Privacy Policy

Privacy policy

General information:

This privacy policy (“Privacy Policy”) details the processing practices of your data when you use our Website and the services that are connected to it (both will hereinafter be called the “Website”). ASTRA SWEETS, which has its headquarters at Bleukenlaan 18, 2300 Turnhout and is registered at the CBE with business number 0432.549.427, will act as the processor following the applicable data protection regulations.


Our Website uses cookies and similar technologies. Cookies are small text files placed on the hard drive of an appliance containing certain information, such as personal data. If you want more information about our cookies, you can read our cookie policy.

The Privacy Policy can be modified from time to time. Such modifications will be communicated on the Website. This Privacy Policy was last updated on 07/05/2024.

Which data do we process and why?

When you use the Website, we will process your data. That data can include:

  1. IP and cookies
  2. Identification data (name, address, email, phone number, etc.)
  3. Contact details
  4. Curriculum vitae

The purpose of the processing and the legal basis for it are:

  1. Website usage (consent and, if applicable, legitimate interest)
  2. Contacting us (consent and, if applicable, legitimate interest)
  3. Job applications (consent)
  4. To provide you with the information you request about products and services in a personalised and efficient way through the Website, by email, by phone or through social media channels. (consent)
  5. Processing your data so we can provide you with certain services. (execution of the contract)
  6. Collecting stats on the usage of the Websites (consent)
  7. Improving the performance and look of the Websites (consent and, if applicable, legitimate interest)

We don’t generally send personal data you have entered into the Website to social media providers unless you consent.

In addition to the objectives, we can also process your data:

  • to provide it to a financial institution or tax service provider so your financial institution and tax service provider can meet their legal obligations.
  • to transfer the data to the police or legal authorities as proof of potential crimes or in case there are sound suspicions of an unlawful act or crime committed by you through the registration with or usage of the Website or Services.

Who we will share your data with

We do not send your data to third parties in an identifiable way if it is not required for the Website’s functionality unless you have given your specific consent.


We can rely on third-party processors to make the Website available to you. We ensure that third-party processors may only process your data per our written instructions. We guarantee that all third parties will be selected with the utmost care so we can safeguard the security and integrity of your data.


Where we process data

Astra Sweets and our external processors will process your identifiable data only within the EEA.

We can transfer your anonymised or aggregated data to organisations outside the EEA. If such a transfer takes place, we will ensure that there are appropriate safeguards to guarantee the security and integrity of your data, all the rights concerning personal data that you might have under applicable mandatory law are guaranteed, and the necessary legal protection mechanisms are in place.


How we will process your data

We do our best to process only the data required to achieve the goals stipulated in this Privacy Policy. We will process your data in a legal, honest and transparent way and apply ourselves to keep it accurate and up-to-date to the best of our abilities.


Your data will only be processed for as long as required to achieve the goals stipulated in this Privacy Policy or until you revoke your consent for data processing. But remember that revoking your consent can imply that you can no longer use the Website, either entirely or partially.


We will take appropriate technical and organisational measures to keep your data safe from unauthorised access, theft, unintentional loss, manipulation or destruction. Our personnel or the personnel of third-party processors will only be granted access on a need-to-know basis. Access is subject to strict confidentiality obligations. However, the care for security and safety are merely effort commitments. Therefore, we cannot be held liable for damages resulting from faulty or unlawful usage of your data by a third party.


We can process your data in our interest, as well as that of our partners or third parties, if your registration on the Website or use of the Website or Services is one of the following:
(a) a violation of the terms and conditions or intellectual property rights or any other right of a third party
(b) a threat to the security or integrity of the Services
(c) a danger to the Website or systems of ours or subcontractors due to viruses, Trojan Horses, spyware, malware or any other form of malicious code, or (d) in any way illegal or unlawful, discriminatory or offensive.


The data storage timeframe

The storage timeframes can vary depending on the provided service.

  • We will store your data as long as necessary to achieve the goals for which the data was collected and processed.
  • We will store your contact details as long as necessary to handle the application process when you apply for a job with us. Your contact information will be deleted eight weeks after wrapping up the application process at the latest unless you consent to us storing it up until one year after the finalisation of the process.
  • We will store your data as long as necessary to meet our legal and contractual obligations and fulfil our commercial operational activities.

Your rights

You have the right to request access to all data we process about you. Access requests submitted to cause nuisance or damage to us will not be answered.


You can ask us to correct any incorrect personal details for free.


You have the right to revoke your previously granted consent for data processing. You can revoke your consent at all times by sending an email to or


You have the right to ask us to delete the data that applies to you when you revoke your consent for processing your data. However, you should note that a deletion request will be assessed in light of legal and regulatory obligations or administrative or legal commands that could prevent us from deleting said data. Rather than deletion, you could also request us to limit the processing of your data.


You have the right to object to the processing of personal data if you can prove that there are serious, legitimate reasons related to circumstances that justify such an objection.


When your data is processed based on consent or a contract and processing is carried out with automated tools, you have the right to receive the data you have provided to us in a structured, commonly used and machine-readable format. Furthermore, if technically feasible, you can pass that data on to a different service provider. The technical feasibility of this process will be assessed solely by us.


If you want to submit a request to exercise one or more of the rights mentioned in this document, you can send an email to or In your request, you must clearly state which right you wish to exercise and why. We will immediately notify you of receiving your request when we do. If the request is deemed justified, we will grant your request as quickly as reasonably possible and ultimately thirty (30) days after receipt. Additional proof of identity may be requested if necessary.


If you have a complaint about your data being processed, you can contact us by emailing or


If you are not satisfied with our response, you can file a complaint with the data protection authorities. You can file a complaint by clicking the following URLs: the Dutch  Data Protection Authority or the Belgian Data Protection Authority.



Contact details of our Data Protection Officer (DPO)

HR manager Lotte Vermeiren: