Privacy policy

Participants may apply for the Event through this website. If their application meets eligibility criteria and if seats remain available for the Event, they will be invited to register to the Event.

The Event is organized in two parts: the main event, a full day cyber security experience, and a follow-up event organized 6 to 12 weeks later.

We collect personal identification information from Users when Users register on the site. Users may be asked for their first and last name, email address, phone number, profession, employer information, province of residence, and year of birth. This information enables CSC to process applications to register to the Event.

Users may, however, visit our Site anonymously. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users may refuse to supply personal identification information but may not register to the Event in that case. If they register, all information captured will be subject to this agreement.

We may collect non-personal identification information about users whenever they interact with our Site. This information may include the browser name, type of computer, and technical details about users' means of connection to our Site, such as the operating system, utilized Internet service providers, and other similar data. This information is collected to ensure the maintenance of the Site.

Our Site may use "cookies" to enhance the user experience. These cookies contain information such as a visitor's language preference, so they do not have to enter this information again the next time they visit the same website. We also utilize Google Analytics, which issues cookies to gather visitor statistics.

CSC informs visitors of its websites about the use of cookies. If you do not want a website to place cookies on your computer, you can adjust your browser settings accordingly. However, please note that if you do so, some parts of the Site may not function properly, and you may not be able to access certain parts of the Event.

Collected information may be used in the following ways:

• To personalize the user experience
  We may use aggregated information to understand how our users, as a group, utilize the services and resources provided on our Site.

• To send periodic emails related to the Event
  We may use email addresses to send users information and updates regarding their participation in the Event. This does not constitute direct marketing but is an integral part of the Event. Email addresses may also be used to respond to inquiries, questions, and other requests.

• For analysis and reporting during and after the Event
  In collaboration with Katholieke Universiteit Leuven (KUL), CSC is conducting a study on the impact of awareness initiatives, such as this Event, on the cybersecurity resilience of Belgian small and medium-sized businesses.

Additionally, as this Event is funded by federal and European subsidies, CSC is required to report on the socio-economic profile of participants.

To this end, we may use the collected information to define participants' socio-economic profiles; however, this information will be anonymized.

We adopt appropriate technical, security, and organizational measures to protect personal data from accidental or unauthorized destruction, accidental loss, alteration, access, and any other unauthorized processing. For example, data exchanges between the Site and its users occur over an TLS-secured communication channel and are encrypted and protected with digital signatures.

Your data will be retained until 30/09/2026 to enable CSC to fulfill its legal reporting obligations to the federal government and the European Commission. As indicated above, the reported data will be anonymized. After that date, your personal data will be removed from our systems.

Users may find advertising or other content on our Site that links to the websites and services of our partners, suppliers, advertisers, sponsors, licensors, and other third parties. We do not control the content or links that appear on these sites and are not responsible for the practices employed by websites linked to or from our Site.

Additionally, these sites and services, including their content and links, may change constantly. They may also have their own privacy policies and customer service policies. Browsing and interacting with any other website, including those linked to our Site, is subject to that website's own terms and policies.

CSC has the discretion to update this privacy policy at any time. When we do, we will revise the updated date at the top of this page. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.

By using this Site, you signify your acceptance of this policy. If you do not agree with this policy, please do not use our Site. Your continued use of the Site following any changes to this policy will be deemed as acceptance of those changes.

You have the right to:

• Request access to your personal data (commonly known as a “data subject access request”). This allows you to receive a copy of the personal data we hold about you and verify that we are lawfully processing it.

• Request correction of the personal data we hold about you. This enables you to correct any incomplete or inaccurate data, although we may need to verify the accuracy of the new data you provide.

• Request erasure of your personal data. You can ask us to delete or remove personal data when there is no valid reason for us to continue processing it. You also have the right to request erasure if you have successfully exercised your right to object to processing (see below), if we have processed your information unlawfully, or if we are required to erase your data to comply with legal obligations. However, we may not always be able to fulfill your request for legal reasons, which will be communicated to you if applicable.

• Object to the processing of your personal data where we rely on a legitimate interest (or that of a third party) and you believe that processing impacts your fundamental rights and freedoms.

• Request restriction of processing of your personal data. This allows you to ask us to suspend processing in the following situations:
  (a) if you want us to verify the data’s accuracy;
  (b) if our use of the data is unlawful, but you do not want it erased;
  (c) if you need us to retain the data even though we no longer require it, as you need it to establish, exercise, or defend legal claims; or
  (d) if you have objected to our use of your data, but we need to verify whether we have overriding legitimate grounds to continue using it.

• Withdraw consent at any time where we rely on consent to process your personal data. However, this will not affect the lawfulness of processing carried out before your withdrawal. If you withdraw consent, we may no longer be able to provide certain services. We will inform you if this is the case at the time of withdrawal.

If you wish to exercise any of these rights, please contact us at info@cybersecuritychallenge.be.

Additionally, you have the right to lodge a complaint with the relevant supervisory authority if the processing of your personal data violates applicable law. The contact details for the Belgian Data Protection Authority are:

Data Protection Authority
Rue de la Presse / Drukpersstraat 35, 1000 Brussels
Email: contact(at)apd-gba.be
Website: https://www.gegevensbeschermingsautoriteit.be/