PRIVACY POLICY

The Brussels Fantastic Film Festival (aka the BIFFF) is committed to respecting your privacy. We will use the information we collect in accordance with Belgian law; including the new European General Data Protection Regulation (GDPR) which entered into force on 25 May 2018.

If you have any questions after reading this privacy policy, you can contact us at: BIFFF/GDPR Rue Comtesse de Flandre/Gravin van Vlaanderenstraat 8 1020 Brussels ‐ Belgium tel: +32 2 201 17 13 E-mail: info@bifff.net Website www. bifff.net

1. The Information the BIFFF Collects

The personal data we collect about you includes:

2. The Way the BIFFF Uses Information

We use the information you provide about yourself when joining the BIFFF to complete your Profile. We do not share this information with outside parties except to the extent required by law or necessary to the running of this site. Your email, name and credit card details are not shown publicly.
We use return email addresses to answer the email we receive. Such addresses are not used for any other purpose and are not shared with outside parties. In some cases, we may have to provide your contact information:

3. Our Commitment to Data Security

To prevent unauthorised access, maintain data accuracy, and ensure the correct use of information, we have put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information we collect online.

Our employees have been informed of the importance of personal data protection. Any person and organization working for the festival can have temporary access to the data. Beforehand, they must sign an amendment to their contract in which they undertake to guarantee confidentiality and data protection.

4. Our Commitment to Children’s Privacy

Protecting the privacy of the very young is especially important. For that reason, we never collect or maintain information at our website from those we actually know are under 16, and no part of our website is structured to attract anyone under 16.

5. How You Can Access and Correct Your Information

You can access all your personally identifiable information that we collect online and maintain by visiting your Account Settings page. We use this procedure to better safeguard your information.
You can correct factual errors in your personally identifiable information by sending us a request that credibly shows error.
To protect your privacy and security, we will also take reasonable steps to verify your identity before granting access or making corrections.

6. How long your information is kept

We retain information as long as it is valid and used strictly in the course of our business in accordance with the GDPR. As mentioned below, you have the right to ask us to delete your personal data from our databases.

7. The Video Privacy Protection Act of 1988

The BIFFF adheres to The Video Privacy Protection Act of 1988.

8. How to Cancel Your Account

Contact us if you wish to have our account permanently deleted.

9. How to Contact the BIFFF

Should you have other questions or concerns about these privacy policies, send us an email. Contact information can be found on the BIFFF’s About Us page.

10. Use of Third Party Services

10.1 Google Analytics

We use Google Analytics to help us to understand how you use our site and tools, which allows us to know how to improve our products for your benefit. It follows your progress through the website, collecting anonymous data on where you have come from, which pages you visit, and how long you spend on the site. Google then stores this data in order to create reports. But don’t worry; they do not store your personal data. Google will track your IP address, and it may be transmitted to and stored by Google on servers in the United States. Google may use this information for the purpose of evaluating your use of the website, compiling reports on website activity for us, and providing other services relating to website activity and Internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. For more information on Google’s privacy policies, please visit https://policies.google.com/privacy. Google Analytics services are governed by the Google Analytics Terms of Service which can be found at: https://marketingplatform.google.com/about/analytics/terms/us/.

10.2 Intercom

We use third-party analytics services to help understand your usage of our services. In particular, we provide a limited amount of your information (such as sign-up date and some personal information like your email address) to Intercom, Inc. (“Intercom”) and utilise Intercom to collect data for analytics purposes when you visit our website or use our product. As a data processor acting on our behalf, Intercom analyses your use of our website and/or product and tracks our relationship by way of cookies and similar technologies so that we can improve our service to you. For more information on Intercom’s use of cookies, please visit https://www.intercom.com/terms-and-policies#cookie-policy. We may also use Intercom as a medium for communications, either through email, or through messages within our product(s). For more information on the privacy practices of Intercom, please visit https://www.intercom.com/terms-and-policies#privacy. Intercom’s services are governed by Intercom’s terms of use which can be found at https://www.intercom.com/terms-and-policies#terms.

10.3 Mandrill

We use Mandrill to send transactional emails, such as a welcome email, purchase receipt, or forgot password email. We provide a limited amount of your information, such as your email address, to The Rocket Science Group LLC, who operate Mailchimp and Mandrill. We utilise Mandrill to collect data for analytics purposes when you view the email. For more information on the privacy practices of Mandrill, please visit https://mailchimp.com/legal/privacy/. Mandrill’s services are governed by Mailchimp’s terms of use which can be found at https://mailchimp.com/legal/terms/.

10.4 Amazon Web Services

We use Amazon Web Services (AWS) who provide us with cloud storage solution. AWS has demonstrated compliance with a range of internationally recognised standards for content, data and infrastructure security, such as information security management system- ISO-27001, System and Organization Controls Report- SOC1/2, and The Payment Card Industry Data Security Standard; in addition, AWS has demonstrated alignment with the MPAA Content Security Best Practices and the AWS infrastructure is compliant with all applicable MPAA controls. For more information on AWS’ privacy policy please see: https://aws.amazon.com/privacy/

10.5 Stripe

We use a third party payment processor, Stripe, to process payments made to us. In connection with the processing of such payments, we do not retain any personally identifiable information or any financial information such as credit card numbers. Rather, all such information is provided directly to our third party processor, Stripe, whose use of your personal information is governed by their privacy policy, which may be viewed at https://stripe.com/nz/privacy. Stripe is certified to PCI Service Provider Level 1, the most stringent level of certification.

11. Amendment of the regulations

We reserve the right to amend these regulations to improve and update them so as to comply with the latest regulation developments.