Supermoon Privacy statement

We are Supermoon BV, with company number 0838.929.046 and having its principal seat of business at Antwerpsestraat 30, B-2850 Boom (“Supermoon” of “we” or “us”).

In this Privacy statement, we explain what we do with the personal data we obtain about you through https://supermoon.be in the context of our website and general activities. We recommend that you carefully read this statement. Also make sure to consult the most recent version, each time you visit this website, as we may change this Privacy statement from time to time. If we make any changes that significantly impact the processing of any of your personal data which is already in our possession, we will notify you about it via e-mail.

We always strive to process your personal data in accordance with applicable data protection legislation, including Regulation 2016/679 (EU) of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (the “General Data Protection Regulation” or “GDPR”).

If you have any further questions, please contact us using the contact details below.

1. How do we process your personal data?

We collect and process personal data for a number of purposes, which are listed below in this section of the Privacy statement, including the applicable legal basis:

Contact pages or other communication

When you reach out to us, by means of contact pages on our website, by email, telephone or otherwise, we collect and process the information you thereby provide to us.

Personal data

– Identification details (name);

– Contact details (e.g. address, e-mail, tel. number);

– The communication itself (message /question / request and any information therein);

– Metadata (e.g. date and time).

Legal basis

Legitimate interest, to follow-up on your communication.

Purpose

We process your data to reply to and follow-up on your question, complaint or other communication.

Direct Marketing

We may use your data for direct marketing purposes (i) if you are (or your company is) a customer of us and/or if you have shown a specific interest in our products or services; or (ii) if you have provided your consent thereto (“opt-in”). You may unsubscribe at any time, by clicking the ‘unsubscribe’ button included at the bottom of each marketing email.

Personal data

– Identification data;

– Contact details;

– Purchase history and habits.

Legal basis

– Consent; or

– Legitimate interest, (freedom of enterprise)

Purpose

We use your personal data to inform you about our products, services and activities. Your purchase history may be used to tailor the communication to your profile.

Cookies

Personal data

– IP-adres;

– Cookies;

– Connection moments and duration of your visit;

– Activities (web pages you visit, clicks);

– Browser and/or device.

Legal basis

– Your consent; or

– Legitimate interest (freedom of enterprise) for essential cookies.

Purpose

We collect and process these data for the purpose of providing your a better usage experience, to optimalize our website, and in the context of resolving technical problems. Some data may be used for online marketing purposes.

Evidence and risk management

In the event of an actual dispute or claim (including collection of debts), we may collect, use and preserve any data that was previously collected in the context of a different processing activity, to the extent it is considered useful to manage the concerned dispute and/or to anticipate on further escalation. We may also collect additional information from any relevant sources.

Personal data

Potentially any sorts of data which we consider relevant for the purpose. In most cases:

– Identification and contact details (name, e-mail address);

– Information about our service provision;

– Personal characteristics (date of birth);

– Acceptance or refusal of terms, confirmations, permissions;

– Other actions that could be relevant for evidentiary purposes.

Legal basis

Legitimate interests, namely dispute and claim management, including the anticipation on claims and potential liability, by maintaining evidence of relevant activities.

Purpose

Data is used for evidentiary purposes, in the context of claims management (including anticipating on potential disputes and claims).

Client management

We process information about our customers and their personnel, for the purpose of onboarding them as customer and to provide them with the products and services they purchase.

We receive the information from yourself as data subject, or from the company for whom you operate.

Personal data

– Identification data ;

– Contact details;

– Profession and organization;

– Contractual terms;

– Financial information (information about payments);

– Purchase history and habits;

– Information on the course of cooperation (deliveries, results of the services, evaluations, complaints, commercial gestures, etc.).

Legal basis

– Most data is processed based on contractual necessity.

– A history of the cooperation is kept based on our legitimate interests, namely freedom of enterprise.

Purpose

– To prepare, enter into and execute the cooperation;

– To contact the client and data subjects involved;

– To process and follow-up on payments;

– To inform the client about our services and activities and to communicate with the client in general;

– To keep a history on the cooperation with the client, e.g. regarding the type of products or services generally purchased, deliveries made, and potential complaints.

Supplier management

We process information about our suppliers and their personnel, for the purpose of onboarding them as a supplier, and to obtain the products or services we purchase from them.

We receive the information from yourself as data subject, or from the company for whom you operate. We may complete the information with data we obtain from freely accessible sources (e.g. your LinkedIn profile).

Personal data

– Identification data;

– Contact details;

– Profession and organization;

– Personal characteristics (date of birth);

– Information on the supplier’s (or its personnel’s) CV;

– Work permits;

– Contractual terms;

– Emergency contacts;

– Financial information (information about payments);

– Information on the course of cooperation (deliveries, results of the services, evaluations, complaints, commercial gestures, etc.)

Legal basis

– Most data is processed based on contractual necessity.

– A history of the cooperation is kept based on our legitimate interests, namely freedom of enterprise.

– A profile of our suppliers is kept based on our legitimate interests, namely freedom of enterprise.

Purpose

– To evaluate if the supplier (and/or its personnel) is suitable for the envisaged activities.

