Tales of Bruss' HellTales of Bruss'Hell
HomeAboutBlogContact
Tales of Bruss' Hell
A non-profit organization dedicated for players and DM to enjoy RPGs, miniatures, and storytelling.

Quick Links

  • Home
  • About
  • Blog
  • Contact

Legal Notice

  • Privacy Policy
  • Terms & Conditions
  • Cookie Policy

Contact

  • info@talesofbrusshell.be
  • Brussels, Belgium

© 2026 Tales of Bruss'Hell. All rights reserved.

Privacy Policy

Personal Data Protection Declaration

How we collect, use, and protect your information.

Last updated: August 29, 2025

General

This declaration aims to present to you how we, Tales of Bruss'Hell, process your personal data in compliance with the General Data Protection Regulation (GDPR) by:

  • implementing appropriate technical and organizational measures to ensure that processing is carried out in accordance with GDPR principles
  • ensuring compliance with legal provisions relating to personal data protection from their origin (data protection by design principle)
  • guaranteeing that we only collect, process, or use data that is necessary for the specific purpose of the processing (data protection by default principle)

Data Controller

The ASBL 'Tales of Bruss'Hell', business number 1008.453.075, whose registered office is located at Avenue du Derby, 30 bte 14, 1050 Ixelles, is considered as 'Data Controller' within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 and the law of 30 July 2018 on the protection of individuals with regard to the processing of personal data (hereinafter 'GDPR').

Personal Data Collection

We may collect different personal information from our users, including:

  • First and last name
  • Email address
  • Phone number
  • Photo
  • Payment information

We collect this information when our users register for our events, fill out forms, access our website or platforms, or when they subscribe to our newsletter.

Personal Data Usage

We use the collected personal information to provide our users with the requested services, to answer their questions, to send them information about our services, and to process their payments.

Tales of Bruss'Hell is the primary recipient of this data, and it is in no case communicated to third parties, except for subcontractors or partners with whom Tales of Bruss'Hell collaborates to comply with legal and contractual obligations or to provide adequate service. We do not sell or rent our users' personal information to third parties. Neither Tales of Bruss'Hell, nor its subcontractors, nor any of its partners engage in the commercialization of your data.

Personal Data Retention Period

The retention period of your personal data varies depending on the type of data but also on the purpose for which your personal data is collected. We do not keep your personal data longer than necessary.

Here are some examples of retention periods depending on the type of personal data and the purpose of the processing:

Electronic Contact Form

Data: name, email address, subject, message, language preference
Retention period: 24 months
Purpose: customer service, request management

Memberships

Data: first name, last name, email address, phone, membership type, experience level, interests, comments
Retention period: 24 months
Purpose: membership management, community management

Event Registrations

Data: first name, last name, email address, phone, membership status
Retention period: 24 months
Purpose: event management, attendance tracking

User Accounts

Data: email address, passwordHash, name
Retention period: indefinite (no automatic deletion)
Purpose: website management, content management

Browser Storage (Client-Side)

localStorage:

  • cookieConsent: true/false (consent cookie)
  • selectedLanguage: en/fr (language cookie)

Cookies:

  • selectedLanguage: 12 months (language cookie)
  • NextAuth session: until end of session (session cookie)

IP Address Logging

Usage: Rate limiting for contact form API
Retention period: Rate limit window only (cleaned up automatically)
Purpose: Spam/bot protection

Security Measures

We have implemented technical and organizational security measures to prevent the destruction, loss, falsification, alteration, unauthorized access, or disclosure of your personal data to third parties and any other unauthorized processing of this data.

We have done everything possible to ensure the confidentiality, integrity, and availability of information systems and services that process personal data. These measures include physical and operational security measures, access control, awareness, and confidentiality clauses.

Cookie Usage

Our website uses cookies to improve our users' experience. Cookies are small text files stored on the user's browser. Cookies do not contain personal information but can be used to track user activity on our website.

Our users can refuse cookies by modifying their browser settings, but this may affect the quality of the browsing experience on our website.

For more information on this subject, we refer you to : cookie management policy.

Access, Rectification, and Deletion Rights

As a data subject, you enjoy several rights regarding the processing of your personal data, including:

  • Access and information: you have the right to access, without having to justify your request, your personal data that is processed by Tales of Bruss'Hell. You can also request that a copy of the processed data be provided to you.
  • Rectification: you have the right to obtain from Tales of Bruss'Hell, as soon as possible, the rectification of personal data concerning you that is inaccurate, incomplete, or obsolete. We strive to keep your personal data complete, up-to-date, and adequate, but if you notice an error concerning you, you can contact us so that we can do what is necessary to rectify it.
  • Erasure: you can require Tales of Bruss'Hell to erase your personal data as soon as possible, in the following cases:
    • the personal data is no longer necessary for the purposes for which it was collected;
    • the processing of the data was based exclusively on your consent, which you have withdrawn;
    • you object, for legitimate reasons, to the processing.

To exercise these rights, you can contact us by email or by mail at the address indicated on our website.

Contact Us

If you have comments, questions, or concerns about the protection of your personal data, please do not hesitate to contact us at the email or postal address indicated on our website.

Complaints

If you believe that we have not processed your personal data in accordance with current regulations, you can file a complaint with the Data Protection Authority:

  • Contact form:https://www.autoriteprotectiondonnees.be/citoyen/agir/contact
  • Email:contact@apd-gba.be

Changes

We may need to make changes to this Personal Data Protection Declaration, particularly due to updates to our security measures, legislative developments, or other nature.

We therefore reserve the right to modify this Declaration at any time. Changes will take effect immediately after their publication on our website.

We encourage you to read this Personal Data Protection Declaration periodically.

If you have any questions about this Privacy Policy, please contact us:

ASBL Tales of Bruss'HellAvenue du Derby 30, bte 141050 IxellesBelgium
Email:info@talesofbrusshell.be