PRIVACY STATEMENT.

1                 GENERAL

1.1               This Privacy Statement is intended for natural persons from whom GeoDynamics collects and processes personal data, regardless of whether they are customers, with the exception of employees, former employees and job applicants of GeoDynamics (hereinafter ‘you’).

1.2               In this Privacy Statement, ‘we’, ‘us’ or ‘GeoDynamics’ refers to GeoDynamics NV.

Capitalised terms shall have the meanings set forth in Article 1 of our General Terms and Conditions.

1.3               This Privacy Statement applies to the collection and processing of your personal data by GeoDynamics, including in the context of using our Products, SaaS services and Services, visiting our website (https://www.geodynamics.eu), sub-pages and social media channels, as well as in the context of our (commercial) relationships with customers, prospects, suppliers and business partners.

1.4               The processing of personal data of job applicants is subject to a separate privacy statement available on our website.

1.5               We are committed to protecting your privacy and the security of your personal data. We process your personal data in accordance with the provisions of the General Data Protection Regulation of the EU (‘GDPR’) and/or applicable local privacy laws.

1.6               We may amend this Privacy Statement from time to time. You can always request the previous version of this Privacy Statement from our Data Protection Officer (‘DPO’) at privacy@geodynamics.be. We encourage you to visit this website regularly to determine whether you have the most current version of this Privacy Statement, and to do so each time you share your personal data with us.

This Privacy Statement was last amended in January 2026.

2                 OUR PRIVACY PRINCIPLES

2.1               We treat data protection and privacy in accordance with the following privacy principles (among others):

  • We are experienced in processing personal data. We adhere to strict legal regulations. We process certain personal data and do not keep it longer than necessary. We are transparent and clear about this in this Privacy Statement.
  • We have strict rules for processing personal data, and we regularly monitor the functioning of the rules. We process personal data that are relevant and necessary to serve our customers, prospects, suppliers and business partners and to be a good employer for our employees. We decouple personal identifying information from personal data as soon as reasonably possible and permitted when we use it for data analysis. We use information obtained from data analysis to improve our Products, SaaS services and Services and to provide targeted information about them to our customers and prospects.
  • Artificial Intelligence (AI) is becoming increasingly important to GeoDynamics. Therefore, we have drawn up an AI policy, which establishes the principles that guide the work of the AI and data science teams in developing ethical and responsible AI models, as appropriate. We will implement responsible AI practices in a manner appropriate to the circumstances, business models and jurisdictions in which we operate. We strive to integrate the social and ethical dimensions of AI into the product development process. Our principles for responsible AI serve as a starting point to effectively and responsibly develop and deploy AI to support business growth, innovation and improvement of our Products, SaaS services and Services.
  • We have implemented appropriate organisational and technical (security) measures for the processing of personal data of our customers, prospects, suppliers, business partners and employees. Only persons with proper authorisation have access to personal data. If we engage external parties, we do so only after we have made proper arrangements for the secure processing of personal data. We take measures to prevent data breaches. In the unlikely event of a data breach, we will inform the data subjects and the regulator as appropriate.
  • We develop new systems according to the principles of ‘privacy by design’ and ‘privacy by default’. This means that privacy issues must be taken into account in the design process, and that we appropriately include privacy as an integral part of our Products, SaaS services and Services. We strive to provide transparent, clear information about what personal data we process, why it is needed and how we handle it. We help our customers, prospects, suppliers, business partners and employees who want more insight or information.

3                 WHO IS RESPONSIBLE FOR THE PROCESSING OF PERSONAL DATA?

3.1               We are responsible for the processing of your personal data. Our contact information can be found at the end of this Privacy Statement, in the section on how to contact us.

3.2               Depending on the context, GeoDynamics acts as a data controller or as a processor within the meaning of the GDPR.

3.3               For the processing operations described in this Privacy Statement, we act as the controller and determine the purposes and means of processing.

3.4               However, when we process personal data on behalf of our customers, for example in the context of using our Tool and/or Apps, we act as processors within the meaning of Article 28 of the GDPR. In this case, the customer, as the controller, determines the purpose and means of processing and is responsible for informing data subjects.

