Codana

Privacy Policy

Codana and Calibrate

Codana is a name used by Calibrate NV to market its web application development services. All guidelines, disclaimers and policies mentioned on the website www.calibrate.be are therefore also valid for Codana.

1. Importance of privacy policies

Calibrate attaches great importance to the correct protection of the data it processes, in particular personal data. On the basis of this policy, Calibrate wishes to record at a strategic level how data is protected, what responsibilities have been assigned and what priorities Calibrate has set for data protection.

In particular, Calibrate wants to protect the data of users of the website and the personal data they make available:

  • loss: data is no longer available;
  • leaks: data ends up in the wrong hands;
  • errors: data is incorrect, for example outdated or incomplete;
  • not accessible: data are not accessible when necessary;
  • wrongful access: accessed by persons who are not authorised to do so;
  • inability to check who looked at, modified or deleted the data;
  • processing not in accordance with regulations, directives and standards.


In this policy, Calibrate wants to appeal to everyone involved in electronic and paper processing in order to ensure that the processing of our visitors' personal data is carried out correctly, both from a common vision and from our shared desire to provide a high-quality service.

2. Scope of data protection policy

This policy applies to the entire life cycle of information within Calibrate's website, from the acquisition of information to the final disposal of information within the organisation.

This policy applies to Calibrate as a whole:

  • The office of Calibrate;
  • All staff members of Calibrate, both internal and external employees who are employed within Calibrate for a fixed or indefinite period of time;
  • All company assets and information processing systems managed by Calibrate as well as systems managed by external parties for the purpose of information processing for Calibrate such as databases, information regardless of its carrier, networks, data centres, etc;
  • All processing activities, both as controller and processor.

For certain domains or processes within Calibrate, additional guidelines or procedures may be developed that describe in detail the measures taken to achieve the desired level of data protection.

Given the important role of the ICT suppliers in setting up the ICT environment to process data, the privacy policy also lays down the policy principles for this.

3. Data protection policy objectives


Calibrate, both in its role as processor:

  • Is transparent about the personal data it processes and the purpose of the processing, both to the data subject, the customers and the supervisors. Communication is honest, easily accessible and understandable. The principle of transparency also applies when personal data are exchanged.
  • Processes only those data that are relevant to the performance of its tasks. Any task involving the processing of personal data is lawful. This will be evaluated each time a new processing purpose is set, where necessary on the basis of a data protection impact assessment.
  • Processes only those personal data that are strictly necessary for the performance of its activities. For example, identifiers belonging to the personal data are reduced to a minimum.
  • Ensures the integrity of personal data throughout the processing cycle.
  • Stores data no longer than necessary. Necessity is tested against legal obligations and the rights and freedoms of the data subject.
  • Prevents infringements arising from the processing of personal data. Information security, data protection in design and privacy-friendly default settings are tools for this. When a breach takes place, this will be reported in line with the relevant regulations.
  • Is able to perform all applicable rights of a data subject, such as the right of inspection, copying and possibly also deletion.
  • Actively ensures that when personal data are processed for a specific purpose, the rights and freedoms of the data subject are safeguarded.
  • Processes data in line with the rights and freedoms applicable in the European Economic Area and monitors their application when data is exchanged outside the European Economic Area.
  • Can demonstrate that it complies with all policy objectives, in accordance with legal provisions. This accountability is monitored by internal supervision and control and is practicable according to the principles applicable by law.

 

4. What data do we collect?

We collect different types of personal data:

  • Personal information that you give us via webforms: for example, your name, email address and telephone number when you use our contact form.
  • Personal data that we obtain through your use of the website:
  • Log file information: We keep track of the following data in server logs, among other things:
    • IP address;
    • Browser information;
    • The external web page from which you come;
    • The pages you visited on our website;
    • Time and duration of the pages visited.
  • Device information: We can track which device you use to visit our website;
  • Local storage: we can collect and store data locally on your device using mechanisms such as browser web storage and application data caches;
  • Cookies: we use cookies to identify our visitors in order to remember your preferences such as the default language. For more information about cookies, please refer to our cookie policy.

5. What do we use the personal data for?

We use the personal information we collect to provide, maintain, protect and improve the proper service. Your personal information is only kept as long as necessary for the purpose for which it was collected.

We may use your personal information for:

Communication with you, primarily to provide feedback when a question has been asked through the contact form or when you have applied through our site;


We only share your personal information:

With your consent: We will only share your personally identifiable information with companies other than Calibrate with your consent. Please be aware that when you click on a social media button, the privacy policy of this provider applies.
For legal reasons: we may need to share your personal information in order to comply with a legal obligation;
With parties that process personal data on our behalf: these parties may only process personal data on behalf of Calibrate. These processes will be recorded in a processing agreement between Calibrate and this party.

6. Your rights

You can ask us (for free):

What data we have on you;
What is the purpose of a certain processing;
Who processes all of your personal data.
You have the right (free of charge):

To a copy of your personal data that we process for a specific purpose;
To submit a request to delete your data;
To ask us to stop processing your personal data (if you have a legitimate and legal reason to do so).
Under no circumstances will Calibrate process personal data relating to political or religious preferences or beliefs, race, or any other data relating to your health or sex life.

7. Contact information

If you have any further questions about the processing of personal data, or if you would like to submit a request to modify, view or delete your data, you can send us an email at dpo@calibrate.be. We will ask for proof of identity and process your request within 30 days of receiving the email.