BioAware respects your privacy. This Privacy Statement outlines your rights to privacy and our commitment to safeguarding
your personal data.
BioAware is a European corporation, with legal entities, business processes, management structures and technical systems
that cross borders. BioAware delivers software and services to private and public businesses (Customers) in Europe as well
as outside Europe. BioAware’s head office is located in Belgium and BioAware is subject to European privacy legislation,
including the General Data Protection Regulation (GDPR).
All major decisions regarding privacy in BioAware are made at a corporate level supervised by the Data Protection Officer
This Privacy Statement is available on our bio-aware.com home page and at the bottom of every BioAware related website.
This Privacy Statement applies to all business processes in BioAware and its website, domains, cloud services.
Service specific appendices will be found in the Terms of Service, data processing agreements or equivalent information
for the specific service in question. Websites of customers of BioAware that manage their website through BioloMICS are
under the responsibility of the customers alone. BioAware provides them with the latest version of the software and
ensures that the latter is up to date.
The Privacy Statement provides information about data processing carried out by BioAware when BioAware determines the
purpose and means of the processing (BioAware act as data controller). It also provides information on data processing
BioAware do on behalf of our Customers based on their instructions (the Customer as data controller and BioAware as
Personal data is information that can identify you as a person, such as name, an email address, street address or phone
number etc. Processing your personal data is necessary for us to serve our Customers. Please do not use BioAware Sites
or our services if you do not agree with how we process personal data according to this Privacy Statement.
BioAware process personal data about contact persons or software users tied to our Customers. In addition, we process
personal data about persons representing potential Customers (leads) that approach us via BioAware Sites or other channels.
Our statement in these regards is to be found in the data controller section.
We also process data on behalf of our Customers that our Customer controls. Our statement in these regards is to be found
in the data processor section.
In this Privacy Statement data subjects may also be referred to as persons or you.
When a BioAware subsidiary determines the purpose and means of processing your personal data, this company act as data
controller. This includes scenarios where BioAware collects personal data in the context of you being a representative for a
Customer or Lead, or when you are a software user.
About Customer contacts and software users
To manage our Customer relations in general and to meet our Customer commitments, BioAware needs information about you in your
role as Customer contact person or user of a service. The purposes of processing this personal data are:
The legal ground for processing personal data according to the above-listed purposes in letter a) to i) is mainly because
BioAware has a legitimate interest in processing your personal data from a business perspective in a manner that we believe
do not conflict with your privacy rights or freedoms. The legal ground for processing personal data according to the purpose
listed in letter j) is your consent.
BioAware process personal data about Leads for marketing purposes. In order to provide targeted and
relevant content to potential Customers, BioAware builds an interest profile manually based on your
expected profile as well as your response to marketing content per email. The legal grounds for such
processing is mainly your consent.
You can read more about how we create such profiles, how you can adjust the profile as well as withdraw
your consent in the sections below.
In order to monitor access to our premises, we process personal data about visitors. The processing is
based on our legitimate interest to protect our business secrets, employees, premises and you as a
visitor. You will be informed of your rights in this context when you register in our electronic
In general, BioAware collects personal data directly from you or other persons linked to our Customer.
These persons may be a manager or colleague. If the Customer you work for purchases BioAware products
or services, we may collect information about you.
us per email in order to optimise your experience of BioAware and our sites. Please see the paragraph
describing automatic data collection tools for more information on how these technologies function and
your rights in this context.
In some cases, we may also collect information about you from other sources. These sources may be
public sources or third-party social networks. BioAware will be able to combine personal data about
you obtained from one source with data obtained from another source. This gives us a complete picture
of you, which also gives us the possibility of serving you in a more relevant way with a greater degree
Automatic data collection tools
BioAware uses different digital tracking technologies to collect information about your movements on
BioAware Sites and when interacting with us.
Cookies are small text files that contain a string of characters and uniquely identifies a browser.
They are sent to a computer by website operators or third parties. Most browsers are initially set up
to accept cookies, since this is required by most website owners in order to access their sites.
general, block third party cookies or to indicate when a cookie is being sent.
If you would like to know more about cookies and how they work, please visit
easier experience. List of cookies present on a website managed by BioloMICS:
Cookies mentioned in the last point are Google analytics cookies that are IP anonymized which means
that we cannot trace single users. See below for more information.
No other cookies than the ones mentioned above are used on our websites.
Google cookies and technologies
Google Analytics: These cookies allow us to see information on user website activities including, but
not limited to page views, source and time spent on a website. The information is depersonalized and is
displayed as numbers, meaning it cannot be traced back to individuals. This will help to protect your
privacy. Using Google Analytics, we can see what content is popular on our websites.
You can prevent the information generated by the Google cookie about your use of our Sites from being
collected and processed by Google in the future by downloading and installing Google Analytics Opt-out
Browser Add-on for your current web browser. This Add-on is available at
The type of personal data that BioAware process about you may be:
As data controller, BioAware does not process sensitive personal data about you. BioAware is not reselling personal data to any third parties.
Outside BioAware Group
BioAware may share your personal data with external third parties in the following contexts:
BioAware user communities
If you make a post, comment or similar on BioAware user communities or other forums on the BioAware
website, such information can be read and used by anyone with access to such forums and used for
purposes over which neither BioAware nor you have control. BioAware is not responsible for any
information you submit on such forums or BioAware website. BioAware will not post any comment,
testimonial or similar made by you without your prior consent.
The police and other authorities may demand the handover of personal information from BioAware.
In these cases, BioAware will only hand over the data if there is a court order etc. to do so.
