CHÂTEAU D’AIGUEVILLE attaches great importance to complying with legal requirements relating to the confidentiality of personal data. We do this so that the parties concerned (staff, clients and suppliers) may continue to communicate with them in complete confidence. By personal data, we mean all information related to an identified or identifiable individual (Art. 4 §1 of the GDPR) such as their name, identification number, email address, address, telephone number, etc.
To this end, CHÂTEAU D’AIGUEVILLE ensures that personal data is:
Our aim is to use the personal data in a fair way in order to be worthy of the trust of the data subjects and to avoid misuse.
Personal data may be used at various levels, such as staff and wage administration, client and supplier files, job applicants, event photos, etc.
The data collected by CHÂTEAU D’AIGUEVILLE can come from two different sources:
CHÂTEAU D’AIGUEVILLE implements measures to demonstrate compliance with the GDPR.
Creation of a data registry (inventory) for all activities involving the processing of personal data.
Ensuring that the personal data processed is minimised to only that required to achieve the objectives of legal processing.
Developing an internal information and staff training policy and nominating a data protection controller.
Where appropriate, conducting a data protection impact assessment to identify risks linked to the data processing (description, evaluation) and how to mitigate them in order to ensure protection.
Implementing effective procedures to ensure compliance with respect for GDPR ‘privacy’. To do this, CHÂTEAU D’AIGUEVILLE may as appropriate use different techniques, such as encryption of data, etc.
Offering the option for individuals to exercise their rights concerning personal data and these requests being effectively processed.
Regular evaluation of procedures relating to personal data.
CHÂTEAU D’AIGUEVILLE collects and uses personal data only to the extent required for the purposes for which it was obtained. There are two categories of processing. Either the processing is carried out with the consent of the data subject or the processing is required for:
The data can only be communicated to a third party with the prior agreement of users, unless the communication is strictly necessary for the provision of a requested product or service or when the request is made by an administrative or judicial legal authority.
The data is stored for a period which does not exceed the time necessary for the purposes for which it is collected and which complies with the relevant legal obligations.
CHÂTEAU D’AIGUEVILLE does not deliberately collect any personal data related to children except for the children of staff.
By communicating your personal data, you consent to CHÂTEAU D’AIGUEVILLE using it or divulging it according to the data protection policy that it has implemented internally. If you do not agree to this policy, please do not communicate your personal data either directly or indirectly. It is however possible to withdraw your consent as soon as you wish to do so.
CHÂTEAU D’AIGUEVILLE undertakes to respect the rights of data subjects by the personal data described below. Nevertheless, in order to exercise their right, the data subject must first prove their identity via a substantiating document. The controller will provide proof that the action is carried out. The request may be refused when it is manifestly excessive or abusive, or the request is impossible to carry out. A justified request shall be carried out free of charge for the individual.
The rights can be categorised into seven areas:
By personal data breaches, we refer to destruction, loss, alteration or unauthorised disclosure. If the breach risks affecting the rights and freedoms of individuals, CHÂTEAU D’AIGUEVILLE commits to notifying the Belgian Privacy Commission within 72 hours of the beach being identified. When the breach is likely to lead to a high risk for the rights and freedoms of individuals, CHÂTEAU D’AIGUEVILLE will inform the data subjects directly.
CHÂTEAU D’AIGUEVILLE may share your data with its service providers. The use of such service providers and the communication of your data are necessary for the proper performance of our work.
In all cases, CHÂTEAU D’AIGUEVILLE commits to ensuring the confidentiality of the data, in particular by concluding appropriate contracts with our partners who will have already been chosen with respect for the GDPR taken into consideration.
In addition, our company is required to communicate personal data when such communication is required by the Law, a decree or an ordinance, or by court ruling.
CHÂTEAU D’AIGUEVILLE stores all the data on servers located within the European Economic Area such that their protection is fully ensured.
It is possible that certain data may be transferred outside of the European Economic Area only as part of our activities, for example information requests from our parent company in Switzerland.We also work with suppliers outside of the EEC such as for the supply of Chilean wines. In this regard, the exchange of personal data is limited; however, CHÂTEAU D’AIGUEVILLE commits to always ensuring an adequate and sufficient level of protection for your data, in particular by using standard contractual clauses approved by the European Commission or other means that comply with Belgian and European legislation on personal data protection.
Address: Château d’Aigueville – Groupe Schenk – Route de Serignan – 84100 Uchaux
Phone: +33 (0)6 72 10 39 56