The purpose of this privacy policy is to inform users of our website about the personal data we will collect and the following information, if applicable:
- Personal data we will collect
- Use of the collected data
- Who has access to the collected data
- User rights on the site
- Site cookie policy
This privacy policy operates in conjunction with the terms of use of our site.
Applicable laws
In accordance with the General Data Protection Regulation (GDPR), this privacy policy complies with the following regulations.
Personal data must be:
- Processed in a lawful, fair, and transparent manner in relation to the data subject (lawfulness, fairness, transparency);
- Collected for specified, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes is not considered incompatible with the initial purposes, in accordance with Article 89(1) (limitation of purposes);
- Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed (data minimization);
- Accurate and, if necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay (accuracy);
- Kept in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes in accordance with Article 89(1), subject to the implementation of the appropriate technical and organizational measures required by the regulation to safeguard the rights and freedoms of the data subject (limitation of retention);
- Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures (integrity and confidentiality).
Processing is lawful only if, and to the extent that, at least one of the following applies:
- The data subject has given consent to the processing of his or her personal data for one or more specific purposes;
- Processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract;
- Processing is necessary for compliance with a legal obligation to which the controller is subject;
- Processing is necessary to protect the vital interests of the data subject or of another natural person;
- Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
- Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
For residents of the State of California, this privacy policy aims to comply with the California Consumer Privacy Act (CCPA). In case of inconsistencies between this document and the CCPA, the state legislation will apply. If inconsistencies are identified, we will amend our policy to comply with the relevant law. California Consumer Privacy Act (CCPA). S’il y a des incohérences entre ce document et la CCPA, la législation de l’État s’appliquera. Si nous constatons des incohérences, nous modifierons notre politique pour nous conformer à la loi pertinente
Consent
Users agree that by using our site, they consent to:
- The conditions stated in this privacy policy, and
- The collection, use, and storage of the data listed in this policy.
Collected personal data
When you visit and use our site, we may automatically collect and store the following information:
- IP address
- Location
- Hardware and software details
- Links clicked by a user while using the site
- Content that the user views on our site
- Non-automatically collected data
We may also collect the following data when you perform certain functions on our site:
- First name and last name
- Hardware and software details
- Phone number
- Company
- Interest in the service
This data may be collected through the following methods: Submission of a contact form
Please note that we only collect data that helps us achieve the goal stated in this privacy policy. We will not collect additional data without informing you in advance.
How we use personal data
The personal data collected on our site will be used only for the purposes specified in this policy or indicated on the relevant pages of our site. We will not use your data beyond what we disclose.
The data we collect automatically is used for the following purposes:
- Statistics
- Communication
- Invitation to events
- Business prospecting
This data may be collected through the following methods: Submission of a contact form
Please note that we only collect data that helps us achieve the goal stated in this privacy policy. We will not collect additional data without informing you in advance.
With whom we share personal data
Employees
We may disclose to any member of our organization the user data they reasonably need to achieve the objectives stated in this policy.
Third parties
We may share user data with the following third parties: HubSpot
We may share user data with third parties for the following purposes: Contact or appointment scheduling
Third parties will not be able to access user data beyond what is reasonably necessary to achieve the given objective.
Other disclosures
We are committed to not selling or sharing your data with third parties, except in the following cases:
- If the law requires it;
- If it is required for any legal proceedings;
- To prove or protect our legal rights;
- To buyers or potential buyers of this company in the event that we seek to sell the company.
If you follow hyperlinks from our site to another site, please note that we are not responsible and do not have control over their privacy policies and practices.
How long we store personal data
User data will be retained for a period of 3 years after the end of the business relationship.
We will ensure that users are notified if their data is retained longer than this duration.
How we protect your personal data
To ensure the protection of your security, we use the Transport Layer Security protocol to transmit personal information in our system. All data stored in our system is securely stored and is only accessible to our employees for processing defined in this privacy policy. Our employees are bound by strict confidentiality agreements, and a violation of this agreement would result in the termination of the employee.
While we take all reasonable precautions to ensure that our user data is secure and users are protected, there is always a risk of harm. The Internet as a whole can be, at times, insecure, and therefore, we are unable to guarantee the security of user data beyond what is reasonably practical.
International data transfers
User data may be accessed, processed, or collected in the following countries: Tunisia
Minors
The GDPR specifies that individuals under the age of 15 are considered minors for the purposes of data collection. Minors must have the consent of a legal representative for their data to be collected, processed, and used.
Your rights as a user
Under the GDPR, users have the following rights as data subjects:
- Right of access
- Right to rectification
- Right to erasure
- Right to restrict processing
- Right to data portability
- Right to object
More information on these rights can be found in Chapter 3 (Articles 12-23) of the GDPR.
How to modify, delete, or contest the collected data
If you wish to have your information deleted or modified in any way, please contact our privacy officer here:
Olivier Patole
10 rue de la Paix 75002, Paris
opatole[at]trustable.fr
Cookie policy
A cookie is a small file stored on a usern's hard drive by the website. Its purpose is to collect data about the usern's browsing habits.
We use the following types of cookies on our site:
Functional cookies
We use them to remember any selections you make on our site so that they are saved for your future visits.
Analytical cookies
This allows us to improve the design and functionality of our site by collecting data about the content you access and engage with using our site.
Targeting cookies
These cookies collect data on how you use the site and your preferences. This allows us to make the information you see on our site more promotional and targeted to you.
You can choose to be notified each time a cookie is transmitted. You can also choose to disable cookies entirely in your internet browser, but this may decrease the quality of your user experience.
Changes
This privacy policy may be amended from time to time to maintain compliance with the law and to account for any changes to our data collection process. We recommend our users to check our policy from time to time to ensure they are informed of any updates. If necessary, we may inform users by email of changes to this policy.
Contact
If you have any questions, feel free to contact us using the following:
dpo[at]trustable.fr
10 rue de la Paix 75002, Paris
Effective date: November 10, 2023