Privacy Policy

Your data,
your rights.

RGPD / GDPR — Regulation (EU) 2016/679 Last updated: April 2026
01

Data Controller

Within the meaning of Regulation (EU) 2016/679 (GDPR), the data controller for the website https://thelis.be is:

Thelis

Registered office: Rue des Salamandres 2, 5100 Naninne, Belgium
Enterprise number (CBE): BE0893.178.572
Phone: +32(0)81 40 00 37
Email: info@thelis.be

Thelis is committed to protecting the privacy of all individuals who interact with its website and to processing personal data in full compliance with applicable law.

02

Data We Collect

Thelis may collect the following categories of personal data:

Contact form data

  • Full name;
  • Email address;
  • Company name (optional);
  • Engineering domain of interest (optional);
  • Message content.

Navigation data (analytics)

  • IP address (anonymised);
  • Browser type and version;
  • Pages visited and time spent;
  • Referring URL.

Thelis does not collect sensitive data (health, political opinions, biometric data, etc.) through this website.

03

Legal Basis for Processing

All data processing carried out by Thelis rests on one of the following legal bases under Article 6 GDPR:

Processing activity Legal basis
Responding to contact form inquiries Legitimate interest (Art. 6(1)(f)) — following up on a business inquiry
Website analytics Consent (Art. 6(1)(a)) — collected via cookie banner (Complianz)
Legal and contractual obligations Legal obligation (Art. 6(1)(c))
04

How We Use Your Data

Personal data collected through this website is used exclusively for the following purposes:

  • Responding to your inquiries and engaging in pre-contractual discussions;
  • Managing business relationships with potential and existing clients;
  • Improving the website's content, performance, and user experience;
  • Complying with legal and regulatory obligations.

Thelis will never sell, rent, or trade your personal data to third parties for commercial purposes.

05

Data Retention

Personal data is retained only for as long as necessary to fulfil the purpose for which it was collected:

Data category Retention period
Contact form submissions 3 years from the date of last contact
Website analytics data 13 months from collection
Legal / accounting records 7 years as required by Belgian law

At the end of the applicable retention period, data is securely deleted or anonymised.

06

Data Sharing & Third Parties

Thelis does not share personal data with third parties except in the following circumstances:

Technical service providers (processors)

Thelis may use trusted technical subprocessors to operate its infrastructure and website. These parties act solely on Thelis's documented instructions and are bound by data processing agreements compliant with GDPR Article 28:

  • Web hosting provider — for server and file storage;
  • Analytics platform — for anonymised traffic measurement (subject to cookie consent);
  • Email delivery service — for routing contact form messages.

Legal obligation

Thelis may disclose data to competent authorities when required by law or in response to a lawful request (e.g. court order, regulatory inquiry).

07

Your Rights

Under the GDPR, you have the following rights regarding your personal data. To exercise any of these rights, contact us at info@thelis.be. We will respond within 30 days.

Art. 15 GDPR

Right of Access

Obtain a copy of the personal data we hold about you and information on how it is processed.

Art. 16 GDPR

Right to Rectification

Request correction of inaccurate or incomplete personal data held by Thelis.

Art. 17 GDPR

Right to Erasure

Request deletion of your data when it is no longer necessary or when you withdraw consent.

Art. 20 GDPR

Right to Portability

Receive your data in a structured, machine-readable format and transfer it to another controller.

Art. 18 GDPR

Right to Restriction

Limit how your data is processed while a dispute or verification is pending.

Art. 21 GDPR

Right to Object

Object to processing based on legitimate interests, including direct marketing.

APD
Right to lodge a complaint

You have the right to file a complaint with the Belgian Data Protection Authority (Autorité de Protection des Données): autoriteprotectiondonnees.be

08

Cookies

The Thelis website uses cookies and similar tracking technologies to ensure the proper functioning of the site and, with your consent, to measure audience analytics.

Cookie management is handled by the Complianz consent platform. A detailed cookie policy — including a list of all cookies used, their purpose, and their retention period — is available via the cookie banner and the dedicated Cookie Policy page accessible on this site.

You can withdraw or adjust your cookie consent at any time by clicking the "Cookie settings" link in the footer of this website.

09

International Data Transfers

Thelis processes and stores personal data primarily within the European Union. Where a technical subprocessor operates servers outside the EU/EEA, Thelis ensures appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission;
  • Adequacy decisions recognised by the European Commission.

Details of any such transfers and the applicable safeguards are available upon request at info@thelis.be.

10

Security

Thelis implements appropriate technical and organisational security measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

These measures include, where applicable:

  • TLS/HTTPS encryption for all data in transit;
  • Access controls limiting data access to authorised personnel only;
  • Regular security assessments of our infrastructure;
  • Data minimisation — we only collect what is strictly necessary.

In the event of a personal data breach likely to result in a risk to your rights and freedoms, Thelis will notify the relevant supervisory authority within 72 hours and, where required, affected individuals without undue delay.

11

Policy Updates

Thelis reserves the right to update this Privacy Policy at any time to reflect changes in our practices, legal requirements, or operational needs.

The date of the most recent revision is indicated at the top of this page. We encourage you to review this policy periodically. Continued use of the website after changes are posted constitutes your acceptance of the updated policy.

For material changes affecting how we use your data, we will make reasonable efforts to notify you (e.g. via a notice on the website).

12

Contact

For any question, request, or concern regarding this Privacy Policy or the processing of your personal data, please contact us:

Company Thelis
Address Rue des Salamandres 2
5100 Naninne, Belgium
Phone +32(0)81 40 00 37
Email info@thelis.be

We aim to respond to all data-related requests within 30 calendar days of receipt, as required by Article 12 GDPR. In complex cases, this period may be extended by a further two months — we will notify you accordingly.