Subject

This Policy is drawn up by KH Ressources located in Belgium, listed under the registration number: 0681629391 (hereinafter referred to as " the data controller"). »).

The purpose of this Policy is to inform visitors to the website hosted at www.my-icoach. eu (hereinafter referred to as the "website") of the way in which data is collected and processed by the data controller. website ") of the manner in which the data is collected and processed by the data controller.

This Policy is in line with the controller's wish to act in full transparency, in compliance with its national provisions and with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter referred to as the "General Data Protection Regulation").

The data controller pays particular attention to the protection of the privacy of its users and therefore undertakes to take the reasonable precautions required to protect the personal data collected against loss, theft, disclosure or unauthorised use.

Personal data" is defined as all data of a personal nature that concerns the user, i.e. any information that allows the user to be directly or indirectly identified as a natural person.

If the user wishes to react to any of the practices described below, he or she may contact the data controller at the postal address or email address specified in the "contact data" section of this Policy. 

What data do we collect?

The data controller collects and processes the following personal data in accordance with the methods and principles described below:

  • its domain (automatically detected by the controller's server), including the dynamic IP address;
  • his/her e-mail address if the user has previously revealed it, for example by sending messages or questions on the website, by communicating with the controller by e-mail, by participating in discussion forums, by accessing the restricted part of the website by identification, etc. ;
  • all the information concerning the pages that the user has consulted on the website;
  • any information that the user has given voluntarily, e.g. in the context of information surveys and/or registrations on the website, or by accessing the restricted part of the website by means of identification.

We also collect the following data:

Name
Surname
Company
Cost Center
Email
Year
Seniority
Coaching expertise
Department
Phone
Language
Nationality
Country
Diploma/Certificate
Bank details

It is possible that the data controller may also collect data of a non-personal nature. These data are qualified as non-personal data because they do not allow the direct or indirect identification of a particular person. It may therefore be used for any purpose whatsoever, for example to improve the website, the products and services offered or the advertisements of the data controller.

In the event that non-personal data are combined with personal data, so that identification of the persons concerned is possible, such data will be treated as personal data until such time as their linkage to a particular person is made impossible.

The data controller collects personal data in the following manner:

Via web form
Cookies
A company interface

Purposes of the treatment

Personal data is collected and processed only for the purposes mentioned below:

  • managing and controlling the execution of the services offered;
  • dispatch and follow-up of orders and invoices ;
  • sending promotional information on the products and services of the data controller;
  • sending of promotional material ;
  • answering the user's questions ;
  • to produce statistics ;
  • to improve the quality of the website and the products and/or services offered by the data controller ;
  • transmit information on new products and/or services of the data controller ;
  • with a view to commercial prospecting ;
  • allow a better identification of the user's centres of interest.

We also collect and process personal data for the following purposes:

The data controller may be required to carry out processing operations not yet provided for in this Policy. In this case, it will contact the user before re-using his/her personal data, in order to inform him/her of the changes and give him/her the possibility, where appropriate, of refusing such re-use.

If you have an account and log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie does not contain any personal data and is deleted when you close your browser.

When you log in, we will also create multiple cookies to save your login information and screen display choices. Login cookies last for two days, and screen option cookies last for one year. If you select "Remember me", your connection will persist for a fortnight. If you log out of your account, the cookies will be deleted.

This cookie does not contain any personal data and simply indicates the identifier of the item you have just modified. It expires after one day.

Legitimate interests

Some of the processing operations carried out by the controller are based on the legal basis of the legitimate interests of the controller. These legitimate interests are proportionate to the respect of the user's rights and freedoms. If the user wishes to be informed of the details of the purposes based on the legal basis of the legitimate interests, it is recommended that he or she contacts the controller (see point on "contact data").

Shelf life

In general, the data controller keeps personal data only for the time reasonably necessary for the purposes pursued and in accordance with legal and regulatory requirements.

