Print. Design. Distribute. Sinds 1983
Buroform
Request your quote

Privacy statement Buroform nv

Identification of the data controller

The company responsible for processing your personal data is Drukkerij Buroform nv:

 

The importance of your privacy

Buroform values your privacy and strives to process and use the personal data it collects in a secure and correct manner, always in accordance with applicable legislation, in particular the General Data Protection Regulation (GDPR).

This privacy statement explains whose personal data Buroform processes, what personal data is involved and for what purposes this personal data is collected and processed. This privacy statement also contains information about your rights with regard to your personal data and how it is processed.

This privacy statement is subject to change. If you are unsure whether the version of the privacy statement you have is the correct one, please refer to www.buroform.be/privacy, where you can always find the most recent version of our privacy statement.

This privacy statement is divided into categories of data subjects. You can therefore limit yourself to the part of the privacy statement that is relevant to you:

  • Are you a customer or supplier of Buroform? (see part 1)
  • Are you a (former) employee of Buroform? (see part 2)
  • Are you applying for a job at Buroform? (see part 3)
  • Have you contacted Buroform via the contact form on our website? (see part 4)
  • Have you contacted Buroform via the quotation form on our website or have you provided your details in another way with a view to receiving a quotation? (see section 5)
  • Have you provided your details to Buroform in the context of a trade fair or event? (see section 6)
    Have you visited our website? (see section 7)

Processing of personal data by Buroform

1. Are you a customer or supplier of Buroform?

As part of Buroform’s customer and supplier management, the following data may be processed about you as a customer:

  • Name and contact details
  • Email address
  • Date of birth/age
  • Purchase history
  • Bank account number

The name, contact details and email address are kept for invoicing purposes. This data is kept in order to comply with a legal obligation. It is kept for the period required for Buroform to fulfil its tax and accounting obligations.

The processing of the above data is also required for our relationship management. This data is necessary for the performance of agreements with our customers or suppliers. The data of customers or suppliers in the context of relationship management is retained for the statutory limitation period for any claims that may arise from agreements with the customer or supplier.

2. Are you a current or former employee of Buroform?

Buroform processes the following data of its (former) employees:

  • Name and contact details
  • Email address
  • Date of birth/age
  • Bank account number
  • National registration number

The above data is processed in the context of Buroform’s personnel and payroll administration. This data is necessary for the performance of the agreement with the employee.

The employee’s national registration number is used exclusively for the purposes of social security regulations. The processing is carried out on the basis of a legal obligation.

The data will be retained for as long as necessary to perform the agreement, including the initiation of or defence against any claims that may arise from the agreement, as well as for as long as necessary for Buroform to comply with all its social and tax obligations (e.g. keeping social documents).

3. Are you applying for a job at Buroform nv?

In the context of applicant management, Buroform nv may process the following data:

  • Name and contact details
  • Email address
  • Date of birth/age
  • Information provided on CV (e.g. work history, studies, etc.)
  • Any additional information provided during a job interview.

This data is processed for the purpose of evaluating job applicants’ applications. Processing is carried out on the basis of the applicant’s consent.

The applicant may withdraw their consent at any time. To do so, the applicant must expressly notify Buroform. The withdrawal of consent does not affect the lawfulness of the processing based on the consent prior to its withdrawal by the applicant.

Applicants’ data is retained for a period of six months.

4. Did you contact Buroform via the contact form on our website?

Following reports via the contact form, the following data may be processed:

  • Name and contact details
  • Email address
  • Date of birth/age
  • Telephone or mobile number
  • Various other information voluntarily provided by the data subject (e.g. bank account number, etc.)

This data is processed for the purpose of following up on communication via our website. The processing takes place on the basis of the consent of the data subject.

Consent for processing can be withdrawn at any time. To do so, the data subject must make an explicit notification to Buroform. The withdrawal of consent does not affect the lawfulness of the processing based on the consent prior to its withdrawal by the data subject.

The data obtained via the contact form on the website is stored for a period of one year.

5. Did you contact Buroform via the quotation form on our website or did you provide your details in another way with a view to receiving a quotation?

In response to requests for quotations, the following data may be processed:

  • Name and contact details
  • Email address
  • Date of birth/age
  • Telephone or mobile phone number
  • Various other data voluntarily provided by the data subject (e.g. bank account number, etc.)

