Privacy Policy

This section describes genae’s line of conduct when processing personal data. This line of conduct is applied to both automatic and manual data processing operations.

The data controller, genae, with registered office at genae Privacy, Justitiestraat 6B, 2018 Antwerp, Belgium and company number 0873.863.003 uses cookies on this websiteto maintain, provide and improve our Services on an ongoing basis, and to provide our Customers with a better experience. Internet browsers allow you to change your cookie settings, for instance to block certain kinds of cookies or files. You can therefore block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies, you may not be able to access all or parts of the website, because some may be functionality cookies.

Personal Data users disclose using this website, are only processed to meet users’ request and to register the consent of users with the terms and conditions of genae including this privacy policy. genae has implemented a policy in compliance with ‘General Data Protection Regulations’ (GDPR – Regulation (EU) 2016/679)) effective as of 25-MAY-2018 and ‘Health Insurance Portability and Accountability Act’ (HIPAA) Privacy Rule. The GDPR policy at genae ensures that personal data (by means of all information related to an identified or identifiable natural person) is processed in compliance with the EU GDPR on the protection of natural persons regarding the processing of personal data and on the free movement of data.

 

Definitions

  • Controller: Natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data.
  • Personal data: Any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity.
  • Processing: Any operation or set of operations that is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Processor: Natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller.
  • Third country: A non-European Union (EU) country
  • Third party: A natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.

 

genae uses various technological and procedural security measures to protect the Personal Data it collects, uses or transfers from loss, misuse, alteration or destruction.

This website contains links to other websites. genae cannot guarantee that said websites observe a privacy policy in compliance with the General Data Protection Regulation (GDPR) (EU) 216/679 of the European Parliament and of the Council of 27 April 2016. We therefore advise users to verify this themselves by consulting the privacy policy that must appear on every website.

Any dispute relating to or in connection with the application and interpretation of the policy is governed by Belgian law and only the courts of Antwerp, Belgium have exclusive competence to take cognizance of said disputes and any tort actions related thereto.

Personal data from a data subject in EU shall not be transferred to third countries, international organisations or third parties unless the recipient has an adequate level of protection of the personal data as per GDPR.

 

Data Subject Rights

The Privacy Policyensures that personal data (by means of all information related to an identified or identifiable natural person) is processed in compliance with the EU General Data Protection Regulation on the protection of natural persons regarding the processing of personal data and on the free movement of data.

Data subjects in this context have the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to data portability
  • Right to object
  • Right not to be subject of Automated individual decision-making

 

  1. Right of access by the data subject

Each data subject has the right to access his or her personal data and has the right to obtain the following information:

  • the purposes of the processing
  • the categories (e.g. genetic or biometric information, race, Religion, membership to Union) of personal data concerned
  • the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations according to the appropriate safeguards
  • where possible, the envisaged period of which the personal data will be stored, or, if possible, the criteria used to determine that period
  • where the personal data are not collected from the data subject, any available information as to their source.

The data subject has the right to lodge a complaint with supervisory authority. Personal data shall be retained according to applicable law.

  1. Right to rectification

Data subjects have the right to have inaccuracies in, or incompleteness of, his or her personal data rectified and completed, free of charge and without any delay.

  1. Right to erasure – right to be forgotten

The data subject has the right to obtain the erasure of personal data concerning him or her without undue delay where one of the following grounds applies:

  • the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
  • the data subject withdraws consent where there is no other legal ground for the processing
  • the personal data have been unlawfully processed

The right to erase shall not apply to the extent that processing is necessary: for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in so far as the right is likely to render impossible or seriously impair the achievement of the objectives of that processing.

  1. Right to restriction of processing

The data subject has the right to obtain restriction of processing where one of the following applies:

  • the accuracy of the personal data is contested by the data subject
  • when the personal data is no longer needed for the purposes of the processing
  1. Right to data portability

The data subject has the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided.

  1. Right to object

The data subject has the right to object, on grounds relating to his or her particular situation, at any time. The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject.  The data subject has the right to object to processing of personal data concerning him or her, unless the processing is necessary for the performance of a task carried out for reasons of public interest (e.g. clinical study report). Where personal data are processed for direct marketing purposes, the data subject has the right to object at any time to processing of personal data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing.

  1. Right not to be subject of Automated individual decision-making

The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her.

 

In case of further questions or remarks, as well for requests to access, rectify or remove your personal data, please contact the DPO (gpdr@genae.com)  at genae, Justitiestraat 6 B, 2018 Antwerp, Belgium.

 

Updated 25 May 2018