Personal data protection policy

Introduction

Purecontrol is committed to ensuring the confidentiality of the data collected, and to implementing all appropriate technical and organizational measures to preserve their security and integrity, in particular against accidental loss, alteration, alteration, dissemination or unauthorized access. This policy details what we do with your personal information.

These cookies are valuable tools that help us understand how you interact with our site. To comply with current privacy regulations, we ask for your explicit consent for the use of non-essential cookies. You have total control over these preferences: you can accept all cookies, refuse them, or customize them according to your needs. By agreeing to the use of cookies, you are helping us create a more efficient and personalized online experience while maintaining your privacy. For more details on the purpose and use and management of cookies refer to chapter 4 of the policy further down in the document.

1. Persons responsible for collecting personal data

The General Data Protection Regulation (RGPD), which came into force on May 25, 2018, defines the principles to be respected when collecting, processing and storing personal data. They also guarantee the rights of the persons concerned.

• Un DPO (Data Privacy Officer) a été nommé au sein de Purecontrol. Il a la charge d’accompagner nos clients pour Purecontrol en cas de question concernant ces sujets en lien avec Purecontrol et ses clients, le site, les visiteurs du site.
  Our Data Protection Officer (DPO) can be contacted via the contacts available at the end of the page.

• For Personal Data collected as part of contacting the User and browsing the Site, the person responsible for processing Personal Data is: Purecontrol.
  ‍

Purecontrol est représenté par Gautier Avril ou Geoffroy Maillard, ses représentants légaux.
‍

2. Collected Data

2.1 Relevance of the data collected

Whenever Purecontrol processes Personal Data, Purecontrol takes all reasonable steps to ensure that the Personal Data is accurate and relevant to the purposes for which Purecontrol processes it.

Your personal data is collected and processed on the legal bases defined by the RGPD.

In order to best monitor the interest shown by Purecontrol's prospects, customers and candidates, we are required to collect and process the following personal data:

• Identification data (example: name, first name, email address, email address, telephone number, geolocation, terminal used).
• Login/browsing data (example: IP address).
• Statistical and commercial data (example: number of visits, page views, abandonment in the form entry process, customer type, etc.).

‍

In accordance with the Data Protection Act, information relating to racial or ethnic origins, political, philosophical or religious opinions, trade union membership, health or sexual life of a person is not collected.

2.2 Lawfulness of processing and conditions applicable to consent (Articles 6 and 7 of the GDPR)

‍Consent to the processing of a visitor's personal data is systematically obtained for one or more specific purposes.

In the event that your personal data is collected through a form, you will be informed of the mandatory nature of the information by an asterisk (*) next to the fields concerned. The absence of an asterisk means that the information requested is not mandatory.

Only personal data that is strictly necessary for the purposes described below is collected.

In general, your data is therefore collected directly from you when:

• Your connections to the site and your navigation on the site. (subject to acceptance of the cookie).
• Your request for information or to download a document through the contact form (modifiable and revocable on request via the address dpo@purecontrol.com.)
• Your request to subscribe to the newsletter (revocable via an automatic unsubscribe link.)

• Your spontaneous application through the contact form, as such this information can be kept for 2 years. You can make a request to our recruitment department to change or delete your personal information following your application.

‍

3. Purposes of treatments

Your personal data is processed for the following purposes:

3.1 Purposes necessary for the provision of products or services

• Managing the relationship with you in the context of a commercial relationship.
• The improvement and optimization of the quality of our services and our site.
• Statistics, analytics, and audience measurements.
• Update your personal information in a dedicated database.
• Sending information on the modification or evolution of our services.
• Managing the exercise of your rights over your personal data.

‍

3.2 Marketing purposes relating to publications, products and services

• The proposal of marketing, advertising and promotional offers relating to our products and services by email, mobile notifications, social networks or any other medium.
• Development of trade statistics.

‍

3.3 Data retention period

Your personal data is kept for a period of time in accordance with legal provisions or in proportion to the purposes for which they were collected. However, your personal data is kept for a longer period of time when legal and regulatory obligations impose it on us.

Retention periods vary depending on whether we have an ongoing contractual relationship (you are an active customer), whether we have had a contractual relationship with you in the past (you are an inactive customer) or whether we have never had such a relationship with you (you are then a prospect).

In the case of an application, our HR team may keep your CVs and cover letters for follow-up purposes in the event of a future hiring opportunity. The maximum retention period will be two years from the date of your application. At the end of these two years, your personal data (C.V., cover letter) will be deleted from our system.

4. Cookies Policy and Management‍

This “COOKIES” section allows you to find out more about the origin and use of navigation information processed when you visit our site and about your rights.

Thus, when consulting our site, information relating to your browsing may be recorded in “Cookies” files installed on your terminal (computer, tablet, smartphone, etc.).

These cookies are issued by us in order to facilitate your navigation on our site, to optimize your experience on our site and to set up analyses and marketing actions.

Please note that only the sender of a cookie is likely to read or modify the information contained in it. If you share the use of your terminal with other people, we cannot be certain that the services and advertisements intended for your terminal correspond to your own use of this terminal and not to that of another user of this terminal.