4                 WHY DO WE COLLECT YOUR PERSONAL DATA?

4.1               We collect and process your personal data for the following purposes:

  • Managing commercial contacts, including lead generation and qualification, scheduling demos, following up on sales meetings and contacting (former) customers as part of prospecting
  • Preparing, sending and following up on quotations
  • Onboarding new customers
  • The execution and monitoring of agreements
  • Managing and responding to requests and inquiries, including service and support requests
  • Registering (logging) and following up on reported problems
  • Recording telephone conversations with our support services and, in exceptional cases, with other designated employees in the context of telephone communication with you, for training and quality purposes
  • Informing installers of new orders and following up on them
  • Organising, registering and following up on registrations for training courses, workshops and/or seminars/webinars (‘event’), including practical communication and – if applicable – sharing lists of participants with a partner organisation when the event is jointly organised
  • Creating and sending (temporary) login credentials to event organisers where GeoDynamics is responsible for providing certain Saas services (such as track & trace)
  • Organising and handling contests and promotions, including contacting participants and winner(s) and, if appropriate, announcing the winner(s) on/in the website, Tool, social media channels and/or newsletter of GeoDynamics
  • Sending targeted marketing and advertising, updates, newsletters and event invitations based on your communication preference
  • Managing documents and internal administrative processes
  • Keeping records and accounts, including billing and accounts receivable management
  • Analysing and improving the operation, content and security of the website, Tool and Apps, including usage statistics and usage monitoring
  • Conducting customer satisfaction and market surveys
  • Contacting customers or partners and collecting, recording and using testimonials and references for promotional and communication purposes, such as on GeoDynamics’ website and social media channels
  • Securing GeoDynamics’ buildings and offices, including through camera surveillance
  • Complying with legal and regulatory obligations applicable to GeoDynamics

5                 WHAT PERSONAL DATA DO WE COLLECT?

5.1               Depending on the context, we may process the following personal data:

  • Identification and contact data, such as surname, first name, address, email address and (mobile) phone number
  • Professional data, such as company name, business address and occupation or position within the company
  • User and account information, such as username
  • Camera footage when you visit our buildings and offices
  • Communication data, including communication preferences and history
  • Information regarding the use you make of the website, Tool and Apps (such as IP address, interactions, click behaviour)
  • Audio recordings of telephone conversations with our support services and, in exceptional cases, with other designated employees (for training and quality purposes)
  • Photographs, video footage or audio recordings as part of testimonials or references
  • Content of testimonials or references (such as quotes, statements or reviews)
  • Data collected through cookies or similar technologies, as further explained in our Cookie Policy (which you can find on our website)
  • Personal data that you provide to GeoDynamics voluntarily and on your own initiative in the context of correspondence, support questions or filling in forms, insofar as it is relevant to the handling of your question.

5.2               We ask you not to provide personal data that is not necessary to process your request or question.

6                 NEWSLETTERS AND OTHER COMMERCIAL COMMUNICATIONS

6.1               Once you have opted in, we may send you targeted marketing and advertising, updates, newsletters and event invitations.

6.2               All of our customers receive our newsletters, updates and other mailings, such as event invitations and surveys. This is necessary to keep our customers informed.

6.3               You always have the option to opt out of further commercial communications from us by clicking the ‘unsubscribe’ link at the bottom of the email or by emailing our DPO at privacy@geodynamics.be.

6.4               If you unsubscribe from commercial communications from us, we will remove you from the mailing list as soon as possible. The quickest and automated way to unsubscribe is to click the unsubscribe link at the bottom of the email.

7                 HOW DO WE COLLECT YOUR PERSONAL DATA?

7.1               We primarily collect your personal data directly from you, including when you communicate with us, use our website, Tool, Apps or Services, participate in events, or contact our support services.

7.2               In some cases, we do not obtain personal data directly from you, but through third parties, such as your employer, a customer or partner organisation, or through publicly available sources. In such cases, we will only process personal data necessary for the intended purpose, and we will inform you in accordance with Article 14 of the GDPR, unless a legal exception applies.

8                 SOCIAL MEDIA

8.1               If you participate in social media, such as Instagram, LinkedIn, Facebook, X or Pinterest, you should be familiar with and understand the tools provided by those sites that allow you to make choices about how you share the personal data in your social media profiles. We are bound by the privacy practices and policies of these third parties, so we encourage you to read the applicable privacy notices, terms of use and related information about how your personal data is used in these social media environments. Depending on the choices you have made regarding your settings on various social media sites and in combination with your settings in our Products, SaaS services, Services, websites, Tool and Apps, certain personal data may be shared with us about your online activities and social media profiles, for example through Facebook Connect or Google Connect.

