Data protection - BELFOR United Kingdom

Privacy statement BELFOR

§ 1 Information about the collection of personal data

(1) The following information concerns the collection of personal data while using this website. Personal data are all data that can be personally related to you, e.g. name, address, email addresses, user behaviour.

(2) The controller pursuant to Article 4 (7) EU General Data Protection Regulation (GDPR) is BELFOR UK Ltd.,Kingsbury Link, Trinity Road Tamworth, Staffordshire B78 2EX, [email protected] (see our legal notice). [You can contact our data protection officer at [email protected] or at our postal address with the addition “Data protection officer”.]

(3) When you contact us or report a claim by e-mail, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored by us in order to answer your questions. When storage is no longer necessary, we will delete the applicable data or restrict the processing of it if legal retention requirements apply.

§ 2 Your rights

(1) You have the following rights towards us with regard to your personal data:

Right to information,
Right to correction or deletion,
Right to restriction of processing,
Right to refusal of processing,
Right to data portability.

(2) You also have the right to lodge a complaint about our processing of your personal data with a data protection authority.

§ 3 Collection of personal data when you visit our website

(1) If you are only using the website for information and do not register or transmit information to us in any other way, we only collect the personal data which your browser transmits to our server. If you wish to view our website, we collect the following data that are technically necessary for us to display our website to you and guarantee its stability and security (the legal basis is Article 6 (1) sentence 1 lit. f GDPR):

IP address
Date and time of the enquiry
Time zone difference from Greenwich Mean Time (GMT)
Content of the request (specific page)
Access status / HTTP status code
Quantity of data transferred in each case
The website from which the request comes
Browser
Operating system and its interface
Language and version of the browser software.

§ 4 Other functions and offers on our website

(1) As well as the purely informational use of our website, we offer various services that you may use if they interest you. To do so, you must generally provide further personal data, which we use in order to provide the respective service and to which the above-mentioned principles of data processing apply.

(2) We sometimes use external service providers to process your data. They have been carefully selected and commissioned by us, are bound to our instructions and are regularly monitored.

(3) We can also pass your personal data on to third parties if we offer special offer participation, lotteries, contract conclusions or similar services together with partners. You can find more information about this if you enter your personal data or below in the description of the offer.

(4) If our service providers or partners are located in a country outside the European Economic Area (EEA), we will inform you about the consequences of this in the description of the offer.

§ 5 Newsletter

(1) With your consent, you can subscribe to our newsletter, with which we inform you about our current interesting offers. The goods and services purchased are named in the declaration of consent.

(2) To register for our newsletter, we use the so-called double-opt-in process. This means that after you register, we send an email to the email address you gave asking for confirmation that you wish to receive the newsletter. If you do not confirm your registration within [24 hours], your information is locked and automatically deleted after a month. In addition, we save the IP addresses you used and the times of registration and confirmation. The purpose of the process is to prove your registration and, if necessary, to investigate possible misuse of your personal information.

(3) The only obligatory information for transmission of the newsletter is your email address. [Provision of other, separately marked data is voluntary and is used in order to contact you personally.] After your confirmation, we store your email address for the purpose of sending the newsletter. The legal basis is Article 6 (1) sentence 1 lit. a GDPR.

(4) You can revoke your consent to transmission of the newsletter and unsubscribe to the newsletter at any time. You can revoke it by clicking on the link provided in every newsletter email, by email to [[email protected]] or by sending a message to the contact point given in the legal notice.

§ 6 Revocation or withdrawal of consent to the processing of your data

(1) If you have agreed to the processing of your data, you can revoke this at any time. After you have pronounced it to us, the revocation influences the permissibility of processing your personal data.

(2) If we base the processing of your personal information on consideration of interests, you can revoke your consent to processing. This is the case, in particular, if processing is not necessary for fulfilment of a contract with you, which is always outlined by us in the subsequent description of the functions. When exercising the right of revocation, we ask you to cite the reasons why we should not process your personal information as we have previously done. In the case of a justified revocation, we will examine the situation and either stop or adjust the data processing or convey to you our protection-worthy and necessary reasons for continuing the processing.

(3) Of course, you can revoke consent to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us of your advertising revocation at the following contact points: BELFOR UK Ltd, Kingsbury Link, Trinity Road Tamworth, Staffordshire B78 2EX, [email protected].

