Privacy Policy
Privacy Policy
Privacy Policy
Data security and confidentiality
Data security and confidentiality
100IN implements appropriate technical and organisational measures, including regular system testing and access controls, to ensure the confidentiality, integrity, and availability of personal data. These measures are applied with due care and in accordance with applicable data protection legislation.
100IN implements appropriate technical and organisational measures, including regular system testing and access controls, to ensure the confidentiality, integrity, and availability of personal data. These measures are applied with due care and in accordance with applicable data protection legislation.
Legal grounds for processing personal data
Legal grounds for processing personal data
100IN may process personal data where at least one of the following legal bases applies:
Contractual necessity: the processing is necessary for the performance of an agreement or to take pre-contractual steps at the request of the user;
Legal obligation: the processing is necessary to comply with a legal or regulatory obligation;
Legitimate interest: the processing is necessary for the pursuit of 100IN’s legitimate interests, provided that these interests are not overridden by the fundamental rights and freedoms of the data subject. 100IN performs a balancing test in such cases;
Consent: the data subject has given explicit consent to the processing.
Where personal data is processed through systems commissioned by a customer, the customer confirms that all affected data subjects have been duly informed and, where required, have provided valid consent. Consent may be withdrawn at any time. Withdrawal does not affect the lawfulness of processing carried out prior to such withdrawal.
100IN may process personal data where at least one of the following legal bases applies:
Contractual necessity: the processing is necessary for the performance of an agreement or to take pre-contractual steps at the request of the user;
Legal obligation: the processing is necessary to comply with a legal or regulatory obligation;
Legitimate interest: the processing is necessary for the pursuit of 100IN’s legitimate interests, provided that these interests are not overridden by the fundamental rights and freedoms of the data subject. 100IN performs a balancing test in such cases;
Consent: the data subject has given explicit consent to the processing.
Where personal data is processed through systems commissioned by a customer, the customer confirms that all affected data subjects have been duly informed and, where required, have provided valid consent. Consent may be withdrawn at any time. Withdrawal does not affect the lawfulness of processing carried out prior to such withdrawal.
Sharing of personal data with third parties
Sharing of personal data with third parties
100IN may share personal data with third parties acting as processors or controllers, including:
100IN’s affiliated companies (if any – a list is available upon request via hello@100in.vc);
External service providers such as IT and cloud service providers, auditors, legal advisors, marketing or communication agencies, and public authorities where required by law.
Such third parties are authorised to process personal data only for the specific purposes assigned to them and are contractually bound to comply with applicable data protection laws.
Where personal data is transferred outside the European Economic Area (EEA), 100IN ensures that an adequate level of protection is guaranteed in accordance with the GDPR, including through appropriate safeguards such as standard contractual clauses.
100IN may share personal data with third parties acting as processors or controllers, including:
100IN’s affiliated companies (if any – a list is available upon request via hello@100in.vc);
External service providers such as IT and cloud service providers, auditors, legal advisors, marketing or communication agencies, and public authorities where required by law.
Such third parties are authorised to process personal data only for the specific purposes assigned to them and are contractually bound to comply with applicable data protection laws.
Where personal data is transferred outside the European Economic Area (EEA), 100IN ensures that an adequate level of protection is guaranteed in accordance with the GDPR, including through appropriate safeguards such as standard contractual clauses.
Google API Services
Google API Services
100IN’s use and transfer of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.
100IN’s use and transfer of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.
Rights of data subjects
Rights of data subjects
In accordance with the General Data Protection Regulation (GDPR), users have the following rights, subject to applicable conditions:
Right of access: to obtain confirmation as to whether personal data is being processed and to access such data;
Right to restriction: to request a restriction of the processing of personal data in certain circumstances;
Right to data portability: to receive personal data provided to 100IN in a structured, commonly used and machine-readable format and to transmit it to another controller, where technically feasible.
In accordance with the General Data Protection Regulation (GDPR), users have the following rights, subject to applicable conditions:
Right of access: to obtain confirmation as to whether personal data is being processed and to access such data;
Right to restriction: to request a restriction of the processing of personal data in certain circumstances;
Right to data portability: to receive personal data provided to 100IN in a structured, commonly used and machine-readable format and to transmit it to another controller, where technically feasible.
Exercising your rights and complaints
Exercising your rights and complaints
Users may exercise their rights by submitting a written request, together with a copy of the front side of their identity card, to hello@100in.vc.
If a user believes that 100IN’s processing of personal data infringes the GDPR, they have the right to lodge a complaint with the Belgian Data Protection Authority:
Address: Rue de la Presse 35, 1000 Brussels, Belgium
Email: commission@privacycommission.be
Telephone: +32 2 274 48 00
Users may exercise their rights by submitting a written request, together with a copy of the front side of their identity card, to hello@100in.vc.
If a user believes that 100IN’s processing of personal data infringes the GDPR, they have the right to lodge a complaint with the Belgian Data Protection Authority:
Address: Rue de la Presse 35, 1000 Brussels, Belgium
Email: commission@privacycommission.be
Telephone: +32 2 274 48 00
Data retention
Data retention
Personal data is not retained longer than necessary for the purposes for which it was collected and is stored on servers operated by cloud and hosting providers that comply with GDPR requirements in terms of security and privacy.
100IN retains only data that is strictly necessary to provide its services. Upon or after termination of a contractual relationship, any interested party may request the deletion of applicable personal data, unless retention is required by law.
Where customers use their own servers, whether independently or in cooperation with 100IN, 100IN cannot be held responsible for the management or security of such servers, which remains entirely the responsibility of the customer.
Personal data is not retained longer than necessary for the purposes for which it was collected and is stored on servers operated by cloud and hosting providers that comply with GDPR requirements in terms of security and privacy.
100IN retains only data that is strictly necessary to provide its services. Upon or after termination of a contractual relationship, any interested party may request the deletion of applicable personal data, unless retention is required by law.
Where customers use their own servers, whether independently or in cooperation with 100IN, 100IN cannot be held responsible for the management or security of such servers, which remains entirely the responsibility of the customer.
Data controller
Data controller
The controller of personal data processing is:
100IN
Verlorenbroodstraat 63
9820 Merelbeke-Melle, Belgium
KBO: BE1033.097.114
100IN determines the purposes and means of the processing of personal data and acts as the primary contact point for all questions related to data protection.
You may contact us at any time via hello@100in.vc.
The controller of personal data processing is:
100IN
Verlorenbroodstraat 63
9820 Merelbeke-Melle, Belgium
KBO: BE1033.097.114
100IN determines the purposes and means of the processing of personal data and acts as the primary contact point for all questions related to data protection.
You may contact us at any time via hello@100in.vc.
