Privacy Policy

Last update : February 2025

    1. INTRODUCTION

    This Policy is established by Société Anonyme BIO-SOURCING (hereinafter « We », « the Data Controller » or « BIO-SOURCING »), registered with the Banque Carrefour des Entreprises under number 0554.840.790 and whose registered office is located 27B Boulevard du Rectorat à 4000 Liège.

    BIO-SOURCING is to be understood as the Data Controller within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data repealing Directive 95/46/EC (hereinafter, « GDPR ») as well as the Law of 30 July 2018 on the protection of individuals with regard to the processing of personal data, in that it processes the personal data of the users of its website https://www.bio-sourcing.com (hereinafter, « the website »). Users are hereinafter also referred to as « data subjects » or « you ».

    The purpose of this Policy is to transparently explain how your personal data is collected, processed and stored by BIO-SOURCING in order to demonstrate the company’s compliance with legal requirements.

    For BIO-SOURCING, respect for privacy and data protection are among the company’s core values.

    1. ESSENTIAL NOTIONS

    For the purposes of this Policy, « personal data » means any information that allows you, as a natural person, to be identified, directly or indirectly.

    For example : a surname, a first name, an e-mail address.

    The term « processing of personal data » refers to any operation or set of operations, whether or not carried out using automated processes and applied to personal data or sets of personal data.

    For example : collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, communication by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

    The term « Data Controller » means the natural or legal person, public authority, department or other body which, alone or jointly with others, determines the purposes and means of the processing ; in this case, BIO-SOURCING is the Data Controller.

    The term « Processor » means the natural or legal person, public authority, department or other body which processes personal data on behalf of the Data Controller.

    1. WHAT PERSONAL DATA DO WE PROCESS ? AND BY WHAT MEANS DO WE ACCESS TO IT ?

     

    • Categories of data processed

    For the purposes of the processing operations listed below, BIO-SOURCING processes the following relevant and necessary categories of personal data :

    • Electronic identification data : telephone number and e-mail address ;
    • Data collected through the use of cookies : user preferences regarding cookies, etc. ;
    • Any other data voluntarily communicated by the person concerned.

    For further information on the use of cookies, please consult our Cookies Policy.

    • Special categories of data

    In principle, BIO-SOURCING does not process special categories of personal data revealing your racial or ethnic origin, your political opinions, your religious or philosophical beliefs, your trade union membership, your genetic data, your biometric data, your health data or data concerning your sex life or sexual orientation, without your explicit consent.

    • Non-personal data

    BIO-SOURCING may also collect non-personal data.

    This data is considered non-personal because it does not directly or indirectly identify a specific individual. They may therefore be used for any purpose whatsoever. Thus, data anonymized for the purposes of aggregate analysis or market research are not considered personal data.

    On the other hand, if non-personal data is combined with personal data in such a way that it is possible to identify the persons concerned, this data will be treated as personal data until such time as it is impossible to link it with a specific person.

    • Collection methods

    Your personal data is collected directly from you, in particular when you send us an e-mail via the « Contact » tab.

    • Consequences of failing to provide this data

    The provision of some of the above-mentioned data is necessary to access certain services offered by BIO-SOURCING, in particular to contact you by e-mail.

    If the data subject does not provide the personal data requested by BIO-SOURCING, it is possible that the data subject will not be able to contact the company via the « Contact » tab.

    1. WHY DO WE PROCESS YOUR PERSONAL DATA? AND ON WHAT LEGAL GROUNDS DO WE PROCESS YOUR PERSONAL DATA?

     

    We process your personal data for specific purposes based on the relevant legal grounds, as set out in the following table :

    LEGAL BASIS PURPOSE
    Art. 6, 1., a) GDPR :
    The data subject has given consent to the processing of his or her personal data for one or more specific purposes ;    		 Your personal data is processed for the purpose of placing cookies on your terminal.
    Art. 6, 1., c) GDPR  :
    The processing is necessary for compliance with a legal obligation to which the controller is subject,
    BIO-SOURCING.    		 Your personal data is processed for the purpose of managing your requests relating to the exercise of your rights.
    Art. 6, 1., f) GDPR  :
    The processing is necessary for the purposes of BIO-SOURCING’s legitimate interests.    		 Your personal data is processed for the purposes of :

    – Managing your contact requests, questions, opinions and comments, in BIO-SOURCING’s legitimate interest in offering you services that meet your expectations ;

    – Management of website functionalities, in BIO-SOURCING’s legitimate interest in providing you with a functional website.

    With regard to processing on this particular legal basis, we always ensure that there is a balance between your rights and interests and those of BIO-SOURCING.

     
    Processing not yet envisaged BIO-SOURCING may carry out processing operations that are not yet provided for in this Privacy Policy.

    In this case, you will be contacted by us before any re-use of your personal data in order to inform you of the processing not yet envisaged and to give you the possibility, if necessary, of refusing it.
    1. WHO HAS ACCESS TO YOUR PERSONAL DATA ?

     

    • Internal communication

    Access to your personal data is strictly limited, within BIO-SOURCING, to authorized persons only, in particular for the management of your exchanges with BIO-SOURCING via contact e-mails.

    • External communication

    We do not sell or otherwise transfer your personal data to third parties.

    Nevertheless, in the course of our activities, we may share your data with our trusted partners and subcontractors, acting in accordance with our instructions, namely :

    • The website hosting company ;
    • The company responsible for managing the website.

