Privacy charter

1. General warning

DANDOY respects the privacy of its Users in accordance with Article 3 of the General Conditions of Use.

DANDOY processes the personal data transmitted to it in accordance with the legislation in force, and in particular with the Act of 8 December 1992 on the protection of privacy and Regulation (EU) n° 2016/679 of 27 April 2016 (General Data Protection Regulation) ("GDPR").

Access to the Website implies full and unreserved acceptance by the internet user of this Privacy Charter (hereinafter, the "Charter"), as well as its General Conditions of Use.

The Member acknowledges having read the information below and authorizes DANDOY to process, in accordance with what is specified below, the personal data he communicates in the context of the use of the Website.

DANDOY reserves the right to modify or complete the Charter and to update it at any time with prior written information to Members.

This Privacy Charter is valid for all pages hosted on the Website and for registrations of this Website. It does not apply to pages hosted by third parties to which DANDOY may refer and whose privacy policies may differ. DANDOY cannot therefore be held responsible for any data processing on these third party websites.

2. Data controller

Access to the delivery service of the Website requires the communication of certain personal data, such as surname, first name, postal address, email address, etc.

The data controller of this data is the company BISCUITERIE DANDOY SA, whose head office is located at 31 Rue au Beurre in 1000 Brussels (Belgium), listed in the Crossroads Bank of Enterprises under the number 0441.923.189. Any questions or requests regarding the processing of this data may be addressed to the following address:

DANDOY undertakes to use its best efforts to ensure the security and protection of the confidentiality of the Member's personal data, in particular to prevent it from being distorted, damaged or communicated to unauthorized third parties. DANDOY undertakes to enforce the most strict confidentiality and security in the processes of processing, storing and safeguarding of the Member's personal data by any technical provider acting as a subcontractor, in accordance with the rules of art and in strict compliance with the applicable legislation, including by having recourse to certified/guaranteed suppliers in accordance with the General Data Protection Regulation ("GDPR").

Subject to these reservations and for the remainder, DANDOY cannot be held responsible for the data hosted by third party companies or solutions that it uses, such as ………………………; which remain subject to their respective general conditions and privacy policies. All of DANDOY's third party suppliers are visible on the Website at the following link:

3. Collected information

3.1. Data that are transmitted to DANDOY by the active intervention of the Member

By completing the forms provided for this purpose when registering as a Member or once registered, the Member allows DANDOY to record and store the following information for the purposes mentioned in point 4:

  • identification data, such as user name, first and last name, gender, email address, date of birth and physical contact details;
  • billing information;
  • communications transmitted through the Website, such as messages sent to Members;
  • communications addressed to DANDOY;
  • additional information asked by DANDOY to the Member for identification purposes, or if DANDOY suspects the Member to violate any provision of this Charter;
  • any other information voluntarily transmitted to DANDOY by the Member for a specific purpose.

3.2. Data that is automatically transmitted to DANDOY when consulting the Website

3.2.1. "Cookies"

In order to facilitate navigation on the Website as well as to optimize technical management, the Website may use "cookies".

A "cookie" is a small file containing information saved by a Website on the computer or through an application on the Member's smartphone. This "cookie" can be retrieved during a subsequent visit to the same application or Website. The "cookie" cannot be read by another Website than the one that created it. The Website uses "cookies" for the purposes of proper administration of the Website, in particular to record the Member's browsing preferences, or to obtain information relating to the consulted web pages and dates and times of consultation.

Most "cookies" only function during a session or visit. It is also possible for the Member to configure his browser in order to inform him whenever creating a "cookie" or to prevent their registration, individually or not. Disabling cookies may however prevent access to certain parts of the Website or can make access more difficult.

Subject to the prior consent of the Member, the Website may also allow the use of third party cookies, such as those described below.

3.2.2. The information recorded on the consulted servers

When the Member accesses the Website, the consulted servers automatically record certain data that are not made publicly visible on the Website, such as the type of domain with which the Member connects to the Internet, the IP address assigned to the Member (when connected), the date and time of access to the Website and other traffic data, location data or other data relating to the communication, the pages viewed, the type of browser used, the platform and/or the operating system used, the search engine as well as the keywords used to find the Website, ...

However, no nominative data allowing the Member to be identified is collected through these records. This information is kept exclusively for statistical purposes and to improve the Website.

