Privacy Policy

 Introduction

This privacy policy tells you what you can expect from H.Essers regarding your personal data when you
contact us or use any of our services. In what follows we will tell you why we process your data, for what
purpose we process it, why you need to provide it to us and how long we store it. We will also mention
whether there are other recipients of your personal data, whether we intend to transfer it to another
country, and whether we make automated decisions or use profiling.

In collecting and using this data, the organization is subject to a variety of laws that control how such
activities can be carried out and what safeguards must be in place to protect them.

The purpose of this policy is to set out the relevant legislation and describe the steps H.Essers takes to
ensure compliance with this legislation.

This control applies to all systems, people and processes that constitute the organization’s information
systems, including board members, employees, suppliers and other third parties who have access to
H.Essers’ systems.

 

Identity

H.Essers & Zonen Internationaal Transport NV, with registered office at Transportlaan 4 3600 in Belgium,
registered in the Register of Legal Persons, with VAT-number 0401.296.720, hereby legally represented
by Alro bv, represented by Gert Bervoets, CEO H.Essers.

 

GDPR (General Data Protection Regulation)

The General Data Protection Regulation (GDPR) is one of the most important pieces of legislation that
affects the way H.Essers carries out processing activities.

GDPR was transposed in Belgium by the ‘Data Protection Act’ of 30 July 2018.

Significant fines can be imposed if there is a breach under GDPR, which is designed to protect the
personal data of citizens of the European Union. This policy of H.Essers ensures that our compliance
with GDPR and other relevant legislation is clear and demonstrable at all times.

 

Data Transparancy

What personal data do we collect?

We process various types of personal data relating to you that you provide to us yourself through our
website or other communication channels.

When you visit our website, we collect and process:

  • Technical information related to the device you are using, such as your IP address, browser type,
    geographical location and operating system.
  • Information related to your browsing habits, such as the time you spend on a page, which links you
    click, which pages you visit and how often you visit a particular page.

When you fill out our contact form or contact us, we collect and process:

  • The personal identification data you provide us, such as your name, email address, phone number,
    organization.
  • The content of the message and its technical details (with whom of us you are communicating, the
    date, time, etc.);
  • Any other personal data you provide to us.

When you sign up for our newsletter, we collect and process:

  • Personal identification data such as name and email address

When you negotiate, conclude and perform a contract with us, we collect and process:

  • Your personal identification information, such as your name, email address, employer and position;
  • Your signature;
  • Any other personal data you provide to us during the term of the contract.

When we deliver certain services to you, we collect and process:

  • Your contact and billing information

When you apply for a job on our job website, we collect and process:

  • The personal identification data you provide us, such as your name, email address, phone number,
    organization.
  • CV with all relevant information such as education, work experience, interests, etc….
  • Any other personal data you provide to us through the cover letter or CV.

Why do we process your personal data?

We process your personal data for a number of reasons, including to enable you to visit our websites
and to communicate with us. In this article we provide you with an overview of all the reasons why we
process your personal data.

We process your personal data for the following reasons:

a) To provide you with the requested information and services in a personalized and efficient manner;

b) To carry out statistical analyses and to be able to improve our websites and services;

c) To be able to process and perform the contract to which you or your company or employer is a
party, including the administration thereof;

d) To be able to defend ourselves and our interests in legal proceedings;

e) For security reasons and to be able to detect, prevent and report abuse;

f) To notify any third party in the context of a possible merger with, acquisition of/by or spin-off by
that third party, even if that third party is located outside the EU;

g) To comply with our legal obligations and any valid request from police, judicial or governmental
authorities

Lawful processing of your personal data

The law requires us to clarify which legal ground we rely on to process your personal data (e.g. your
consent). In this article, we indicate for each purpose, as mentioned above, which legal ground we use.

Data protection legislation requires us to tell you precisely which legal ground we are relying on to make
the processing of your personal data lawful. We must do this for each of the purposes listed in the
previous section.

For the purpose under (a), we rely on your consent. For sending newsletters, advertising, promotions
and offers, we will always ask you for your express prior consent, which you can withdraw at any time.
You can unsubscribe in the e-mails we send you.

For the purpose under (g) we need to process your personal data to comply with our legal obligations.

For the purposes under (b) to (f), we process your personal data because it is necessary for the
protection of our legitimate interests, which in this case relate to:

  • monitoring the quality level of our websites and services;
  • Being able to conduct our administration and services in a normal and professional manner;
  • Obtaining insight into the way in which the websites are used;
  • our commercial interests to improve and expand our customer relationships, activities and services;
  • our interest in the context of safety and security;

Who receives your personal data?

We do not sell or disclose to third parties the personal data we have collected, except as described in
this Privacy Policy or as disclosed to you at the time of collection.

We may share personal information with affiliated entities or with third party data processors on our
behalf. When these service providers act as data processors on our behalf, we do not permit them to
use or disclose this information in a way that is inconsistent with the cases described in this Privacy
Policy. We require these data processors to ensure the privacy and security of the personal data they
process on our behalf.

We may also disclose your personal data:

  • When certain legislation or legal proceedings require us to do so;
  • When government agencies require us to do so;
  • When we believe that disclosure is necessary and appropriate to prevent physical integrity or any
    financial loss, or in connection with an investigation of suspected or actual fraudulent and illegal
    activities.

We reserve the right to transfer personal data in the event that we sell part or all of our business or
assets. If such a sale occurs, we will take all reasonable steps to encourage the transferee to process the
personal data provided to us properly and in a manner consistent with our Privacy Policy.

How long do we keep your personal data?

We will retain your personal data only to the extent and for as long as necessary to achieve the purposes
set out in the previous section.

Your personal data will only be processed for as long as necessary to achieve the purposes listed above
or until you withdraw your consent to processing. We will de-identify your personal data when it is no
longer needed for these purposes, unless:

  • There is a prevailing interest of H.Essers or third parties in keeping your personal data identifiable;
  • A legal or regulatory obligation or a court or administrative order prevents us from de-identifying
    the data.

Security and Confidentiality

H.Essers guarantees that the processing of your personal data is performed in an adequate, correct and secure
manner. Appropriate technical and organizational measures have been taken to prevent any loss, falsification or
unlawful alteration of, as well as unlawful access to, the personal data.

 

Data Management

Rights of the Data Subject

The data subject also has rights under GDPR. These consist of:

  • the right to information
  • the right of access
  • the right to rectification
  • the right to erasure
  • the right to restrict processing
  • the right to data portability
  • the right to object
  • rights related to automated decision-making and profiling.

Each of these rights is supported by appropriate procedures within the client’s company that allow for
the necessary action to be taken within the timeframes set out in the GDPR.

These timelines can be found here.

 

Google Analytics

Essers analyzes data through Google Analytics. You can read more about Google’s processing of personal data on the partner page and in their Terms of Service.

 

If you would like to read the full privacy policy, click here.

If you would like to read our cookie policy, click here.