    BIO-SOURCING may also be required to disclose some of your personal data to third parties authorized to have access to it, in particular in the following cases :

    • Authorities or legal advisors in the event of suspected criminal or inappropriate behavior ;
    • Authorities, legal advisors or any other similar actor, when required by law or when we are invited to do so by said authority.
    • Data storage and transfer

    Personal data collected by BIO-SOURCING is stored and processed within the European Union.

    In principle, none of your personal data is transferred to third countries outside the European Union or to international organizations. Should this nevertheless become the case, we undertake to take appropriate security measures to guarantee an adequate level of protection for your personal data.

    1. HOW LONG DO WE KEEP YOUR DATA ?

    BIO-SOURCING processes your personal data for the time strictly necessary to achieve the specific purposes, as developed above, for which the processing is carried out.

    Archiving in active database
    		 Archiving in intermediate database
    		 Justification
    Data related to contact requests
    The time required to process and respond to the contact request. / We do not need to keep this data any longer, once the request has been answered.
    Data related to cookies
    These durations are detailed in our Cookie Policy.
    1. WHAT SECURITY MEASURES ARE IN PLACE FOR YOUR PERSONAL DATA ?

    The protection of your personal data is a priority for us, and we therefore work actively to ensure that your data is protected against loss, theft, misuse, alteration, disclosure or unauthorized use. Accordingly, we take the measures that can reasonably be expected to ensure that your personal data is processed securely and in accordance with this Policy and the GDPR.

    However, data transfers over the Internet and mobile networks can never be risk-free. It is therefore important that data subjects also take responsibility for ensuring that their data is well protected, in particular by ensuring that their login data remains secret.

    If, despite these security measures, your data is destroyed, lost, altered or disclosed, we undertake to act promptly to identify the cause of the problem and to take appropriate measures, in accordance with the legal requirements governing the protection of personal data.

    1. USE OF COOKIES

    For further information on the use of cookies, please refer to our Cookies Policy.

    1. WHAT ARE YOUR RIGHTS ?

    As a person concerned by the processing of your personal data, you have a number of rights concerning access to and control of your personal data, in particular :

    • A right of access : by exercising this right, you can obtain, on simple request and free of charge, a copy (including in electronic format) of your personal data. You may also request access to a whole range of information, including the purposes of processing, recipients, etc.Should you request additional copies, we may charge you a reasonable fee based on administrative costs.
    • A right of rectification : by exercising this right, you can rectify, complete or delete your personal data that may be inaccurate, incomplete or irrelevant.

    In the event that we have made your data accessible to other entities, we are obliged to take all necessary measures to inform these entities of your request for rectification.

    • A right to erasure : with certain exceptions, you have the right to ask us to erase your data.

    In the event that we have made your data accessible to other entities, we are obliged to take all necessary measures to inform these entities of your request for deletion.

    • A right to restrict processing : in certain circumstances, you have the right to restrict the processing of your personal data.

    In the event that we have made your data accessible to other entities, we are obliged to take all necessary measures to inform these entities of your request to limit processing.

    • A right to the portability of your personal data : you may, in certain circumstances, request to receive, free of charge, your personal data in a structured, commonly used and machine-readable format, with a view, in particular, to transmitting it to another data controller.
    • A right to object : where the processing of your data is carried out on the basis of our legitimate interests, you may at any time object to the use of your data for this purpose, unless we demonstrate that there are compelling legitimate grounds overriding your rights and interests.
    • A right to withdraw your consent : you may withdraw your consent at any time, if your consent is the legal basis for processing your data.

    To exercise these rights or for any questions and/or complaints relating to this Privacy Policy, please send a written request (including in electronic format), dated and signed, to the attention of BIO-SOURCING using the contact details below.

    Your request must indicate the right(s) you wish to exercise. We may ask you to provide proof of your identity for security reasons, to prevent unauthorized disclosure or misuse of your personal data.

    We will then have one month from receipt of your request to reply. This period may be extended by 2 months, depending on the complexity or number of requests. Where applicable, this period may only be extended if you have been informed of the extension and the reasons for it have been communicated to you.

    Should we decide not to process your request, we will inform you of the reasons for our refusal or inaction.

    1. QUESTIONS, CLAIMS OR COMPLAINTS

    If you wish to respond to any of the practices described in this Policy, we recommend that you first contact us using the following contact details :

    BIO-SOURCING

    Boulevard du Rectorat 27 B

    4000 Liège

    contact@bio-sourcing.eu

    You can also lodge a complaint with the Belgian data protection authority :

    Autorité de Protection des Données

    Rue de la Presse, 35

    1000 Bruxelles

    Tél. + 32 2 274 48 00

    Fax. + 32 2 274 48 35

    contact@apd-gba.be

    For further information on complaints and possible remedies, please consult the information available on the Data Protection Authority website : https://www.autoriteprotectiondonnees.be

    Finally, you have the option of lodging a complaint with the competent national courts.

    1. APPLICABLE LAW

    This policy is governed by Belgian law.

    Any dispute relating to the interpretation or execution of this Policy shall be governed by Belgian law and shall fall within the exclusive jurisdiction of the courts of the district of Liège.

    1. CHANGES TO THIS POLICY

    We may make changes or additions to this Privacy Policy at any time. The latest version of our Privacy Policy will always be available via our website.