Legal

Privacy policy

This page is under construction. For questions about privacy or data processing, you can reach us at <email>info@ramadanlights.be</email>.

Last updated: 20 February 2026

This privacy policy explains how Ramadan Lights Gent (the “Project”) processes personal data when you visit our website or when you share information with us (e.g., via a form, email, donation or partnership).

1. Who is responsible for the processing?

The data controller is:

Vereniging van Gentse Moskeeën (VGM)
Antwerpsesteenweg 24, 9000 Ghent – Belgium
Email: vzwvgm@gmail.com
Company number / CBE: 0662.896.812

VGM acts as the platform operator. Information about software ownership/licences is available in the Terms.

For privacy questions, contact us at the email address above with subject: “Privacy – Ramadan Lights”.

2. What personal data do we process?

2.1 When you visit the website

When you use the website, we may process limited information, such as:

  • IP address and technical logs (e.g., to prevent abuse)
  • device and browser information
  • pages visited and high-level usage statistics
  • referrer (the website that sent you to us) and campaign parameters (UTM)

Note: we currently do not use analytics cookies for statistics. We may keep server-side statistics (without cookies) and we pseudonymise where possible.

2.2 When you submit a form

Depending on the form, we may process:

  • organisation and location details (name, address, city)
  • practical information (days/hours, audience, free/paid, links)
  • contact details of a contact person (name, email, phone)

Become a partner/sponsor

  • company details (name, address, city, VAT number)
  • contact person (name, email, phone)
  • description, website and social links
  • logo/images you upload (may contain personal data if people are visible)

Donations

  • donation amount, campaign choice
  • (optional) name and email
  • (optional) message
  • payment/transaction details (such as payment-id and status) via our payment provider

2.3 Communication

If you email us, we process your email address and the content of your message.

3. Why do we process personal data? (purposes and legal basis)

We process personal data for:

  1. Providing and operating the website
    Legal basis: legitimate interests and/or necessity for the requested service.

  2. Handling submissions (iftars, mosques, activities, partners)
    Legal basis: legitimate interests (community platform) and/or performance of a contract (e.g., partner listing).

  3. Processing donations and payments
    Legal basis: performance of a contract and legal obligations (accounting).

  4. Communication and support
    Legal basis: legitimate interests and/or consent (where required).

  5. Security and abuse prevention (e.g., rate limiting, logging)
    Legal basis: legitimate interests (security and integrity of the website).

  6. Limited statistics to improve the website
    Legal basis: legitimate interests. If we ever use statistical cookies, we will ask for your consent first.

4. Who do we share data with?

We only share personal data where necessary for the purposes above, with:

  • Hosting & infrastructure: the site may be hosted with a hosting provider (e.g., Vercel) and data/storage with a database provider (e.g., Supabase).
  • Payments: Mollie processes payments on a secure payment page.
  • Email delivery: an email service (e.g., Resend) for (confirmation) emails.
  • Maps & geocoding: when loading maps, your browser may connect to third parties (e.g., Google Maps). For address-to-coordinate conversion we may use a geocoding service (e.g., OpenStreetMap Nominatim).

Where required, we enter into data processing agreements with these service providers.

5. Transfers outside the EEA

Some service providers may process data outside the European Economic Area (EEA). In that case, we put appropriate safeguards in place, such as EU Standard Contractual Clauses (SCCs) or an adequacy decision, where applicable.

6. How long do we keep data?

We keep personal data no longer than necessary. Indicative retention periods:

  • Server-side statistics: up to 90 days (unless longer is needed for security incidents).
  • Iftar/mosque submissions: while published + a reasonable period for follow-up/audit (e.g., up to 24 months).
  • Partner data & invoicing/administration: for the duration of the cooperation + legal retention periods (typically up to 7 years for accounting).
  • Donations: up to 7 years for accounting obligations.
  • Email communication: as long as needed to handle your request, then up to 24 months.

7. Security

We take appropriate technical and organisational measures, such as:

  • access control (least privilege)
  • logging and monitoring
  • encrypted connections (HTTPS)
  • file type restrictions and rate limiting

8. Your rights

Subject to conditions, you have the right to:

  • access, rectification, erasure
  • restriction of processing
  • data portability
  • object to processing
  • withdraw consent (where processing is based on consent)

You can exercise your rights via vzwvgm@gmail.com. We may ask you to verify your identity.

9. Complaints

If you are not satisfied with how we handle your data, you can lodge a complaint with the Belgian Data Protection Authority (GBA/APD).

10. Changes

We may update this policy. The latest version is always available on our website, with the date of the last update.

Cookies on Ramadan Lights

We use necessary cookies to run the site and optional cookies for preferences, analytics and external maps. Choose your preference below. Read our cookie policy.