§ 7 Conditions for the transfer of personal data to third countries

(1) For exceptional cases in which personal data is transferred to countries outside the European Economic Area (EEA), i.e. to third countries, this is done under the conditions of Art. 44 et seq. GDPR.

(2) The European Commission certifies data protection comparable to the EEA standard for some third countries by means of adequacy decisions. However, in other third countries to which personal data may be transferred, there may not be a consistently high level of data protection due to a lack of legal provisions. Where this is the case, we ensure that data protection is sufficiently guaranteed. This is possible via binding corporate rules, standard contractual clauses of the European Commission for the protection of personal data pursuant to Art. 46 (1),

(2) lit. c GDPR, certificates or recognised codes of conduct.

§ 8 Processing of data from your end devices (“cookie policy”)

(1) In addition to the aforementioned data, technically necessary and optionally, if you have provided your consent, technically unnecessary cookies are stored on your computer. Cookies are small text files that are stored on your hard drive in relation to the browser you are using and which provide the party setting the cookie (in this case, us) with certain information. They serve to make the internet offer as a whole more user-friendly and effective.

(2) If cookies are set on our website that require your consent, we will inform you separately within this privacy policy. If you have given your consent, you can revoke it at any time via the cookie banner on our website.

(3) We use TLS encryption to protect your data. You can recognise this by the prefix https:// in the address bar of your browser.

(4) The functions we use, which you can select and revoke individually via the consent manager, are described below.

§ 9 Web Analytics

Utilisation de Google Analytics

(1) If you have given your consent, Google Analytics 4, a web analytics service provided by Google LLC, will be used on this website. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (‘Google’).

(2) Google Analytics 4 uses cookies that enable an analysis of your use of our websites. The information collected by the cookies about your use of this website is usually transferred to a Google server in the USA and stored there.

(3) With Google Analytics 4, IP anonymisation is enabled by default. Due to IP anonymisation, your IP address will be truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. Your user behaviour is recorded during your visit to our website. In addition to the personal data mentioned in § 5 of this declaration, the following data is collected, among other things:

First visit to the website
Start of the session
Web pages visited
Your ‘click path’, interaction with the website
Scrolls (whenever a user scrolls to the bottom of the page (90%))
Clicks on external links
Internal search queries
Interaction with videos
File downloads
Ads viewed/clicked

(4) On behalf of the operator of this website, Google will use this information to evaluate your use of the website and to compile reports on website activity. The reports provided by Google Analytics are used to analyse the performance of our website.

(5) Recipients of the data are/may be

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as a processor pursuant to Art. 28 GDPR)
Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

(6) The European Commission adopted its adequacy decision for the USA on 10 July 2023. Google LLC is certified under the Data Privacy Framework. Further information on Google’s privacy policy can be found here.

§ 10 Links

(1) We use links to content on websites operated by other website operators.

(2) We have no influence on the data collected there or the data processing procedures, nor do we know the full extent of the data collection, the purpose of the processing or the storage periods. We also have no information about the deletion of the collected data by the linked provider. We are therefore not responsible for data processing on the linked website in accordance with data protection law.

(3) Further information on the purpose and scope of data collection and processing by the website operator can be found in the privacy policies of the respective websites. There you will also find further information on your rights in this regard and the settings options for protecting your privacy.

§ 11 Embedded functions and content

1. YouTube

(1) We have integrated YouTube videos into our website, which are stored on YouTube and can be played directly from our website. These are all integrated in ‘extended privacy mode’, which means that no data about you as a user is transferred to YouTube if you do not play the videos. The data is only transferred when you play the videos. We have no influence on this data transfer.

(2) The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The European Commission issued its adequacy decision for the USA on 10 July 2023. This decision establishes that the USA ensures an adequate level of data protection for transfers within this framework. Google is certified under the EU-US Data Privacy Framework and an adequate level of data protection can be assumed. Further information on Google’s privacy policy can be found here.

2. Inxmail

(1) You can register for events on our website. For this purpose, we use a mailing tool that enables automated registration with two-factor authentication. The provider is Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany. We have concluded a data processing agreement with Inxmail in accordance with Art. 28 GDPR, which ensures that data processing is carried out in a permissible manner.

The legal basis for the processing is our legitimate interest in an appropriate registration process (Art. 6 para. 1 lit. f) GDPR).

