Welcome to Pilario. 

This Privacy Policy explains what we do with your personal data when you are visiting and using the Pilario Platform (the “Platform“). It describes how we collect, use, and process your personal data, and how, in doing so, we comply with our legal obligations to you. Your privacy is important to us, and we are committed to protecting and safeguarding your rights.

For the purpose of the applicable data protection legislation, PILARIO SA, a company incorporated under Belgian law, with its office at Gustave Demeylaan 57, 1160 Auderghem (Belgium) and registered in the Crossroads Bank for Enterprises with enterprise number 0792.493.463 (“we”, “our”, “us” or “Pilario”) is the ‘controller’ of your personal data. This means we decide why and how your personal data is used and are responsible for protecting it. Please refer to the end of this notice for our contact and company information. 

We may amend this Privacy Policy from time to time. Please visit this page regularly as we will post any changes here. Where appropriate, we may also notify you of the changes by email. Please see further the section Changes below.

If you are dissatisfied with any aspect of this Privacy Policy, you may have legal rights which we have described below where relevant.


  1. Information we collect about you
  2. How we use your information
  3. Use of device and software usage information
  4. Sharing your information with third parties
  5. Where we store your information
  6. How we safeguard your information
  7. How long we keep your information
  8. Your rights
  9. Changes
  10. How to contact us


When you use the Platform or interact with us offline, we collect and use information about you in the course of providing you with our products and services and with customer support. We may collect some or all of the information listed below to help us with this:

Depending on the type of personal data in question and the legal grounds (i.e. the ‘lawful bases’) on which we may be processing your personal data, should you decline to provide us with such data, we may not be able to fulfil our contractual requirements or, in extreme cases, may not be able to continue with our relationship with you.

For details of the lawful bases that we rely on to be able to use and process your personal data, please see How we use your information.


Personal data

The purposes for which we use your personal data and the lawful basis under data protection laws on which we rely to do this are explained below.

Where it is required to complete the License conditions

The use of your personal data may be necessary to perform the License conditions. For example, when you make use of the Platform, we need to use your personal data to grant you access to our software, to generate the modules regarding life cycle analysis, for billing purposes, to respond to any requests you may have, and to notify you about changes to our services.

Where there is a legal obligation

We will use your personal data to comply with our legal obligations, including where the law requires us:

Where there is a legitimate interest

We may use and process your personal data where it is necessary for us to pursue legitimate interests (whether ours, in connection with our business, or that of a third party), except where such interests are overridden by your interests or fundamental rights and freedoms, e.g. in the following events:

Processing necessary for provision of the Platform

Processing necessary for us to support Platform visitors with their enquiries

Processing necessary for us to respond to changing market conditions and the needs of our guests and visitors

Processing necessary for us to operate the administrative and technical aspects of our business efficiently and effectively 

If you are in the EU, the following applies to you in addition to (and, in case of any inconsistencies, takes precedence over) the other provisions of this section:     


We may monitor your use of the Platform and record your IP address, operating system and browser type, browser version, previously visited Platform, monitor resolution, operating system, if applicable device information (e.g. device type) etc. for system administration purposes.

We collect aggregated statistics data about visitors to the Platform and traffic patterns. This information does not identify users in any personal capacity, and we do not use this information to build profiles on individual users: it just contains generalised information about the users of the Platform.


We will transfer personal data to third parties only where necessary for the provision of our service or otherwise allowed by the law. Within the scope of the purposes stated here, personal data are transferred to service providers involved in the provision of our services. In addition to their legal obligation to comply with all data protection regulations, these service providers are bound to additional contractual data protection requirements. This includes contractual obligations as a processor (in accordance with requirements of Art. 28 GDPR). We may share your information with any of the following groups:


Your personal data shall not be transferred to any affiliate or third party located in any country outside the European Economic Area or made accessible from any such country without your express prior written approval.


We care about protecting your information. That’s why we put in place appropriate measures that are designed to prevent unauthorised access to, and misuse of, your personal data.

We are committed to taking all reasonable and appropriate steps to protect the personal data that we hold from misuse, loss, or unauthorised access. We do this by having in place a range of appropriate technical and organisational measures, including encryption measures and disaster recovery plans.

If you suspect any misuse or loss of or unauthorised access to your personal data please let us know immediately by using the contact details provided at the end of this Privacy Policy.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will apply our normal procedures and comply with legal obligations to protect your information, we cannot guarantee the security of your information transmitted to the Platform and any transmission is at your own risk. 

The Platform may from time to time contain links to and from other websites. If you follow a link to any of those websites, please note that those sites ought to have their own privacy policies and that we do not accept any responsibility or liability for those sites or for their privacy policies. Please check those privacy policies before you submit your information to those Platforms.


We will keep your information as required by law or other regulation (for example, because of a request by a tax authority or in connection with any anticipated litigation). 

