Privacy policy

The data controller is Espero-Soft Informatiques SRL, Rue de la Colonne 1A, 1080 Molenbeek-Saint-Jean, Belgique, company number 1033.022.383. For any question regarding your data or to exercise your rights, you may contact our data protection point of contact at info@espero-soft.com.

When you use Bjet24, we collect the following categories of data:

• Identification: first name, last name, email, phone number (optional).
• Mailing data: sender and recipient address, mail type (standard, priority, registered, international), page count, selected options.
• Uploaded documents: the letter files you entrust to us for printing and posting, encrypted at rest (AES-GCM). They may contain personal data for which you are the data controller.
• Payment data: processed exclusively by Stripe; we never store your full banking data.
• Postal proofs: photo / scan of the drop-off receipt, bpost tracking number for registered mail.
• Technical data: IP address, browser type, connection logs (for security purposes).

• Performance of the postal service: printing, postage, drop-off, tracking (Article 6.1.b GDPR — performance of the contract).
• Retention of drop-off proofs and tracking numbers to meet postal and accounting obligations (Article 6.1.c GDPR — legal obligation).
• Site security, fraud prevention, compliance audit (Article 6.1.f GDPR — legitimate interest).
• Transactional communications regarding your mailing (confirmation, drop-off, tracking, delivery issue) (Article 6.1.b GDPR).
• Anonymised, aggregated statistics to operate the service.

For your account data and the performance of the service, Bjet24 acts as data controller. For the content of the documents you entrust to us, where these contain personal data of third parties, Bjet24 acts as a processor and processes that data only on your instructions, solely for the purpose of printing and drop-off.

Your data is never sold to third parties. It may be shared with:

• bpost (postal operator) for drop-off, postage and delivery of the letter.
• The secure print room, operating under a strict confidentiality agreement — access logged in an immutable audit trail.
• Payment, hosting and encryption providers — processors bound by an agreement compliant with Article 28 GDPR. The list of processors is available on request at info@espero-soft.com.
• Public authorities upon legal request.

Application data is hosted within the European Union. Certain processors (in particular Stripe for payment) may process data from third countries. These transfers are framed by appropriate safeguards within the meaning of Chapter V of the GDPR: adequacy decision, standard contractual clauses of the European Commission and, where applicable, certification under the EU-US Data Privacy Framework.

• Customer account: as long as the account is active, plus 5 years after the last mailing (civil prescription).
• Uploaded documents: default 30 days after drop-off, extended up to 12 months for registered mail and items requiring legal proof.
• Mailing metadata (addresses, type, options, drop-off proofs, tracking numbers): 7 years to meet postal and accounting obligations.
• Technical logs: 12 months maximum.
• Payment data: kept by Stripe according to its own rules.

Uploaded documents are encrypted at rest (AES-GCM) with a key managed via a dedicated KMS service. Communications are protected by TLS. Access to sensitive data is restricted to authorised print-room personnel and tracked in an immutable audit trail. In the event of a data breach likely to create a risk to your rights, we notify the Data Protection Authority and, where applicable, the data subjects within the legal time limits.

Bjet24 does not take any decision producing legal effects concerning you based solely on automated processing, nor any profiling for advertising purposes.

Under the GDPR, you have the following rights:

• Right of access and to obtain a copy of your data.
• Right to rectification of inaccurate data.
• Right to erasure ("right to be forgotten"), subject to legal retention obligations.
• Right to restriction of and objection to processing.
• Right to data portability.
• Right to withdraw your consent at any time where processing is based on it, without affecting the lawfulness of prior processing.
• Right to lodge a complaint with the Data Protection Authority (DPA), Rue de la Presse 35, 1000 Brussels, contact@apd-gba.be.

To exercise these rights, write to info@espero-soft.com. You will receive an answer within one month, extendable by two months for complex requests.

The Site uses cookies essential to the operation of the service. For more details, see our Cookies Policy.

This policy may evolve to reflect legal or technical changes. Material changes will be communicated to you by email.