PRIVACY POLICY AND PERSONAL DATA PROTECTION

The FIDELUX group may need to collect your data concerning you as well as the way in which this data may be used. 

This Policy also provides important information regarding the rights and protection of personal data.

Our privacy and personal data protection policy may be updated.  

 We will post any changes to this document on our website in order to communicate what information we collect, how we may use it, and when we may disclose this information to third parties. Therefore, we invite you to read this document regularly.

This Privacy and Personal Data Protection Policy mainly concerns the processing of the personal data of our customers, our suppliers, our prospects, as well as the members of their staff and the persons designated by them, the persons who have expressed an interest in our activities, and the people with whom we come into contact in the course of carrying out our activities.   

In accordance with the legislation relating to the protection of personal data, we inform you of the following :  

  1. WHO COLLECTS PERSONAL DATA?

This privacy and personal data protection policy concerns the processing carried out by the following company of the FIDELUX group: 1 rue Bender L-1229 Luxembourg   

  1. WHAT PERSONAL DATA IS COLLECTED?

The personal data that we can process are as follows :  

  • Identification data: surname, first name, language, title, function, national register number, etc.
  • Contact details: postal address, landline and / or mobile phone number, e-mail address, etc.
  • Financial data: bank account number. 
  • Judicial data relating to convictions and sentences : extract from the criminal record.  
  • Other specific personal data required by legislation regulating private security.  
  • Data concerning the recording of images: surveillance images.
  • Data from a company allowing the identification of a natural person: eg. a private limited liability company (SPRLU) : company number.    
  • Audio recording data: telephone conversations via landlines. 

 

  1. FOR WHAT PURPOSES ARE PERSONAL DATA COLLECTED?

If you have a contractual relationship with FIDELUX, then the basis for the processing of personal data is this contract . The purpose of the processing of personal data is to allow FIDELUX to guarantee the performance of the services included in a contract, as well as for the general management of customers and suppliers, including accounting, dispute management and legal proceedings. , recovery or transfer of debt, as well as the protection of our rights.  

In addition, by basing the processing of your personal data on our legitimate interests , we process your data in order to offer you promotional offers in relation to products or services similar to those to which you have used, as well as in order to keep you informed about our activities and those of our sector or to protect our activities, our property and our premises by registering visitors.  

We base the processing of your personal data on your consent if you register to receive our newsletter, if you send us a request for information, if you call us by telephone (in this case you will be informed in advance if the conversation can be recorded), or if you enter our premises where camera surveillance has been indicated by a pictogram. You can unsubscribe from the newsletter at any time.           

Finally, the processing of your personal data may be justified in order to meet our legal obligations . In this context, we are subject to fiscal and accounting obligations which require us to store and transmit certain personal data to the accounting and tax authorities. In addition, we are subject to legal obligations related to our sector of activity, which is strictly regulated, and which requires us to communicate certain information to our supervisory authority at their express request or on our own initiative.  

 

  1. PERIOD OF CONSERVATION OF PERSONAL DATA

FIDELUX keeps your personal data until the moment when your relationship with FIDELUX ends (eg if you are no longer bound by a contract with FIDELUX or when you unsubscribe from the FIDELUX newsletter). There are exceptions to this principle in the following cases : a) if there is a legal retention period ; b) in order to comply with any limitation period ; c) to defend and enforce our or your rights in the event of litigation or litigation.    

  1. ACCESSIBILITY AND DATA TRANSFER

Your personal data will be accessible by the persons designated in accordance with the principle of the need to know in order to achieve the purposes mentioned above.

A company of the FIDELUX group may transfer your personal data to another company of the group mentioned in point 1) above when this is necessary to meet a legal or contractual obligation.  

FIDELUX will not transfer your personal data to a third party without prior notification, except when this transfer is required due to legal or contractual obligations or in the event of legal or police measures. 

When FIDELUX uses external subcontractors, they are always contractually bound to process the personal data concerning you within the framework of the execution of the contract in accordance with the rules in force, and not to process your personal data otherwise. ” other purposes than those listed in our common subcontracting contract. For example, if a client opts for this service, FIDELUX can provide access to this client at his request to an IT solution allowing control and reporting of the security activities provided by FIDELUX Security at the client’s request. This platform is hosted by an external subcontractor of FIDELUX , to which the customer’s personal data are then transferred. This transfer is limited to the information reasonably necessary to allow this external subcontractor to accomplish the mission that we have contractually entrusted to it.  

 

  1. RIGHT OF ACCESS, CORRECTION AND OBJECTION

In accordance with the General Data Protection Regulations, everyone has the following rights under certain conditions : 

1) access and rectification of his personal data ; 

 2) the erasure of his personal data in the cases listed by law ; 

 3) in the event of a dispute relating to the processing of personal data, the limitation of the processing of his personal data until the time when the dispute is resolved ; 

4) the portability of his personal data ; 

5) at any time and without justification, the opposition to the processing of his personal data for the purposes of direct marketing or automated individual decision-making. 

In the event that the processing of your personal data is based on your consent, you have the right to withdraw it at any time. 

Anyone wishing to make use of these rights is requested to send an e-mail to the following address patrick.decortis@fidelux-services.lu. Each person also has a right of appeal to the National Commission for Data Protection (CNPD) via the website : https://cnpd.public.lu/   

  1. SECURITY AND CONFIDENTIALITY

FIDELUX continuously monitors the security of personal data within the company. To this end, FIDELUX undertakes to take all reasonable technical and organizational measures to prevent unauthorized persons from gaining access to the personal data entrusted to it, as well as to avoid any loss of data, destruction or unauthorized disclosure. FIDELUX uses regularly updated systems, allowing data encryption if necessary and firewalls corresponding to industrial standards.