In connection with mergers, acquisitions or divestiture of all or parts of BioAware‘s business, the
acquiring entity, as well as its consultants, would obtain access to data managed by the BioAware
entity/entities involved and this may in some cases include personal data. In such cases, external
parties would enter into an NDA with BioAware.
Right to opt-out of marketing communications
You have the right to opt-out of receiving marketing communications from BioAware and may do so by
(a) Following the instructions for opt-out in the relevant marketing communication,
(b) Change preferences under the account settings section if you have an account with BioAware.
(c) Contacting us via e-mail on email@example.com
Please note that even if you opt-out from receiving marketing communications, you may still receive
administrative communications from BioAware, such as order confirmations and notifications necessary
to manage your account or the services provided to Customers.
You have the right to access your personal data by requesting an overview of the personal data we
process about you and you may have a right to download such data. You also have the right to request
that BioAware corrects inaccuracies in your personal data. If you have an account with BioAware on the
website, this can usually be done through the appropriate "your profile" section on the BioAware
Further, you have a right to request deletion of personal data, and to restrict or object to our
processing of your personal data according to this Privacy Statement or other service specific terms.
Please use firstname.lastname@example.org to file all requests as mentioned in this section.
How we keep your personal data secure
BioAware takes the trust you, and our Customers, place in us very seriously. BioAware is committed to
preventing unauthorized access, disclosure or other deviant processing of personal data. BioAware shall
ensure the confidentiality of personal data we process, maintain the personal data integrity and secure
its availability according to applicable privacy legislation.
As part of our commitments, we utilize reasonable and appropriate organizational, technical and physical
procedures and measures to safeguard the information we collect and process, taking into account the
type of personal data and risk posed to you and our Customers upon breach. Since root causes for privacy
breaches are most likely to be found internally, we believe that building a strong corporate culture
where respect for and awareness around privacy among our employees are fundamental to ensure lawful
processing and protection of your data. The following measures are of particular importance in this
How long we store your personal data
BioAware will only retain your personal data for as long as necessary for the stated purpose, while
also taking into account our need to answer queries or resolve problems and to comply with legal
requirements under applicable laws.
This means that BioAware may retain your personal data for a reasonable period after you and our
Customer’s last interaction with us. When the personal data that we collected are no longer required
we erase them. We may keep personal data for historical purposes (ie to keep track of previous users
BioAware provides many different services to its Customers. Some of our services involve processing of
the Customers’ data, hereunder their personal data. The purposes of processing are determined by our
Customers not by BioAware. Making the Customer the data controller. BioAware does, in such cases,
act as data processor and process the data on behalf of and according to instructions given by the
Customer. The relation between the Customer as data controller and BioAware as data processor shall
be regulated by a data processing agreement.
Customer and BioAware obligations
When the Customer acts as data controller the Customer shall, according to applicable privacy
legislation, ensure the legal grounds for processing the personal data. Further, the Customer shall
assess and establish ownership to the risks posed to data subjects by processing their personal data.
Another important aspect of the Customer’s duty as data controller is to comply with the information
duty towards data subjects.
BioAware is a natural part of the Customers duties as data controller, in the sense that BioAware’s
services constitutes parts of the processing of personal data that the Customer must ensure are
compliant with applicable privacy legislation. Thus, when BioAware processes personal data on behalf
of its Customers, we must do so in accordance with privacy legislation applicable for data processors.
In short, the Customer and BioAware are obligated to cooperate to ensure privacy for data subjects.
BioAware shall provide the information necessary for the Customer to be compliant with applicable
BioAware uses subcontractors to process personal data and may export your or our Customers data outside
the EU in this regard. These subcontractors are typically IT specialists.
When using subcontractors, BioAware will enter into a data processing agreement (DPA) with
subcontractors in order to safeguard your privacy rights and to fulfil our obligations towards our
Customers. When subcontractors are located outside the EU, BioAware ensures legal grounds for such
international transfers on behalf of you or our Customers, hereunder using the EU Model Clauses.
BioAware relies on some external third parties to support our business processes and to provide our
services. These third parties mainly include but are not limited to:
- Securex processing data of employees for the payment of wages
- Google (US), office automation and file storage solution
- OVH Datacenters for the IT related matters (data storage, access, etc)
More information on BioAware’s subcontractors is provided in the BioAware Trust Center, in the service
specific terms or in a dedicated data processing agreement. In any case, you are always welcome to
request an overview and more detailed information on BioAware’s subcontractors, hereunder documentation
of legal grounds for international transfers mentioned above.
If we modify our Privacy Statement, we will post the revised statement here, with an updated revision
date. We encourage you to review the Statement regularly. If we make significant changes to our
Statement that materially alter our privacy practices, we may also notify you by other means, such as
sending an email or posting a notice on our corporate website and/or social media pages prior to the
changes taking effect.
The last update of this Privacy Statement was May 23rd, 2018.
We value your opinion. If you have any comments or questions about our Privacy Statement, any unresolved
privacy or data use concerns that we have not addressed satisfactorily, or concerning a possible breach
of your privacy, please send them to email@example.com. You can also send it in writing to BioAware SA
NV, Data Protection Officer, Rue du Henrifontaine 20, B-4280, Hannut, Belgium.
We will handle your requests or complaints confidentially. Our representative will contact you to
address your concerns and outline the options regarding how these may be resolved. We aim to ensure
that complaints are resolved in a timely and appropriate manner.
Follow us on Facebook, Twitter
and other social media
or contact us by phone or email
Phone: + 32 478 28 57 64
BioAware SA NV Rue du Henrifontaine 20 B-4280 Hannut Belgium
ING Bank#: 340-0469612-73
BIC code: BBRUBEBB