The “Commission des Psychologues-Psychologencommissie » (Commission of Psychologists), hereinafter abbreviated as « Compsy », is the independent federal public government body competent for title and ethics of all the psychologists in Belgium, regardless of their nationality, professional context or status, pursuant to the Act of 8 November 1993 for the protection of the title of psychologist.
Compsy, whose offices are located Avenue des Arts/Kunstlaan, 3, 1210 Brussels, and registered with the Crossroads Bank for Enterprises under the number 0267.314.083, values very much the protection of the personal data of the users of its website, as well as, in general, those of its partners and contacts.
Pursuant to the European General Data Protection Regulation n° 2016/679 (GDPR), Compsy acts generally as an autonomous “data controller” of the personal data that it collects and processes in the framework of its activities. However, in some cases, it may happen that Compsy acts as a “data processor” and/or a “joint data controller” with another organization, in which case specific and additional information is transmitted to the data subjects concerned.
In any case, Compsy makes every effort to ensure that appropriate technical and organizational measures are taken to protect these data.
1. What data are we talking about?
The personal data that are collected and processed by Compsy can vary depending on the situation, such as, but not limited to, the last name, first name, profession, place of residence, contact details, images, cookies, data regarding the consultation of the website and/or complaints processed by the competent disciplinary authorities within Compsy, as well as any and all other data that would turn out to be required for the missions of Compsy.
Most of the time, those data originate directly from the data subjects, either via the corresponding forms or via social media or other (electronic) means of communication that are used.
2. For which purposes?
The processing of personal data is required to allow Compsy, depending on the case at stake, as a data controller, to :
- Follow up on the contact and/or information requests,
- Send out the newsletter and/or any other information related to Compsy’s activities as long as the data subject does not object thereto,
- Manage security of, access to and the running of the Compsy’s premises,
- Carry out statistical analysis,
- Deal with complaints falling within the competence of the disciplinary authorities, including their follow-up,
- Perform the contract to which the person concerned is a party or the precontractual measures taken at his/her request. In that case, the corresponding data will be kept during the whole performance of the contract as well as during the applicable statutory limitation periods.
Without such personal data, Compsy would not be able to achieve the abovementioned purposes. Furthermore, except for the abovementioned specific durations, these data will not be kept longer than necessary.
The processing of such data relies therefore, depending on the case, on the performance of the corresponding contract, the consent of the data subject, the compliance with legal obligations and/or the pursuit of legitimate interests of Compsy and/or of a third party that, in Compsy’s opinion, also benefit to the data subjects.
3. What rights do data subjects have?
Each data subject can exercise, free of charge, his/her legal rights to access and correct his/her personal data. It is also possible to request the correction, or even erasure of the data that would be inaccurate, incomplete or irrelevant, or even the limitation of the processing if the legal requirements are fulfilled. Likewise, it is possible to object to the processing of personal data for the purpose of “direct marketing”. Finally, in some cases, it is possible to receive the personal data that have been provided to Compsy in a structured format, commonly used and machine-readable, and to transmit such data to another controller.
In order to exercise any of these rights, a written, signed and dated application with a copy of proof of identity must be submitted by simple letter to Compsy or by e-mail to the following address email@example.com or to its data protection officer (DPO) Nicolas Roland, Boulevard du Souverain/Vorstlaan, 36/8, 1170 Brussels, firstname.lastname@example.org.
Finally, as the case may be, each data subject has the right to lodge a claim with the Belgian Data Protection Authority, Rue de la presse/Drukpersstraat, 35 à 1000 Brussels, www.autoriteprotectiondonnees.be.
4. To whom such data can be transmitted?
Personal data are, depending on the case, transmitted to :
- The data subjects themselves,
- The partners of Compsy in the cases specified to the data subjects,
- The public, tax and social administrations (Belgian or foreign), to the extent necessary for compliance with Compsy’s legal, tax and social obligations, and
- The processors and other professional contacts of Compsy, like an IT service provider, to the extent necessary for the performance of their respective tasks.
In general, the data concerned are not transferred outside a member state of the European Union. However, if that were the case, Compsy would ensure putting in place appropriate safeguards about which data subjects can require additional information.
Last update : August 2022