Book

Privacy policy

object

This Charter is established by Ernest Food located at Avenue Ernest Solvay 112 1310 La Hulpe, registered with the Carrefour Bank for Enterprises under number: 1005.626.120 (hereinafter referred to as “the person responsible for treatment “). The purpose of this Charter is to inform visitors to the website hosted at the address https://ernest-restaurant.be (hereinafter referred to as the “website”) of the manner in which data is collected and processed by the data controller. This Charter is part of the wish of the data controller to act in complete transparency, in compliance with the law of December 8, 1992 relating to the protection of privacy with regard to the processing of personal data. and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing the Directive 95/46/EC (hereinafter referred to as the “General Data Protection Regulation”). The data controller pays particular attention to the protection of the privacy of its users and therefore undertakes to take the reasonable precautions required to protect the personal data collected against loss, theft, disclosure or unauthorized use. If the user wishes to react to one of the practices described below, he or she can contact the data controller at the postal address or email address specified in the “contact data” point of this Charter.

Consent

By accessing the website and using it, the user declares to have read the information described below, accepts this Charter and expressly consents to the data controller collecting and processing, in accordance with the terms and principles described in this Charter, his personal data that he communicates through the website and/or during the services offered on the website, for the purposes indicated below. The user has the right to withdraw consent at any time. Withdrawal of consent does not compromise the lawfulness of processing based on consent previously given.

What data do we collect?

By visiting and using the website, the user expressly consents to the data controller collecting and processing, according to the terms and principles described below, the following personal data:
  • its domain (automatically detected by the controller’s server), including the dynamic IP address;
  • their e-mail address if the user has previously revealed it, for example by sending messages or questions on the website, by communicating with the controller by e-mail, by participating in discussion forums, by accessing the restricted part of the website subject to identification, etc. ;
  • all information concerning the pages that the user has consulted on the website;
  • any information that the user has given voluntarily, for example in the context of information surveys and/or registrations on the website, or by accessing the restricted part of the website through identification (access to his personal account ).
The data controller may also collect non-personal data. This data is called non-personal because it does not directly or indirectly identify a particular person. They may then be used for any purpose, for example to improve the website, the products and services offered or the advertising of the controller. In the event that non-personal data is combined with personal data, so that the identification of the data subjects is possible, these data will be treated as personal data until it is impossible to link them to a person particular.

Collection methods

A cookie is a small text file sent to your browser and saved on the hard drive of your terminal (PC, laptop or smartphone, etc.) when you visit a website, such as your choice of language. As manager of the ernest-restaurant.be website, we use different types of cookies which will be detailed in a table below.
    • FUNCTIONAL COOKIES
Functional cookies allow the website to save information that has already been provided and to offer you personalized enhanced features. They allow, for example, to remember the language of your choice. These cookies cannot therefore be deactivated.
    • COOKIES ANALYTICS
The website uses “Google Analytics” for analytical purposes. This analysis tool allows us to quantify visits (traffic) to the website in order to know how many times a given page has been read. We use this information only to improve the content of our website and the communication surrounding it. These cookies will only be placed on your terminal if you have previously consented.
    • COOKIES SCRIPT
“Cookie scripts” are external scripts/libraries that the site uses to call elements such as Google fonts or Google maps. These cookies will only be placed on your terminal if you have previously consented.

List of cookies

The website uses the following cookies:
_privacy_session
Type and origin: Functional cookie Retention period: 1 year Content: Visitor’s language Objective: Save the visitor’s language for future visits
_privacy_gtracking
Type and origin: Analytical cookie (Google Analytics) Retention period: 24 hours Content: Character sequence Objective: Analyze traffic on the site
_privacy_gfonts
Type and origin: Cookie Script (Google Fonts) Retention period: 24 hours Content: External script Purpose: Font name
_privacy_gmap
Type and origin: Cookie script (Google Map) Retention period: 24 hours Content: External script Purpose: Map name

