Privacy Notice

This website is operated by CoreAalst BV, as the Data Controller, with its head office located at Industrielaan 4, 9320 Aalst, Belgium (company number BE 0755.485.389). You can contact us via email: privacy@CoreAalst.com for any question regarding your privacy.

The protection of your Personal Data is of importance for CoreAalst BV and its affiliates (together hereinafter “CoreAalst”) and we treat your privacy with utmost care.

We have established this Privacy Notice to explain to you how CoreAalst treats your Personal Data. The Privacy Notice applies to the Personal Data that you provide and that we Process about you as a natural person when you visit our website and register for our newsletter.

Which Personal Data do we collect when you visit our website?

We Process the Personal Data that you provide to us when you interact with us via this website by completing and sending us a contact or request form or when registering for our newsletter. These Personal Data include:

  • Identity data you provide (surname, first name, email address, occupation, etc.).

  • Any other Personal Data that you may include in a contact form, which may include health data as requested in order to assess your eligibility for our clinical trial activities.

  • If you are submitting a job application, additional information that you may provide about your academic and work history, qualifications, skills, references, your national security number, your passport or other identity document details, and any other such similar information that you may provide to us.

Like almost every website, our website also uses cookies. Some of these are necessary to make your website visit possible, other allow us to optimize your browsing experience or the way we interact with you. Find out more about our cookies in our cookie policy.

Why do we collect your Personal Data?

Depending on your relationship with us (e.g. website visitor, business contact, job applicant, etc.), we might process your Personal Data based on the purposes and legal bases described hereunder:

With whom do we share your Personal Data?

CoreAalst will provide access to or share Personal Data on an as-needed basis with third parties, such as trusted service providers, consultants and contractors who are granted access to CoreAalst’s facilities and systems or which provide services to CoreAalst, and with government agencies or authorities, competent courts and others as required by law or if it is necessary to fulfill your request.

Third party service providers include IT services and website hosting companies, (internet) connectivity providers, provider of data analytics (Google) and tracking services, providers of press release and newsletter distribution networks, as well as service providers that provide technical and administrative support for the Website and underlying IT systems.  These service providers provide their services from locations within and outside of the European Economic Area (“EEA”), including the USA.

CoreAalst will only share your Personal Data with third parties whom CoreAalst has contractually restricted from using or disclosing the Personal Data except as necessary to perform services on our behalf or to comply with legal requirements.

What if your Personal Data is transferred outside the European Economic Area (EEA)?

CoreAalst may need to transfer your data to countries outside the EEA, where the privacy protection is less developed, including the USA.

CoreAalst relies on available legal mechanisms to enable the legal transfer of Personal Data across borders. To the extent that CoreAalst relies on the Standard Contractual Clauses (also called the Model Clauses), to authorize the transfer of Personal Data, CoreAalst will comply with those requirements, including where there may be a conflict between those requirements and this Privacy Notice.

In the absence of the aforementioned appropriate safeguards, CoreAalst may where permitted by applicable data protection laws (including the GDPR) rely on a deroga-tion applicable to the specific situation at hand (e.g. the data subjects’ explicit con-sent, the necessity for the performance of an agreement, the necessity for the de-fense of legal claims).

How do we secure your Personal Data?

CoreAalst uses reasonable and appropriate technological and operational security measures to keep your Personal Data protected against any unauthorized access or unlawful use. Such measures include:

  • Ensuring the physical and digital security of our equipment and devices by using appropriate password protection and encryption where necessary;

  • Ensuring the physical security of our offices and other sites;

  • Maintaining a data protection policy for, and delivering data protection training to, our employees; and

  • Limiting access to your Personal Data to those at CoreAalst who need to use it in the course of their work.

However, due to the nature of internet communications, we cannot guarantee or warrant that the transmission of your Personal Data to us is secure.

For how long do we keep your Personal Data ?

The Personal Data you provide to CoreAalst is only kept for as long as it is reasonably necessary for the purposes for which it is collected, taking into account our need to comply with contractual obligations, resolve customer service issues, comply with legal requirements and provide new or improved products and services to users. This means that we may retain your Personal Data for a reasonable period after you stopped using the CoreAalst.com website. After this period, your Personal Data will be deleted from all systems of CoreAalst without notice.

What rights can you exercise?

Based on the applicable Belgian and European privacy legislation, and provided that you meet the requirements set by this legislation, you can contact us to exercise the following rights:

  • Withdrawing your consent for the Processing of your Personal Data, to the extent that the Processing of your Personal Data was initially based upon your consent.

  • Seeking access to, correcting, deleting or restricting your Personal Data.

  • Objecting to any Processing for direct marketing.

  • Objecting to any Processing based on our legitimate interest.

  • Seeking the portability of your Personal Data, which you have communicated to us and that we have Processed.

  • Lodging a complaint with the supervisory authority in the European member state of your habitual residence, your place of work or the alleged infringement of applicable data protection legislation.

You can send your requests to exercise your above mentioned rights, together with evidence of your identity, by email at privacy@CoreAalst.com or by post to CoreAalst, Data Protection Officer, Industrielaan 4, 9320 Aalst, Belgium.

We will examine the admissibility of your request based on the applicable Belgian and European privacy legislation. We will then inform you, in principle within a month, if we can answer positively to your request.

Third party applications and websites

This Website contains links to other websites operated by third parties, including but not limited to certain social media sites such as Facebook, Twitter, Linkedin, YouTube, etc. This Policy does not apply to any website, other than this one. Third party websites are governed by their own terms and conditions. You should therefore always carefully check the privacy and cookie policies of third party websites before accepting to be redirected to them.

We also display social media buttons and a WhatsApp button on our Website.  When you click on any of those buttons, your personal data may be transferred to these companies and they may also set cookies or other tracking technologies on your browser.  The privacy policies and terms of use of each of those companies govern the collection and use of your personal data when you click on their buttons on our Website.

Prior to installing third party cookies or enabling you to click through to a third party website, we will have requested your consent to do so. Where consent was not given, the cookies will not be installed and the click through to third party websites will only occur after a pop-up notifying you that you are leaving the CoreAalst space and requesting whether you wish to continue.

Notice for parents, guardians and children

Our website is intended for visitors who are at least 18 years of age, or the age of majority in their jurisdiction of residence. CoreAalst does not knowingly solicit information from or market products or services to children. If you do not meet the age requirements set out above, please do not enter your Personal Data on this website.

How may CoreAalst change this Privacy Notice?

As CoreAalst expands and improves its website, or as legal requirements change, we may need to update this Privacy Notice. This Privacy Notice may be modified from time to time without prior notice. We encourage you to review this Privacy Notice on a regular basis for any changes. The date of the latest version will be identified at the bottom of the Privacy Notice.

Do you have any questions?

If you have any questions about this Privacy Notice or data protection at CoreAalst, you can contact our Data Protection Officer either by mail:

Data Protection Officer

CoreAalst BV
Industrielaan 4, 9320 Aalst

or by e-mail at privacy@CoreAalst.com

You also have the right to lodge a complaint with the supervisory authority in the European member state of your habitual residence, your place of work or the alleged infringement of applicable data protection legislation:

In Belgium, the Supervisory Authority is: Belgian Data Protection Authority, Rue de la Presse 35 / Drukpersstraat 35, 1000 Bruxelles / 1000 Brussel, contact@apd-gba.be,www.gegevensbeschermingsautoriteit.be