If you have registered an account with us: we will store your personal data for as long as your account is open.

If you have contacted us with a complaint or query: we will store your personal data for as long as is reasonably required to resolve your complaint or query.

The exceptions to the above are where:

When it is no longer necessary to retain your data, we will delete the personal data that we hold about you from our systems (either by erasing or anonymising that data). After that time, we may retain aggregated data (from which you cannot be identified) and retain it for analytical and statistical purposes.


You have several rights in relation to your information under data protection law. In relation to certain rights, we may ask you for information to confirm your identity and, where applicable, to help us to search for your personal data. Except in rare cases, we will respond to you within one month from either: (i) the date that we have confirmed your identity; or (ii) where we do not need to do this because we already have this information, from the date we received your request.

Right to object

This right enables you to object to us processing your personal data where we do so for one of the following reasons: 

Except for the purposes for which we are sure we can continue to process your personal data, we will temporarily stop processing your personal data in line with your objection until we have investigated the matter. If we agree that your objection is justified in accordance with your rights under data protection laws, we will permanently stop using your personal data for those purposes. Otherwise we will provide you with our justification as to why we need to continue using your personal data.

Right to withdraw consent 

Where we have obtained your consent to process your personal data for certain activities, you may withdraw this consent at any time and we will cease to use your personal data for that purpose unless we consider that there is an alternative legal basis to justify our continued processing of your data for this purpose, in which case we will inform you of this condition. If you withdraw your consent, our use of your personal data before you withdraw is still lawful.

To withdraw your consent to marketing communications, please use the unsubscribe tool in the relevant communication or update your preferences in the account section on the Platform.

Right of access (‘Data Subject Access Requests’)

You may ask us for a copy of the information we hold about you at any time, and request us to modify, update or delete such information. If we provide you with access to the information we hold about you, we will not charge you for this unless permitted by law. If you request further copies of this information from us, we may charge you a reasonable administrative cost. Where we are legally permitted to do so, we may refuse your request. If we refuse your request, we will always tell you the reasons for doing so. 

If you would like to request access to your information, it would assist us with dealing with your request if you could use the subject heading ‘Data Subject Access Request’, when contacting us. Please note that this is not mandatory and we will still deal with any requests without this reference.

Right to erasure 

You have the right to request that we erase your personal data in certain circumstances. Normally, this right exists where:

We would only be entitled to refuse to comply with your request for erasure in limited circumstances and we will always tell you our reason for doing so.

When complying with a valid request for the erasure of data we will take all reasonably practicable steps to delete the relevant data. 

Right to restrict processing 

You have the right to request that we restrict our processing of your personal data in certain circumstances, for example if you dispute the accuracy of the personal data that we hold about you, you object to our processing of your personal data for our legitimate interests or you require us to keep it in connection with legal proceedings. If we have shared your personal data with third parties, we will notify them about the restricted processing unless this is impossible or involves disproportionate effort. We will, of course, notify you before lifting any restriction on processing your personal data.

We may only process your information whilst its processing is restricted if we have your consent or are legally permitted to do so to protect the rights of another individual or company or in connection with legal proceedings.

Right to rectification 

You have the right to request that we rectify any inaccurate or incomplete personal data that we hold about you. If we have shared this personal data with third parties, we will notify them about the rectification unless this is impossible or involves disproportionate effort. You may also request details of the third parties to whom we have disclosed the inaccurate or incomplete personal data. Where we think that it is reasonable for us not to comply with your request, we will explain our reasons for this decision.

You can access and update certain parts of your information by logging into your account on the Platform.

Right of data portability 

If you wish, you have the right to transfer your personal data between service providers where we rely on your consent or the performance of your contract as the lawful basis to use that information. In effect, this means that you are able to transfer the details we hold on you to another third party. To allow you to do so, we will provide you with your data in a commonly used machine-readable format so that you can transfer the data. Alternatively, we may directly transfer the data for you if technically possible.

Rights relating to automated decisions

In certain circumstances, you may contest a decision made about you based purely on automated processing and where the processing is not required by law. You may also ask us to stop making such decisions using automated processing alone.

Right to complain

You also have the right to complain to your local supervisory authority, in your case the Data Protection Authority. You can contact them in the following ways:

How to exercise your rights

If you would like to exercise any of these rights, please contact us on the details provided under How to contact us. Please note that we may keep a record of your communications to help us resolve any issues that you raise.

If you are in the EU, the following applies in addition to (and, in case of any inconsistencies, takes precedence over) the other provisions of this section:


We may make changes to this Privacy Policy at any time by posting a copy of the modified notice on the Platform or, where appropriate, by sending you an email with that notice.  Any changes will take effect 7 days after the date of our email or the date on which we post the modified terms on the Platform, whichever is the earlier. 


Av. Gustave Demey 57, 1160 Auderghem

Version 03/07/2023