Handling of Personal Data and Privacy Policy

Yellow Window treats personal information collected in accordance with the Belgian and European legislation (see below for the references). The data protection and privacy policy covers two main activities described below: data linked to visiting the Yellow Window websites and performing research activities involving individuals.

Website visits

When you visit our websites, a small amount of information is collected. This information is not collected to be associated with identified individuals, but could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (for example a good order, error) and other parameters related to the operating system and the user’s computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning.

Data provided voluntarily by the user

The personal data provided by users to Yellow Window – through the contact form – are used solely for the purpose of providing an answer and are disclosed to third parties only if this is necessary for that purpose.

The storage period of such data is defined by the cancellation request criterion for information provided voluntarily by the user; regarding technical data managed by the site, such as cookies, the period is defined by the technical characteristics of the cookies.

Treatment modalities

The treatment of personal data takes place through manual, computerized tools suitable to ensure the security and confidentiality of the data themselves and in any case in compliance with the appropriate security measures as required by law [art. 32]. Temporarily gathered personal data in a database may be treated internally by Yellow Window by means of manual or IT tools for the necessary period of time and only for the purpose for which they were collated. Security measures are observed to prevent the loss, illegal or improper use of and unauthorized access to data.


In the context of research projects, Yellow Window, conducts all projects’ activities according to and in compliance with GDPR of 25 May 2018 and the EU Directive 2016/679.

All personal data collection and processing are:

  • carried out according to EU and national legislation;
  • processed lawfully, fairly and in a transparent manner in relation to individuals. Consent forms are developed for each project and type of data collection in the case of interviews and/or focus groups discussions;
  • collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes;
  • adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
  • accurate and, where necessary, kept up-to-date;
  • kept in a form which permits identification of data subjects for no longer than is necessary for the purpose for which the personal data are processed;
  • processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures
Re-use In case of potential re-use of previously collected personal data, confirmation of the consent of the data subjects, will be requested.

Personal data are stored securely using modern software that are kept up-to-date.

Access to personal data is limited to personnel who need access (Project Directors, Team members, Administrative Personnel).

Non-anonymized data, key tables for pseudonymized data and anonymized data are stored on secure server solutions and password-protected.

Passwords are not exchanged via e-mail but in personal communication.

The storage solutions for personal raw-data, pseudonymized and anonymized data include backup routines to prevent data loss.

When personal data are deleted this is done safely such that the data are irrecoverable.

Relevant legislation and legal rights

Law of 30 July 2018 on the protection of natural persons with regard to the processing of personal data and the EU Directive 2016/679.

People whose personal data refer can exercise, at any time, the rights provided for by the law, by sending an appropriate written request. In particular, the parties may legitimately ask: a) the updating, rectification or, when there is interest, the integration of Treatment of personal data

Requests can be addressed to:

  • e-mail: mail@yellowwindow.com
  • Telephone: +32-3-2035300
  • Post: Yellow Window NV – Mechelsesteenweg 64 box 701 – B2018 Antwerpen