LEGAL NOTICES


Site publisher

This site is published by Luxcontrol.

Responsible for the content regarding general information and services :

Luxcontrol

8, Boulevard des Lumières
L-4369 Belvaux
Tel.: +352 54 77 11 1

 

Legal notice

Luxcontrol maintains this site to present its activities while making every effort to provide up-to-date information. Errors or ambiguities cannot be avoided, and Luxcontrol will not guarantee the accuracy of the data at any time.

Luxcontrol accepts no responsibility for any use of the information contained in the pages published on this site.

This site may link to external sites over which Luxcontrol has no influence and for which it accepts no responsibility.


Copyright

© Luxcontrol - All rights reserved.

Any pictograms, photographs, images, texts, video clips and other documents featured on the Luxcontrol website are protected by copyright and subject to the laws protecting intellectual property. Reproduction of all or part of the information is permitted only with the prior and written approval of Luxcontrol S.A.


Data protection

Personal data are treated in a strictly confidential manner and only within Luxcontrol companies. They are in no way transmitted to third parties.

In accordance with Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016, known as the General Data Protection Regulation, which is effective as of May 25th 2018, you have the right to request access and modification of your personal data, you can also object to their treatment.

You can exercise your rights by sending an email to :   .


Personal data protection charter

We take care to process the personal data of our customers, prospects, partners, users of our website and, more generally, any person associated with our company, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data (« GDPR »).​

Luxcontrol, a conformity assessment body and provider of inspection, testing, consultancy and training services, based in Luxembourg, with its registered office at 8 Boulevard des Lumières, L-4369 Belvaux, acts as the data controller for the data processing operations covered by this policy.

Personal data is understood to be any information relating to an identified or identifiable natural person.

In all cases, we only process data necessary for specific, explicit and legitimate purposes, and in particular to:

  • Respond to enquiries from our customers or potential customers
  • Provide them with a high-quality service
  • Execute a contract or take pre-contractual steps
  • In the context of our commercial exchanges
  • To manage our communication and marketing campaigns
  • To process requests submitted via our website
  • To organize, plan, carry out and document our support, advisory, analysis, training, audit, control and inspection activities
  • To comply with our legal, regulatory and professional obligations
  • To ensure the security of our systems, tools and website
  • To manage, where necessary, complaints, contestations, appeals and litigation

Depending on the circumstances, this personal data processing is based on one of the following legal reasons: the performance of a contract, the implementation of pre-contractual measures, compliance with a legal obligation, our legitimate interests or, where required, the consent of the data subject.

The categories of personal data we process may include, depending on the circumstances:

  • Identification data, such as surname, first name and signature
  • Contact details, such as email address, telephone number and business postal address
  • Professional data, such as job title, employer or role within the organisation
  • Data relating to the contractual business relationship
  • Connection and browsing data collected whilst using our website
  • More generally, any data strictly necessary for the provision of our services and the management of our activities

The personal data is used with full transparency. Data subjects have the right, in accordance with the applicable regulations, to access, rectify, erase, restrict the processing of, and object to the processing of their personal data, and, where applicable, the right to data portability. Where processing is based on their consent, they may also withdraw it at any time.


Personal data is accessible only to authorized personnel in the course of their duties, as well as to authorized service providers, partners or contractors where this is necessary for the performance of our duties. It may also be disclosed to the relevant authorities, government bodies or organizations where required by law or regulatory obligations.


Personal data is not sold or transferred to third parties for commercial purposes. However, it may be disclosed to subcontractors or service providers acting on our behalf strictly within the scope of the purposes described above.

We work with service providers who give sufficient guarantees regarding confidentiality, security and the protection of personal data. We ensure that we provide them only with the data that is relevant and necessary for the performance of the service entrusted to them, within a contractual framework that complies with applicable regulations.


Personal data is processed primarily within the European Economic Area. Where data is transferred to a country outside this area, we ensure that such transfers are carried out in accordance with the GDPR and are subject to appropriate safeguards.


Personal data is retained only for as long as is necessary for the purposes for which it was collected, and, where applicable, for as long as it is necessary to comply with our legal, regulatory, contractual or evidential obligations, or to resolve any disputes.


The applicable retention periods depend on the nature of the data and the purpose of the processing. In particular, they may relate to the handling of contact requests, the contractual relationship, accounting and administrative obligations, certification files, regulatory requirements or security requirements.


Appropriate technical and organizational measures are implemented to protect data against alteration, loss, destruction, unauthorized disclosure or access.

Data subjects who consider that their personal data has been processed in breach of the applicable regulations may contact us at gdpr@luxcontrol.com. In order to process the request securely and confidentially, we may request additional information to verify the applicant’s identity if there is reasonable doubt as to their identity.


The request will be processed as soon as possible and, in principle, within one month of receipt, in accordance with legal requirements.


If, after contacting us, the data subject considers that their rights have not been respected or that the processing of their data does not comply with the applicable regulations, they may lodge a complaint with the National Commission for Data Protection (CNPD), the competent supervisory authority in Luxembourg.

This Charter forms an integral part of our commitments regarding the protection of personal data and our general terms and conditions of sale. It may be updated at any time to reflect changes in the law, regulations, case law or our organizational structure. We encourage data subjects to consult it regularly on our website.