PRIVACY POLICY
How Altherias handles your data
Last updated: 6th March 2026
Altherias (“we”, “us”, or “our”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share information about you when you visit altherias.com (the “Website”) or engage with our services.
We operate in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and applicable Belgian data protection law.
1. WHO WE ARE
Altherias is an IT staffing and staff augmentation company specialising in placements with European Union institutions and bodies. We are headquartered in Brussels, Belgium. For questions about this policy or our data practices:- Email: privacy@altherias.com
- Website: altherias.com
2. PERSONAL DATA WE COLLECT
Data you provide directly:- Name, email address, phone number, and other contact details submitted via forms or email
- CV and resume data, professional qualifications, employment history, and skills
- Identification and eligibility information relevant to EU institution requirements
- Communications you send us, including enquiries, applications, and correspondence
- IP address, browser type and version, operating system
- Pages visited, time spent on the Website, referring URLs
- Cookie identifiers (see our Cookie Policy for details)
- Professional profile data from LinkedIn or similar platforms where you have made this publicly available
- Referrals and background verification data, with your knowledge and consent where required
3. HOW WE USE YOUR PERSONAL DATA
We process your data on the following legal bases:- Purpose | Legal Basis (GDPR Art. 6) Responding to enquiries and providing services | Art. 6(1)(b) – Contractual necessity
- Candidate assessment, matching, and placement | Art. 6(1)(b) – Contractual necessity
- Maintaining our CV and talent database | Art. 6(1)(f) – Legitimate interests
- Complying with EU institution tender requirements | Art. 6(1)(c) – Legal obligation
- Sending marketing communications (where consented) | Art. 6(1)(a) – Consent
- Improving our Website through analytics | Art. 6(1)(f) – Legitimate interests Fraud prevention and security | Art. 6(1)(f) – Legitimate interests
4. DATA RETENTION
We retain personal data only for as long as necessary:- Candidate data: up to 3 years from last contact, or for the duration of an active engagement plus 2 years
- Client and contact data: duration of our business relationship plus 5 years for legal compliance
- Website analytics data: up to 26 months
- Marketing consent records: until consent is withdrawn, plus 1 year
5. WHO WE SHARE YOUR DATA WITH
We do not sell your personal data. We may share it with:- EU institutions and bodies (such as the European Commission, Parliament, Council, and EU agencies) as required by relevant procurement frameworks
- Consortium partners where we participate in joint tender responses, under appropriate data sharing agreements
- IT and software service providers acting as processors on our behalf (e.g. CRM, email, cloud storage), under GDPR-compliant agreements
- Professional advisers including lawyers and accountants, where legally required
- Regulatory authorities where disclosure is required by law
6. YOUR RIGHTS
Under GDPR, you have the following rights:- Right of access: receive a copy of the personal data we hold about you
- Right to rectification: have inaccurate data corrected
- Right to erasure: request deletion of your data, subject to legal obligations
- Right to restriction: limit how we use your data in certain circumstances
- Right to data portability: receive your data in a structured, machine-readable format
- Right to object: object to processing based on legitimate interests or for direct marketing
- Right to withdraw consent: where processing is based on consent, withdraw it at any time