OONUR

Privacy Policy

We respect your privacy and process personal data in accordance with the EU GDPR and Belgian law. This policy explains what we collect, why, and how we safeguard your data.

Last updated: 19 October 2025

1) Controller & Contact

OnurConsulting (handelsnaam: Oonur) is the controller for personal data processed via this website and our services.

  • Enterprise/KBO (ondernemingsnummer): 0745582283
  • VAT (BTW): BE0745582283
  • Registered office: Hendrik Consciencelaan 28, 2500 Lier, Belgium
  • Contact: [email protected]

2) What we collect

  • Contact details you provide (name, email, company, website) via forms.
  • Business information you share during discovery, proposals, or service delivery.
  • Usage data (device, language, pages visited, referrers) from strictly necessary and performance cookies/analytics.
  • Communications such as emails or messages you send to us.

3) Purposes & legal bases

  • Contract: evaluate fit, provide proposals, perform and manage our services.
  • Legitimate interests: improve the site, safeguard security, prevent abuse, run our business.
  • Consent: optional marketing or non-essential cookies (where used).
  • Legal obligations: tax, accounting, and regulatory compliance.

4) Cookies & analytics

We use essential cookies and limited performance analytics. If we introduce additional categories, we will present a consent banner and allow you to manage preferences.

5) Processors & sharing

Personal data comes directly from you or from your use of our site. We share data only with service providers acting as processors under written contracts—for example hosting/CDN, security, form handling, analytics, and email. We do not sell personal data.

6) International transfers

If data is transferred outside the EEA, we rely on appropriate safeguards (e.g., European Commission Standard Contractual Clauses) and risk assessments where required.

7) Retention

We keep data only as long as necessary for the purposes above: enquiries typically up to 24 months; client and invoicing records up to 7 years to meet legal/accounting requirements.

8) Your rights

Under the GDPR you may request: access, rectification, erasure, restriction, objection (including to profiling based on legitimate interests), and data portability. Where processing relies on consent, you may withdraw it at any time without affecting prior processing.

To exercise your rights, email [email protected]. You also have the right to lodge a complaint with the Belgian Data Protection Authority (GBA/APD).

9) Security

We apply technical and organisational measures appropriate to the risk, including encryption in transit, access control, least-privilege for staff and vendors, and periodic reviews of processors.

10) Children

Our services are intended for professionals and are not directed to children under 16. We do not knowingly collect their data.

11) Changes

We may update this policy to reflect changes in our processing. Material changes will be signposted on this page; continued use after an update signifies acceptance.

12) Contact

Questions about this policy or your data: [email protected].