Privacy policy

I. What is the purpose of a Confidentiality policy?

A. Principles

The Brussels Regional Public Service (BRPS) undertakes to protect your personal data online in accordance with regulations concerning privacy. It also undertakes to comply with the right to one’s image (see section "B. Legal notice"). This policy governs all the pages of the websites managed by the BRPS.

The BRPS uses your personal data that it collects in order to communicate with you, better understand how its website (including its mobile app) or services are used, and send you information that may be of interest to you (see sections II and III of this policy).

There are several other names for this policy - "Privacy statement", "Data Protection Policy" or sometimes simply "Privacy". Its goal is always the same: to inform users about how their personal data is used.

The BRPS invites you to read the policy presented below in order to understand how your personal data is used. This document may be subject to modifications, the BRPS invites you to consult it regularly.

This confidentiality policy is a document which specifies the way in which the BRPS collects, uses and communicates data. It aims to fulfil four roles:

1. Inform users about the collection and use of their personal data.

2. Offer users the chance to remove the data collected.

3. Offer users access to the data collected or to contest the accuracy of it.

4. Reassure users about the security of their data.

All these measures help to ensure that your personal data will not be sold to third parties or used for malicious purposes.

B. Legal notice

1. Regulations concerning privacy

The BRPS will use your data in accordance with regulations concerning privacy, in particular the following legal texts:

· The regulation (UE) 2016/679 of the European Parliament and the Council of 27 April 2017 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, also called "GDPR");

· The Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications);

· The Law of 3 December 2017 concerning the creation of the Belgian Data Protection Authority.

2. Specific laws

Laws concerning specific provisions (for example, if you take part in contests) will be indicated in the appropriate place concerning the general purpose (for example, in the regulations concerning participation in the said contest).

C. Changes to the Confidentiality policy

The BRPS reserves itself the right to modify this Confidentiality policy with a view to ensuring compliance with regulations in force concerning privacy or adapting it to its practices. Consequently, it invites you to consult it regularly in order to learn about any modifications. The new version will be downloaded on our website and the date of the update will appear in the last paragraph.

The BRPS will not make any modifications that will reduce the level of protection of your rights as guaranteed in this Confidentiality policy, without obtaining your prior consent.

II. Collection of personal data – Privacy charter

A. What is personal data?

"Personal data" (hereinafter referred to as "your data" when it is yours) represents all data concerning an identified or identifiable natural person (hereinafter referred to as "data subject"). An identified or identifiable person is considered to be a person who can be identified directly or indirectly, in particular using an identification, such as a name, an identification number, location data, online identification, or one or more elements that are specific to his or her physical, physiological, psychological, genetic, mental, economic, cultural or social identity.

Personal data must be processed lawfully, fairly and in a transparent manner with regard to the data subject, collected for specified, explicit and legitimate purposes, be appropriate, relevant and not excessive, be accurate and stored in a format which enables the identification of the persons in question.

B. What personal identification data is collected about you?

The type and volume of data that the BRPS receives and saves depends on how you use our website and other communication platforms. It is possible for you to access most of our pages without indicating who you are and without revealing personal data.

In some cases, the BRPS will ask you to supply these details in order to provide specific services or send you correspondence. The personal identification data that you provide in this manner will not be transmitted to any third parties other than for the purpose of implementing the service requested.

The BRPS does not collect personal data unless this data is willingly divulged.

By entering willingly into contact with the BRPS, you declare that you agree to the legitimate collection of data, such as: surname and first name of the data subject, e-mail address, phone number, content of the message, time (date and time), the header of e-mails and any physical address mentioned, as well as any other personal data you have supplied.

On one hand, data that you communicated willingly to it comes either, for example, from the creation of a personal account, or from participation in one of our games, contests or quizzes, or from registering for one of its services (newsletter, etc.).

It concerns, among others, the following data according to the purpose to be fulfilled:

· surname and first name,

· pseudonym,

· email address,

· date of birth,

  • your city, country and postcode of residence.
  • the dates of your participation as well as the answers provided in the frame of our contests.

On the hand, data may be collected while you browse the BRPS websites or use its services without you communicating directly your details (see section III Cookie policy).

