Privacy Policy

1. Introduction

DDGDD SA/NV ("we," "us," "our") is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR) (EU 2016/679) Belgian privacy laws and U.S. privacy laws, including the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you interact with us, whether in the European Union (EU), Belgium, or the United States (U.S.).

2. Data Controller

For the purposes of this Privacy Policy, DDGDD SA/NV is the Data Controller responsible for the processing of your personal data.

If you have any questions or requests regarding your personal data, please contact us via our contact form.
📍 Address : avenue Marie-José 27, 1200 Brussels

3. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity Data: Full name, surname, job title, and role within the organization.
  • Contact Data: Email address, phone number, mailing address, and business contact details.
  • Professional Information: Company name, department, and other business-related details.
  • Technical Data: IP address, browser type, operating system, device identifiers, and log data.
  • Usage Data: Information about how you use our website, services, communications, and interaction history.
  • Marketing Preferences: Your preferences regarding promotional content, newsletters, and advertising.
  • Financial Data: Billing details, payment history, and transaction records (if applicable).
  • Geolocation Data: location information when accessing certain services (if applicable).
  • Communication Data: Emails, messages, customer support requests, and survey responses.

4. How We Collect Your Data

We collect personal data in the following ways:

  • Directly from you: When you contact us, sign up for services, request information, or fill out forms.
  • Automatically through tracking technologies: Cookies, analytics tools, server logs, and third-party integrations.
  • From third parties: Business partners, publicly available sources, and service providers.
  • Through social media interactions: If you engage with our profiles, comment on posts, or send direct messages.

5. Legal Basis for Processing Personal Data (GDPR)

We only process your personal data when we have a valid legal basis under GDPR:

  • Consent: When you provide permission (e.g., for marketing communications or cookies).
  • Contractual Necessity: When processing is necessary to fulfill a contract (e.g., providing services).
  • Legal Obligation: When we must comply with regulatory requirements, tax laws, or legal requests.
  • Legitimate Interests: When processing is required for business operations and does not override your rights (e.g., fraud prevention, service improvement).

6. How We Use Your Data

We use your personal data for the following purposes:

  • To provide and manage our services.
  • To process transactions and payments.
  • To respond to inquiries, support requests, and customer service needs.
  • To send important notices, updates, and administrative messages.
  • To comply with legal obligations, regulatory requirements, and financial reporting.
  • To send marketing communications and personalized offers (where permitted).
  • To analyze and improve our website performance, security, and functionality.
  • To detect, prevent, and address fraud, security risks, or unauthorized activities.
  • To maintain business operations and conduct internal audits.

7. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy, or as required by law. Retention periods depend on the type of data and our legal obligations:

  • Transactional Data: Retained for accounting and tax compliance (typically 7-10 years).
  • Customer Support Data: Retained as long as necessary for support inquiries.
  • Marketing Data: Retained until you opt out or withdraw consent.
  • Technical & Usage Data: Retained for analytics, security, and performance improvements.
  • Legal & Compliance Records: Retained based on applicable regulations.

After expiration of the retention period, we securely delete or anonymize data.

8. Sharing and Transfer of Data

We do not sell or rent your personal data. However, we may share your data with:

  • Service providers: IT support, cloud storage, payment processors, analytics providers.
  • Business partners: Collaborators and affiliates involved in service delivery.
  • Legal authorities: If required by law, government regulations, or legal proceedings.
  • Third-party platforms: If integrated with our services (e.g., payment gateways, CRM tools).

For international data transfers outside the European Economic Area (EEA) or U.S., we ensure compliance via:

  • EU Standard Contractual Clauses (SCCs).
  • Adequacy decisions by the European Commission.
  • Binding corporate rules or equivalent safeguards.
  • Any other solution in line with the applicable legal rules.

9. Your Rights Under GDPR

Under GDPR, you have the following rights:

  • Right to Access: Obtain a copy of your personal data.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure (Right to be Forgotten): Request data deletion under certain conditions.
  • Right to Restriction of Processing: Request limitations on how we process your data.
  • Right to Data Portability: Request to transfer your data to another provider.
  • Right to Object: Object to processing for marketing or other legitimate interests.
  • Right to Withdraw Consent: Withdraw consent at any time without affecting prior processing.

To exercise your rights, contact us via our contact form.

If you believe your rights have been violated, you can file a complaint with the Belgian Data Protection Authority:
Website: https://www.gegevensbeschermingsautoriteit.be/

10. Your Rights Under U.S. Privacy Laws (CCPA & CPRA)

To the extent applicable California residents have additional rights under CCPA/CPRA :

  • Right to Know: Request details on collected data categories and purposes.
  • Right to Delete: Request deletion of personal data.
  • Right to Opt-Out of Sale: We do not sell data, but you may opt-out if policies change.
  • Right to Non-Discrimination: No penalties for exercising privacy rights.

To request access, correction, or deletion of personal data, contact us via our contact form.

11. Data Security

We implement strict security measures to protect your data:

  • Encryption & secure storage.
  • Access controls & authentication.
  • Regular security audits & compliance checks.
  • Monitoring & prevention of unauthorized access.

12. Cookies & Tracking Technologies

We use cookies and tracking tools for website functionality, analytics, and marketing. You can manage cookie settings via browser preferences. For more details, see our Cookie Policy.

13. Updates to This Privacy Policy

We may update this policy periodically. Any changes will be posted on our website, and we encourage you to review it regularly.

14. Contact Us

For privacy inquiries, contact us via our contact form.
📍 DDGDD SA/NV
📬 Address : avenue Marie-José 27, 1200 Brussels