PRIVACY POLICY

Last updated: may 2026

Welcome to SHD Creative / Hadjidimoff.com (“we,” ). We operate the website www.hadjidimoff.com (the "Website").

We are committed to protecting your privacy and ensuring your personal data is handled securely and transparently. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and what your rights are under the EU General Data Protection Regulation (GDPR) and the Belgian Data Protection Act.

1. Who we are (Data Controller)

For the purpose of the GDPR, the data controller responsible for your personal information is:

• Company/Name: SHD Simon Hadjiidmoff

• Address: B-1620 Drogenbos

• Enterprise/VAT Number: BE 0727 583 340 

• Email: hello@hadjidimoff.com

2. What personal data we collect

We may collect and process the following categories of data:

• Identity & Contact Data: Name, email address, phone number, or company name when you fill out a contact form or subscribe to a newsletter. 

• Technical & Usage Data: IP address, browser type, operating system, pages visited, time spent on the site, and other diagnostic data collected via cookies or analytics tools. 

• Interaction Data: Any information or messages you choose to send us via contact forms or email.

3. How and why we use your data (Legal Basis)

Under the GDPR, we must have a lawful basis to process your data. We use your data for the following purposes:

Purpose: To respond to your inquiries via contact forms.

Type of Data: Identity & Contact Data

Legal Basis for Processing: Performance of a contract (taking steps at your request before entering a contract) or Legitimate Interest.

Purpose: To send you newsletters, updates, or marketing emails.

Type of Data: Identity & Contact Data

Legal Basis for Processing: Explicit Consent (You can opt-out at any time).

Purpose: To analyze website traffic and improve user experience.

Type of Data: Technical & Usage Data

Legal Basis for Processing: Explicit Consent (via our cookie banner) or Legitimate Interest (for strictly necessary technical cookies).

4. Cookies and tracking technologies

Our website uses cookies to improve your browsing experience.

• Strictly necessary cookies: Required for the website to function properly. They do not require consent.

• Analytics/Marketing cookies: We use tools to track anonymous user behavior. These are only activated if you click "Accept" on our cookie banner.

You can modify or withdraw your cookie preferences at any time through your browser settings or by clicking the cookie settings link on our footer.

5. How long we keep your data

We do not store your data longer than necessary for the purposes it was collected for:

• Contact Form Data: Contact form submissions and inquiries sent through our website are stored securely on Squarespace's servers. We retain this personal data for a period of 2 years after our last communication with you, or until you request its deletion, unless it is required to be kept longer for contractual or legal obligations.

• Newsletter Subscriptions: If you subscribe to our newsletter, your email address and consent record will be stored on Squarespace until you choose to unsubscribe via the link provided in our emails.

• Analytics Data: Website usage and technical analytics data collected natively by Squarespace are retained in an aggregated format to monitor website performance. This data is kept for as long as our website remains active.

While we retain this data, we will protect it within commercially acceptable means to prevent loss and theft, as well as unauthorised access, disclosure, copying, use or modification. That said, we advise that no method of electronic transmission or storage is 100% secure, and cannot guarantee absolute data security.

6. Sharing your data with third parties

We do not sell your personal data. We only share your data with trusted service providers (Data Processors) essential to running our website:

• Hosting Providers: To keep our website online.

• Email Marketing Tools: [e.g., Mailchimp, if applicable] to send newsletters.

• Analytics Providers: [e.g., Google, if applicable] to monitor web performance.

All third-party providers are strictly vetted and bound by Data Processing Agreements (DPAs) to ensure they comply with GDPR standards.

International data transfers

If any data is transferred outside the European Economic Area (EEA) (for example, to a US-based cloud service), we ensure standard contractual clauses (SCCs) or adequacy decisions are in place to guarantee your data receives an equivalent level of protection.

7. Your privacy rights

As a data subject under EU law, you have the following rights regarding your personal data:

• Right of access: You can request a copy of the data we hold about you. 

• Right to rectification: You can ask us to correct inaccurate or incomplete data. 

• Right to erasure ("Right to be Forgotten"): You can request that we delete your data under certain conditions. 

• Right to restrict processing: You can ask us to temporarily stop processing your data. 

• Right to data portability: You can request your data in a structured, commonly used electronic format.

• Right toobject: You can object to your data being used for direct marketing or profiling. 

• Right to withdraw consent: If we rely on your consent to process data (e.g., newsletters), you can withdraw it at any moment. 

To exercise any of these rights, please email us at hello@hadjidimoff.com. We will respond to your request within 30 days free of charge.

8. Data security

We implement appropriate technical and organizational measures (such as SSL/TLS encryption on our forms and secure access controls) to protect your data against unauthorized access, loss, or alteration.

9. How to file a complaint

If you believe we are processing your personal data unlawfully, we hope you will contact us first so we can resolve it. However, you have the right to lodge a formal complaint with the Belgian supervisory authority:

Belgian Data Protection Authority (Gegevensbeschermingsautoriteit / Autorité de protection des données)

• Address: Drukpersstraat 35, 1000 Brussels

• Website:www.dataprotectionauthority.be

• Email: contact@apd-gba.be

10. Updates to this Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or changes in the law. Any updates will be posted directly to this page with an updated revision date.