The Website also uses "Google Analytics" which analyses the activity of the Website. For these purposes, Google collects information related to web traffic and the number of visitors. This tool allows DANDOY to measure the performance of the Website in terms of navigation and to consolidate the activity reports and other services.

4. Purposes of the processing

4.1. General purposes

Without prejudice to what has been specified in point 3.2. regarding the automatically transmitted data, the Website collects, stores and uses the personal data of its Members for the following purposes:

  • to establish, carry out and manage the contractual relationship with the Member;
  • to analyze, adapt and improve DANDOY's services, content or advertising;
  • to allow the Member to receive emails concerning the organization of the execution of the Service;
  • to facilitate the availability and use of the Website;
  • to respond to Members' requests for information;
  • to inform them about the evolution of the Website and its features;
  • to contact them in the course of operating the Website;
  • for any other purpose for which the Member has given its express prior consent.

4.2. Communication to third parties

The personal data, within the limits of the provisions of this article, are not intended to be communicated to third parties other than:

  • Third party tools expressly used by DANDOY;
  • Persons whose intervention is necessary for the proper performance of the contract or to achieve one of the purposes mentioned in this Charter;
  • The competent public authorities where required by law.

4.3. Transfer to a non-European Union country

DANDOY does not transfer data to a country that is not a member of the European Union unless that country ensures an adequate level of protection within the meaning of legislation on privacy protection, or within the limits of this legislation, for instance by ensuring the protection of data through appropriate contractual provisions.

4.4. Direct marketing

DANDOY considers personal data to be confidential information and will not disclose it to third parties under conditions other than those specified in this Charter or under the conditions required by law. This data will not be used for direct marketing purposes for products or services other than those to which the Member has already subscribed, unless the Member has given his explicit prior consent by ticking the boxes provided for this purpose ("opt-in").

When the Member has given his consent for the use of this information for direct marketing purposes, he retains the right to object at any time, upon request and free of charge, to such use. To do so, the Member simply sends his request to the following email address:

5. Security

In order to guarantee optimal and maximum security, DANDOY uses secure services that meet high security standards, in particular by using the "HTTPS" protocol. All Members' accounts are protected by encryption, as a security system used for internal and external connections, so that data cannot be sent or received as readable text.

In particular, DANDOY has implemented security policies in order for the servers hosting the processed personal data to prevent, to the possible extent:

  • unauthorized access or modifications of this data;
  • the improper use or disclosure of this data;
  • the unlawful destruction or accidental loss of this data.

The details of all measures applicable by DANDOY in terms of security are available on the Website under the "Security" section (at the following link: …………………………………).

Employees of DANDOY who have access to these data are subject to a strict confidentiality obligation.

However, DANDOY shall not be held liable in any way for any misuse of this data by a third party despite the security measures adopted.

Offences against the confidentiality, integrity and availability of computer systems and data stored, processed or transmitted by these systems, or the attempt to commit any of these offenses, are punished by imprisonment of three months to five years and a fine of twenty-six euros to two hundred thousand euros or by one of those penalties only.

6. Storage period

DANDOY will normally store the personal data of its Members for the duration necessary for registration as a Member and throughout the duration of the registration. DANDOY may also continue to store personal data concerning the unsubscribed Member, including any correspondence or request for assistance addressed to DANDOY, in order to respond to any questions or complaints addressed to it after unsubscription, and to comply with all applicable laws.

7. Rights of the data subject

By respecting the principle of transparency and general information, DANDOY undertakes that no data will be collected without the Member's knowledge.

The Member may at any time have access to his personal data and rectify it on the Website by using his user name and password, as well as he may request a copy in a clear and readable format as part of his right to portability of his data.

The Member may request, free of charge, that all his personal data, with the exception of those that DANDOY would be legally required to keep, be corrected and, if necessary, request the deletion from DANDOY's database by sending a written request, accompanied by a copy of his identity card or passport, at the following email address: (or at the address of DANDOY – 31 Rue au Beurre, 1000 Brussels). DANDOY will then take the necessary steps to satisfy this request as soon as possible.

For more information on this Charter and to know the content of the personal data stored, any person can contact DANDOY via the following email address:

8. Note concerning minors

Persons under 18 years of age and persons not having full legal capacity are not authorized to use the Website and may not communicate their personal data to DANDOY, which disclaims any liability in this regard.