A customer's personal data is kept for a maximum of 10 years after the end of the contractual relationship between that customer and the data controller. At the end of the retention period, the data controller shall make every effort to ensure that the personal data has been made unavailable and inaccessible.

Enforcement of rights

The data controller reserves the right to verify the identity of the user for all the rights listed below.

This request for additional information will be made within one month of the user's submission of the request.

Data access and copying

The user may obtain free of charge the written communication or a copy of the personal data concerning him/her that has been collected.

The controller may require the payment of a reasonable fee based on administrative costs for any additional copies requested by the user.

Where the user submits this request electronically, the information shall be provided in a commonly used electronic form, unless the user requests otherwise.

Unless an exception is provided for in the general data protection regulations, the user will be provided with a copy of his data within one month of receipt of the request at the latest.

Right of rectification

The user may obtain, free of charge, as soon as possible and within one month at the latest, the rectification of his personal data that is inaccurate, incomplete or irrelevant, as well as the completion of the data if it proves to be incomplete.

Unless an exception is provided for in the General Data Protection Regulation, the request for application of the right of rectification shall be processed within one month of its submission.

Right to object to the processing

The user may at any time, for reasons relating to his or her particular situation, oppose the processing of his or her personal data free of charge, when :

  • processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  • processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data prevail (in particular where the data subject is a child).

Le responsable du traitement pourra refuser de mettre en œuvre le droit d’opposition de l’utilisateur lorsqu’il établit l’existence de motifs impérieux et légitimes justifiant le traitement, qui priment les intérêts ou les droits et les libertés de l’utilisateur, ou pour la constatation, l’exercice ou la défense d’un droit en justice. En cas de contestation, l’utilisateur peut introduire un recours conformément au point « réclamation et plainte » de la présente Politique.

The user may also, at any time, oppose, without justification and free of charge, the processing of personal data concerning him/her when his/her data is collected for commercial prospecting purposes (including profiling).

Where personal data are processed for the purposes of scientific or historical research or for statistical purposes in accordance with the General Data Protection Regulation, the user has the right to object, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her, unless the processing is necessary for the performance of a task carried out in the public interest. Unless an exception is provided for in the General Data Protection Regulation, the data controller is obliged to respond to the user's request as soon as possible and within one month at the latest and to give reasons if he intends not to comply with such a request.

Right to limitation of processing

The user can obtain the limitation of the processing of his personal data in the cases listed below:

  • when the user contests the accuracy of the data and only for as long as the data controller is able to check it ;
  • when the processing is unlawful and the user prefers the limitation of the processing to the deletion ;
  • when, although no longer necessary for the purposes of the processing operation, the user needs it for the establishment, exercise or defence of his rights in legal proceedings ;
  • pendant le temps nécessaire à l’examen du caractère fondé d’une demande d’opposition introduite par l’utilisateur, en d’autres termes le temps que le responsable du traitement procède à la vérification de la balance des intérêts entre les intérêts légitimes du responsable du traitement et ceux de l’utilisateur.

") of the manner in which the data is collected and processed by the data controller.

Right to erasure (right to oblivion)

The user can obtain the deletion of personal data concerning him/her, when one of the following reasons applies:

  • the data are no longer necessary for the purposes of the processing operation;
  • the user has withdrawn his/her consent for his/her data to be processed and there is no other legal basis for the processing;
  • the user objects to the processing and there is no compelling legitimate reason for the processing and/or the user exercises his specific right to object in matters of direct marketing (including profiling) ;
  • personal data have been processed unlawfully;
  • for the time necessary to examine the merits of an opposition request made by the user, in other words the time for the controller to verify the balance of interests between the legitimate interests of the controller and those of the user.
  • personal data has been collected as part of the provision of information society services aimed at children.

