Privacy Policy

Last updated on 12 March 2024

This privacy policy is intended to inform you about the data we collect, why we collect it, whether it is shared with third parties, how long it is retained, what rights you have and how you can exercise your rights.

Who are we?
NADIMED BV is the controller for the processing of personal data, with registered office at 2550 Kontich, Prinsboudewijnlaan 7/18, registered with the Crossroads Bank for Enterprises under 0859.727.529.
You can contact us at:
- Telephone: +32 3 375 55 50
- Adress: Prinsboudewijnlaan 7/18, 2550 Kontich
- Email: nadimed@nadimed.be

Which personal data do we process and why?

We process the following personal data:

When you place an order	Name, email address, telephone number, address;
When you contact us	Name, email address, telephone number;
When you subscribe to our newsletters	Name, email address;
When you visit our website	Your IP address, location data, browser data, operating system, duration of your visit, the pages you visited, links you click on by using cookies (please refer to our cookie policy);

Why do we process your personal data?
We process the above mentioned personal data for following reasons and on the legal basis mentioned:
Purpose Legal basis
Customer and order management Contractual necessity
Follow-up on inquiries/contact requests Consent
Sending of newsletters Consent
In case we would further process your personal data for other purposes than the ones mentioned above, we will inform you beforehand.
Will your personal data be shared with third parties?
The ways in which your personal data can be passed on to third parties are:
- You give your prior express consent to do so;
- For compliance with our legal or statutory obligations, e.g. the prevention of fraud and abuse;
- In case of transfer of our business activities to a third party;
- We rely on third parties to perform the processing of personal data, in which case we ensure that these third parties also comply with this privacy policy;
Furthermore, we also share your personal data with members of our group.
Specifically, your personal data is shared or may be shared with the following third parties for the reasons indicated:
Third Party Reason
BDO Accountant
P Systems IT assistance
Transport companies Delivery of orders
Google Web analytics service
Suppliers of cookies Functioning of website
Personal data is transferred outside of the European Economic Area to the United States (cookies) and the United Kingdom (Mawdsley-Brooks & Company Ltd.). The transfer of personal data to the United States is based on the adequacy decision of the European Commission (“EU-US Data Privacy Framework”). The transfer of personal data to the United Kingdom is based on the adequacy decision of the European Commission (“Commission Implementing Decision (EU) 2021/1772 of 28 June 2021 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate protection of personal data by the United Kingdom”).
How long do we keep your personal data?
Your personal data will not be kept longer than is necessary for the purpose for which we collected the data. Below you can find an overview of our retention periods:
Accounting data 7 years after termination of contract
Contact requests 1 year after handling the contact request
Direct marketing data Until you withdraw your consent
Irrespective of the period for which we keep your personal data, we will also delete your personal data if you explicitly request us to do so via the contact details above.
Which are your rights?
You have various rights, which can be exercised by contacting us using the contact information provided above.
- Access to the personal data relating to you that we process, and, if necessary, the correction of inaccurate/incomplete personal data or the deletion of personal data, as well as – in certain cases – the restriction of the processing of your personal data or objection to it.
- The transfer of your personal data, either by providing it to you in a readable form or its direct transmission by us to the third party service provider designated by you.
- The withdrawal of a previously given consent to process your personal data.
- To lodge a complaint with the supervisory authority, including in the event that you are not satisfied with the handling of your question or complaint by us, using the following data (or with a supervisory authority of your choice):
  Gegevensbeschermingsautoriteit / Autorité de protection des données
  Drukpersstraat 35, 1000 Brussels
  +32 (0)2 274 48 00
  contact@apd-gba.be
- To object to the processing of your personal data for reasons of direct marketing.
How you can exercise your rights?
You can reach us using the contact details above.

Purpose	Legal basis
Customer and order management	Contractual necessity
Follow-up on inquiries/contact requests	Consent
Sending of newsletters	Consent

Third Party	Reason
BDO	Accountant
P Systems	IT assistance
Transport companies	Delivery of orders
Google	Web analytics service
Suppliers of cookies	Functioning of website

Accounting data	7 years after termination of contract
Contact requests	1 year after handling the contact request
Direct marketing data	Until you withdraw your consent