Easyhost bvba, with registered office at Skaldenstraat 121, 9042 Ghent and registered with the CBE under number 0455.977.006 (hereinafter " Easyhost"), considers the protection of personal privacy to be extremely important. Easyhost wishes to inform its customers and users as much as possible about its services, while respecting their data and giving them control over what happens to them. Easyhost wants to manage and use its customer data safely, respectfully and with due diligence in order to provide better service to its customers and to offer the best possible experience. Easyhost therefore starts from the principle that everyone must have control over their personal data. Below, you will find information about what data Easyhost collects, why, how long for and how you can control it.
The European General Data Protection Regulation 2016/679 of 27 April 2016 ("General Data Protection Regulation"), the law of 8 December 1992 ("Privacy Act"), the law of 13 June 2005 ("Electronic Communications Act") and the accompanying implementing decrees, as well as any future changes hereto, regulate the protection of your personal data.
Easyhost strives to fulfil its obligations and to respect the rights of the customer whenever Easyhost processes your personal data. For more information about this, Easyhost would like to refer you to the website of the Commission for the Protection of Privacy [https://www.privacycommission.be/en].
"Personal data" means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
The personal data that Easyhost collects and processes, primarily concerns the data that customers enter themselves via the various pages of our website(s) and that Easyhost obtains through your use of our website(s) and/or our products and/or services.
This does not detract from the fact that the customer has a number of obligations in connection with the processing of personal data that allows the customer to use Easyhost's products and services. In this capacity, the customer must always obtain, where necessary, the legally required authorisations from the end users for the processing of their personal data by Easyhost insofar as necessary within the framework of Easyhost's products and services.
Easyhost processes personal data for various purposes, whereby the only data processed is that which is necessary to achieve the intended purpose.
Thus, we use personal data:
Insofar as required, and with permission, Easyhost collects personal data for the following concrete objectives:
To process an application for our products and services.
If you visit our website to collect and/or request information about our products and services, or if you sign up for Easyhost's newsletter, for example, then Easyhost needs your address details. All information that Easyhost receives about you during this pre-contractual phase will only be used by Easyhost to provide you with the requested information, in the way that you want. In addition, if you ultimately decide to become a customer at Easyhost, Easyhost will ask you for a number of personal details, such as name, address, telephone number, e-mail address and customer number, and Easyhost will also assign certain data to you, such as login details.
To provide the best service and to inform about usage options.
Easyhost uses personal data for setting up, maintaining and supporting products and services, and for administrative purposes.
To provide information about (new) products and services from Easyhost.
Easyhost may use personal data to offer (in writing, by telephone or electronically) new products, services or special promotions that Easyhost believes may be of interest to you. Of course, you can opt out of this type of message (see further).
To track performance.
Easyhost may use personal data and consumer profiles to evaluate its products and services. This includes, among other things: requesting feedback on services (for example, via market research), data obtained during answers to customer questions, fraud detection and quality assurance.
To comply with legal obligations.
In many cases, Easyhost is legally obliged to keep certain personal data and/or communicate them to government agencies, for example, in the context of general tax and accounting obligations. In the context of a police or judicial investigation, Easyhost can be obligated to communicate certain data to the requisite authorities in a confidential manner.
To keep track of studies, tests and statistics, including for trend analysis.
Easyhost may use anonymous, aggregated data to, for example, report internally and externally on the use of its services. The data used for this cannot be traced back to a specific individual. The information that Easyhost derives from these analyses is used to evaluate the current products and services portfolio and Easyhost's processes, and to adapt them to new developments.
Easyhost strives at all times to protect personal data and privacy, both in its physical offices and on the Easyhost network. Easyhost ensures appropriate organisational and technical measures to secure personal data.
Easyhost's employees are trained to deal with confidential data correctly. In the case of privacy-sensitive projects, an assessment is also made with regard to security and the protection of personal data. Easyhost's information security policy, requirements and management standards are in fact fully modelled on the international ISO 27001 standard, for which Easyhost has been certified since 2011. For the security of data, Easyhost employs specific people who monitor compliance with legislation and ethical aspirations. Easyhost also employs specialised personnel who are responsible for the security of the network, infrastructure and information systems. In addition, Easyhost uses a variety of technical measures to protect personal data, such as: password protection, hard disk encryption software, firewalls, antivirus software, intrusion and anomaly detection system and access control systems for employees.
If a data breach should occur with adverse consequences for personal data, the customer is personally notified under the conditions provided for by law.
The number of Easyhost employees who have access to personal information is limited and they are carefully selected. These employees are granted access to personal information insofar as they need this information to perform their duties properly.
The existence and content of the personal communication that takes place via the Easyhost network (for example: email traffic, hosting...) is protected by the provisions for telecommunications secrecy. This means that Easyhost and its employees may not have any knowledge of the existence or content of such communication, outside of the exceptions enumerated by the law.
