Exafield undertakes to ensure that the collection and processing of your personal data carried out from the exafield.com website complies with Law No. 78-17 of 6 January 1978, as amended, relating to information technology, data files and civil liberty (known as the “Data Protection Act”) and Regulation (EU) No. 2016/679 of 27 April 2016 known as the “General Data Protection Regulation” (or “GDPR”).
This policy describes how Exafield will collect, use and protect your personal data.
Why are your data collected?
On our site, the purposes for which your data are collected are the following:
- To respond to your requests for information
- To better communicate with you
- To gather statistics on website visitors in order to enable us to improve it and to give you an optimal user experience
- To improve the user-friendliness of our site and to help promote it, particularly on Twitter, Facebook, LinkedIn and You Tube.
Exafield will only process your personal data for these purposes and in any case will not use them for any other purpose.
What categories of data are collected?
We only collect appropriate and necessary relevant data
The categories of data collected are the following:
For contact or a request for information
- Identification data: surname, first name, e-mail address, telephone number
- Occupation-related data: position, company name, company address, department
The personal data collected by Exafield are only necessary to achieve the purposes of the processing carried out. Exafield will not collect more data than necessary.
Who is the recipient of your data?
Only authorised persons have access to your data
Access to your personal data is strictly limited to authorised persons determined by Exafield and our service provider(s); partner(s) or subcontractor(s) who have established technical and organisational provisions for the protection of your data. These persons are those who, by virtue of their position, are entitled to have your data disclosed to them in order to achieve the purposes previously described to you.
Any service provider, partner or subcontractor who becomes aware of these personal data will be bound by a confidentiality obligation. In particular, they must refrain from using any of the data for their own account and disclosing them to third parties.
How long will your collected data be stored?
Your data are kept only for as long as necessary
In accordance with the legal provisions in force, Exafield only keeps your personal data for the time necessary for the purposes for which they are collected and processed.
How does Exafield protect your personal data?
Your data are safe
Exafield implements physical and logical security measures to protect your personal data from unauthorised access, misuse, disclosure, loss and destruction.
However, it is your responsibility to ensure that the terminals you use are adequately secured and protected against malicious software such as Trojan horses and viruses. You are informed that, without adequate security measures, you run the risk of your data being obtained or disclosed to unauthorised third parties.
What are your rights over your data and how can you exercise them?
You keep control over your data
In accordance with the provisions of the French Data Protection Act and the GDPR, you have the right to access, rectify, limit and erase your personal data at any time. You also have the right to object to their further processing on legitimate grounds, and the right to withdraw your consent at any time.
You may exercise your rights at any time by contacting Exafield by post at the following address: Exafield, 20 Rue Gambetta, 84210 Pernes les Fontaines or by email at the following address: firstname.lastname@example.org
You also have the right to lodge a complaint with the National Commission on Informatics and Liberty.