Furthermore, it is compulsory to communicate some data, while other data is optional. In the first case, if you refuse to provide the BRPS with the requested data, access to some content may be refused and it may not be possible for you, for example, to participate in a contest.

In order to facilitate your registration, it is sometimes possible for you to associate your Facebook, Google or other account with your BRPS account. In this case, some of the personal data that you have communicated to these third party services (basic data, email address, etc.) may be transmitted to the BRPS by the editors of these third party services. The BRPS invites you to read and, if necessary, to configure these third party services concerning the transmission of your personal data.

By accepting this Confidentiality policy when creating your account, you agree to your data being processed accordingly to the conditions and methods specified in this Confidentiality policy.

C. Who collects your data?

When you are on the BRPS website or on any other communication platform that is dependent on it or on which its staff members are active, and you are asked to provide personal data, you communicate this data to the BRPS, and to it alone, unless otherwise specified.

This is the case, for example, for online payments. When you use our provided form for this purpose, after completing it with your personal identification data and validating it, you are automatically transferred to the secured environment of a partner company, usually your own bank. This is a highly secure environment in which you will be asked to enter data concerning your debit/credit card.

D. What to do in the event of identity theft, data theft or computer piracy?

The BRPS has taken all possible and relevant legal and technical measures to prevent unauthorised access and use of your data. Consequently, it declines all responsibility in the event of identity theft, data theft or computer crime. In the event that its computer systems are hacked, the BRPS will immediately take all possible measures to limit damage and/or theft and it will inform you about the data concerned and the extent to which they have been affected.

In the case of identity theft, data theft or computer crime, the BRPS invites you to file a complaint with the Complaints Department as well as with the competent authorities. Once the complaint has been received by the Complaints Department, and unless otherwise instructed by the said authorities, the BRPS will store the data in question for a period of two years.

E. How does the BRPS use your data?

The BRPS does not distribute, rent or sell data about the user to anyone. It uses personal data about yourself to better understand the people who visit its websites (including social media, blogs, forums, etc.), apps and other technological and communication systems. It also uses your data to be able to send you information to which you have subscribed or which it feels may be of interest to you.

If you owe money to the BRPS, your data may be transmitted in part to third parties for purely technical and administrative processing. These third parties are not authorised to distribute, sell or rent your data.

1. The end goals of using your data

The BRPS uses your data only for specified, explicit and legitimate goals designed to:

  • Allow the organisation of the game/contest/quiz in which you are participating.
  • Manage the relationship of the BRPS with you, manage advertising for its services or those of the BPRS's partners, even those of third parties: for example, it should collect and use your data to send you its newsletters and keep you informed about its contests, useful tips, and other data which may be of interest to you.
  • Customise your experience by recommending content that is likely to interest you according to your centres of interest, your age category and your earlier use of its services.
  • Understand your preferences and habits in order to allow it to customise its offering and, ultimately, offer you content, including advertising that matches your profile.
  • Offer customised content and adapt its websites and its services, as well as the content and adverts that it offers (i) to the characteristics that you have entered and which it is not possible for us to know (age, gender, etc.) and, if applicable (ii) to your earlier browsing that it may know.
  • Improve its content on the basis of data about who consults it and how its content is consulted.
  • Evaluate the effectiveness and conviviality of the BRPS's websites and other technological systems, as well as their improvement for the benefit of our web users and other users.
  • Carry out internal statistical surveys and market research: for example, in order to evaluate your interests and better define the development of its contests, games, quizzes, services and its communication strategies.

2. Data storage period

The BRPS only stores your data for a period that does not exceed that required with regard to the final goals for which it is used in agreement with legal requirements.

3. Communication of your data

The BRPS may communicate your data to its administrations and its partners in order to achieve exactly the same purposes as those developed above, provided that data sharing is fair and lawful, in order to fulfil a specified, explicit and legitimate purpose.

With a view to help you to discover the products or services likely to be of interest to you, the BRPS may also communicate your data to other third party companies, provided that you have explicitly agreed to this.

