Privacy Policy

1. Who processes your data?

This website is managed by:
WeAreTienen vzw
(registered office: Kumtichstraat 8, 3300 Tienen, company number: 1030738925)

WeAreTienen acts as the data controller within the meaning of the GDPR.

For questions about privacy, you can contact us at:
📧 [email protected]

2. Who does this Privacy Policy apply to?

This policy applies to:

  • Business owners who create a profile or business on the website;
  • Visitors who create an account or use the website;
  • Anyone who visits our website, fills in forms or submits data.

3. What personal data do we collect?

We only collect data that is necessary for the proper functioning of WeAreTienen.be.

3.1. Data of business owners

  • First and last name;
  • Email address and phone number;
  • Date of birth;
  • Business name;
  • Company number;
  • Business address;
  • Photos, logos, texts or other content you upload yourself;
  • Opening hours, descriptions, categories;
  • Payment data (if you use a paid service);
  • IP address, browser information (for security and statistics).

3.2. Data of visitors

  • First and last name (if an account is created);
  • Email address;
  • Date of birth;
  • Any comments or contributions;
  • Favourites or settings;
  • IP address, browser information;
  • Cookies and analytics data (see Cookie Policy).

3.3. Technical data (for all users)

  • Username;
  • IP address;
  • Date and time of visit;
  • Pages that were viewed;
  • Browser and device data.

We do not collect any sensitive data (such as health data, political opinions, religion, etc.).

4. Why do we collect this data?

4.1. To make the platform function

  • Creating and managing accounts;
  • Publishing businesses and activities;
  • Correct display of content (texts, photos, logos);
  • Sending notifications and service messages.

4.2. To make a business owner’s company visible

This includes:

  • showing photos, texts and opening hours;
  • informing visitors;
  • marketing communication within the framework of the operation of WeAreTienen (newsletters, social media, campaigns).

4.3. To improve our services

  • Statistics and reporting;
  • Analysis of website usage;
  • Technical monitoring and security.

4.4. Where applicable: for paid services

  • Invoicing and administration;
  • Follow-up of orders.

5. On what legal grounds do we process data?

5.1. Performance of a contract (Art. 6(b) GDPR)

For:

  • creation and management of accounts;
  • displaying business pages;
  • use of all functionalities of the website.

5.2. Legitimate interest (Art. 6(f) GDPR)

  • basic statistics;
  • security of the website;
  • prevention of abuse;
  • publication of business information that a business owner adds him/herself.

We ensure that these interests do not disproportionately harm your privacy.

5.3. Consent (Art. 6(a) GDPR)

  • receiving newsletters (opt-in);
  • certain cookies (marketing/advertising).

You can withdraw this consent at any time.

5.4. Legal obligation (Art. 6(c) GDPR)

  • invoicing of paid services;
  • accounting obligations.

6. Who has access to your data?

We only share data when necessary:

6.1. Internal staff of the non-profit association

Only persons who need access for their tasks (website management, support, invoicing).

6.2. Technical service providers

Such as hosting providers, mailing software or analytics tools.
They act solely on behalf of WeAreTienen and are contractually obliged to:

  • treat data confidentially;
  • not use data for their own purposes.

6.3. Public (visitors to the website)

Only what you as a business owner publish yourself, such as business information, photos and descriptions.

We never sell personal data to third parties.

7. How long do we retain your data?

  • Account data: as long as your account is active;
  • Publication of your business: as long as the business remains visible on WeAreTienen;
  • Backups: max. 30 days;
  • Invoicing data (for paid options): 7 years (legal obligation);
  • Newsletter data: until unsubscription;
  • Technical logs and messages: 12 months.

After the retention period, data are securely deleted or anonymised.

8. Security

We take appropriate technical and organisational measures such as:

  • encrypted connections (HTTPS);
  • secure servers;
  • limited access rights;
  • regular updates and backups;
  • monitoring for suspicious activity.

No system is 100% secure, but we do everything reasonably possible within our means as a non-profit association.

9. What are your rights under the GDPR?

You always have the right to:

9.1. Request access

To know which data we store about you.

9.2. Request rectification or completion

If data are incorrect or incomplete.

9.3. Request erasure ("right to be forgotten")

When:

  • you wish to delete your account;
  • your data are no longer needed;
  • you withdraw your consent.

Note: business listings you have created can only be removed once the business is no longer actively displayed on WeAreTienen.

9.4. Request restriction of processing

In specifically described cases.

9.5. Object

Against:

  • processing based on legitimate interest;
  • direct marketing.

9.6. Data portability

For data that you have provided yourself in a structured, commonly used format.

10. Children

WeAreTienen.be is not intended for users under 16 years of age. Accounts can only be created by adults.

11. Complaints

Do you have a complaint about our Privacy Policy or our data processing?

Please contact us first at:
📧 [email protected]

If you are not satisfied with our response, you always have the right to lodge a complaint with:

Data Protection Authority (GBA)
Drukpersstraat 35, 1000 Brussels
www.gegevensbeschermingsautoriteit.be

12. Changes to this Privacy Policy

WeAreTienen may modify this Privacy Policy when necessary. The most recent version is always available on this website.
Important changes will be clearly communicated.

Last update: 25 November 2025