and is obliged to erase it under the preceding paragraph, the Data Controller, taking into account the available technology and implementation costs, takes reasonable measures, including technical measures, to inform other data controllers processing such personal data that the data subject has requested them to erase any links to, or copy or replication of, such personal data.

The two preceding paragraphs do not apply to the extent that such processing is necessary:

• for exercising the right to freedom of expression and information;
• to comply with a legal obligation for processing under Union or Member State law to which the Data Controller is subject, or to perform a task carried out in the public interest or in the exercise of official authority vested in the Data Controller; • for the establishment, exercise, or defense of legal claims.

According to Article 19 of the Regulation, the data controller informs the data subject of any erasure of personal data or any restriction of processing to each recipient to whom the personal data has been disclosed, unless this disclosure proves impossible or involves dispro portionate effort. The data controller provides the data subject with information about these recipients if the data subject requests it.

d. Right to Restriction of Processing

The User has the right to restrict the processing of their personal data in the cases mentioned in Article 18 of the Regulation.

In accordance with Article 19 of the Regulation, the data controller informs each recipient to whom the personal data has been disclosed of any restriction on the processing carried out, unless such disclosure proves impossible or involves disproportionate effort. The data controller provides the data subject with information about these recipients if the data subject requests it.

e. Right to Data Portability

In accordance with Article 20 of the Regulation, Users have the right to receive their personal data from TASH bv in a structured, com monly used, and machine-readable format. Users have the right to transmit this data to another data controller without hindrance from TASH bv, in the cases provided for in the Regulation.

When the User exercises their right to data portability under the previous paragraph, they have the right to have personal data transmit ted directly from one data controller to another, where technically feasible.

The exercise of the right to data portability does not affect the right to erasure. This right does not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller.

The right to data portability does not affect the rights and freedoms of third parties.

f. Right to Object and Automated Individual Decision-Making

The User has the right to object at any time to the processing of their personal data, including profiling by TASH bv, based on their speci fic situation. In accordance with Article 21 of the Regulation, TASH bv will no longer process personal data unless there are compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the User, or for the establishment, exercise, or defense of legal claims.

In the processing of personal data for prospecting purposes, the User has the right to object at any time to the processing of their per sonal data for such prospecting purposes, including profiling to the extent that it relates to such prospecting.
When the data subject objects to processing for prospecting purposes, the personal data will no longer be processed for that purpose.

g. Right to Lodge a Complaint

The User has the right to lodge a complaint regarding the processing of their personal data by TASH bv with the Data Protection Authori ty competent for the Belgian territory. More information can be found on the website: https://www.gegevensbeschermingsautoriteit.be/.

Complaints can be filed at the following addresses:

Data Protection Authority
Drukpersstraat 35, 1000 Brussels
Tel. +32 2 274 48 00
Fax. +32 2 274 48 35
Email: contact@apd-gba.be

The User can also file a motion for an injunction with the president of the court of first instance of their place of residence. 10.

10. Cookies

The Site uses cookies to distinguish Users of the Site. This allows providing users with a better browsing experience and improving the Site and its content. The objectives and methods of cookies are outlined in this article.

a. General principles

A “Cookie” is a file that is temporarily or permanently placed on the User’s device when viewing the Site for a subsequent connection. Thanks to cookies, the server recognizes the User’s device.

Cookies can also be installed by third parties with whom TASH bv collaborates.

Some of the cookies used by TASH bv are necessary for the proper functioning of the Site, while others are required to enhance the User’s experience.

The User can adjust or disable cookies.

By using the Website, the User expressly agrees to the management of cookies as described in this article. b. Types of cookies and objectives

Various types of cookies are used by TASH bv on the Site:

• Technical cookies: these are necessary for the operation of the Site, allow the communication of entered data, and are intended to fa cilitate User navigation;
• Analytical and audience cookies: these cookies enable the recognition of the User and are used to count the number of Users of the Website over a certain period. Since they also indicate browsing behavior, they are an effective way to improve the User’s browsing experience by displaying proposals and offers that may be of interest to the User. They also allow TASH bv to identify and correct any bugs on the Site;
• Functional cookies: these cookies facilitate the use of the Site by retaining certain choices entered (such as the username or language); Tracking cookies: TASH bv uses tracking cookies via Google Analytics to measure user interaction with the content of the Site and pro duce anonymous statistics. These statistics enable TASH bv to improve the Site. Google supports the explanation of these cookies at the following address: http://www.google.nl/intl/en_uk/policies/privacy/.

c. Storage period for cookies

Cookies are kept for the time necessary to achieve the intended purpose. The cookies that can be stored on the User’s hard drive and the storage period are as follows:

1 year (analytical cookies)

d. Cookie management

If the User does not want the Website to place cookies on their hard drive, they can easily manage or delete them by adjusting their brow ser settings. By programming the browser, the User can also receive a notification when a website uses cookies and decide whether to accept or refuse them.

If the User disables certain cookies, they accept that the Site may not function optimally. Some parts of the Site may not be or may only be partially usable.

If the User wishes to manage and/or delete certain cookies in this way, they can do so via the following link(s): For Users with a browser:

• Internet Explorer: http://windows.microsoft.com/en-us/windows-vista/block-or-allow-cookies
• Microsoft Edge: http://windows.microsoft.com/en-gb/windows-10/edge-privacy-faq
• Chrome: https://support.google.com/accounts/answer/61416?hl=fr
• Firefox: https://support.mozilla.org/fr/kb/activer-desactiver-cookies-preferences
• Safari: https://support.apple.com/kb/ph21411?locale=fr_CA

If the User refuses to allow the use of Google Analytics cookies, they are invited to configure their browser to do so on the following
website: http://tools.google.com/dlpage/gaoptout.

11. Limitation of the Liability of the Data Controller

The website may contain links to other third-party websites that are not affiliated with TASH bv. The content of these sites and compli ance with the Regulation and the Law are not the responsibility of TASH bv.

The holder of parental responsibility must give their express consent for a minor under the age of 16 to disclose personal information or data through the Site. TASH bv strongly advises individuals exercising parental responsibility over minors to promote responsible and safe internet use. The Data Controller cannot be held liable for the collection and processing of personal information and data of minors under the age of 16 whose consent is not effectively covered by that of their legal parents, nor for incorrect data—especially regarding age—entered by minors. In no case will personal data be processed by the Data Controller if the user indicates that they are under 16 years of age.

TASH bv is not responsible for the loss, damage, or theft of personal data, especially due to the presence of viruses or after computer attacks.

12. Security and Protection

The Data Controller implements technical and organizational measures to ensure an appropriate level of security for the processing and collection of data. These security measures depend on the implementation costs related to the nature, context, and purposes of the processing of personal data.

The Data Controller uses standard encryption technologies within the IT sector during the transfer or collection of data on the Site.

13. Modification of the Privacy Policy

TASH bv reserves the right to modify this Privacy Policy to comply with legal obligations in this regard. Users are therefore encouraged to regularly consult the Privacy Policy to stay informed of any changes and adjustments. Such changes will be posted on the Site or sent by email to ensure opposability.

14. Applicable Law and Competent Court

This Privacy Policy is exclusively governed by Belgian law. Any dispute will be submitted to the courts of the judicial district of the regis tered office of TASH bv.

15. Contact

For any questions or complaints regarding this privacy policy, the User can contact the Data Controller at the following address: info@ tashco.be.