Purposes of processing

Personal data is only collected and processed for the purposes mentioned below:
  • ensure the management and control of the execution of the services offered;
  • sending and tracking orders and invoicing;
  • sending promotional information on the products and services of the controller;
  • possibly sending free samples or offering services under preferential conditions;
  • answer user questions;
  • produce statistics;
  • improve the quality of the website and the products and/or services offered by the data controller;
  • transmit information about new products and/or services from the data controller;
  • for direct marketing actions;
  • allow better identification of the user’s interests.
The data controller may be required to carry out processing operations which are not yet provided for in this Charter. In this case, the data controller will contact the user before reusing their personal data, in order to inform them of the changes and give them the possibility, if necessary, to refuse this reuse.

Shelf life

The data controller only retains personal data for the time reasonably necessary for the purposes pursued and in accordance with legal and regulatory requirements. A customer’s personal data is kept for a maximum of 3 years after the end of the contractual relationship between this customer and the data controller. Shorter retention periods apply for certain categories of data, such as traffic data which is only kept for 12 months. At the end of the retention period, the data controller makes every effort to ensure that the personal data has been made unavailable.

Data access and copying

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven his identity (requiring a copy of the identity card) , obtain free of charge the written communication or a copy of the personal data concerning him which have been collected. The Data Controller may require payment of a reasonable fee based on administrative costs for any additional copies requested by the User. When the user submits this request electronically, the information is provided in commonly used electronic form, unless the user requests otherwise. A copy of their data will be communicated to the user no later than one month after receipt of the request.

Right of rectification

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven their identity (by attaching a copy of the identity card ), obtain free of charge, as soon as possible and at the latest within one month, the rectification of their personal data which is inaccurate, incomplete or irrelevant, as well as complete them if they prove to be incomplete.
  • the processing is necessary for the execution of a mission of public interest or relating to the exercise of public authority vested in the controller;
  • processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data (in particular where the person concerned is a child).
The data controller may refuse to implement the user’s right of opposition when he establishes the existence of compelling and legitimate reasons justifying the processing, which override the interests or rights and freedoms of the user, or for the establishment, exercise or defense of a legal right. In the event of a dispute, the user may lodge an appeal in accordance with the “claims and complaints” point of this Charter. By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, at any time and after having proven their identity (by attaching a copy of the identity card), object, without justification and free of charge, to the processing of personal data concerning him when his data is collected for direct marketing purposes (including profiling). When personal data is processed for scientific or historical research purposes or statistical purposes in accordance with the General Data Protection Regulation, the user has the right to object, for reasons relating to his or her particular situation. , to the processing of personal data concerning him, unless the processing is necessary for the performance of a mission of public interest. The data controller is required to respond to the user’s request as soon as possible and at the latest within one month and to provide reasons for his response when he intends not to act on such a request. request.

Right to restriction of processing

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven his identity (requiring a copy of the identity card) , obtain the limitation of the processing of their personal data in the cases listed below:
  • when the user contests the accuracy of data and only for as long as the data controller can check it;
  • when the processing is unlawful and the user prefers limitation of processing to erasure;
  • when, although no longer necessary for the pursuit of the purposes of the processing, the user needs it for the establishment, exercise or defense of his legal rights;
  • during the time necessary to examine the well-founded nature of an opposition request submitted by the user, in other words the time for the data controller to verify the balance of interests between the legitimate interests of the data controller and those of the user.
The data controller will inform the user when the restriction of processing is lifted.