Your data may be transmitted to third parties acting on behalf of the BRPS or for it, with a view to the data being used in line with the purposes for which it has been collected (for example, a transport company in order to deliver a prize won by participating in a contest or a company that will send newsletters). The BRPS ensures that its own sub-contractors guarantee an adequate level of protection, namely that it demands a contractual guarantee from its sub-contractors that it will use your data solely with the authorised purpose in mind, and with discretion and the required security.

4. Right of access, rectification and opposition

It is a matter of pride for the BRPS that you keep control over your data. That is why you can correct, complete or delete the data you communicated to it at any time by logging in to your personal account.

If there is no personal account, in accordance with regulations concerning privacy, at any time, you have the right to exercise your right of access, rectification, opposition, limitation, deletion and, as of 25 May 2018, portability.

To that end, please contact the Complaints Department.

In the case that you no longer want to receive advertising offers (newsletters, etc.) from the BRPS, its partners or third party companies, you may, at any time, inform it of this by contacting the Complaints Department or by clicking on the unsubscribe link included in the advertisement email in order to oppose any future deliveries.

5. Security and confidentiality of your data

Access to your data is limited to BRPS staff members who need to know it and who comply with strict privacy standards when processing your data.

To guarantee the security and confidentiality of your data, the BRPS has set up the highest safety standards and it only works with sub-contractors which are also required to comply with it. Despite the resources implemented in order to create a reliable website worthy of confidence, the BRPS recalls that the Internet is not a completely safe environment. Consequently, the BRPS does not assume any responsibility for or does not guarantee the security of your data during its transit over the Internet.

6. Transfer of your data outside of the European Union

In accordance with privacy regulations, personal data may only be transmitted to countries which guarantee an adequate level of security, and which comply with the same or equivalent provisions as those of privacy regulations. The country, duration of the transfer and storage, the nature of the data and the exact purpose are criteria that need to be examined on a case-by-case basis.

The Brussels-Capital Region guarantees that it shall refrain from carrying out the processing or storage of data in countries that cannot offer the same guarantees, except if:

  • the person in question has given his explicit agreement;
  • the transfer is necessary to implement the contract (between the User and the BRPS);
  • the transfer is necessary for the end or execution of a contract concluded or to be concluded between the party responsible for processing and a third party in the interests of the User;
  • the transfer is necessary or is a legal obligation (important public interest or right);
  • the transfer takes place from a public register intended to inform the public.

7. Sending advertising by email and any other communication method

The BRPS will be delighted to share with you its newsletters, contests, useful tips and any other information likely to be of interest to you by email and/or by any other communication method (Facebook, Twitter, forums, etc.).

Of course, at any time and free of charge, you have the right to oppose the use of your personal data to receive advertising from the BRPS, its administrators, partners or third party companies.

In order to oppose the sending of any further communications, just choose one of the following options:

  • click on the unsubscribe link included in the advertisement email;
  • contact the Complaints Department.
  • modify your account settings.

Only if you have agreed to it, we will send your email address and/or your personal data to our partners and other third party companies so that they send you product or service offers likely to be of interest to you.

8. Hypertext links to other websites

The websites of the BRPS and its services may contain hypertext links to other websites which are not operated or controlled by the BRPS. Consequently, the BRPS may not be held responsible for the content of such websites, or any protection practices of third parties that operate them and which may differ from our own.

III. Cookie policy

In order to facilitate the use of its website and make it more pleasant, the BRPS uses cookies. These allow its sites to memorise your actions and preferences (username, language, size of characters and other display settings) for a given period of time so that you do not have to communicate this information again each time you consult these sites or browse from one page to another.

A. What is a cookie?

A cookie is a small text file, which may be encoded, that is stored by a website on your computer or any other technological system (smartphone, tablet, etc.) that you use to consult it. These cookies are designed to speed up and personalise how you use the BRPS site when you visit it and return to it.

To that end, cookies communicate data between your web browser (Chrome, Firefox, Internet Explorer, Safari, etc.) and the server that hosts your website. For example, cookies communicate about your site display preferences (language, size of characters, etc.), your browsing history, your choices from among the options proposed by a site, or by saving data.

Cookies allow the BRPS, for example, to compare new visitors with old ones, understand how users browse its site, count the visitors to the site and obtain information which it will use to improve the browsing experience in the future.