The user can obtain the deletion of personal data concerning him/her, when one of the following reasons applies:

  • the data are no longer necessary for the purposes of the processing operation;
  • where processing is necessary for compliance with a legal obligation which requires processing in accordance with Union law or the law of the Member State to which the controller is subject, or in order to perform a task carried out in the public interest or in the exercise of official authority vested in the controller;
  • where processing is necessary on grounds of public interest in the field of public health;
  • where processing is necessary for archival purposes in the public interest, for the purposes of scientific or historical research or for statistical purposes and insofar as the right to erasure is likely to render impossible or seriously jeopardise the achievement of the purposes of the processing operation in question;
  • where processing is necessary for the establishment, exercise or defence of legal claims.

Unless an exception is provided for in the General Data Protection Regulation, the data controller is obliged to respond to the user's request as soon as possible and within one month at the latest and to give reasons if he intends not to comply with such a request.

Right to "data portability

The user may at any time request to receive his or her personal data free of charge in a structured, commonly used and machine-readable format, in particular with a view to forwarding them to another data controller, when :

  • data processing is carried out using automated processes; and where
  • the processing is based on the user's consent or on a contract concluded between the user and the controller.

Under the same conditions and according to the same modalities, the user has the right to obtain from the data controller that the personal data concerning him/her be directly transmitted to another data controller, insofar as this is technically possible.

The right to data portability does not apply to processing which is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Recipients of data and disclosure to third parties

The recipients of the data collected and processed are, in addition to the data controller itself, its employees or other processors, its carefully selected business partners located in the European Union, who collaborate with the data controller in the context of marketing products or providing services.

In the event that the data is disclosed to third parties for direct marketing or commercial prospecting purposes, the user will be informed in advance so that he or she can choose to accept the transfer of his or her data to third parties.

Where such transfer is based on the user's consent, the user may, at any time, withdraw his consent for that specific purpose.

The data controller complies with the legal and regulatory provisions in force and will ensure in all cases that its partners, employees, subcontractors or other third parties with access to such personal data comply with this Policy.

The data controller discloses the user's personal data in the event that a law, legal proceedings or an order from a public authority makes such disclosure necessary.

No transfer of personal data outside the European Union is carried out by the controller.

Security

The data controller shall implement appropriate technical and organisational measures to guarantee a level of security of the processing and the data collected in relation to the risks presented by the processing and the nature of the data to be protected that is commensurate with the risk. It shall take account of the state of knowledge, the costs of implementation and the nature, scope, context and purposes of the processing and the risks to the rights and freedoms of users.

The data controller always uses encryption technologies that are recognised as industry standards within the IT sector when transferring or receiving data on the website.

The data controller has implemented appropriate security measures to protect and prevent the loss, misuse or alteration of the information received on the website.

Should the personal data under the controller's control be compromised, the controller will act swiftly to identify the cause of the breach and take appropriate remedial action.

Claim and complaint

The data controller shall implement appropriate technical and organisational measures to guarantee a level of security of the processing and the data collected in relation to the risks presented by the processing and the nature of the data to be protected that is commensurate with the risk. It shall take account of the state of knowledge, the costs of implementation and the nature, scope, context and purposes of the processing and the risks to the rights and freedoms of users.

The data controller always uses encryption technologies that are recognised as industry standards within the IT sector when transferring or receiving data on the website.

The data controller has implemented appropriate security measures to protect and prevent the loss, misuse or alteration of the information received on the website.

Should the personal data under the controller's control be compromised, the controller will act swiftly to identify the cause of the breach and take appropriate remedial action.

Data Protection Officer

The data protection officer of the data controller is My-iCoach.

Contact: support@my-icoach.eu

Contact

For any questions and/or complaints relating to this Policy, the user may contact the data controller :

by email: support@my-coach.eu

Modification

The data controller reserves the right to modify the provisions of this Policy at any time. Changes will be published directly on the website of the data controller.

Applicable law and jurisdiction

This Policy is governed by the national law of the place of principal establishment of the controller.

Any dispute relating to the interpretation or execution of this Policy will be submitted to the courts of that national law.

This version of the Policy is dated 15/12/2020.