Right to erasure (right to be forgotten)

By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, after having proven his identity (requiring a copy of the identity card) , obtain the erasure of personal data concerning him, when one of the following reasons applies:
  • the data is no longer necessary for the purposes of the processing;
  • the user has withdrawn their consent for their data to be processed and there is no other legal basis for the processing;
  • the user objects to the processing and there is no overriding legitimate reason for the processing and/or the user exercises their specific right of opposition regarding direct marketing (including profiling);
  • the personal data has been the subject of unlawful processing;
  • the personal data must be erased to comply with a legal obligation (under Union law or Member State law) to which the controller is subject;
  • the personal data were collected as part of the provision of information society services aimed at children.
However, data erasure is not applicable in the following 5 cases:
  • when the processing is necessary for the exercise of the right to freedom of expression and information;
  • when the processing is necessary to comply with a legal obligation which requires processing provided for by Union law or by the law of the Member State to which the controller is subject, or to carry out a task in the public interest or relating to the exercise of public authority vested in the person responsible;
  • when the processing is necessary for reasons of public interest in the field of public health;
  • when the processing is necessary for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes and insofar as the right to erasure is likely to make it impossible or seriously compromise the realization the objectives of the processing in question;
  • when the processing is necessary for the establishment, exercise or defense of legal rights.
The data controller is required to respond to the user’s request as soon as possible and at the latest within one month and to motivate his response when he intends not to follow up on such a request. request. The user also has the right, under the same terms, to obtain, free of charge, the deletion or prohibition of use of any personal data concerning him which, taking into account the purpose of the processing, would be incomplete or irrelevant or the recording, communication or conservation of which would be prohibited or which has been retained beyond the necessary and authorized period.

Right to “data portability”

Upon written, dated and signed request sent to the data controller at the address referred to in the “contact details” point of this Charter and after having provided proof of identity (by attaching a legible copy of the identity card), the The user may at any time request to receive their personal data free of charge in a structured, commonly used and machine-readable format, in particular with a view to transmitting them to another data controller, when:
  • data processing is carried out using automated processes;
  • the processing is based on the consent of the user or on a contract concluded between the latter and the controller.
Under the same conditions and according to the same modalities, the user has the right to obtain from the controller that the personal data concerning him or her be transmitted directly to another person responsible for the processing of personal data, provided that this is technically possible. The right to data portability does not apply to processing which is necessary for the execution of a mission of public interest or relating to the exercise of public authority vested in the controller.

Data recipients and disclosure to third parties

The recipients of the data collected and processed are, in addition to the data controller himself, his employees or other subcontractors, his carefully selected commercial partners, located in Belgium or in the European Union, and who collaborate with the data controller. processing in the context of the marketing of products or the provision of services. In the event that the data is disclosed to third parties for direct marketing or prospecting purposes, the user will be informed in advance so that they can choose whether or not to accept this processing of their data by the third parties. By means of a dated and signed written request sent to the data controller at the address referred to in the “contact details” point of this Charter, the user may, at any time and after having proven their identity (by attaching a copy of the identity card), object free of charge to the transmission of your data to third parties. The data controller complies with the legal and regulatory provisions in force and will in all cases ensure that its partners, employees, subcontractors or other third parties with access to this personal data comply with this Charter. The data controller reserves the right to disclose the user’s personal data in the event that a law, legal procedure or order from a public authority makes this disclosure necessary. No transfer of personal data outside the European Union is carried out.

Use and management of “cookies”

Cookie management

Most browsers are configured to automatically accept cookies, but all allow you to customize settings based on user preferences. If the user does not want the website to place cookies on their computer / mobile device, they can easily manage or delete them by changing their browser settings. The user can also program his browser to send him a notice when he receives a cookie and thus decide whether to accept it or not. If the user wishes to block and/or manage certain cookies, he can do so by following the link linked to your browser: If the user does not wish to accept cookies from Google Analytics, he can indicate this via the message concerning cookies which appears during his first visit to the website or by personalizing the settings of his browser so that he refuses cookies. To no longer be tracked by Google Analytics on any website, the user is invited to consult the following website: http://tools.google.com/dlpage/gaoptout. In the event that the user deactivates certain cookies, it is possible that certain parts of the website will not be consultable and/or usable, or that they will only be partially so.

