Legal
Privacy Policy
Last updated: June 2026
1. Data Controller
We process your personal data in accordance with the General Data Protection Regulation (GDPR, Regulation (EU) 2016/679) and Belgian implementing legislation.
2. What data do we collect?
We only process data that you provide to us directly or that is automatically generated during your visit:
- Contact form: name, email address, organisation name (optional), chosen service (optional) and your message.
- Analytical data (only with consent): anonymised visitor statistics via Google Analytics 4, including page views, session duration and device type. IP addresses are anonymised.
We do not collect special categories of personal data (health, political beliefs, etc.).
3. How do we use your data?
- Contact form — to respond to your question or request and initiate a possible collaboration. Legal basis: performance of a contract or legitimate interests (Art. 6.1.b and 6.1.f GDPR).
- Google Analytics — to analyse the use of our website and improve the user experience. Legal basis: your consent (Art. 6.1.a GDPR). You can withdraw your consent at any time via the cookie banner.
4. How long do we retain your data?
- Contact messages: maximum 2 years after our last contact, unless an ongoing collaboration requires a longer retention period.
- Analytical data: maximum 14 months, in accordance with Google Analytics default settings.
5. Who do we share your data with?
We never sell your data to third parties. We use the following processors, with whom we have concluded a data processing agreement or who are registered sub-processors:
- Mailjet (Sinch) — for sending emails from the contact form. Servers may be located within the EEA.
- Google LLC — for analytical data (Google Analytics 4), only after your explicit consent. Google may transfer this data to the United States on the basis of Standard Contractual Clauses.
- Microsoft Azure — for hosting our server infrastructure, located in the EEA.
Government or judicial authorities may request data. We only provide this if legally required.
6. Cookies
We only place cookies after your explicit consent. No cookies are placed for analytical purposes if you decline.
- Preference cookie (
tgim-lang): stores your language preference. No tracking, session-scoped. - Consent cookie (
tgim-cookie-consent): stores your cookie preference so the banner is not repeated every time. - Google Analytics cookies (
_ga,_ga_*): only after consent. Stored for a maximum of 2 years.
You can change your consent at any time by clearing your browser history and cookies, which will cause the cookie banner to reappear.
7. Your rights
Under the GDPR, you have the following rights:
- Right of access — you can request which data we process about you.
- Right to rectification — you can have inaccurate data corrected.
- Right to erasure — you can request the deletion of your data, to the extent that no legal retention obligation applies.
- Right to restriction of processing — you can request a temporary restriction of processing.
- Right to data portability — you can request your data in a readable format.
- Right to object — you can object to processing based on legitimate interests.
- Right to withdraw consent — for processing based on consent (such as Google Analytics), you can withdraw your consent at any time.
Send your request to info@thegapismine.be. We will respond within 30 days.
You also have the right to lodge a complaint with the Data Protection Authority (DPA):
www.dataprotectionauthority.be — Rue de la Presse 35, 1000 Brussels.
8. Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss or destruction. Communication via our website is encrypted via HTTPS.
9. Changes
We may update this privacy policy. The most recent version is always available on this page. In case of significant changes, we will inform you by email if we have your address.
10. Contact
For questions about this privacy policy or the processing of your personal data, you can contact us via: