Visit Leuven attaches great importance to protecting your personal data and respecting your privacy. We do everything we possibly can to safeguard the same, and therefore handle personal data with all due care.
Visit Leuven complies with all applicable laws and regulations, including the General Data Protection Regulation (GDPR)
The personal data you provide via this website are processed by Visit Leuven, Naamsestraat 3, 3000 Leuven.
What data do we collect?
Will my data be forwarded to others?
We do not forward your data to others, unless this is required for the service or is mandated by law. We conclude agreements with organisations e.g. with the company that creates our website, that process your data on behalf of Visit Leuven. Through the aforesaid agreements, we ensure that they are also bound to handle your data securely and confidentially. However, Visit Leuven continues to remain responsible for the processing of your personal data.
Whenever you order tickets or articles online via visitleuven.be, you create a profile. This profile contains at least your name, your e-mail address and your address. You manage your profile with a password chosen by you.
Your data will only be used in order to properly process your order with Visit Leuven, and to create anonymised statistics. If you opted to have articles sent, your address details will be provided to the city service that will be sending the articles. These details are not stored by that service.
Your data will be stored in a database that is shared with our partners Stad Leuven - M-Museum, Stad Leuven - Leuven 30CC, KULeuven Universiteitsbibliotheek and EAP bvba – Abdij van Park heritage site. You can also use your profile to order tickets via the websites of these partners. The aforesaid partners are bound to maintain confidentiality and are never permitted to use your personal data unless you also place an order with them and/or have explicitly consented to the receipt of their newsletters in your profile.
Visit Leuven also provides ticket sales for other partners in Leuven. Your details will only be passed on to these partners in exceptional cases (e.g. cancellation of an event). We have clear processing agreements with them to expressly record these agreements. They are not permitted to store your data at any time.
also have the necessary security measures in place, to prevent the loss, misuse or alteration of personal data.
You can access and manage your personal data in the database using your login with password. In case you have any questions, or want to remove your data from the database, you may contact us at email@example.com.
Hotel reservation tool
The information provided by a guest while making a reservation is forwarded to the accommodation department. This information will then be owned by them. These data are stored for 10 years, but not used. They may be deleted at any time at the guest's request. The guest must contact the accommodation department. A processing agreement was concluded with Stardekk that manages the system for us.
Can Visit Leuven use my photo?
Did we take a portrait photo of you? If so, we first request permission to use it. You may revoke that permission at any time. We do not need permission to use photos of public persons (e.g. politicians), a crowd of people, or persons in public places for neutral messages.
How does Visit Leuven handle Social Media?
Have you reported a problem or asked us a question on social media? We then use your personal data only to provide you with further assistance.
In case of contests, we only use your personal data to contact you if you win. The conditions of each contest shall be found in the contest rules. We will delete your data after the contest.
Visit Leuven has no control over the manner in which these external platforms handle your personal data. Your data may well be transferred outside the EU. Read the privacy policies of these platforms.
How can I report a data breach?
A data breach is said to exist if personal data are:
- Stolen or lost (e.g. USB stick lost in the train)
- Not correctly processed (e.g. stored without the knowledge or consent of the data subject)
- Is viewed or edited by persons without authorisation to do so
- Stored longer than necessary or agreed, without the consent of the data subject
Do you think there is a data breach in the stad? Report it to us.
If you have a complaint about the processing of your personal data, you may contact us via firstname.lastname@example.org.
You also have the right to lodge a complaint with the Data Protection Authority.