Privacy Policy

1. Data Controller Responsibility
1.1. Blindspot Group BV acts as a data controller in relation to the processing of personal data that is necessary for the provision of its Services. In this capacity, Blindspot Group BV determines the purposes and means of such processing in accordance with the applicable data protection legislation, including the General Data Protection Regulation (GDPR).

 

1.2. The Customer, as the party making use of the Blindspot® Application, remains solely responsible for ensuring that any data entered, uploaded, or otherwise managed within the Application is processed in accordance with all applicable privacy laws and regulations. This includes, where required, obtaining valid consents from data subjects (e.g., employees or other Users) whose personal data may be processed via the Application.

2. Categories and Legal Grounds for Processing
2.1. The Blindspot® Application may collect and process various categories of personal data, including
but not limited to:

 

• Identification details (e.g., names of employees or Users);

• Contact information (e.g., email addresses, phone numbers);

• Usage data (e.g., login activity, feature usage, technical logs).

​

2.2. The processing of this personal data is carried out based on one or more of the following legal
grounds:

 

• Performance of a contract: when processing is necessary to deliver the Services as agreed upon with the Customer;

​

• Legitimate interests: when processing is necessary for purposes such as system integrity, fraud prevention, and improving the functionality and security of the Application, except where such interests are overridden by the rights and freedoms of the data subjects;

​

• Legal obligations: when processing is necessary to comply with applicable laws, including obligations related to tax, accounting, or judicial proceedings.

3. Data Subject Rights
3.1. Individuals whose personal data is processed by Blindspot Group BV (including Users and third parties) have the following rights under the GDPR:

​

• The right to access their personal data;

• The right to rectify inaccurate or incomplete data;

• The right to erase personal data ("right to be forgotten");

• The right to restrict the processing of their personal data;

• The right to object to processing;

• The right to data portability;

• The right to lodge a complaint with the Belgian Data Protection Authority.

3.2. To exercise these rights, individuals may contact Blindspot Group BV at the following email address: info@blindspotapp.com. Blindspot Group BV undertakes to respond to all valid requests within a reasonable timeframe, and in any event within the deadlines imposed by applicable law.
 

3.3. The Customer remains responsible for facilitating the exercise of data subject rights in relation to the personal data that it enters or manages within the Application. Blindspot Group BV will provide reasonable cooperation and assistance to the Customer to ensure compliance with applicable privacy legislation.

4. Data Retention
Blindspot Group BV retains personal data only for as long as necessary to fulfill the purposes for which the data was collected, or to comply with legal or regulatory obligations. Upon expiration of this retention period, the personal data will be securely deleted or irreversibly anonymized. Specific retention periods can be provided to the Customer upon written request.
 

5. Security Measures
Blindspot Group BV has implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risks associated with personal data processing. These measures include, but are not limited to:

 

• Data encryption;

• Access control protocols;

• Role-based user access restrictions;

• Regular vulnerability scans and security audits;

• Incident response procedures.

6. Data Breaches
In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of data subjects, Blindspot Group BV will notify the affected Customer(s) without undue delay and, where feasible, within 72 hours of becoming aware of the breach. The notification shall include:

 

• A description of the nature of the breach;

• The types and volume of data affected;

• The potential consequences;

• The corrective actions taken or proposed by Blindspot Group BV to mitigate any adverse effects.

​

7. International Data Transfers
Where personal data is transferred to or processed in countries outside the European Economic Area (EEA), Blindspot Group BV ensures that such transfers are subject to appropriate safeguards as required by the GDPR. These safeguards may include:

 

• The use of Standard Contractual Clauses approved by the European Commission;

• Transfers to countries with an adequacy decision by the European Commission;

• Binding corporate rules or other legally acceptable mechanisms.

​

Blindspot Group BV reserves the right to amend or update this Privacy Policy at any time in order to reflect changes in legal obligations, our data processing activities, or the services we offer. In case of material changes, we will inform the Customer through appropriate channels, such as email or in-app notifications. We encourage you to review this Privacy Policy periodically to stay informed about how we process and protect personal data.

​

Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or the way Blindspot Group BV handles personal data, you can contact us at:
 

Blindspot Group BV
VAT: BE1030.248.579
Email: info@blindspotapp.com
Address: Jordaensstraat 73 bus 0102, 2550 Kontich