Skip to Content

Privacy Policy

1. Introduction

At The Robin Lodge, your privacy and the security of your personal data are important to us. This policy explains how we collect, use, and protect the information you entrust to us when you visit our site or place an order (https://therobinlodge.com).

We are committed to processing your data in a lawful, transparent, and secure manner, in accordance with the GDPR (EU Regulation 2016/679)and the Belgian law of July 30, 2018, on the protection of personal data.

This statement aims to inform you clearly and comprehensively about how your personal data is or will be processed.

Key Definitions

  • Personal data: any information that allows you to be identified directly or indirectly (name, email, IP address, online identifier, etc.).
  • Processing: any operation on your personal data (collection, storage, modification, sharing, deletion, etc.).
  • Data controller: the person or organization that decides why and how your data is processed.
  • Processor: entity that processes your data on our behalf.
  • Recipient: person or organization that receives your data.
  • Consent: clear, free, and informed consent that you give for your data to be processed.

2. Data controller of your personal data

Valapi, Limited Liability Company, hereinafter referred to as "we" or "The Robin Lodge", with company number 0770.425.963 (RPM of Nivelles) and whose registered office is located at 1430 Rebecq, Chemin Longues Aulnes 7, is the data controller of your personal data.

3. Data collected by The Robin Lodge?

We only collect the data necessary for our activities, for example:

  • Personal identification data: first name, last name, email address, postal address, phone number…

  • Communication content and technical information: recipients, date and time of sending, content of messages…

  • Technical information associated with the device: IP address, browser type, geographical location, operating system…

  • Data from social networks: public profile photos/images, exchanged messages, posts, data made public by the user, social contacts…

  • Other data that you choose to communicate to us

Some information ismandatoryto process your orders or respond to your requests. Others are optional and clearly indicated as such.

This data is processed in accordance with this privacy statement and in compliance with the provisions of the European General Data Protection Regulation (GDPR).

Under all circumstances, we commit to collecting and processing your personal data only to the extent that it is strictly necessary for the fulfillment of one of the purposes stated in this privacy statement.

As such, providing the personal data listed on our various platforms is generally mandatory. However, in some cases, certain personal data collected may be optional and does not have to be communicated to us (for example: certain technical data related to the use of the website, your date of birth, etc.). If applicable, a specific mention is provided to inform you of the mandatory or optional nature of the data collection concerned.

In these cases, the non-provision and/or inaccuracy of the personal data listed on the various platforms may, if applicable, result in our inability to properly execute the contract, refusal of access to certain content on the website or web platforms, or simply not being able to respond favorably to your requests.

4. Sources of data

In general, we collect your aforementioned personal data directly from you. In certain specific cases, we may also collect personal data about you from the following sources:

  • fromexternal partners (order processing, newsletters),

  • fromthird parties who have provided your contact details (friends, family, etc.),

  • frompublic sources such as social networks or your public profile.

We may also collect data while youbrowse our siteor use our online services, without you directly providing it to us.

5. Purposes and legal bases for processing

5.1 based on consent

Your data may be processed with your consent to:

  • manage external communication and contacts with the media,
  • manage and send newsletters,
  • develop statistics related to the services offered,
  • contact you following a request for an offer or information,
  • manage cookies to improve navigation, measure audience, and share content to social networks,
  • directly promote our business partners via email or through the site,

  • allow the transfer of your contact details to our partners for direct marketing purposes. Allow the transfer of personal and electronic identification details to The Robin Lodge's business partners for direct marketing purposes.

5.2 based on legitimate interest

As part of our legitimate interests to provide an engaging online space and interact with you, we may process your data to:

  • administer our pages on social networks (creation, posts, polls),
  • communicate and interact with customers and users,
  • improve content through audience statistics.

For the legitimate interests we pursue as the data controller to manage our client portfolio and allow the company to thrive over time, your personal data is collected and processed to enable us to achieve the following purposes:

  • target prospects and generate reports,

  • respond to messages on various platforms,

  • track sales leads,

  • centralize and manage client/prospect contacts,

  • manage customer relationships and organize prospecting and follow-up,

  • establish statistics on feedback.

Note: We draw your attention to the fact that by visiting our The Robin Lodge pages on social networks, personal data concerning you is or may be processed jointly by the relevant social network and us to allow the social network to improve its advertising system, obtain audience statistics for the page, etc. We invite you to review the privacy policy of the relevant social network before visiting our page.

6. Retention Period

We are currently working on determining specific rules regarding the retention period of personal data. This period will vary according to different objectives and taking into account any legal obligations to retain certain of your data.

The defined retention periods will allow us to process your requests, ensure their management and follow-up, and successfully carry out our mission, while respecting the principle of proportionality according to which personal data should not be retained longer than necessary to achieve the purpose for which it was collected.

It is specified that all of this data may, however, be retained longer than the durations mentioned in this article:

  • Either after obtaining your consent;

  • Or, in the form of archives, to meet any legal and regulatory obligations imposed on The Robin Lodge, or during the legal periods of limitation or opposition.

  • Or, also, in the form of reuse for historical, statistical, or research purposes.

