MDG DIGITAL - MDG PROMOTIONS bv

PRIVACY POLICY

The following websites (hereinafter: the "Websites")

• https://www.mdg-digital.be/
• https://www.mdgpromotions.com/
• https://www.mdg-creativity.be/
• https://www.vps-cloud-servers.be/
• https://www.jewebsitemakenmetwordpress.be/
• https://www.mdgpromotions.be/
• https://uwdomeinnaamregistreren.be/
• https://www.forever-aloe-vera.be/
• https://cryptotradingschool.be/

are offered by:

MDG PROMOTIONS (hereinafter "MDG", "We" and "Us")

Acacialaan 16, 2390 Malle

RPR 0456.494.965

Reachability: Monday, Tuesday, Wednesday, Thursday, Friday, Saturday

E-mail: info @ mdgpromotions.com

Telephone: +32 475 32 30 26

Why this privacy statement?

Each person who uses our Services (hereinafter the "Data Subject") almost inevitably discloses certain personal data. These personal data constitute information that allows us to identify you as a natural person, whether or not we actually do so. You are identifiable as soon as it is possible to create a direct or indirect link between one or more personal data and you as a natural person.

We use and process your personal data in accordance with the GDPR and other relevant legal provisions. Any reference in this Privacy Statement to the GDPR is a reference to the Regulation of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation).

Through this Privacy Statement, every Data Subject is informed about the processing activities that MDG may carry out with their personal data. MDG reserves the right to amend this Privacy Statement at any time. Any substantial change will be clearly communicated to the Data Subject. We recommend the Data Subject to consult this document regularly.

Who processes your personal data?

2.1. Controller

MDG alone or in cooperation with others determines which personal data are collected, as well as the purpose and means of processing these personal data. Consequently, MDG is a "data controller" within the meaning of the GDPR.

MDG has taken appropriate technical and organizational measures to protect the personal data of its Visitors and Customers. MDG uses a variety of appropriate security technologies and procedures to protect your personal data from unauthorized access, use or disclosure. MDG ensures that the supplied personal data are safely stored in a controlled environment.

2.2. Processor(s)

MDG uses carefully selected "data processors" to process the personal data of Data Subjects. A processor is a natural or legal person who processes personal data at the request of or on behalf of the Controller. The processor is obliged to ensure the security and confidentiality of the personal data. The processor shall always act in accordance with the instructions of the controller.

MDG uses the following categories of "processors":

• Companies we have engaged for ICT technical support and hosting purposes;
• Companies we have engaged for administrative purposes (e.g. CRM system);
• Companies we have engaged for communication purposes (e.g. live chat on the website);
• Companies we have engaged for analytical purposes;
• Companies we have engaged for payment purposes.

In order to ensure optimal protection of the Data Subjects' personal data, we have entered into the necessary contractual arrangements with the above-mentioned data processors to ensure that they apply the same high standards as we do.

A transfer of personal data to a processor outside the European Economic Area (EEA) can only take place to countries for which the Data Protection Authority in Belgium has established that they offer the same adequate level of protection or, if this is not the case, to the extent that MDG has made the necessary contractual arrangements with this processor, taking into account the standard provisions as imposed by the Data Protection Authority in Belgium.

On what legal basis are your personal data processed?

In accordance with the GDPR, we process personal data on the basis of the following legal grounds:

• On the basis of the performance of the contract as agreed with the Customer, or the exercise of pre-contractual steps taken at the request of the Data Subject; or
• On the basis of compliance with legal or regulatory provisions, with regard to the management of the contractual relationship with the Customer, in particular invoicing;
• Based on our legitimate interest to respond to information requests from Visitors and Customers;

What personal data are processed?

MDG undertakes to collect and process only those personal data that are relevant and necessary for the purposes for which they are processed. The number and type of personal data XXX collects about you will depend on your use of the Website and/or our services. The collection of personal data will increase with the intensity of your use of the Website and our online services. In general, Customers will disclose more personal data than Visitors. Specifically, we process the following categories of personal data:

• Customers:
• Personal identification data (name, first name, address, login data);
• Contact details (telephone number and e-mail address);
• Financial identification data (bank details);
• Personal data (sex, age, date and place of birth, nationality);
• Electronic identification data (cookies, IP address);

These personal data are collected when the Customer places an order through one of our Websites. Other personal data may be collected at a later date, for example as part of our after-sales service.

• Visitors:
• Personal identification data (name, first name, address, login data);
• Contact details (telephone number and e-mail address);
• Electronic identification data (cookies, IP address);
• ...

This personal data is collected when you visit our Websites and in particular when you fill in and submit our contact form.

