en
Cart
0
0.00 €

Privacy Policy

Last updated: 20/04/2026

1. Identity and Contact Details of the Data Controller

Data Controller: Housewine
Legal Form: Kongé BV
Address: Theodoor Van Rijswijckplaats 3, 2000 Antwerp, Belgium
VAT Number: BE1027256427
Email: info@housewine.be

2. Scope

This privacy policy applies to all personal data collected through:

  • the webshop www.housewine.be
  • customer contact (email, phone, forms)
  • marketing activities
  • collaborations with partners

We process personal data in accordance with:

  • the General Data Protection Regulation (EU) 2016/679 (GDPR)
  • Belgian implementing legislation

3. Categories of Personal Data

3.1 Identification Data

  • First and last name
  • Address details (delivery and billing)
  • Email address
  • Phone number

3.2 Financial Data

  • Payment information (via external payment providers)
  • Transaction history

Note: we do not store full payment card details ourselves.

3.3 Technical and Usage Data

  • IP address
  • Browser and device type
  • Cookies and tracking data
  • Browsing behavior and interactions

3.4 Communication Data

  • Content of messages
  • Customer inquiries and support history

4. Purposes and Legal Bases for Processing

Purpose Legal Basis (Art. 6 GDPR)
Order processing and delivery Performance of a contract (Art. 6.1.b)
Customer service Performance of a contract / legitimate interest
Invoicing and accounting Legal obligation (Art. 6.1.c)
Fraud prevention and security Legitimate interest (Art. 6.1.f)
Website optimization and analytics Legitimate interest / consent
Direct marketing (email) Consent (Art. 6.1.a)
Personalized advertising Consent

Where processing is based on legitimate interest, we perform a balancing test and safeguard your rights and freedoms.

5. Automated Decision-Making and Profiling

We do not apply automated decision-making with legal or similarly significant effects as referred to in Article 22 GDPR.

If profiling is used (e.g., for marketing), this is done solely based on consent.

6. Recipients of Personal Data

Your data may be shared with:

  • Payment providers (e.g., Mollie, Stripe, PayPal)
  • Logistics partners (e.g., Bpost, DPD, DHL)
  • Hosting and IT service providers
  • Marketing tools (e.g., email software, advertising platforms)
  • Accountants and auditors

We conclude Data Processing Agreements with all processors in accordance with Article 28 GDPR.

7. Transfers Outside the European Economic Area (EEA)

If personal data is transferred outside the EEA:

  • this is only done to countries with an adequacy decision by the European Commission, or
  • based on Standard Contractual Clauses (SCCs)
  • with additional safeguards where required (Schrems II compliance)

8. Retention Periods

Data Type Retention Period
Invoicing and transaction data 7 years (legal obligation)
Customer accounts Until deleted by the user
Contact inquiries Max. 2 years
Marketing data Until consent is withdrawn
Cookies See cookie policy

After these periods, data is deleted or anonymized.

9. Cookies and Tracking

Our website uses:

  • Strictly necessary cookies (no consent required)
  • Analytical cookies
  • Marketing cookies

Non-essential cookies are only placed after explicit consent via the cookie banner (in accordance with the ePrivacy Directive).

For detailed information: see our cookie policy.

10. Security Measures

We implement appropriate technical and organizational measures (Art. 32 GDPR), including:

  • SSL/TLS encryption
  • Restricted access control (need-to-know basis)
  • Strong authentication where possible
  • Regular backups
  • Monitoring and logging
  • Contractual security obligations for processors

11. Data Breaches (Data Breach Procedure)

In the event of a personal data breach:

  • we notify the competent supervisory authority within 72 hours if required
  • we inform affected individuals if there is a high risk
  • we document all breaches internally (Art. 33–34 GDPR)

12. Data Subject Rights

You have the following rights:

  • Right of access (Art. 15)
  • Right to rectification (Art. 16)
  • Right to erasure ("right to be forgotten") (Art. 17)
  • Right to restriction of processing (Art. 18)
  • Right to data portability (Art. 20)
  • Right to object (Art. 21)
  • Right to withdraw consent

You can exercise these rights via: info@housewine.be

We respond within 30 days.

13. Complaints

You have the right to lodge a complaint with:

Data Protection Authority (GBA)
Drukpersstraat 35
1000 Brussels
https://www.gegevensbeschermingsautoriteit.be

14. Obligation to Provide Data

Providing personal data is:

  • necessary for entering into and performing a contract
  • required for legal obligations (e.g., invoicing)

Without this data, we cannot provide our services.

15. Internal Documentation and Compliance (Audit-Ready)

Housewine maintains the following GDPR documentation:

  • Record of processing activities (Art. 30 GDPR)
  • Data Processing Agreements
  • Internal data breach procedure
  • Cookie consent logs
  • DPIAs where required
  • Security policy

16. Changes to This Policy

We reserve the right to amend this privacy policy.
The most recent version is always available on our website.