Easyhost does not sell personal data to third parties nor is data passed on to third parties unless:
To our legal successors and other companies within the Combell group.
This is necessary for our service provision.
For some aspects of our products and services, we cooperate with third parties or engage sub-contractors. These third parties are always selected very carefully and there is always an agreement between Easyhost and these third parties in accordance with the applicable legislation. Thus, Easyhost uses, among others, service providers for domain name registrations, e-mail service providers, SSL certificate providers, providers of cloud connect services, providers of sitebuilder services, providers of online desktop services and providers of online fax services. For more information about our sub-contractors, you can always contact us via the contact details under point 10.
If you purchase from Easyhost a (online) product or service from a manufacturer or supplier based outside the European Union, it is possible that additional measures are necessary to ensure the security of personal data, such as a certification under the EU-US Privacy Shield and/or a processor agreement with model clauses drawn up by the European Commission.
When a person refuses to have his details passed on, it is possible that some services can no longer be offered by Easyhost.
There is a legal obligation.
There is a legitimate interest for Easyhost or the third party concerned.
This only happens providing the interests or fundamental rights and freedoms of the person concerned do not override that interest.
Easyhost has received permission from the person concerned.
If Easyhost should provide personal data to third parties by other means, this will be done with an explicit communication, in which an explanation about the third party is given, together with the purposes of the transfer and processing. Where required by law, Easyhost obtains express and unambiguous consent from the data subject. The data subject also always has an option to object (see below).
In regard to the international transfer of personal data, Easyhost protects all personal data in accordance with the level of protection required by European regulations.
In some cases, Easyhost uses anonymous, aggregated data for commercial purposes or for external reporting. This data can never be traced back to a specific individual.
You can exercise a number of rights regarding the processing of your personal data with respect to Easyhost, insofar as you have those rights under the applicable legislation.
If you consider it necessary, you can also contact, or file a complaint with, the Data Protection Authority (Belgian Privacy Commission) ( firstname.lastname@example.org).
Right of objection
You have the right to object at any time to the processing of your personal data based on the legitimate interest of Easyhost on grounds relating to your particular situation. If you object, Easyhost will no longer process such personal data unless Easyhost demonstrates compelling legitimate grounds for the processing that override your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.
Right of access and transparency
You have the right to access the data (free of charge) that relate to you and to obtain a copy of these personal data. You can also ask us:
• Whether we process personal data about you;
• For what purposes we process them;
• Which categories of personal data we process;
• With which categories of third parties we share your personal data;
• What the origin of the processed data is;
• What your rights are.
Right to rectification and erasure
As a data subject, you are entitled to have incomplete, incorrect, inappropriate or outdated personal data corrected or supplemented. For this purpose, our customer service can be contacted from a registered address or your data can be amended via the online portal "my.Easyhost.com". In order to keep your data up to date, we request that you notify us of any changes, such as if you move house.
You also have the right, without undue delay, to have your personal data deleted if and insofar as:
Easyhost will send you a confirmation message after complying with a request for erasure. In the case of partial erasure, Easyhost will also explain why the request could not be fully met.
Depending on the nature of the request, it is possible that some services can no longer be offered by Easyhost. Easyhost is also not always able to erase all requested data, for example, to comply with legal obligations (e.g. in order to meet accounting and fiscal obligations, Easyhost is required to retain invoicing data for a maximum of 7 years).
Right to restriction of processing
As a data subject, you also have the right to have Easyhost restrict the processing of your personal data, if and insofar as one of the following applies:
In case of restriction of processing, the data may still be stored by Easyhost.
Right to data portability
For personal data that are (i) processed in the context of the performance of the agreement, (ii) provided by yourself and (iii) processed through automated processes, you as a data subject have the right to obtain these data from Easyhost in a structured, commonly used and machine-readable format, and to request Easyhost to transmit those data directly to another party, providing technically possible, if you wish to switch providers.
Easyhost stores and processes your personal data for as long as is necessary to achieve the objectives described in point 4.
The retention period can therefore differ for each purpose, for example to meet legal obligations (e.g. to meet our accounting and fiscal obligations, Easyhost is obliged to keep records for up to 7 years) or for the legal necessity to provide certain data as evidence in case of disputes for up to a maximum of 10 years after termination of your contract. These archived data are, of course, only accessible to a limited extent.
All information, whether in the form of text, files or images or any other form, is made available by Easyhost for information purposes only.
Any interested person may take note of this information, but Easyhost reserves the right, at the time it considers appropriate, to change the rules and conditions concerning access to the use of the website without prior warning, or to subject the entire website or parts thereof to a restriction.
The provision of access to the private section of Easyhost's website through the use of usernames and passwords can be changed or refused by Easyhost at any time without this leading to any compensation.
Attn: Data Protection Team
Skaldenstraat 121, 9042 Ghent, Belgium
Tel.: +32 9 218 79 01