5. For what purposes are your personal data used?

The processing of your personal data is essential for the proper functioning of the Websites and the services associated with them. The collection of personal data is further expanded as the Data Subject makes more intensive use of our Websites and our online services.

Processing is carried out only for the following specified purposes:

• Customers:
• Customer management: customer administration, order management, deliveries, invoicing, credit check, support and complaint monitoring.
• Visitors:
• Answering requests for information via the contact form on the Website;

Furthermore, the Personal Data of the Data Subject may also be used for the following purposes:

• Dispute management.
• Protection against fraud and violations.

In addition, we use cookies to recognise (the IP address of) Visitors and to provide them with a personalised user experience, to remember their technical choices and to detect and correct any errors on the Websites. Please refer to our Cookie Policy [https://www.mdgpromotions.com/cookiebeleid/] for more information on how we use cookies.

When you visit one of our Websites, some data is collected for statistical purposes. Such data are necessary to optimise the use of our Websites. These data are: presumed place of consultation, hour and day of consultation, which pages were visited, etc. In order to optimally protect your privacy, these data are always anonymised.

Under no circumstances do we collect sensitive personal data, such as data about your race, political opinions, health, religious and other beliefs, sexual orientation and the like.

The person concerned always provides the personal data to MDG and can thus exercise a certain control. MDG reserves the right to suspend or cancel certain operations if the required personal data are missing, incorrect or incomplete.

6. Who receives your personal data?

Your personal data will only be processed for internal use within MDG. Your personal data will not be sold, passed on or communicated to third parties, except if you have given us your explicit permission beforehand or if the transfer is necessary for the execution of the agreement or is required by law.

7. How long do we keep your personal data?

Your personal data will be kept as long as necessary for the fulfilment of the intended purposes. They will be deleted from our database when they are no longer needed to pursue these purposes or if the Data Subject validly exercises the right to delete the personal data.

What are your rights?

• Ensuring lawful and secure processing of personal data

Your personal data shall always be processed for legitimate purposes, as set out in Article 5.
They are collected and processed in an appropriate, relevant and proportionate manner, and are not kept longer than necessary to achieve the intended purposes.

• Right of inspection

If you can prove your identity, you obtain the right to obtain information on the processing of your personal data. Thus, you have the right to know the purposes of the processing, the categories of personal data, the categories of recipients to which the personal data are sent, the criteria determining the period of data retention and the rights you can exercise in relation to your personal data.

• Right to rectification of personal data

Inaccurate or incomplete information may be corrected. It is first and foremost the responsibility of the Data Subject to make the necessary adjustments to their "User Profile". One can also contact us with a request for modification.

• Right to erasure of your personal data

You also have the right to obtain the deletion of your personal data in the following cases:

• Your personal data are no longer required for the intended purpose;
• You revoke your consent to the processing of your personal data and there is no other legal basis for processing your personal data;
• You have legitimately objected to the processing of your personal data;
• Your personal data are processed in an unlawful manner;
• Your personal data must be deleted on the basis of a legal obligation.

The deletion of personal data is mainly related to visibility; it is possible that the deleted personal data remain stored temporarily.

• Right to restriction of processing

In some cases you have the right to request restrictions on the processing of your personal data. This is especially true in the case of a dispute regarding the accuracy of personal data, if the personal data is necessary in the context of legal proceedings or for the time necessary for MDG to determine that you can validly exercise your right to deletion.

• Right to object

You have the right to object at any time to the processing of your personal data for 'direct marketing' purposes, profiling purposes or purposes which stem from the legitimate interests of the controller. MDG will stop processing your personal data unless MDG can demonstrate that there are compelling legal reasons to process your personal data that override your right to object.

• Right to data portability

You have the right to obtain the personal data provided to us in a structured, accessible and machine-readable form. In addition, you have the right to transfer this personal data to another data controller, unless this is technically impossible.

• Right to withdraw your consent

You have the right to withdraw your consent at any time, for example if you have given it as a Visitor for direct marketing purposes.

9. How can you exercise your rights?

If you wish to exercise your rights, you must send a written request and proof of identity by registered mail to us at Acacialaan 16, 2390 Malle, Belgium, or by e-mail to "info@mdgpromotions.com". We will respond as quickly as possible, and no later than one (1) month after receipt of your request.

10. Possibility of submitting a complaint

If you have any comments or complaints about the way we handle your personal data, please report them to us first. In this way, we can come to an amicable solution by mutual consultation.

If, after this notification, you are still not satisfied with the processing of your personal data by MDG, you have the right to lodge a complaint with the competent supervisory authority (for Belgium: https://www.gegevensbeschermingsautoriteit.be/).