Last updated: 25/08/2020.
Via email: firstname.lastname@example.org
By post: EIT Food iVZW Ubicenter A Philipssite 5 bus 34, Belgium
1. Who we are
FoodUnfolded is owned by EIT FOOD (www.eitfood.eu), with its registered office at EIT Food iVZW Ubicenter A Philipssite 5 bus 34, in Belgium and with company number 0672423992. We act as controller for the personal data we gather through your use of our website. EIT Food is a non-profit, pan-European partnership, with a consumer-centred approach, to empower innovators, entrepreneurs and students to develop world-class solutions to societal challenges, accelerate innovation, create jobs and increase Europe’s competitiveness. EIT Food maintains this website to enhance public access to information about how our food is made.
FoodUnfolded’s website provides links to a number of sites and external content. Proving these hyperlinks does not imply sponsorship. FoodUnfolded (and EIT Food) does not necessarily endorse the sites and content listed, nor assume any legal liability or responsibility for the accuracy, completeness, or usefulness of any information within those sites. In addition, FoodUnfolded does not endorse any products or services on other websites linked to or from our site.
2. How we use and collect your personal data
Personal data is defined as any information relating to an identified o identifiable natural person. Identifiable refers to identifiers (such as name, identification number, location data, etc.), that can be used to directly or indirectly identify a natural person.
The personal data we collect, is collected and used for the purposes as listed hereunder:
- In the event you use the contact form on our website, we will use your personal data in order to reply to your query, via e-mail or telephone.
- In the event you register for our newsletter, your e-mail address will be used in order to send you our newsletters, which may include invites to events, seminars, etc. organised by us.
- We process your personal data for the purpose of supporting the website and enhancing your user experience, which includes ensuring the security, availability, performance, capacity and health of the website.
- We process your personal data to enforce or exercise any rights that are available to us based on the applicable law, such as use for the establishment, exercise or defence of legal claims.
- We may also use your personal data to fulfil our obligations as set out by the applicable law.
The following categories of personal data can be distinguished:
- Contact data: in the event you make use of the contact form, you will be asked to provide the following information: name, address, e-mail address, phone number, and any personal data that you choose to put in the designated blank field (please do not provide us with any sensitive information, such as health information, information pertaining to criminal convictions, or credit card/account numbers). This is information that is provided directly by you.
- Newsletter: if you register for our newsletter, you will be asked to provide your e-mail address. This is information provided directly by you
- Transaction data: we collect personal data relating to transactions that you make through the website, including your “contact data”, payment information and the goods and/or services purchased. This is personal data provided directly by you.
The legal basis for the processing of your personal data is based on consent. At all times, have the right to withdraw your consent. This will, however, not affect the lawfulness of any processing done prior to the withdrawal of consent.
Your personal data will solely be used for the purposes as set out in this article. You will receive newsletters periodically from our Newsletter partner, EIT Food. If you wish to stop receiving these newsletter, please unsubscribe through the newsletter itself or conact email@example.com.
3. Retention of your data and deletion
Your personal data will be retained for a period of 3 years.
In the event you withdraw your consent or you object to our use of your personal data, and such objection is successful, we will remove your personal data from our databases. Please note that we will retain the personal data necessary to ensure your preferences are respected in the future.
The foregoing will, however, not prevent us from retaining any personal data if this is necessary to comply with our legal obligations, in order to file a legal claim or defend ourselves against a legal claim, or for evidential purposes.
4. Your rights
This article lists your principal rights under data protection law. We have tried to summarise them for you in a clear and legible way.
The right to access
You have the right to receive from us a copy of your personal data we have in our possession, provided that this does not adversely affect the rights and freedoms of others. The first copy will be provided free of charge, but we reserve the right to charge a reasonable fee if you request further copies.
The right to rectification
If the personal data we hold about you is inaccurate or incomplete, you have the right to have this information rectified or, taking into account the purposes of the processing, completed.
The right to erasure (right to be forgotten)
In some circumstances, you have the right to the erasure of your personal data without undue delay. Those circumstances include:
- The personal data are no longer needed in relation to the purposes for which they were collected or otherwise processed;
- You withdraw your consent, and no other lawful ground exists;
- The processing is for direct marketing purposes;
- The personal data have been unlawfully processed; or,
- Erasure is necessary for compliance with EU law or Belgian law.
There are certain exclusions to the right to erasure. Those exclusions include where processing is necessary,
- For exercising the right of freedom of expression and information;
- For compliance with a legal obligation; or,
- For the establishment, exercise or defence of legal claims.
