Version: 8 May 2025
Introduction
At Nomios, we are committed to processing your personal data securely, transparently and with integrity. This Privacy Statement explains what personal data we collect, how we use it and your rights in relation to your personal data. We recommend that you review this Privacy Statement periodically, as it may be updated from time to time in response to changes in our services or the law.
For more information, this Privacy Statement should be read in conjunction with the Cookie Statement.
Who are we
Nomios Belgium is responsible for the processing of your personal data and is designated as the controller.
Nomios Belgium is part of a group of Nomios entities located in various European countries (the Nomios Group Entities). All group entities work together as if there is no separation between them. The Nomios Group Entities may therefore share information and personal data in their daily business activities. We have taken all measures to ensure that, regardless of which group entity processes your personal data, the processing is carried out in accordance with European and local data protection legislation.
Data Protection Officer
Nomios has appointed a Data Protection Officer to ensure compliance with data protection legislation, including the GDPR.
The DPO oversees the data protection strategy, trains employees, conducts audits, ensures that your rights are respected, and ensures that all processing is carried out securely and in accordance with data protection legislation. The DPO is the point of contact for all privacy-related questions.
If you have any questions about this Privacy Statement or wish to exercise any of your rights, please contact the DPO at [email protected].
What personal data do we process?
During the performance of our services or your use of our website, we collect and process the following categories of personal data from you:
- Personal data: Name, address, email, telephone number.
- Company data: Position, company name, address.
- Communication data: Personal data that you share with us through your communication with us.
- Account details: Username, password.
- Technical details: IP address, browser type, operating system and other technical identification details.
- Usage details: Information about your interactions with our website, products or services (e.g. pages visited, links clicked).
Why do we process your personal data?
We only use the personal data we collect and process for the specific purposes for which it was collected. We process your personal data for the following purposes:
- Communication: to respond to a request for information or a question when you contact us via our contact form or by email.
- Marketing: to send you content such as the newsletter, event information or promotion of products or services.
- Events: to invite you to or register you for an event or training course.
- Business activities: to communicate about the services we provide to the company you work for.
- Providing and improving our services: to provide, analyse and improve our products or services and to offer a more personalised experience.
- Compliance with laws and regulations: To comply with our obligations under laws and regulations, such as tax and other legislation.
- Recruitment: Please see our specific Privacy Statement for job applicants.
All processing is carried out with respect for your privacy, ensuring that your personal data is only processed for the intended purpose.
On what legal basis do we process your personal data?
In addition to a processing purpose, a legal basis is required for the processing of personal data. We process your personal data on the following legal bases:
- Consent: When you have explicitly given your consent to the processing of your personal data for a specific purpose. You can withdraw your consent at any time.
- Performance of the agreement: When the processing is necessary for the performance of obligations arising from an agreement between you and Nomios.
- Legal obligation: When we are legally obliged to process your personal data.
- Legitimate interest: When we have a legitimate interest in processing your personal data and your privacy rights do not outweigh this interest. For example, maintaining communication during the performance of our services, improving our services or answering your questions.
How long do we retain your personal data?
We only retain your personal data for as long as necessary for the purpose for which it was collected. Once the retention period has expired, we will delete or anonymise your personal data.
With whom do we share your personal data?
We share your personal data with:
Nomios Group entities:
For internal operational purposes.
Processors: Third parties that provide services to Nomios, such as IT, support and email services. These third parties have been carefully selected and are contractually obliged, by means of a processing agreement, to follow our instructions, to process your personal data only for the agreed purposes and to protect your data in accordance with the standards set out in the GDPR.
International transfer
We strive to process personal data only within the European Economic Area (EEA). In some cases, your personal data may be transferred outside the EEA. In that case, if the country to which your personal data is transferred has not been deemed adequate by the European Commission, we will take appropriate measures, such as standard contractual clauses (SCCs), to ensure that your data is adequately protected in line with the requirements of the GDPR.
How do we protect your personal data?
Within Nomios, we use a combination of technical and organisational measures to protect your personal data against loss, theft or other unlawful use. The technical measures consist of implementing access controls, encryption and firewalls. We also take organisational measures, which consist of training our employees to handle your personal data responsibly, continuously monitoring our systems for unauthorised access, and auditing our compliance with the GDPR.
In the event of a data breach, we will notify you without undue delay if it is likely to result in a high risk to your rights or freedoms, as required by law.
What rights do you have with regard to your personal data?
Under the GDPR, you have the following rights
Right of access:
You may request information about the processing of your personal data and a copy of your personal data.
Right to rectification:
You may request us to rectify or supplement any incorrect or incomplete personal data concerning you.
Right to erasure:
You may request us to erase your personal data in certain cases, such as when the personal data is no longer necessary for the purpose for which it was collected or when you have objected to the processing of your personal data.
Right to restriction of processing:
You may request us to restrict the processing of personal data in certain cases, such as when you dispute its accuracy or have objected to its processing.
Right to data portability:
You may request us to provide your personal data in a machine-readable format for transfer to another service provider in the event that your personal data is processed on the legal basis of consent or the performance of a contract and the processing is carried out by automated means.
Right to object:
You may object to the processing of your personal data based on the legal basis of legitimate interest, such as in the case of direct marketing. We will not further process your personal data unless there is a compelling legitimate reason that outweighs your interests, rights and freedoms, or for the establishment, exercise or defence of a legal claim.
Right to withdraw consent: You may withdraw your consent at any time. When you withdraw your consent, we will no longer process your personal data. This does not affect the lawfulness of the processing of your personal data before you withdrew your consent.
Please contact us using the contact details below to exercise any of your rights. For the security of your personal data, we may ask you to provide proof of identification.
We will respond to your request within one month; in certain cases, this response may inform you that this period will be extended by two months, but this will only occur if necessary due to the complexity of your request or the number of requests we have received.
Third-party websites
Our website contains hyperlinks to third-party websites, such as social media platforms, whose terms of use do not fall within the scope of this privacy statement. We advise you to read the privacy statements of these third parties.
Contact
If you have any questions about this Privacy Statement or wish to exercise any of your rights, please contact us at:
Nomios Belgium N.V.
Excelsiorlaan 89
1930 Zaventem
Belgium
Tel: +32 3 808 88 88
Email: [email protected]
If we do not adequately address your question, you can contact the data protection supervisory authority, the Data Protection Authority, to file a complaint.