Privacy
Updated in July 2020
Your privacy is important to Modular Lighting Instruments
We have drafted this Privacy Notice (also referred to as "notice") in an easy and comprehensible way in order to help you understand who we are, what personal data we collect about you, why we collect it, and what we do with it. Keep in mind that personal data (in this notice also referred to as "data" or "your data") means any information or set of information from which we are able, directly or indirectly, to personally identify you, in particular by reference to an identifier - e.g. name and surname, email address, phone number, etc.
Please bear in mind that since Modular Lighting Instruments is an international company, this Notice may be replaced or supplemented in order to fulfill local requirements, as well as in order to provide you with additional information on how we process your data through specific Modular Lighting Instruments products, services, systems or applications.
We strongly encourage you to take some time to read this Notice in full. If you do not agree to this privacy notice, please do not provide us with your data.
When does this Privacy Notice apply?
This Notice covers how we collect and use your data. For example when you:
- Visit or use our consumer and customer-directed websites, applications or social media channels
- Purchase and use our products, services, systems or applications
- Subscribe to our newsletters
- Provide to us your goods or services
- Contact our customer support
- Join our business events
- Visit our company or otherwise interact with us in your capacity as consumer, business customer, partner, (sub) supplier, contractor or other person with a business relationship with us.
Who is Modular Lighting Instruments?
For nearly 40 years, Modular Lighting Instruments ("Modular") has been a true pioneer in the world of architectural lighting. Our headquarters are located in Roeselare, Belgium. Modular is a wholly owned subsidiary of Signify N.V. since 2006.
What is the type of data we collect about you?
Depending on who you are (e.g. customer, consumer, supplier, business partner, etc.) and how you interact with us (e.g. online, offline, over the phone, etc.) we may process different data about you. We may collect your data, for example, when you visit or use our consumer and customer-directed websites, applications or social media channels, purchase and use our products, services, web-based tools, systems or applications, subscribe to our newsletters, install a software update, provide to us your goods or services, contact our customer support, join our business events, participate to our contests, promotions and surveys or otherwise interact with us.
Below you will find an overview of the categories of data that we may collect:
Information you provide to us directly
DATA CATEGORIES |
EXAMPLES OF DATA TYPES |
| Personal identification data | Name, surname, title, date of birth |
| Contact information data | Email, phone number, address, country |
| Account login information | Log in ID, password or other security codes |
| Images and/or videos from which you may be identified | Pictures uploaded into Modular accounts or otherwise provided to us |
| Financial data | Credit card data, bank account data |
|
Any other information that you decide to voluntarily share with us, Signify or its affiliates |
Feedback, opinions, reviews, comments, uploaded files, interests, information provided for our due diligence process |
Lastly, if you visit our premises, for security reasons we might also record your data through video or other electronic, digital or wireless surveillance systems or devices (e.g. CCTV).
Information we collect automatically
When you visit or use our websites or applications, subscribe to our newsletters or otherwise interact with us through our digital channels, in addition to the information you provide to us directly, we may collect information sent to us by your computer, mobile phone or other access device. For example, we may collect:
DATA CATEGORIES |
EXAMPLES OF DATA TYPES |
| Device information | Hardware model, IMEI number and other unique device identifiers, MAC address, IP address, operating system version, and settings of the device you use to access the services |
| Log information | Time, duration and manner of your use of our digital channel or products and services or products and services connected to ours |
| Location information | Your actual location (derived from your IP address, Bluetooth beacons or identifiers or other location-based technologies), that may be collected when you enable location-based products or features such as through our apps or luminaire information stored in the product |
| Other information about your use of our digital channels or products | Apps you use or websites you visit, links you click within our advertising email, motion sensors data |
Information we may collect from other sources
To the extent permitted by applicable law, in addition to our websites, applications and other digital channels, we may also obtain information about you from other sources, such as public databases, joint marketing partners, social media platforms and other third parties. For example, depending on your social media settings, if you choose to connect your social media account to your Modular account, certain data from your social media account will be shared with us, which may include data that is part of your profile. If you interact with us through Social Network Services (‘SNS’) we might process your personal information in accordance with this Notice. What data we process will depend on what personal information you have provided to the SNS (such as your name, email address and other information you have made publicly available) when creating your account. Note that the data we collect from and through a SNS may depend on the privacy settings you have set with the SNS and the permissions you grant to us in connection with linking your account with our products or services to your account with an SNS. Your interactions with third parties through an SNS or similar features are governed by the respective privacy policies of those third parties and your agreement with the SNS. You acknowledge that you are entitled to use your SNS account for the purposes described herein without breach by you of any of the terms and conditions that govern the SNS.