The right to restrict processing
You have the right to restrict the processing of your personal data (meaning that the personal data may only be stored by us and may only be used for limited purposes), if:
- You contest the accuracy of the personal data (and only for as long as it takes to verify that accuracy);
- The processing is unlawful and you request restriction (as opposed to exercising the right to erasure);
- We no longer need the personal data for the purposes of our processing, but you require personal data for the establishment, exercise or defence of legal claims; or,
- You have objected to processing, pending the verification of that objection.
In addition to our right to store your personal data, we may still otherwise process it but only:
- with your consent;
- for the establishment, exercise or defence of legal claims;
- for the protection of the rights of another natural or legal person; or,
- for reasons of important public interest.
We will inform you before we lift the restriction of processing.
The right to data portability
To the extent that the legal basis for our processing of your personal data is consent, and such processing is carried out by automated means, you have the right to receive your personal data from us in a structured, commonly used and machine-readable format. However, this right does not apply where it would adversely affect the rights and freedoms of others.
You also have the right to have your personal data transferred directly to another company, if this is technically possible, and/or to store your personal data for further personal use on a private device.
The right to object to processing
You have the right to object to the processing of your personal data on grounds relating to your particular situation, but only to the extent that the legal basis for the processing is that the processing is necessary for:
- The performance of a task carried out in the public interest or in the exercise of any official authority vested in us;
- The purposes of the legitimate interests pursued by us or by a third party.
If you make such an objection, we will cease to process the personal information unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the establishment, exercise or defence of legal claims.
You have the right to object to our processing of your personal data for direct marketing purposes (including profiling for direct marketing purposes). If you make such an objection, we will cease to process your personal data for this purpose.
The right to complain to a supervisory authority
If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence, your place of work or the place of the alleged infringement. In Belgium, you can submit a complaint to the Authority for the protection of personal data (Privacy Commission), Drukpersstraat 35, 1000 Brussel (Contact@apd-gba.be), https://www.dataprotectionauthority.be/contact-us.
5. Providing your personal data to others
We may disclose your personal data in the event such disclosure is required or necessary in order to fulfil a legal obligation. We may also disclose personal data in order to protect your vital interests or the vital interest of another natural person.
As such, we do not disclose your personal data to our social media partners. We do, however, make use of social media plugins to direct you to our social media channels and to allow you to interact with our content. These social media channels are Facebook, LinkedIn, Twitter and Instagram in the event you click such link, such social media service provider may collect personal data about you and may link this information to your existing profile on such social media.
We are not responsible for the use of your personal data by such social media service provider. In such case, the social media service provider will act as controller. For your information only, we have included the relevant links (these may be changed from time to time by the relevant service provider):
- Facebook: http://facebook.com/about/privacy;
- Instagram: https://help.instagram.com/155833707900388;
- LinkedIn: http://linkedin.com/legal/privacy-policy;
- Twitter: http://twitter.com/privacy;
FALCON.IO: SOCIAL MEDIA MANAGEMENT TOOL
We use the social media management tool Falcon.io of the provider Falcon.io ApS, H.C. Andersens boulevard 27, 1st floor, 1553 Copenhagen V, Denmark, with the functions Publish, Engage, Listen, Audience and Measure on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f DSGVO and a contract on data processing pursuant to DSGVO. This allows us to publish network- or platform- and channel-specific content, edit user reactions, search the social networks and platforms for mentions, and to analyse any interactions with us and our actions. Every time you interact with our online presences within social networks and platforms, the data that is stored in the profiles you use is saved. These are, for example, name, gender, profile picture, profile URL, handle/username. In addition, the times of your interactions with our online presences are recorded. Furthermore, the tool also enables us to create our own campaign pages and to display personalised and interest-based advertising as well as to measure the results. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO; consent can be revoked at any time. The use of Falcon.io serves the aforementioned purposes. The data processing takes place externally and separately from our company website and social media page, so that we are not responsible for the data processing by Falcon.io. If you wish to object to the use of your data by Falcon.io, request information about the data stored or exercise any other right to which you are entitled, please contact Falcon.io at the email address firstname.lastname@example.org. Further information on data protection at Falcon.io can be found here (https://www.falcon.io/privacy-policy/).
We have put in place appropriate security measures to prevent your Personal Information from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your Personal Information to those employees, agents, contractors and other third parties who have a business need to do so.
We have put in place procedures to deal with any suspected Personal Information breaches and we will notify you and the applicable supervisory authority of a breach where we are legally required to do so.
7. International Transfers
We will ensure that any transfer of personal data to countries outside of the European Economic Area will take place pursuant to the appropriate safeguards.