– To prepare, enter into and execute the cooperation;

– To contact the supplier and data subjects involved;

– To process and follow-up on payments;

– To assess the supplier relationship.

Legal obligations

We process personal data where needed in the context of any legal obligation we may have (e.g. bookkeeping).

Personal data

The data that is relevant to comply with the legal obligation.

Legal basis

Legal obligation.

Purpose

To comply with our legal obligations.

2. How long do we process your personal data?

We store and process your personal data during the term that is needed for the processing purposes set out herein. If there is no need to continue to process your personal data, we will remove the data from our systems or anonymize it, so that you are no longer identifiable.

Retention term

Contact pages and other communication

Communication is stored in active databases for a period of 2 years, thereafter, data is archived for an additional period of up to ten (10) years.

After the retention period has expired, the data is deleted from our active databases. Data may temporarily remain in backups, which are periodically overwritten so that the data is eventually permanently deleted/destroyed.

Direct Marketing

Up to 2 years from the last active contact.

De storage term of cookies depends on the cookie concerned. Please refer to our Cookie statement for more information.

Evidence and risk management

Data is generally preserved up until the relevant statutory prescription term of the concerned action, agreement or activity (usually 10 years).

Client management

Until 10 years from termination of the (contractual) relationship. Data may be further processed in the context of “Evidence and risk management”.

Supplier management

Until 10 years from termination of the (contractual) relationship. Data may be further processed in the context of “Evidence and risk management”.

Legal obligations

In accordance with the term of the legal obligation.

3. Who do we share your personal data with?

– We do not sell or otherwise or commercialize your personal data.

– We may share your personal data with our payment partners, bailiffs or professional advisors such as lawyers or accountants, where relevant for their assistance.

– We may share your personal data with government bodies, such as tax authorities or social security authorities, where we are required to do so.

– We call upon several suppliers and service providers that may need certain data to provide their services to us (e.g. hosting providers or parties assisting us in securing our premises, etc.). These parties may process your personal data only in accordance with our instructions thereto.

4. Cookies

This website uses cookies. For more information about the cookies we use, please refer to our Cookie statement.

5. Security

We are committed to the security of your personal data. We take appropriate security measures to limit abuse of and unauthorized access to your personal data. This ensures that access to your personal data is given only to those who need it. Our security measures are regularly kept up to date.

6. Which rights do you have?

Data protection law, including the GDPR, gives you several rights concerning the personal data we process. In this section, we briefly summarize these rights. Please note that the execution of these rights may be subject to additional legal conditions.

Right to information and right of access

You have the right to obtain information from us about the processing of your personal data. You have the right to be informed about whether or not we are processing personal data about you and, if so, to access that personal data and any additional information about the processing we perform.

Right to rectification

If the personal data we hold is incorrect, you have the right to obtain rectification of the incorrect data without undue delay. Have you noticed an error in the data we hold? Please let us know, using the contact details below.

Right to erasure

You have the right to ask us to erase your personal data. We are obliged to comply with this request in each of the following situations:

– If we no longer need the data for the purposes for which it was collected or otherwise processed.

– If the data is processed on the basis of consent, you withdraw your consent, and there is no other legal basis for the processing.

– If you object to the processing on grounds relating to your specific situation and there are no overriding legitimate grounds for the processing.

– If you object to the processing of your data for direct marketing purposes.

– If we have processed your personal data unlawfully.

– If the personal data must be deleted to comply with a legal obligation to which we are subject.

Right to restriction of processing

In certain cases, you have the right to obtain restriction of processing of your data. For example, if you contest the accuracy of your personal data, during a period enabling us to verify the accuracy of the personal data.

Right of objection

You have the right to object to the processing of your personal data if you have serious and justified reasons for doing so. You also have the right to object to the use of your personal data for direct marketing. In this case, no specific reason is requested.

Right to data portability

If we process your personal data by automated means on the basis of your consent or contractual necessity, you will have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from us.

Right to withdraw consent

When the processing is based on your prior consent, you have the right to withdraw this consent for the future.

Automated decisions and profiling

You have the right to request not to be subjected to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

7. How do you exercise your rights?

If you want to exercise your rights under this Privacy statement, or if you simply have questions, please contact us by using the contact details below. We may ask you to provide proof of your identity, for example, by using a copy of the front of your identity card.

Email: hello@supermoon.be

Regular mail :

Supermoon BV

Antwerpsestraat 30

2850 Boom

You also have the right to file a complaint with the Belgian Data Protection Authority:

Gegevensbeschermingsautoriteit / Autorité de protection des données

Drukpersstraat 35 / Rue de la Presse 35

1000 Brussels

Tel. +32 2 274 48 00 – Fax +32 2 274 48 35

E-mail : contact@apd-gba.be

This does not affect your possibility to submit any claims before the competent civil courts, such as claims for compensation.

8. Amendments to this Privacy statement

We reserve the right to make amendments to this Privacy statement. It is recommended that you consult this Privacy statement regularly in order to be aware of any change. In addition, we will actively inform you whenever possible.

9. Choice of law and jurisdiction

This privacy statement is governed exclusively by Belgian law. Any disputes are subjected to the exclusive jurisdiction of the courts of Antwerp (Antwerp Division), Belgium.