8.2               If you do not want us to share your personal data with a social media site or application, you cannot access such social media site or social media application. For example, you cannot click a ‘like’ button on a product detail page.

9                 LEGAL BASES

9.1               Depending on the specific processing purpose, the person involved and the concrete circumstances, we process personal data on the basis of one or more of the following legal bases:

  • Your consent (Article 6.1(a) GDPR): We process personal data based on your consent, including for sending electronic direct marketing (such as promotional communications), using testimonials and references with identifiable natural persons, and other processing for which prior consent is required by law. You can withdraw your consent at any time.
  • Performance of a contract or pre-contractual steps (Article 6.1(b) GDPR): We process personal data when this is necessary for the performance of a contract to which you are a party, or in order to take steps at your request prior to entering into a contract, such as the preparation and follow-up of offers, the onboarding process, the delivery of our Products and SaaS services, the organisation of events, the provision of support and the management of contractual relationships.
  • Legal obligation (Article 6.1(c) GDPR): We process personal data when necessary to comply with legal or regulatory obligations to which we are subject, such as accounting and tax obligations, camera surveillance obligations, or providing data to competent authorities when required by law.
  • Legitimate interest (Article 6.1(f) GDPR): We process personal data when this is necessary for the protection of our legitimate interests, such as the management and security of our organisation and IT systems, improving our Products, SaaS services and Services, maintaining and developing commercial relationships, compiling aggregated statistics and sending electronic direct marketing to existing customers regarding similar or identical Products or SaaS services. In doing so, we always take into account your interests, fundamental rights and freedoms. We perform a balancing of interests and take appropriate technical and organisational measures to limit the impact on your privacy.

In addition, your personal data may be processed in the context of business transactions, such as a merger, acquisition, sale, reorganisation, transfer of assets or businesses, or a similar transaction, in which case we always apply appropriate safeguards to ensure the confidentiality and protection of personal data.

10           HOW DO WE PROTECT YOUR PERSONAL DATA?

10.1          We have adopted technical and organisational measures to protect your personal data against loss or any form of unlawful processing. We protect your personal data using a range of security measures, including secure storage.

10.2          Our information security policy is based on the ISO 27001 standards and includes rules regarding the security of personal data (assignment of responsibilities in job profiles), the management of company assets, the physical security of the buildings, access control and authorisations for our employees, maintenance and development of systems, emergencies, business continuity, monitoring of potential threats (external or internal), monitoring of information security incidents, and conducting a periodic security audit of the systems.

10.3          Notwithstanding (i) GeoDynamics’ security policies, (ii) the controls we implement, and (iii) the actions we take in this regard, a foolproof level of security cannot be guaranteed. No method of transmission or transfer via the Internet nor any method of electronic storage is 100% secure. Therefore, we cannot guarantee absolute security in this regard.

11           RETENTION PERIODS

11.1          We keep your personal data only as long as necessary for the specific purpose of the data. We retain marketing-related personal data for two years after your last contact with us. Invoices are kept for at least seven years in accordance with local tax laws. Camera footage is kept for a maximum of 30 days. This retention period may be extended if and as long as the images are necessary for the determination of an incident, claim or offence or in the context of judicial, insurance or disciplinary proceedings related to a specific incident. Access to this camera footage is strictly limited to authorised persons, takes place in a confidential manner, and is kept to a minimum. Where required, camera footage may be provided to police and judicial authorities in the event of incidents.

11.2          We will delete personal data sooner if you ask us to delete your personal data, unless we are prohibited from doing so by law.

12           DE WE SHARE YOUR PERSONAL DATA WITH THIRD PARTIES?

12.1          Our basic principle is that we will (a) not sell your personal data to third parties, (b) only share your personal data with other Blinqx companies (intra-group) if we have a legitimate interest in doing so, and (c) store your personal data within the EU.

