Privacy statement

This is the Privacy Statement of Rheumafinder

RHEUMAFINDER BV
Vlasgaardstraat 52
9000 Ghent
, Belgium
Enterprise number: 0801.688.964
Hereinafter “Rheumafinder”, “we” or “us”

Introduction

We process your Personal Data securely and lawfully, and in accordance with the applicable data protection legislation. In this Privacy Statement, we explain which Personal Data we process in the context of: (a) the use of our website www.rheumafinder.ai (hereinafter the “Website”), (b) enquiries received via email or the contact form, (c) the registration for and attendance at events, (d) job applications, and (e) our collaboration with partners and customers.
This Privacy Statement does not cover the processing of personal data within the RheumaFinder software application (the “Service”). Where Rheumafinder processes personal data on behalf of a customer in the context of the Service, Rheumafinder acts as a Processor, and the applicable terms are set out in a separate Data Processing Agreement.
All capitalized terms not defined in this Statement have the meaning given to them in the General Data Protection Regulation (Regulation (EU) 2016/679, “GDPR”).
Please read this Privacy Statement carefully. It describes your rights and the way in which you can exercise them.

Changes

This Privacy Statement may be adjusted and amended in the future, which will be clearly indicated through the date at the top of this Privacy Statement. It is your responsibility to take this Privacy Statement into account. Any substantial change will always be communicated.

Who processes your Personal Data?

Rheumafinder is the Controller for the processing of your Personal Data as described in this Privacy Statement.

You can reach us at the above-mentioned address or via

E-mail: info@rheumafinder.com

Which Personal Data do we process, from whom, and for which purposes?

We process different types of Personal Data depending on how you interact with us. The following sections set out the categories of Personal Data we may process, the purposes, and the legal basis. We do not process special categories of Personal Data (such as data concerning health, racial or ethnic origin, political opinions, religious beliefs, or sexual orientation) via the Website or through the interactions described in this Privacy Statement.

Persons who contact us

Collected Personal Data The Personal Data that you provide to us through your email or contact form submission, such as your name, email address, telephone number, organization, as well as the content of your message.
Purpose We process your Personal Data in order to respond to your enquiry and to communicate with you by email, telephone, or other equivalent means.
Legal basis We process this information on the basis of our legitimate interest (Article 6(1)(f) GDPR). You are free to choose whether to provide your Personal Data to us, and you may at any time object to the processing.

Applicants

Collected Personal Data Name, email address, address, telephone number, job title, current employer, CV, and any other information you provide in the context of your application.
Purpose We process your Personal Data in order to evaluate your application, to contact you regarding the progress of the application procedure, and to identify future suitable vacancies.
Legal basis We process this Personal Data on the basis of your consent (Article 6(1)(a) GDPR), which you may withdraw at any time, and our legitimate interest (Article 6(1)(f) GDPR) in conducting an efficient recruitment procedure.

Business contacts and customers

Collected Personal Data Name, email address, telephone number, organization, role, and any other Personal Data exchanged in the context of a business relationship.
Purpose We process your Personal Data to manage and maintain our business relationships, to perform our contractual obligations, and to inform you about relevant updates regarding our products and services.
Legal basis Performance of a contract (Article 6(1)(b) GDPR) and our legitimate interest (Article 6(1)(f) GDPR) in managing business relationships.

Who has access to your Personal Data?

We may share your Personal Data with:

  • (sub)contractors who help us carry out the purposes mentioned above;
  • service providers for creating and distributing tickets for events;
  • service providers for processing payments, or to contact you;
  • our accountants, auditors, lawyers, or similar advisors when we request them to provide professional advice;
  • judicial, police, or administrative authorities if we are required to disclose or share your Personal Data in order to comply with a legal obligation, a binding decision of an administrative authority, or a court order.

We share your Personal Data with these third parties only on the condition that they (a) as Controllers comply with the GDPR, or (b) as Processors have entered into a data processing agreement with us. For a detailed list of these third parties, you can contact us using the contact details provided above.

Processing of Personal Data outside the EEA

We are a Belgian company and, in principle, aim to process your Personal Data exclusively within the European Economic Area (EEA). However, it is possible that your Personal Data – through our (sub)processors – may be transferred to countries outside the EEA.
If your Personal Data is transferred to a country that, under the applicable legislation, does not provide an adequate level of protection, we will take the necessary measures to ensure an equivalent level of protection. This may include the use of standard contractual clauses approved by the European Commission or the implementation of other appropriate safeguards.

How do we protect your Personal Data?

We have implemented appropriate technical and organizational measures, safeguards and protections to process your Personal Data in accordance with the applicable Belgian and European legislation, and in particular to protect your Personal Data against loss, misuse, or unauthorized alteration.
In addition, we have concluded data processing agreements with our (sub)processors to secure your Personal Data and have taken various internal measures regarding confidentiality. We make all reasonable and necessary efforts to protect the confidentiality of your Personal Data.

How long do we retain your Personal Data?

We do not retain your Personal Data longer than necessary for the purposes for which it was collected. We retain and use your Personal Data insofar as necessary to comply with our legal obligations (for example, if we are required to retain it in order to comply with applicable legislation), to resolve disputes, and to enforce our agreements.
We also retain usage data (i.e. data that is collected automatically, generated by the use of the Website) for internal analysis purposes. Usage data is generally retained for a shorter period, except where such data is used to strengthen security or to improve the functionality of our Website, or where we are legally required to retain such data for a longer period.
If you would like to know how long we retain your Personal Data for a specific purpose, you can contact us using the contact details provided above.

Processing of Personal Data outside the EEA

We are a Belgian company and, in principle, aim to process your Personal Data exclusively within the European Economic Area (EEA). However, it is possible that your Personal Data – through our (sub)processors – may be transferred to countries outside the EEA.
If your Personal Data is transferred to a country that, under the applicable legislation, does not provide an adequate level of protection, we will take the necessary measures to ensure an equivalent level of protection. This may include the use of standard contractual clauses approved by the European Commission or the implementation of other appropriate safeguards.

What are your rights as a data subject?

To the extent provided under the applicable Belgian and European legislation, you have the right:

  • to obtain confirmation as to whether or not we process your Personal Data and, where that is the case, to access the Personal Data we process;
  • to obtain the rectification, without undue delay, of inaccurate or incomplete Personal Data;
  • to have your Personal Data erased;
  • to obtain your Personal Data and transfer it to another Controller or Processor;
  • to obtain from us the restriction of the processing of your Personal Data, to the extent possible;
  • to receive your Personal Data in a structured, commonly used, and machine-readable format;
  • to object to the processing of your Personal Data and to the use of your Personal Data for direct marketing purposes;
  • to withdraw your consent at any time, where the processing is based on consent.

You can exercise these rights by contacting us. If we are the Controller with respect to the Personal Data concerned, we will handle your request in accordance with the applicable legislation.
In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay, in accordance with the applicable legislation.
To the extent provided under the applicable Belgian and European legislation, you also have the right to lodge a complaint with the competent supervisory authority if the processing of your Personal Data violates the applicable legislation. In Belgium, this is the Data Protection Authority (https://www.gegevensbeschermingsautoriteit.be).

Back To Top