Security

The data controller implements appropriate technical and organizational measures to guarantee a level of security of the processing and the data collected with regard to the risks presented by the processing and the nature of the data to be protected adapted to the risk. It takes into account the state of knowledge, the costs of implementation and the nature, scope, context and purposes of the processing as well as the risks for the rights and freedoms of users. The data controller always uses encryption technologies that are recognized as industry standards within the IT sector when transferring or receiving data on the website. The data controller has implemented appropriate security measures to protect and prevent the loss, misuse or alteration of information received on the website.

Communications by post, electronic or telephone

Communication by post.

If the user communicates his postal address to the controller via the website, his data is recorded in the controller’s address file to respond to his request and to keep him informed of the products and services offered by the controller. Unless the user objects, the data controller may also communicate the data concerning the user to third parties (such as corporate groups and business partners) for direct marketing purposes. If the user does not want his data to be used for direct marketing purposes, he can indicate this when registering on the website. The user can at any time consult, correct or delete their data from the data controller’s file. To do this, he must contact the data controller at the address referred to in the “contact data” point of this Charter, remembering to specify his exact name and address (spelled correctly). The data controller undertakes to delete his data from the list that he shares with other companies or organizations.

Communication by telephone.

If the user communicates his telephone number to the data controller via the website, he may receive a telephone call:
  • from the data controller in order to communicate information about its products, services or upcoming events;
  • groups of companies and business partners with whom the controller is contractually bound.
If the user does not/no longer wishes to receive such telephone calls, he or she can contact the data controller at the address referred to in the “contact data” point of this Charter, remembering to specify his or her name as well as his exact address (spelled correctly). The data controller undertakes to delete his data from the list that he shares with other companies or organizations. If the user communicates his mobile number to the data controller via the website, he will only receive messages (SMS/MMS) from the data controller which are necessary to answer his questions or inform him about his orders placed online.

Communication via email.

If the user communicates his email address to the data controller via the website, he may receive:
  • emails from the data controller in order to communicate information about its products, services or upcoming events (for direct marketing purposes), provided that the user has expressly consented to this or is already a customer with the controller and that he has communicated his e-mail address to the controller;
  • emails from corporate groups and companies/organizations to which the controller is contractually bound, for direct marketing purposes, provided that the user has explicitly consented to this.
If the user does not/no longer wishes to receive such e-mails, he or she can contact the data controller at the address referred to in the “contact data” point of this Charter, remembering to specify his or her name as well. as his exact address (spelled correctly). The data controller undertakes to delete his contact details from the list that he shares with other companies or organizations.

Claim and complaint

The user can submit a complaint to the Belgian Commission for the Protection of Privacy at the following address:
  • Commission for the Protection of Privacy, Rue de la Presse, 35, 1000 Brussels
  • Phone. +32 2 274 48 00 – Fax. +32 2 274 48 35
  • commission@privacycommission.be
The user can also file a complaint with the court of first instance of their domicile. For further information on complaints and possible avenues of appeal, the user is invited to consult the following address of the Belgian Commission for the Protection of Privacy: https://www.privacycommission.be/fr/plainte -and-recourse

Data Protection Officer

The data protection officer of the data controller is: Jérôme Charlier.

Contact data

For any questions and/or complaints, in particular regarding the clear and accessible nature of this Charter, the user can contact the data controller:
  • By email : jerome@ernest-restaurant.be
  • By post : Avenue ernest solvay 112, 1310 la Hulpe

Applicable law and competent jurisdiction

This Charter is governed by Belgian law. Any dispute relating to the interpretation or execution of this Charter will be subject to Belgian law and will fall under the exclusive jurisdiction of the courts of the judicial district of Brussels.

Miscellaneous provisions

The data controller reserves the right to modify the provisions of this Charter at any time. Changes will be posted with a warning when they come into effect. This version of the Charter dates from 04/26/2024.

Ernest Restaurant- 2024 - Made with love by Luckyweb