7. Recipients of the data

Only the following persons or entities may access your data:

  • Yourself;

  • Our internal services responsible for processing execution;

  • Our service providers and subcontractors responsible for defined processing (including IT service providers: server hosting, maintenance, cloud space rental, mobile phone operators, web application developers, the provider responsible for sending newsletters, the CRM service provider, etc.);

  • Our business partners.

No personal data is transmitted to third parties not included in the aforementioned recipients or not falling under the indicated legal framework, without prejudice to their possible transmission to bodies responsible for a control or inspection mission under Belgian law, such as an investigating judge.

8. Data transfers abroad

8.1. Data transfer within the European Economic Area

For the needs of certain processing activities, some data is transferred within the European Economic Area.
Within the European Economic Area, please be aware that your personal data enjoys the same level of protection.

8.2. Data transfers outside the European Economic Area

For the needs of certain processing activities, some of your personal data is transferred outside the European Economic Area.

We transfer your personal data and/or grant access to it to a subcontractor, service provider, or third party located in non-member states of the European Economic Area only when:

  • It is located in a country that ensures an adequate level of protection under an adequacy decision made by the European Commission;

  • Appropriate safeguards have been implemented in accordance with the GDPR, such as:

    • The signing of standard contractual clauses adopted by the European Commission for the transfer of personal data to subcontractors established in third countries (2010/87/EU);

    • The use of approved binding corporate rules; or

    • The application of an approved code of conduct.

Today, the personal data that we transfer directly/indirectly outside the European Economic Area is that processed by various IT service providers (subcontractors of The Robin Lodge) located in the United States (and/or subject to U.S. law).

Note: In light of the recent ruling by the CJEU invalidating the Privacy Shield (case "Schrems II"), we are closely monitoring the political developments of this decision and the alternatives available to us to continue transferring data to the United States while ensuring an adequate level of protection.

For more information or a copy of the safeguards, send an email to info@therobinlodge.com indicating your first name, last name, and in the subject line "transfers outside the European Union: DACP". Also, be sure to specify in the body of your email the exact information you wish to obtain.

9. Your rights

  • Right of access

You have the right to know what personal data we hold about you. Upon request, we will provide you with all the information regarding this.

  • Right to rectification

If you find that certain data concerning you is inaccurate or incomplete, you can request that it be corrected or completed without delay.

  • Right to erasure

In certain situations, you can request that your data be deleted. This is particularly the case if:

  • it is no longer necessary for the purposes for which it was collected or processed,

  • they have been processed in a manner unlawful,

  • you withdraw your consent and no other legal basis justifies the processing,

  • you object to the processing in certain specific situations.

⚠️ The right to erasure does not apply in all situations provided by law.

  •  

  • Right to restriction of processing

You can request that the processing of your data be restricted in certain cases, for example if their accuracy is contested. In the meantime, we will limit the use of this data until verification.

  • Right to data portability

You can receive your data in a structured, commonly used, and machine-readable format, in order to transfer it to another service if needed.

Note: the right to erasure remains applicable. This right applies when the processing is based on:

  • your consent (articles 6.1.a or 9.2.a of the GDPR),

  • the performance of a contract (article 6.1.b of the GDPR),

  • or when the processing is automated.

  • Right not to be subject to a decision based solely on automated processing

You have the right to not be subject solely to automated processing, including profiling, which would produce legal effects or significantly affect you.
You can request a human intervention in these processes.
We are committed to ensuring that you are never subjected to this type of decision without human intervention.

  • Right to object

You can object at any time to the processing of your data for reasons related to your personal situation, if this processing is based on:

  • public interest or the exercise of public authority (Article 6.1.e),

  • or our legitimate interests (Article 6.1.f).

In this case, we will cease processing, unless we demonstrate that overriding legitimate grounds prevail over your rights or for the establishment, exercise, or defense of legal rights.

  • Right to withdraw consent

When processing is based on your consent, you can withdraw it at any time, without affecting the lawfulness of the processing carried out before the withdrawal.

10. How to exercise your rights?

You can send your requests by email to the address info@therobinlodge.com or by regular mail to the following address:

The Robin Lodge (Valapi SRL)
Chemin Longues Aulnes, 7
1430 Rebecq

To ensure the respect of your privacy and to ensure your security, we will take the necessary measures to verify your identity before allowing you to access, and possibly correct, data.

11. Supervisory authority

If you believe that we are failing to meet any of our obligations, we invite you to contact us by sending an email to info@therobinlodge.com or a letter to the above postal address.

We will do everything possible to ensure you receive a follow-up as soon as possible.

In case our response does not satisfy you, you have the right to file a complaint with the supervisory authority of the state in which you reside, work, or where the alleged violation occurred.

Regarding Belgium, the supervisory authority is the Data Protection Authority (DPA).

Data Protection Authority
Rue de la Presse 35
1000 Brussels

Tel: +32 (0)2 274 48 00

E-mail: contact@apd-gba.be 

URL: https://www.autoriteprotectiondonnees.be  

12. Changes to this privacy statement

The privacy statement may be modified at any time due to new developments in the processing implemented by The Robin Lodge or changes in applicable legislation. Any changes to this policy take effect immediately. It is therefore advisable to visit this page regularly.

Date of last modification: 02/05/2025