§ 12 Meta Pixel

(1) With your consent, this website uses meta pixels to measure conversions. The provider of this service is Meta Platforms, Inc, 1601 Willow Road Menlo Park, CA 94025 USA. This allows the behaviour of website visitors to be tracked after they have been redirected to the provider’s website by clicking on a Facebook or Instagram advertisement. This allows the effectiveness of these advertisements to be evaluated for statistical and market research purposes and future advertising measures to be optimised.

(2) The data collected is anonymous to us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Meta, so that it can be assigned to the respective user profile and Meta can use the data for its own advertising purposes in accordance with the Meta Data Usage Policy. This enables Meta to place advertisements on Facebook and Instagram pages and outside these pages. As the website operator, we have no influence on this use of the data.

(3) The use of the Meta Pixel is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR. This consent can be revoked at any time.

(4) On 10 July 2023, the European Commission issued its adequacy decision for the USA. This decision establishes that the USA ensures an adequate level of data protection for transfers in this context. Meta is certified under the EU-US Data Protection Framework and an adequate level of data protection can be assumed. Further information on Meta’s privacy policy can be found here.

§ 13 LinkedIn Insight Tag

(1) The LinkedIn Insight Tag is a JavaScript code embedded on our website.

(2) It is a tracking tool that collects and analyses LinkedIn members on a website. This provides us with insights into our target group, the attractiveness of our offers and the performance of advertising campaigns on LinkedIn. The provider is LinkedIn Corporation, 1000 W Maude Ave, Sunnyvale, CA 94085, USA.

(3) The LinkedIn Insight Tag sets a cookie in the user’s browser. LinkedIn uses this to collect data such as URL, referrer URL, device properties, browser properties and IP address.

(4) The legal basis for this tracking is your consent in accordance with Art. 1 lit. a) GDPR, which you can revoke at any time.

(5) The European Commission issued its adequacy decision for the USA on 10 July 2023. This establishes that the USA ensures an adequate level of data protection for transfers within this framework. LinkedIn is certified under the EU-US Data Privacy Framework and an adequate level of data protection can be assumed. Further information on the terms of use of the LinkedIn Insight Tag and on data protection at LinkedIn can be found here.

§ 14 Application documents

(1) You can find out about our current job vacancies on the BELFOR careers website www.belfor-jobs.com.

From there, you can apply directly online (using a form).

(2) This careers site is also used for other companies that are part of the BELFOR Group under the responsibility of BELFOR Europe GmbH, Keniastraße 24, 47269 Duisburg, [email protected] (see our legal notice). You can contact our data protection officer at [email protected] or using our postal address with the addition of “the data protection officer”.

BELFOR Europe GmbH makes the data available to the responsible BELFOR company, which uses this data independently and exclusively for the purpose of processing your application for the purposes of recruitment, personnel selection, employment and quality assurance as the responsible party in accordance with Art. 4 (7) of the EU General Data Protection Regulation (GDPR). A list of the countries where BELFOR is represented can be found here. There you will also find the respective privacy policy in your language.

(3) We process your personal data exclusively for the purpose of your application for employment, insofar as this is necessary for the decision on whether to establish an employment relationship with us. The legal basis for this is Art. 6 (1) lit. b) GDPR and § 26 (1) in conjunction with (8) sentence 2 BDSG (job advertisement and implementation of pre-contractual measures) and Art. 6 (1) lit. f) GDPR for unsolicited applications. Your personal data will be treated confidentially. In order to process your application, it may be necessary for employees in the Human Resources department, the relevant department and, if applicable, relevant committees such as the works council or the representative body for disabled employees to access your personal data. If the data is required for legal purposes after the application process has been completed, data processing may take place on the basis of the requirements of Art. 6 GDPR, in particular for the exercise of legitimate interests pursuant to Art. 6 para. 1 lit. f) GDPR. Our interest then lies in the assertion or defence of claims.

(4) The following data may be processed by us during the application process:

Master data (title, first name, surname, date of birth, if applicable)
Contact details (address, telephone or mobile number, private e-mail address)
Application data (e.g. profile picture as well as other documents such as CV, cover letter, overall application, certificates).

(5) Once the application process has been completed, your data will generally be deleted after six months at the latest. If you have agreed to be considered for other positions, we will store your personal data for a period of six months after you have been notified of our decision. Different periods may apply due to country-specific retention periods. If your application is successful, we will transfer your application documents to your personnel file.

(6) The provision of data is not required by law or contract. You are not obliged to provide the data. However, if you do not provide the data, it will not be possible to process your application or, if applicable, to hire you.