Information we may aggregate from different sources to your profile
If you have indicated to us that you wish to receive personalised direct marketing communications, we might aggregate data from different sources (both internally and externally) to have a better understanding of your preference and interests, and be able to serve you with more relevant communications. You can always object to these activities by way of opposing this. In particular, you can always opt out from receiving marketing-related emails by following the unsubscribe instructions provided in each email. If you can sign-in to a Signify account, you might be given the option to change your communication preferences under the relevant section of our website or application. You can always contact us (you will find the contact details in the below section What are your choices?) to opt out from receiving marketing-related communications.
How do we use your data?
We may use your data for different legitimate reasons and business purposes.
Below you will find an overview of the purposes for which we may process your data:
PURPOSES |
EXAMPLES |
|
Assessment and (re)screening of (potential) Customers, Suppliers and/or Business Partners
|
Conducting due diligence |
| Conclusion and execution of agreements | Sales, billing, shipment of products or services, registration to mobile applications or websites, warranty, service communications, account management |
| Providing support (upon your request) | Providing support via communication channels, such as customer or contact center support |
| Direct marketing | Promoting contact with consumers and/or business customers (only in certain countries), email and/or electronic marketing, market surveys, personalising your experience by presenting products and offers tailored to your preference, interests or profile (such as on our sites, applications or in other communication channels) |
| Security and protection of our interests/assets | Deploying and maintaining technical and organizational security measures, conducting internal audits and investigations, conducting assessments to verify conflict of interests |
| Compliance with legal obligations | Disclosing data to government institutions or supervisory authorities as applicable in all countries in which we operate, such as tax and national insurance deductions, record-keeping and reporting obligations, conducting compliance audits, compliance with government inspections and other requests from government or other public authorities, responding to legal process such as subpoenas, pursuing legal rights and remedies, and managing any internal complaints or claims |
| Defense of legal claims | Establishment, exercise or defense of legal claims to which we are or may be subject to |
| Product development | To improve the services, products, online services, applications and communications we provide towards you or others |
If we ask you to provide us with your data, but you choose not to, in some cases we will not be able to provide you with the full functionality of our products, services, systems or applications. Also, we might not be able to respond to requests you might have.
How do we use your data for marketing?
Modular and other relevant Signify affiliates may send you regular promotional communications about their products, services, events and promotions.
Such promotional communications may use the MODULAR LIGHTING INSTRUMENTS brand and may be sent to you via different channels such as: email, phone, SMS text messages, postal mailings, third-party social networks.
In order to provide you with the best personalised experience, sometimes these communications may be tailored to your preferences (for example, as you indicate these to us, as we may have inferred from your website visits, or based on the links you click in our emails).
When required by applicable law, we will ask your consent before starting the above activities. In addition, we will give you the opportunity to withdraw your consent (opt out) at any time
In particular, you can always opt out from receiving marketing-related emails by following the unsubscribe instructions provided in each email. If you can sign-in to a Modular account, you might be given the option to change your communication preferences under the relevant section of our website or application. You can always contact us (you will find the contact details in the below section What are your choices?) to opt out from receiving marketing-related communications.
Please note that even if you opt out from receiving marketing communications, you might still receive administrative communications from us, such as technical and/or security updates of our products, order confirmations, notifications about your account activities, and other important notices.
On what legal basis do we use your data?
In order to be able to process your data, we may rely on different legal bases, including:
- Your consent (only when legally required or permitted). If we rely on your consent as a legal basis for processing your data, you may withdraw your consent at any time
- The necessity to establish a contractual relationship with you and to perform our obligations under a contract
- The necessity for us to comply with legal obligations and to establish, exercise, or defend ourselves from legal claims
- The necessity to pursue our legitimate interests, including:
- Ensure that our networks and information are secure
- Administer and generally conduct business within the Company
- Prevent or investigate suspected or actual violations of law, breaches of a business customer contract, or non-compliance with our Integrity code or other Signify policies
- The necessity to respond to your requests
- The necessity to protect the vital interests of any person
- Any other legal basis anyhow permitted by local laws.
When do we share your data?
We do not share any of your data except in the limited cases described here.
If it is necessary for the fulfillment of the purposes described in this Notice, we may disclose your data to the following entities:
- Modular affiliates: due to our global nature, your data may be shared with certain Modular affiliates. Access to your data within Modular will be granted on a need-to-know basis
- Signify affiliates: due to our global nature and company structure, your data may be shared with certain Signify affiliates. Access to your data within Signify will be granted on a need-to-know basis
- Service providers: like many businesses, we may outsource certain data processing activities to trusted third-party service providers to perform functions and provide services to us, such as ICT service providers, consulting providers, shipping providers;
- Business partners: we may share your data with trusted business partners so they can provide you with the services you request
- Public and governmental authorities: when required by law, or as necessary to protect our rights, we may share your data with entities that regulate or have jurisdiction over Modular and/or Signify
- Professional advisors and others: we may share your data with other parties including professional advisors, such as banks, insurance companies, auditors, lawyers, accountants, other professional advisors
- Other parties in connection with corporate transactions: we may also, from time to time, share your data in the course of corporate transactions, such as during a sale of a business or a part of a business to another company, or any reorganization, merger, joint venture, or other disposition of our business, assets, or stock (including in connection with any bankruptcy or similar proceeding)
When do we transfer your data abroad?