This data is processed for the purpose of following up on requests for quotations. The processing takes place on the basis of the performance of a contract.

The data obtained via the contact form on the website is retained for the period required for Buroform to fulfil all its contractual and legal obligations.

6. Did you provide your details to Buroform nv in connection with a trade fair or event?

The data that Buroform nv may process about you are as follows:

  • Name and contact details
  • Email address
  • Date of birth/age
  • Telephone or mobile number
  • Date of marriage

This data is processed for the purpose of carrying out the order you placed with Buroform nv or providing a quotation. The processing takes place on the basis of the performance of a contract.

The data is retained for the statutory limitation period for any claims that may arise from the agreements with the customer or supplier.

7. Did you visit our website?

When visiting the Buroform website, cookies may be stored that may contain the following information:

  • IP address
  • Geographical data
  • Area of interest
  • Age category
  • Gender
  • Website visitor information (frequency, navigation flow)

This data is tracked in order to offer visitors to our website a tailored solution and/or targeted services. This data is collected with the consent of the contact person.

This data is stored for a period of 6 months.

More information about the use of cookies on our website can be found in the cookiebeleid van Buroform.

What rights do you have regarding the processing of your personal data?

Right of access

Firstly, you have the right to access the data we hold about you free of charge. You also have the right to check what your data is used for.

Right to rectification

Secondly, you have the right to have data relating to you rectified if it is not (or no longer) correct. This right also means that you can ask us to complete incomplete personal data.

Right to erasure

In certain cases, you have the right to request that the personal data in question be erased. These cases are described in Article 17 of the GDPR. You have this right, among other things:

  • if the personal data is no longer necessary for the purposes for which it was collected or processed,
  • if you have withdrawn your consent for the processing and there is no other legal basis for the processing,
  • if you believe that the data is being processed unlawfully.
Right to data portability

You have the right to request that the personal data you have provided to us be transferred to you or another person designated by you. This right is limited to the data you have provided to us yourself and therefore does not extend to data we have obtained from other sources.

This right also only applies to data that is processed because you have given your consent or because the processing is necessary for the performance of a contract and, in addition, the processing is carried out by automated means.

If certain of your data meet the above conditions, you have the right to obtain this data in a structured, commonly used and machine-readable format or, if technically possible, to request direct transfer to another company.

Restriction of processing

In the cases and under the conditions described in Article 18 of the GDPR, you have the right to request the restriction of data processing.

Right to object

With regard to data processing based on the legitimate interest of Buroform nv, you always have the right to object to this processing in accordance with Article 21 of the GDPR.

Right to lodge a complaint with the Data Protection Authority

You always have the option to lodge a complaint regarding the processing of your personal data with the Data Protection Authority, Drukpersstraat 35, 1000 Brussels (which can be reached by telephone on +32 (0)2 274 48 00 or by email at contact@adp-gba.be). You can also find this information at www.gegevensbeschermingsautoriteit.be.

Found a vulnerability?

At Buroform NV, we take security seriously and appreciate the contributions of the security community in improving our systems. If you discover a security issue, we kindly request that you report it to us in a responsible manner.
 
How we measure vulnerability

If you have found a vulnerability in our systems, please follow these steps:

  1. Report it discreetly – Send an email to security@buroform.be or use our PGP-encrypted contact method. 
  2. Provide sufficient details – Describe the vulnerability, how you found it, and possible exploitation.
  3. Respect our users and systems – Do not perform tests that affect production data, destroy data, or disrupt the operation of our services.
  4. Wait for our response – We aim to respond within [e.g., 5 working days] and will keep you informed of our progress.
  5. No disclosure without permission – Do not share the vulnerability with others until we have fixed the problem and given permission to publish it.
What we promise 
  • We take your report seriously and investigate it carefully.
  • If you adhere to our responsible disclosure rules, we will not take legal action.
  • We strive to resolve security issues as quickly as possible.
  • If desired, we will acknowledge your contribution in our Security Hall of Fame (with your permission).
What is not permitted?
  • Active exploitation – Do not use vulnerabilities to attack our systems or customers.
  • DDoS, spam or social engineering – Attacks such as phishing or brute force are not permitted.
  • Access to sensitive data – Do not attempt to view or download customer data.
Extra information 

Thank you for your help in improving the security of Buroform NV!