(7) We use a specialised software provider for the application process. This provider acts as a service provider for us and may also obtain knowledge of your personal data in connection with the maintenance and servicing of the systems. We have concluded a data processing agreement with this provider to ensure that data processing is carried out in a permissible manner.

(8) Your application data will be reviewed by the Human Resources department upon receipt of your application. Further access rights will be granted to department managers as necessary. The next steps in the process will then be coordinated. Within the company, only those persons who need your data for the proper execution of our application process will have access to it.

(9) With your express consent in accordance with Art. 6 (1) (a) GDPR, we will review your application for other opportunities within our company and, if appropriate, forward your profile to other departments within our company. You can withdraw your consent at any time.

§ 15 Online claim report

(1) You can report damage online using the form provided on our website.

(2) The data required for documenting damage is collected and processed in accordance with Art. 6 (1) (b) GDPR for the purpose of fulfilling a contract. If the processing is not based on a contract, it is carried out on the basis of consent in accordance with Art. 6 (1) (a) GDPR.

(3) The following data is collected when reporting damage online:

Title
First name
Surname
Address
Telephone number
Email address
Address of the location of the damage
Owner status
Insurance employee status
Insurance claim
Insurance
Time of the damage
Cause of the damage
Affected areas

(4) In addition, the following data may be provided voluntarily:

Company
Mobile number
Policy number
Insurance claim number
Floor
Number of rooms affected
Approximate size of the affected areas (in square metres)
Contamination status
Data on the building fabric
Necessity of security measures
Status of previous documentation

(5) We process the data collected in the online damage report solely for the specified purpose. The data will not be passed on to third parties.

(6) Your personal data collected through the online damage report will only be stored for as long as is necessary to fulfil the purpose and/or for as long as there is a legal basis for doing so.

§ 16 Processing of data within the scope of business correspondence

(1) We collect the following data from you in the course of our business correspondence:

Last name
Contact details
E-mail address
Position and affiliation to a company, if applicable
Other data that is transmitted to us by you.

(2) We process this data in order to correspond with you and to process your request in the best possible way. The legal basis for this processing is, in accordance with Art. 6 para. 1 lit. b GDPR, either the obligation to fulfil a contract or pre-contractual measures, as we assume that your business correspondence relates to our business offers. In addition, data processing in the context of business correspondence may also be based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. We assume this because an enquiry may also relate to topics that are neither based on an existing contract nor are pre-contractual.

If you are in a business relationship with us, additional purpose-related data may be collected, about which you will be informed at the appropriate point in this privacy policy.

(3) Within the scope of our business relationships, your personal data may be passed on to or disclosed to processors. These may also be located outside the European Economic Area (EEA), i.e. in third countries. Such processing is carried out exclusively for the fulfilment of contractual and business obligations and for the maintenance of your business relationship with us (legal basis is Art. 6 para. 1 lit b or lit. f in conjunction with Art. 44 ff. GDPR). You can find more detailed information on this in § 7.

(4) Your personal data that we have collected in the course of business correspondence will only be stored for as long as this is necessary for the fulfilment of the purpose and/or a legal basis exists.

Your data is provided for business correspondence because you have contacted us regarding various matters relating to a contract. In this regard, you only need to provide us with the data we require to clarify your request. Without this data, it is generally not possible to correspond with you.

§ 17 Event registration

You can register for various events on our website. In order to process your registration, we collect the following personal data from you:

First name
Last name
Email

The data collected from you will be processed for the purpose of holding the event. It will only be stored for as long as is necessary to fulfil this purpose. The legal basis for processing is Art. 6 para. 1 lit. b) GDPR.

In addition to event processing, your registration data will also be used to inform you about similar events in the future by email. You can object to this processing at any time. To do so, please contact us by telephone or email at +44 1827307600 or [email protected]. The legal basis is the legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR.

Photographs at events

With your consent, we take photographs during events. The purposes of data processing are always in the area of corporate communication and documentation. These corporate purposes are pursued, for example, in the form of social media posts, photos and videos on the Internet on the company website or for internal archiving. In this respect, the legal basis for consent pursuant to Art. 6 para. 1 lit. a) GDPR applies. The photos will be deleted once they are no longer needed or you withdraw your consent.

§ 18 Updating the privacy policy

We may update this privacy policy from time to time if necessary due to changes in data processing. Please check the content of our privacy policy regularly and also make sure that the contact details of third parties are up to date.

July 2025