Introduction

This Privacy Policy explains how B.A. Fiduciaire S.A.R.L (“we”, “us”, “our”) collects, uses, discloses, and protects your personal information in compliance with the General Data Protection Regulation (GDPR) and other applicable laws. By using our services, you agree to the collection and use of information in accordance with this policy.

Table of Contents

Data Controller

B.A. Fiduciaire S.A.R.L is the data controller responsible for your personal data.

Contact Information

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

  • Email: [email protected]
  • Phone: +352 471 634 – 1
  • Address: 17, rue Antoine Jans, L-1820 Luxembourg

We process your personal data based on the following legal grounds:

  • Consent: When you have given clear consent for us to process your personal data for specific purposes (e.g., responding to inquiries).
  • Contractual Necessity: Processing is necessary for the performance of a contract with you or to take steps to enter into a contract.
  • Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject.
  • Legitimate Interests: Processing is necessary for our legitimate interests, provided your interests and fundamental rights do not override those interests.

Data Collection

We collect and process personal data when you:

  • Contact Us: Via email, phone, or through our website contact forms. Please note that our site does not store your form submission; it sends your message directly to us via email.
  • Use Our Services: Such as requesting accounting or consulting services.
  • Visit Our Website: Through cookies and similar technologies (see Cookies and Similar Technologies).

The types of personal data we may collect include:

  • Contact Information: Name, email address, phone number, and postal address.
  • Professional Information: Company name, position, and other details relevant to our services.
  • Technical Data: IP address, browser type, and browsing behavior collected via Google Analytics through Site Kit by Google.

Purpose of Data Processing

We use your personal data for the following purposes:

  • Service Delivery: To provide accounting, auditing, and consulting services.
  • Communication: To respond to your inquiries and provide customer support via email or phone.
  • Compliance: To comply with legal obligations, such as anti-money laundering regulations.
  • Website Improvement: To analyze website traffic and enhance user experience using Google Analytics.
  • Security and Performance: To protect our website and enhance its performance using services like Cloudflare.

Data Sharing and Disclosure

We do not sell or rent your personal data. We may share your information with:

  • Service Providers: Trusted third parties who assist us in operating our website and providing services, under strict confidentiality agreements. This includes:
    • Cloudflare: For website security and performance enhancements.
    • 352 digital: Our hosting provider located in Luxembourg.
  • Email Services: Your messages sent via the contact form are delivered to us through our email system hosted in Luxembourg.
  • Legal Obligations: Authorities or regulatory bodies when required by law or to protect our rights.

International Data Transfers

Your personal data is stored and processed in Luxembourg. However, services like Cloudflare may process data outside the European Economic Area (EEA). In such cases, we ensure adequate protection is provided by using standard contractual clauses approved by the European Commission or by ensuring the recipient adheres to GDPR requirements.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: Secure Sockets Layer (SSL) technology to encrypt data transmitted over the internet.
  • Access Controls: Restricted access to personal data on a need-to-know basis.
  • Secure Hosting: Our website and email systems are hosted by 352 digital in Luxembourg, ensuring high-security standards.
  • Security Tools: Use of security services like Cloudflare to protect against cyber threats.

Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. Retention periods are determined based on:

  • Legal Requirements: Compliance with Luxembourg laws and regulations.
  • Business Needs: Operational considerations for providing services.

Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of Access: Obtain confirmation as to whether or not your personal data is being processed and access to your personal data.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data under certain conditions.
  • Right to Restrict Processing: Request restriction of processing your personal data under specific circumstances.
  • Right to Data Portability: Receive your personal data in a structured, commonly used format.
  • Right to Object: Object to processing of your personal data on grounds relating to your particular situation.
  • Right to Withdraw Consent: Withdraw your consent at any time where we are relying on consent to process your personal data.

To exercise any of these rights, please contact us at [email protected].

Children’s Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If you believe we have inadvertently collected such data, please contact us to delete it.

Cookies and Similar Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies are small data files stored on your device. For detailed information on the cookies we use and your choices regarding cookies, please visit our Cookie Policy page.

Our website may contain links to external websites. We are not responsible for the privacy practices of these websites. We encourage you to review their privacy policies.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Changes will be posted on this page with an updated effective date. You are encouraged to review this policy periodically.

Complaints

If you have any concerns about our use of your personal data, you have the right to lodge a complaint with the National Commission for Data Protection (CNPD) in Luxembourg:

If you have any questions or need further clarification about this Privacy Policy, please do not hesitate to contact us.