12.2          In some cases, we share your personal data with third parties when necessary to perform a contract, provide our Products, SaaS services and Services or support our business operations (including support services). In this context, your personal data may be transferred to the following categories of third parties, who will then act as processors within the meaning of Article 28 GDPR:

  • Suppliers and service providers, such as payment service providers, accountants, software providers, cloud and IT service providers, transport companies and logistics partners
  • Installers and other subcontractors involved in the delivery, installation or support of our Products, SaaS services and Services
  • GD Group BV, which supports us with accounting and legal services
  • Contact centres and freelancers, to help us with customer and support service
  • Analysis and search engine providers that help us improve and optimise our Products, SaaS services, Services, Tool, Apps and websites
  • Advertising and media companies performing marketing and media activities on our behalf

We sign a data processing agreement with these companies, which contains the necessary guarantees regarding confidentiality and privacy compliance of your personal data.

12.3          If our suppliers or third parties we work with are located in a country outside the European Economic Area (EEA) or store their data outside the EEA, we have an agreement with these parties to protect privacy in a manner similar to data protection in the EEA, such as the EU Standard Contractual Clauses, because data protection regulations in these countries do not always provide the same level of protection as within the EEA. We may also provide your personal data to third parties to comply with laws and regulations or in connection with legal proceedings, a court order or other enforcement order.

13           YOUR PRIVACY RIGHTS

13.1          You have the right to ask us for access to the personal data we have stored about you at any time. You have the right to request:

  • Access to your personal data (access)
  • To change or correct your personal data (rectification)
  • To have your personal data deleted (erasure/right to be forgotten), unless we have to retain specific personal data to comply with our legal obligations, or as part of legal proceedings
  • To limit the processing of your personal data (restriction)
  • To transfer your data to another controller or to yourself, if we process your data based on your consent or based on the contract you have entered into with us (data portability)
  • To object to the (further) processing of your personal data if we have processed your data on the basis of our legitimate interests (objection)

13.2          In order to ensure that the request for access was submitted by you, we ask that you attach a copy of your ID card to your request. In this copy, black out your passport photo, the MRZ ( Machine Readable Zone, the strip of numbers at the bottom of the passport), the passport number and the National Registration Number (RRN). You must do this to protect your privacy. We will respond to your request as quickly as possible, but in any case within four weeks.

13.3          If you would like to know more or exercise your rights, please contact us at: privacy@geodynamics.be.

14           MINORS PROVIDING PERSONAL DATA

14.1          The age limit for minors to obtain parental consent is set by each EU Member State and can range from 13 to 16. Minors may provide us with personal data only if they have written consent from one of their parents or a legal guardian.

15           NO AUTOMATED DECISION-MAKING

15.1          We do not make decisions based solely on automated processing of personal data (including profiling) that produce legal effects concerning you or otherwise significantly affect you.

16           RELATIONSHIP TO BLINQX GROUP

16.1          GeoDynamics is part of the Blinqx Group. Common data protection and information security principles are applied within this group, as described in the Blinqx Privacy Statement.

16.2          This Privacy Statement supplements the Blinqx Privacy Statement and only describes the processing of personal data by GeoDynamics in its capacity as a data controller (as described in paragraph 3). For these processing operations, GeoDynamics NV remains the primary point of contact for data subjects.

16.3          The Blinqx Privacy Statement only applies to processing operations that take place at group level. Processing operations performed by GeoDynamics itself will be governed primarily by this Privacy Statement.

16.4          Personal data is not automatically shared within the Blinqx Group. Any intra-group data sharing will be done only when necessary for a specified purpose, subject to appropriate safeguards and in compliance with the GDPR and/or applicable local privacy laws.

16.5          For general information on group data protection policies, please visit the Blinqx website.

17           QUESTIONS AND/OR COMPLAINTS

17.1          If you have any questions or comments about this Privacy Statement or about how we collect, use or process your personal data, please contact us:

  • By email: privacy@geodynamics.be
  • By post: GeoDynamics NV, Dumolinlaan 9, B-8500 Kortrijk, Belgium, for the attention of the DPO

17.2          If you are dissatisfied with the way GeoDynamics has dealt with these questions or comments, or if you have any complaints about the way GeoDynamics collects, uses or processes your data, you can lodge a complaint with the Data Protection Authority (address: Rue de la Presse 35, B-1000 Brussels, Belgium).