Cookies do not keep any trace of personal data about a user and identifiable data will never be saved. If you do not want to use cookies, you must configure your computer's settings in order to delete all of the website's cookies and/or receive a notification if cookies are saved.

If you do not want to modify the cookies settings, you can simply continue visiting the site.

B. Types of cookies we use

Type of cookie

Compulsory / optional

Name of the cookie and storage period

Purpose of the cookie

Cookies strictly necessary for browsing


Bike for Brussels / Mapbox

These cookies are anonymous and their lifespan may be as much as 2 years.

Bike for Brussels: we keep track of the cookie notice, and the server gives you a unique ID / Mapbox: the maps on Bike for Brussels work with

Analytical and performance cookies


Google Analytics.

These cookies are anonymous and their lifespan may be as much as 2 years.

For example, know the number of visitors, their geographic location, their path on the site (how and via which page they accessed it, the pages that followed their session and the page via which they left the site), the time of the visit, etc.

1. Cookies strictly necessary for browsing

These cookies are essential for browsing the site and taking advantage of its features. They cannot be deactivated in our systems. They are stored on your terminal in response to your actions, which are equivalent to a request for services, such as defining your privacy preferences, logging in (accessing secure areas on the site) or completing forms.

Therefore, they allow:

· browsing between the website's sections;

· completing of forms;

· safe checks of your identity before allowing access to your personal data when a personal account has been created, including browsing between the site's secure zones which require authentication.

You can configure your Internet browser to block cookies or notify you about the existence of cookies. If you refuse these cookies at a later date, certain sections of the website or certain of the services proposed may not work as they should or may not even work at all.

2. Analytical and performance cookies

These cookies collect data about the way in which visitors use a website and, in particular, the number and behaviour of users on the sites.

These cookies allow the BRPS in particular to draw up statistics. For example, by counting visits and the traffic sources so that the BRPS is able to assess and improve the performance of its websites and its services. They help to know which pages are the most and least popular, see how visitors browse the sites and how its services are used.

These cookies also help to verify its performance in the sense that they also indicate if error messages are sent, how often and on the basis of which actions.

Cookies do not collect data that allow visitors to be identified. To the extent that all the data collected by these cookies are brought together, they remain anonymous. These cookies are designed solely to improve the functioning of websites.

The data collected by the cookies is aggregated. The consequence of this is that if you delete these cookies, the BRPS will ignore when you visited our site or used its services and it will not be able to monitor its performance.

By using a BRPS website, you agree to receive this type of cookie on your technological system.

3. Functional cookies

Functional cookies, also called "functionality cookies", provide improved and customised functions. Indeed, they facilitate and analyse the functioning of websites in order to make them more pleasant to use and more personal by allowing the site to memorise the choices that you made and providing you with more precise and personal features.

In particular, they help to:

· personalise the services by memorising your preferences (remember your username; choice of a language, currency, region, where you are, etc.);

· avoid you repeating your choices each time you visit the site (memorise the changes made by the user, such as the size of the text or the font);

· collect data communicated in online forms;

· provides services that you have requested (such as watching a video or leaving a comment on a blog);

· draw up statistics (for example, the number of single visitors);

· analyse use of the site and the popularity of our pages.

These cookies are specific to the content management platform (for example, WordPress, Drupal, Liferay, Craft CMS), which is a sort of program that can be described as the "motor" of a site.

The information collected by these cookies is rendered anonymous and cannot track your browsing activity on other websites. With the exception of the cookie defining your linguistic preference, functional cookies expire when closing your browser. Therefore, they are deleted from your computer or any other technological system when you quit the program.

By using a BRPS website, you agree to receive this type of cookie on your system. If you block these cookies, all or some of these services may not work properly.

4. Targeted cookies

These cookies collect data about your habits when browsing the Internet and using the BRPS services in order to offer you adverts that are adapted to you and correspond to your centres of interest. They also help to limit the number of times that you see an advert and help the BRPS to evaluate the effectiveness of our advertising campaigns. In general, they are installed by advertising networks with the authorisation of the website operator. They memorise visits made on a site and share this data with other companies (advertisers for example). Targeted cookies are often linked to the features of the site provided by the partner company.

