Privacy Statement
Updated on 6 March 2019

IRISPHERE is a programme coordinated by, a public service institution with head offices at rue Gabrielle Petit 6 in 1080 Brussels (hereinafter referred to as “we”). We have been serving Brussels-Capital Region citizens since 1974, and we are fully aware of the fact that the protection of your privacy is a fundamental right. That is why we take the necessary measures to guarantee the security of your personal data.

With this statement, we aim to fully inform you of how protects your personal data. This statement falls within the legal framework of European regulation 2016/679, known as the General Data Protection Regulation (hereinafter referred to as the “GDPR”), which applies to our institution.

We are responsible for processing your personal data within the context of our statutory tasks of urban renewal and economic development. The present Statement aims to inform you of which personal data (hereinafter referred to as “your data”) we use, why we use them, how certain information may be shared with other institutions or subcontractors, how long the data are stored, and how you may exercise your rights regarding these data.

1. What personal data do we process?

We collect and use the personal data strictly necessary to ensure the proper functioning of the IRISPHERE platform. The data we collect include:

  • contact data required for the exchanges between our institution and you in order to collaborate with you or to keep you informed of the project's progress: e-mail address, postal address, telephone number, business number.

We never process data relating to your racial or ethnic origins, your political or religious views, your philosophical convictions or your union membership, your genetics, your gender or sexual orientation, unless this follows from the deliberate manner in which you fulfil your obligations (for example: you volunteer the abovementioned data to us without our having asked for them or needing them).

2. Why and on what grounds do we use your personal data?

   a) To carry out a contract concluded with you or to carry out precontractual measures at your request

We use your personal data to conclude and carry out our contracts. Purposes for use include:

  • to provide you with information about our programme and its access conditions;
  • to assist you and respond to your queries;
  • to check if you meet the access conditions.

   b) To defend our legitimate interests

Any organisation must process a certain volume of data in order to be able to function internally. This is no different for and its partners. The personal data enumerated below may be photocopied, digitized, transferred internally from one service to another, and lastly be archived for 3 years.

Certain data may be used for purely statistical purposes, but, having been completely anonymized, they will no longer be personal data.

   c) To respect your decision when we ask for your consent for a particular type of processing

In certain cases, your consent is required in order for us to be allowed to process your data. This is the case, for example, when we process your data for purposes other than those described in this section 3. We shall then inform you and ask for your consent.

3. With whom do we share your personal data?

In order to carry out our public service assignment, we share your personal data exclusively with:

  • the officials in the Communications department and the External Assignments department of who require these data to carry out their tasks;
  • the officials in the Legal department who must process your data if legal advice is requested;
  • the officials in the complaints department who must deal with what problems you may encounter;
  • the lawyers in the framework of specific legal advice.

4. For how long do we store your personal data?

We store your data for a period of 2 years from the date when the last service was provided by IRISPHERE. For example: if you stop collaborating with the IRISPHERE platform on 31 December 2018, your data will automatically be erased by 1 January 2021.

The preceding paragraph shall not supersede the provisions in section 5 of this Statement (see below).

5. What are your rights and how can you exercise them?

In accordance with the GDPR, you possess several rights, to wit:

  • Right of access: you shall have the right to obtain information about the processing of your personal data as well as a copy of these personal data.
  • Right to rectification: if you find your personal data to be incorrect or incomplete, you shall have the right to demand that these personal data be modified accordingly.
  • Right to erasure: you shall have the right to demand that your personal data be erased within the limits of our legal record-keeping obligations.
  • Right to restriction of processing: you shall have the right to demand that the processing of your personal data be restricted.
  • Right to object: you shall have the right to object to processing of your personal data on grounds relating to your particular situation.
  • Right to withdraw consent: if you have consented to processing of your personal data, you shall have the right to withdraw this consent at any time.
  • Right to data portability: when this right applies, you shall have the right to receive the personal data you provided to us or, where technically feasible, to have them transferred to a third party.

6. In what manner can you take note of any modifications to this Privacy Statement?

Since technology constantly evolves, we shall regularly update the Privacy Statement you are now reading.

Please take note of the latest version of this document on our website and we shall keep you abreast of any substantial modifications via our website or our usual means of communication.

7. How can you contact us?

If you have any questions regarding the use of your personal data referred to in this Privacy Statement, you can contact our Data Protection Officer: by post at - Data Protection Officer - rue Gabrielle Petit 6, 1080 Brussels or via e-mail at This email address is being protected from spambots. You need JavaScript enabled to view it..

8. Complaints

If, despite our best efforts to ensure that your personal data are protected and that you are able to exercise your rights as described in section 5 of this Privacy Statement, you should deem it necessary to lodge a complaint with the Data Protection Authority, you can do so by writing to the following address:

Data Protection Authority
Rue de la Presse 35 in 1000 Brussels
or to
This email address is being protected from spambots. You need JavaScript enabled to view it.