1) Privacy Safeguards
4) Monitoring visitor behavior
www.commensalist.com uses various techniques to keep track of who visits the website, how this visitor behaves on the website and which pages are visited. This is a common way of working for websites because it provides information that contributes to the quality of the user experience. The information we register via cookies includes IP addresses, browser type and pages visited.
We also monitor where visitors first visit the website and from which page they leave. We keep this information anonymous and is not linked to any other personal information.
www.commensalist.com may place cookies on visitors. We do this to collect information about the pages users visit on our website, to keep track of how often visitors come back and to see which pages are doing well on the website. We also track what information the browser shares.
6) Disabling cookies
You can choose to disable cookies. You do this by using the options of your browser. You can find more information about these options on the website of your browser provider.
7) Processing of personal data
Your personal data is processed by Commensalist, for customer management based on the contractual relationship as a result of your order/purchase and for direct marketing (/to offer you new products or services) based on our legitimate business interest. If you do not want us to process your data for the purpose of direct marketing, it suffices to inform us at firstname.lastname@example.org. At this address you can also ask at any time what data we are processing about you and correct or delete it, or ask for it to be transferred. If you do not agree with the way in which we process your data, you can contact the Commission for the Protection of Privacy (rue du Peinture 35, 1000 Brussels). Your data will be held until eternity.
Commensalist’s GDPR policy
1. Commensalist provides insight into the data
Data is collected through:
– Our newsletter subscription
We use the data for:
– Internal work purposes: making plans for clients, doing research, sharing data to carry out plans.
– Analysis purposes: understanding our customers even better
– Communication purposes: via newsletter and other media
The data is stored on:
– Computers of Commensalist employees and outside contractors
– Zoho software
2. We ask explicit permission to collect data
We do this via the check box on the website.
3. Commensalist communicates how and why we collect data
This can be read on this privacy page.
4. Commensalist employees are trained
Employees are made aware of privacy laws.
Commensalist observes the following:
– Do not share personal information with third parties, unless in function of the client’s request (e.g. pass data to the surveyor, contractors,…)
– Email inbox, zoho, computer in an adequate way password protected, do not leave them open unattended and close the access to these sensitive applications to third parties.
– Do not allow the computer to be used by non-authorized persons.
A GDPR update is given in the annual training.
5. Commensalist proves her compliance with the GDPR.
– identify the legal basis for processing data
– document your procedures
– update your privacy statement
6. Commensalist has an efficient system to delete personal data
As soon as a customer or person asks to delete their data, this is done within 30 working days.
This is done with a simple “delete” button in:
– Email inbox
7. Commensalist has a crisis management plan
As soon as a leak is detected, the Commensalist team jumps into action to report it to the Privacy Commission within 72 hours.
When such a leak poses a high risk to the rights and freedoms of EU citizens, we will also inform the affected individuals.
8. Commensalist manages access procedures
Commensalist keeps access to personal data and the servers as limited as possible. Data subjects have the right to access their personal data, correct inaccuracies, object to processing in certain cases or delete data – all within a 30-day period.
9. Commensalist protects minors’ data
May 25, 2018 also means special protection for the personal data of children. The GDPR states that children under 16 may not provide lawful consent because they “may be less aware of the risks, consequences and safeguards” of sharing data. Commensalist does not offer services to children without the consent of a parent or guardian to lawfully process their personal data.