Due to our global nature, data you provide to us may be transferred to or accessed by Modular affiliates, Signify affiliates and trusted third parties from many countries around the world. As a result, your data may be processed outside the country where you live, if this is necessary for the fulfillment of the purposes described in this Notice.
If you are located in a country member of the European Economic Area, we may transfer your data to countries located outside of the European Economic Area. Some of these countries are recognized by the European Commission as providing an adequate level of protection. With regard to transfers from the European Economic Area to other countries that are not are recognized by the European Commission as providing an adequate level of protection, we have put in place adequate measures to protect your data, such as organizational and legal measures (e.g. binding corporate rules and approved European Commission standard contractual clauses). You may obtain a copy of these measures by contacting the Central Privacy Office (you will find the contact details in the below section What are your choices?).
How long do we keep your data?
We keep your data for the period necessary to fulfill the purposes for which it has been collected (for details on these purposes, see above section How do we use your data?). Please keep in mind that in certain cases a longer retention period may be required or permitted by law. The criteria used to determine our retention periods include:
- How long the data is needed to provide you with our products or services or to operate our business
- Whether or not you have an account with us. In this case, we will keep your data while your account is active or for as long as needed to provide the services to you
- Whether or not we are subject to a legal, contractual, or similar obligation to retain your data. Examples can include mandatory data retention laws in the applicable jurisdiction, government orders to preserve data relevant to an investigation, or data that must be retained for the purposes of litigation, or protection against a possible claim
How do we secure your data?
To protect your data, we will take appropriate measures that are consistent with applicable data protection and data security laws and regulations, including requiring our service providers to use appropriate measures to protect the confidentiality and security of your data. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. Depending on the state of the art, the costs of the implementation and the nature of the data to be protected, we put in place technical and organizational measures to prevent risks such as destruction, loss, alteration, unauthorized disclosure of, or access to your data. If you have reason to think that your interaction with us or your Data is no longer processed in a secure manner, please reach out to the Signify Privacy Office immediately in accordance with What are your choices? as described below.
What are your responsibilities?
We would like to remind you that it is your responsibility to ensure, to the best of your knowledge, that the data you provide us with, are accurate, complete and up-to-date. Furthermore, if you share with us data of other people, it is your responsibility to collect such data in compliance with local legal requirements. For instance, you should inform such other people, whose data you provide to us, about the content of this Notice and obtain their consent.
What are your choices?
We aim to provide you with access to your data. Usually you can autonomously control your data (e.g. by logging in to your account) and update, modify or, if legally possible, delete it. In this case, we strongly encourage you to take control of your data.
You can always contact our Central Privacy Office if you would like to:
- Review, change or delete the data you have supplied us with (to the extent Modular is not otherwise permitted or required to keep such data)
- Object to certain data processing operations (e.g. opt out from marketing communications)
- Receive a copy of your data (in a common machine-readable format, to the extent it is required by applicable law)
- Ask us any other questions related to the protection of your data at Modular.
For any questions or reasonable inquiry related to the protection of your data in Modular or regarding this Notice in general, you can contact the Central Privacy Office:
Mail: Modular Lighting Instruments - Attn: Privacy Office – Armoedestraat 71, B-8800 Roeselare, Belgium or
Email: welcome@supermodular.com
Online: Privacy request section
Please keep in mind that email communications are not always secure. Therefore, please do not include sensitive information in your emails to us.
We will do our best to address your request in time and free of charge, except where it would require a disproportionate effort. In certain cases, we may ask you to verify your identity before we can act on your request. If you are unsatisfied with the reply received, you may then refer your complaint to the relevant regulator in your jurisdiction.
How do we use cookies and other tracking technologies?
For more information on how we use cookies and other tracking technologies, read our Cookie Notice (which can be found on our website).
Do we collect data of children?
We do not intentionally collect information of children under the age of 16.
Special note to children under the age of 16:
If you are under the age of 16, we advise that you speak with and get your parent or guardian’s consent before sharing your data with us.
Special note to parents of children under the age of 16:
We recommend you to check and monitor your children's use of our products, systems, services, applications (including websites and other digital channels) in order to make sure that your child does not share personal data with us without asking your permission.
When do we update this Privacy Notice?
This privacy notice might change from time to time. The most current version of this Notice will govern our use of your data and can be found on our website.