Privacy Policy

Introduction

The Pan-European Personal Pension Providers Association (PEPPPA) respects your privacy and is committed to protecting the personal data you share with us. This Privacy Policy explains how we collect, use, disclose, and protect your personal information in accordance with the General Data Protection Regulation (GDPR) and applicable Belgian and EU law.

 

Who We Are

PEPPPA is a non-profit association (VZW) established under Belgian law with its registered office at:

Regentlaan 54, 1000 Brussels, Belgium

Email: info@pepppa.org

Website: www.pepppa.org

 

What Information We Collect

We may collect and process the following categories of personal data:

• Membership Information: Name, contact details, organisation, role/title, legal structure, membership category, and payment data.
• Communication Data: Emails, inquiries, responses to surveys, or registration to events.
• Website Data: IP address, browser type, access times, pages visited (via cookies or analytics tools, if used).

 

How We Use Your Data

We use personal data to:

• Manage and administer membership applications and communications
• Organise events, working groups, and consultations
• Respond to inquiries and provide requested information
• Distribute newsletters, updates, and policy information
• Maintain the membership register
• Fulfil our legal obligations as a non-profit organisation

 

Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds:

• Consent: Where required, especially for direct communications.
• Contractual Obligation: To manage your membership or participation in PEPPPA.
• Legal Obligation: To comply with laws applicable to associations in Belgium and the EU.
• Legitimate Interest: In maintaining contact with stakeholders and promoting PEPPPA’s mission.

 

Data Sharing and Transfers

We do not sell your data. We may share your personal information with:

• Service providers supporting our operations (e.g., IT, email platforms)
• Regulatory bodies or authorities if required by law
• Other members or working groups with your consent or participation
• We ensure all third parties comply with data protection standards equivalent to those of the EU.

 

Data Retention

Your personal data is retained only as long as necessary to fulfill the purposes for which it was collected and to meet legal or regulatory obligations. Member-related data is typically retained for the duration of membership plus seven years for audit/compliance purposes.

 

Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate or outdated data
• Withdraw consent at any time
• Object to or restrict certain processing
• Request deletion of your data (subject to legal obligations)
• Lodge a complaint with the Data Protection Authority in Belgium (www.gegevensbeschermingsautoriteit.be)

To exercise your rights, contact us at info@pepppa.org.

 

Cookies and Website Analytics

If PEPPPA uses cookies or tracking technologies on its website, a separate Cookie Policy will be made available to inform users about types of cookies and how to manage preferences.

 

Updates to This Policy

We may revise this Privacy Policy from time to time. Updates will be posted on our website and, where appropriate, communicated directly.

Effective Date: June 19, 2025

Last Updated: June 19, 2025