dealdne
+ Post Ad

Home/Privacy Policy

Privacy Policy

Privacy Policy

Last updated: April 2025

1. Who We Are

This Privacy Policy applies to DealDone.be, operated by DigitalStream, a self-employed business registered in Belgium (VAT: BE 0738.714.881). We are the data controller responsible for your personal data collected through this website.

Contact: privacy@dealdone.be

2. What Data We Collect

We collect the following categories of personal data:

  • Account data: name, email address, phone number, password (hashed);
  • Profile data: profile photo, city, bio, business name (if applicable);
  • Listing data: photos, descriptions, prices, location;
  • Transaction data: payment history, membership plan details (no card numbers stored);
  • Communication data: messages sent between users on the platform;
  • Usage data: pages visited, search queries, device type, IP address, browser, referring URL;
  • Marketing data: email preferences, newsletter subscription status.

3. How We Use Your Data

We use your personal data for the following purposes:

  • To provide and operate the DealDone.be marketplace;
  • To process payments and manage your membership;
  • To send transactional emails (listing approvals, messages, receipts);
  • To send marketing emails, newsletters, and promotional offers — you may opt out at any time;
  • To personalise your experience and show relevant listings;
  • To prevent fraud, abuse, and violations of our Terms of Service;
  • To comply with legal obligations under Belgian and EU law;
  • To improve the platform through analytics and usage data.

4. Legal Basis for Processing

We process your data under the following legal bases (GDPR Article 6):

  • Contract: to fulfil our obligations to you as a user;
  • Legitimate interests: for fraud prevention, security, and platform improvement;
  • Consent: for marketing communications and newsletters — you can withdraw consent at any time;
  • Legal obligation: to comply with applicable Belgian and EU laws.

5. Marketing and Newsletters

By creating an account, you may receive occasional marketing emails and newsletters about new features, promotions, and relevant listings. You can unsubscribe at any time by clicking the "Unsubscribe" link in any email, or by contacting us at privacy@dealdone.be. Opting out of marketing does not affect transactional emails related to your account.

6. Cookies and Tracking

We use cookies and similar technologies to operate the website, remember your preferences, and analyse usage. You can control cookie preferences through your browser settings. We may use third-party analytics tools (such as Google Analytics) that set their own cookies.

7. Data Sharing

We do not sell your personal data. We may share data with:

  • Payment processors (Stripe, PayPal) to process transactions;
  • Email providers (Resend) to send emails;
  • Analytics providers (Google Analytics) for usage analysis;
  • Law enforcement when required by law or to protect our rights.

All processors are contractually bound to process data only as instructed and in compliance with GDPR.

8. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. Inactive accounts may be deleted after 24 months. Transaction records are kept for 7 years to comply with Belgian accounting obligations. You may request deletion of your account and data at any time (see Section 9).

9. Your Rights

Under GDPR, you have the right to:

  • Access your personal data;
  • Rectify inaccurate or incomplete data;
  • Erase your data ("right to be forgotten");
  • Restrict processing in certain circumstances;
  • Data portability — receive your data in a structured format;
  • Object to processing based on legitimate interests or for direct marketing;
  • Withdraw consent at any time for consent-based processing.

To exercise any of these rights, contact us at privacy@dealdone.be. We will respond within 30 days.

You also have the right to lodge a complaint with the Belgian Data Protection Authority (Autorité de protection des données / Gegevensbeschermingsautoriteit): www.dataprotectionauthority.be.

10. Security

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure. Passwords are hashed and never stored in plain text. Payment data is handled exclusively by PCI-DSS compliant processors.

11. International Transfers

Your data is primarily processed within the European Economic Area (EEA). When data is transferred outside the EEA (e.g. to US-based processors), we ensure adequate safeguards are in place in accordance with GDPR Chapter V.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice on the website. The "Last updated" date at the top of this page indicates when the policy was last revised.

13. Contact

For any privacy-related questions, contact: privacy@dealdone.be