GDPR

The General Data Protection Regulation (GDPR) imposes new rules on organisations in the European Union (EU) and on organisations offering goods and services to people in the EU, or collecting and analysing data linked to EU residents, wherever they are located.

At TRAC, we give all our attention to the correct observance and implementation of the regulations.

Thanks to the GDPR legislation, individuals have full control over the use and retention of their personal data.

Organisations must handle personal data with full transparency and ensure constant monitoring of incidents that may occur in connection with data security. For these purposes, our employees at TRAC continue to receive up-to-date training.

The services and products we offer at TRAC also take the necessary measures. Moreover, these measures help you to implement and manage the GDPR regulations in your own company.

For example, Microsoft offers the following solutions and functionalities to help you implement and manage the GDPR legislation:

- Data Loss Prevention

- Active Directory

- Data Classification

- Advanced Threat Protection

- Transparent Data Encryption

- Always Encrypted

Translated with www.DeepL.com/Translator (free version)

Our partner, Cisco Meraki, is committed to protecting the data our customers entrust to the cloud-hosted service. For Meraki organisations hosted on the Meraki EU cloud service, Meraki has made improvements to the cloud-hosted service in the context of the GDPR by introducing special new privacy dashboard tools.

Meraki solutions and tools for the GDPR:

- Data access and portability
To meet customers' requests to export their information, Meraki has built a functionality to enable the accessibility and export of dashboard data.

- The 'right to be forgotten'
Customers can delete dashboard data either for themselves or in response to requests from users of their networks.

- Restriction of processing
In the Meraki dashboard, data can be identified, hidden and deleted on a verified request to restrict processing.

- Tracking of GDPR-related requests
The event log on the dashboard now includes a functionality for tracking and checking the status of GDPR requests.

- Permission tools
Enhanced splash page functionality allows Meraki customers to notify and authorise users of their network to collect, process and store network user data.

- Visibility of data hosting
When creating a new account, Meraki customers have the option of selecting the region where their data will be stored. For verification purposes, the dashboard displays the hosting region on each page.

In recent years Kaspersky Lab has been working to ensure that their products and the way they store personal data are and remain in line with the new regulations. Respecting and protecting people's privacy is a fundamental principle of Kaspersky Labs, ever since the company was founded.

At Kaspersky the motto is: You are not alone!

Kaspersky Security Network (KSN) is one of Kaspersky's most important cloud systems, developed to maximise the effectiveness of detecting new and unknown cyber threats and thereby ensure the fastest and most effective protection of users. KSN is an advanced cloud-based system that automatically processes data related to cyber threats. This data comes from millions of Kaspersky users around the world who use this system on their own initiative. This cloud-based approach has become the industry standard, adopted by a large number of global IT security providers.

The Kaspersky Security Network agreement contains a list of data that customers can indicate at any time that they do not wish to share (or no longer wish to share), by unchecking the relevant box in the settings (if desired, it can also be unchecked again). Should business customers decide to disable KSN, they will no longer receive notifications of threats detected in the cloud. To address this, Kaspersky has developed Kaspersky Private Security Network for business customers, allowing them to enjoy the benefits of cloud protection without having to share business data.

Proximus & GDPR

In order to use our services and products, we need your personal data. We also collect other personal information, such as payment details and communication traffic. All this data is included in our files and stored for a certain period of time.

Information you give us

If you wish to use our services and products, we require a number of personal details such as your surname, first name, address, login, e-mail address, telephone number, mobile phone number, date of birth, language and a copy of your identity card. Sometimes we also need other information, such as specific preferences and requirements relating to the service in question.

We may collect your personal data in various ways: verbally at Proximus points of sale or via the electronic reading of your identity card, by telephone via customer service, in writing via order forms or text message, digitally via e-forms or when you chat with our chatbot or via our website, via the MyProximus app or when you use social media to contact us or when you use the Itsme app to identify yourself.

Every customer contact creates the possibility of collecting personal data: when you order, when you participate in a survey, test or contest, by calling customer service, when you identify yourself as a user of a Pay&Go card, when you register for a newsletter or when you simply ask us for information.

You always have the option not to provide certain information, but this may result in you not being able to use certain products or services or that they do not function properly.

Information we obtain through your use of our products/services

We collect data on the use you make of our services and products (fixed and mobile services, TV, etc.) and websites, on the devices (type/brand) you use and on the communications traffic over our network, as well as data on the devices (type/brand) that connect to your Wi-Fi connection. The communication traffic may include the telephone and mobile phone numbers called, the IMEI number of your mobile device, the date, time, duration and location of a communication or of an Internet connection, the data volume you use, the type of mobile app you use. We also collect data on your use of the TV services (both via the TV decoder and via the Proximus Pickx app and the website www.proximus.be/pickx/nl). Finally, we also collect data on the quality and speed of the network and of your Wi-Fi connection. We also keep your billing and payment details.

Information we purchase from third parties

We can use socio-demographic data and consumer information, which we purchase from specialised companies such as Bisnode Belgium.

How long are personal data stored?

Personal data is stored for a maximum of ten years after a person ceases to be a Proximus customer. Shorter retention periods apply to certain categories of data, such as data relating to your communication traffic, which is not kept for more than twelve months.

Who keeps your personal data?

The personal data that we collect and use are included in the files of Proximus S.A. under public law (Boulevard du Roi Albert II 27, 1030 Brussels).

We would like to refer you to the following websites for more information on the GDPR legislation