They help to:

· prevent you from being faced repeatedly with the same advertisements;

· assess the effectiveness of our different communication actions or an advertising campaign;

· customise advertising on our websites and other communication platforms.

The data is collected and shared with third parties in order to offer the targeting of audiences and optimisation solutions for our administrators, editors and any advertisers. No personal data is collected and an individual cannot be identified using the data collected.

Targeted cookies are based on the unique identification of your browser and technological system on the Internet (IP address). By blocking these cookies, advertisements will continue to be displayed. However, you will benefit from less targeted advertising.

5. Cookies issued on our sites by third parties

From third party apps integrated into our sites or our services

Cookies issued by third parties may be installed in third party apps integrated into the websites of the BRPS or its services, in advertising content (graphics, animations, videos, etc.) distributed via advertising spaces integrated into the websites of the BRPS or its services. In particular, this is the case of the buttons "Share", "Like" from social media such as "Facebook" "Twitter", "LinkedIn", "Viadeo", etc.

The social media supplying such an application button may identify you with this button, even if you have not used this button when consulting a website of the BRPS or it services. Indeed, this type of application button may allow the social media concerned to monitor your browsing on a website of the BRPS or its services, due to the sole fact that your social media account concerned was activated on your technological system (open session) during your browsing on a website of the BRPS or its services.

The issue and use of cookies by third parties is subject to the privacy protection policies of these third parties. Thus, the BRPS has no control over the process used by the social media to collect data concerning your browsing on its websites or on its services associated with the personal data which they have at their disposal.

The BRPS invites you to consult the privacy protection policies of these social media in order to understand the objectives of their use of browsing data, in particular advertising, which they may collect with these application buttons. These protection policies should, in particular, allow you to choose from these social networks, especially by configuring your user accounts for each of these networks.

The BRPS reminds you that, at any time, simply and free of charge, you can choose to refuse the saving of cookies on your technological system in such a way that neither the BRPS nor its partners have data collected by cookies.

C. How to manage cookies on my computer, tablet, etc.?

Most web browsers are automatically configured to accept cookies. However, you can configure your browser to accept or block cookies or some of them.

To find out more about cookies, consult: (in EN/FR), Wikipedia.

You may, at any time, delete cookies already installed on your technological system (computer, smartphone, tablet, etc.), and configure most browsers so that they block them. However, in this case, you may have to indicate certain preferences yourself each time that you visit one of the websites of the BRPS. In this case, certain services and features may not be accessible. In other words, the BRPS is unable to guarantee you access to all the services of its websites in the event of a refusal to save cookies.

If you want to refuse commercial cookies (including Google), you can do so via the following website:

In your browser's settings, it is possible for you to refuse the installation of cookies. The method for activating cookies or not and deleting them depends on your technological system and your web browser:

IV. Controller

The Brussels-Capital Region (Cabinet of the Minister-President, Rue Ducale 7-9, 1000 Brussels) is the legal person responsible for the use of the User's personal data, even if the BRPS (input person/de facto head of service, Brussels Public Service, Bld du Jardin Botanique 20, 1035 Brussels) acts as the responsible party for the processing. To contact the Controller:

Brussels Regional Public Service

Brussels Regional Coordination

Boulevard du Jardin Botanique, 20, 1035 Brussels

At the BPRS, the relevant de facto responsible party, the Brussels Regional Informatics Centre (BRIC) (Rue de la Loi 21, 1000 Brussels) also offers sufficient guarantees regarding technical and organisational security measures relating to data processing.

V. Complaints Department and Data Protection Officer (DPO)

A. Complaints Department

If you would like to receive further information or make a complaint about privacy or security checks, you can contact the Complaints Department of the Brussels Regional Public Service (BRPS).

Contact details:

Brussels Regional Public Service For the attention of the Complaints Department Bld du Jardin Botanique 20, 1035 Brussels Tel.: +32 (0)2 800 37 54 e-mail:

In order to proceed as best as possible according to your request, please indicate the reason for your opposition (example: opposition to adverts from BRPS administrations, its partners, third party companies or the BRPS).

B. Data Protection Officer (DPO)

The Data Protection officer appointed by virtue of Article 37 of the General Data Protection Regulation can be contacted at the following email address: