Privacy Policy.

Your privacy is critically important to us.
Last Updated: 29/01/2026

1. Introduction

Welcome to Nettic ("we," "our," or "us"). We are committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website (nettic.be), our Client/Consultant Portals, and our internal recruitment systems.

2. Data Controller

Company Name

Nettic BV

VAT Number

BE1011.235.490

Address

Tieltstraat 47A, B301, 8750 Wingene, Belgium

Contact Email

info@nettic.be

3. Data We Collect

We collect data based on your relationship with us:

A. Consultants (Candidates & Freelancers)

When you apply for a job, sign up for our portal, or are sourced by our recruiters, we process:

  • Identity Data: Name, date of birth, profile picture.
  • Contact Data: Email address, phone number, city, country.
  • Professional Data: Resume/CV (PDF/Word), career start date, hard/soft skills, and internal notes regarding your application.
  • Availability Data: Contract end dates, availability status (e.g., "Available", "Busy"), and future availability dates.
  • Financial Data: Day rates.

B. Clients (Companies)

  • Company Data: Company name, VAT number, invoicing address, industry, company details.
  • Contact Persons: Names, email addresses, and phone numbers of provided contacts.
  • Portal Accounts: Login credentials (email and encrypted password) for users accessing the Client Portal.

C. Internal Employees

  • HR Data: Name, email, phone, role, start date, national ID number (if applicable), and system access logs.

D. Website Visitors & Subscribers

  • Newsletter: Name and email address (via our "Subscribe" form).
  • Technical Data: IP address, browser type, and usage logs via our security audits.

4. How We Use Your Data

Purpose Legal Basis
Recruitment: Matching candidates to vacancies, parsing resumes to extract skills, and scheduling interviews. Legitimate Interest & Contract (Steps taken prior to entering a contract).
Contract Management: Managing active contracts, timesheets, and renewals. Performance of Contract.
Invoicing: Generating invoices based on approved timesheets. Legal Obligation (Tax/Accounting laws).
Public Bench: Displaying available consultant profiles (Name, Role, Photo, Tech Stack) on our public website/API. Consent (Recommended) or Legitimate Interest (Promoting services). You can object to this at any time.
Marketing: Sending market updates and vacancy newsletters. Consent (for subscribers) or Legitimate Interest (for existing clients).
Security: Protecting our systems via audit logs and identity verification. Legitimate Interest.

5. Automated Processing & AI

We use Artificial Intelligence (Google Document AI) to automatically parse resumes uploaded to our system. This helps us extract contact details and skills efficiently.

  • Logic Involved: The AI analyzes the text of your CV to identify standard fields (e.g., "Skills: Java, React").
  • Human Oversight: All parsed data is reviewed by our recruiters. No automated decision-making occurs without human intervention.

6. Data Sharing & Third-Party Processors

We do not sell your data. We share data only with trusted service providers who help us operate:

Google Cloud Platform (GCP) & Firebase

Role: Hosting, Database, File Storage, and Authentication.

Location: Data is stored in the europe-west1 (Belgium) region, ensuring data stays within the EU.

ProtonMail

Role: Sending transactional emails (credentials, notifications) and newsletters.

Location: Switzerland (Recognized by the EU as providing adequate data protection).

Clients

If you are a candidate, we share your blinded profile (or full CV with permission) with potential clients for job opportunities.

7. Data Security

We implement strict security measures to protect your data, including:

  • Encryption: Data is encrypted in transit (HTTPS) and at rest (Google Cloud Storage encryption).
  • Access Control: Only authorized internal employees can access sensitive personal data. We utilize strict Role-Based Access Control (RBAC).
  • Auditing: We maintain logs of who accesses or modifies data within our system.

8. Data Retention

We retain personal data only as long as necessary:

  • Candidates: Retained for 3 years after last contact, unless you request deletion earlier.
  • Financial Records (Invoices/Timesheets): Retained for 7 years to comply with Belgian accounting/tax laws.
  • Subscribers: Until you unsubscribe.

9. Your Rights

Under GDPR, you have the right to:

  • Access: Request a copy of the data we hold about you.
  • Rectification: Correct inaccurate data (e.g., phone number, address).
  • Erasure ("Right to be Forgotten"): Request deletion of your data (unless we must keep it for tax/legal reasons).
  • Object: Object to the public display of your profile on our "Bench" list or marketing emails.
  • Portability: Receive your data in a structured, machine-readable format.

To exercise these rights, please contact us at privacy@nettic.be.

10. Cookies

We use essential cookies for authentication (to keep you logged in to the portal). We may use analytics cookies to improve our website experience. You can manage cookie preferences via your browser settings.

11. Changes to This Policy

We may update this policy from time to time. The latest version will always be available on our website.