Privacy Policy

Last updated: December 26, 2024

1. Introduction

Welcome to Diaeta's Privacy Policy. This document explains how we collect, use, and protect your personal information when you visit our website https://diaeta.be or use our services.

Diaeta (operated by Pierre Abou-Zeid) is committed to protecting your privacy and ensuring the security of your personal data in accordance with the General Data Protection Regulation (GDPR) and Belgian data protection laws.

2. Information We Collect

2.1 Information You Provide

• Contact Information: Name, email address, phone number when you use our contact form
• Appointment Information: Personal details, medical history, dietary preferences when booking consultations
• Communication Data: Messages and correspondence you send to us

2.2 Automatically Collected Information

• Technical Data: IP address, browser type, operating system, device information
• Usage Data: Pages visited, time spent on site, navigation patterns
• Cookies: Small text files stored on your device (see our Cookie Policy for details)

3. How We Use Your Information

We use your personal information for the following purposes:

• To provide and maintain our dietetic services
• To communicate with you about appointments and consultations
• To respond to your inquiries and provide customer support
• To improve our website and services
• To comply with legal and regulatory obligations
• To ensure the security of our services

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Consent: When you explicitly agree to the processing of your data
• Contract Performance: To fulfill our obligations under service agreements
• Legitimate Interest: To improve our services and ensure security
• Legal Obligation: To comply with applicable laws and regulations

5. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your data only in the following circumstances:

• Service Providers: With trusted third-party service providers who assist us in operating our website and providing services
• Legal Requirements: When required by law or to protect our rights and safety
• Professional Obligations: As required by our professional regulatory bodies

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of sensitive data
• Regular security assessments
• Access controls and authentication
• Staff training on data protection

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Specifically:

• Client Records: Retained for 30 years as required by Belgian healthcare regulations
• Website Analytics: Retained for 26 months
• Contact Information: Retained until you request deletion or for 3 years after last contact

8. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of Access: To request a copy of your personal data
• Right of Rectification: To correct inaccurate or incomplete data
• Right of Erasure: To request deletion of your data (subject to legal requirements)
• Right to Restrict Processing: To limit how we use your data
• Right to Data Portability: To receive your data in a structured format
• Right to Object: To object to processing based on legitimate interests
• Right to Withdraw Consent: To withdraw consent at any time

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience. For detailed information about our use of cookies, please see our Cookie Policy.

10. International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we need to transfer your data outside the EEA, we ensure appropriate safeguards are in place to protect your data.

11. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

13. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

Data Controller: Pierre Abou-Zeid
Email: pierre@diaeta.be
Address: Laudinnestraat 94A, 1602 Vlezenbeek, Belgium
Phone: +32 479 35 55 51

14. Complaints

If you believe we have not handled your personal data in accordance with this policy or applicable law, you have the right to lodge a complaint with the Belgian Data Protection Authority (Autorité de protection des données / Gegevensbeschermingsautoriteit).