‍

4.1. Internal cookies.

We only use session cookies that are not stored.

4.2 Third-party Cookies

When you access our website, one or more cookies from partner companies (third-party cookies) may be placed on your computer via the pages of our site. The third party cookies used are described below.

The issuance and use of cookies by third parties are subject to the privacy policies of these third parties. We have no access to or control over third party cookies. However, we ensure that partner companies process the information collected on the Purecontrol site exclusively for the needs of Purecontrol and in compliance with the “Informatique et Libertés” law and the RGPD.

4.2.1 Cookies for audience measurement and user experience optimization

Cookies for audience measurement and optimization of the user experience allow us to measure traffic on the site. They also allow us to obtain information about your browsing in order to optimize its ergonomics and content. The use of these cookies can only be done with your consent. Rejecting these cookies has no impact on the use of our site. Please note that you can change your preferences on the deposit and use of cookies at any time. To do this, simply click on the Cookie Management link at the bottom of all pages of the site.

4.3 Your choices regarding cookies

Several options are available to you to manage cookies. Any settings you may make may change your Internet browsing and your conditions of access to certain services requiring the use of Cookies. You can express and change your cookie wishes at any time, by the means described below.

4.3.1 The choices offered by your browser

You can configure your browser so that cookies are saved in your terminal or, on the contrary, that they are rejected, either systematically or according to their sender. You can also configure your browser so that the acceptance or refusal of cookies is offered to you from time to time, before a cookie is likely to be saved in your terminal. We invite you to configure your browser as best as possible. The configuration of each browser is different.

4.3.2 Setting up your browser

To configure your browser, please refer to the official documentation in force for your browser.

4.3.3 Your choices expressed online on interprofessional platforms

For information: You can connect to the site Youronlinechoices, offered by digital advertising professionals grouped together within the European association EDAA (European Digital Advertising Alliance) and managed in France by the Interactive Advertising Bureau France. This European platform is shared by hundreds of Internet advertising professionals and constitutes a centralized interface allowing you to express your refusal or acceptance of the cookies used in order to adapt the advertisements to the navigation of your terminal. In addition, the following platforms: IAB opt-out platform, Network Advertising Initiative opt-out platform, Digital Advertising Alliance platform, also allow you to express your choices to all the actors integrated into these platforms.

Note that this procedure will not prevent advertisements from being displayed on the websites you visit. It will only block technologies that allow advertising to be adapted to your interests.

• Opt-out links for audience measurement cookies (statistics)

For cookies placed by Google Analytics: https://support.google.com/analytics/answer/181881

For cookies placed by Hubspot: HubSpot Privacy Policy

For more information on cookies, you can go to the CNIL website, at this address: https://www.cnil.fr/vos-droits/vos-traces/les-cookies/

4.3.4 What are our cookies used for?

— Google: This site uses Google advertising and audience measurement cookies in order to display personalized advertising (advertising targeting and retargeting), measure the effectiveness of these campaigns and analyze the functioning of the site.

— Hubspot: Cookies for audience measurement and optimization of the user experience; Personalization cookies. More information is available here: HubSpot Privacy Policy.

— LinkedIn: Advertising cookies. You can learn more about LinkedIn and how this entity handles data in its privacy policy.

4.4 External links

The site www.purecontrol.com points to numerous other websites. Purecontrol cannot under any circumstances be held responsible for the content and privacy policies of these sites. Nor can Purecontrol be held responsible for any direct or indirect damage that would result from their use: in particular from access to these sites and sites linked to these sites, and for damages, not limited to, financial or commercial damages, financial or commercial damages, loss of operation, loss of data, and this, even if we were able to be notified in advance.

You cannot set up a hypertext link to the EDF Group portal without the written, express and prior authorization of Purecontrol. Requests should be sent to the publishing director of the Purecontrol portal.
5. What uses and transfers of your personal data

Your personal data is communicated to the following persons:

5.1 Internally, at the Company

Your data is communicated to employees of the Company's internal services. In accordance with regulations, access to your data is based on individual, limited and supervised access authorizations.

5.2 To our subcontractors

They provide services on our behalf, in particular:

• Web hosting
• La fourniture de solutions analytiques ou de statistiques de mesure d’audience

‍

5.3 Data transfer outside the European Union

Your data is stored within the European Union, either by Purecontrol, or by its service providers (subcontractors). Some data may be subject to occasional processing outside the European Union in countries that do not benefit from an adequacy decision issued by the European Commission. Specific measures and guarantees are implemented to secure such transfers. In practice, these include Standard Contractual Clauses or binding corporate rules. To find out more about the measures put in place or to obtain a copy of the guarantees, we invite you to request it from the Purecontrol Data Protection Officer at the address: dpo@purecontrol.com

6. The rights you have over your data - Contact information

In accordance with the Data Protection Act and the RGPD, anyone can exercise their right of access, rectification, opposition, limitation of processing, deletion and portability of data concerning them by making a request by letter signed and accompanied by a copy of an identity document to the address of the head office of Purecontrol, 68 Avenue Sergent Maginot — 35000 Rennes. The data controller, Gautier Avril, will respond no later than the month following the request for access or correction.

6.1 In accordance with the legal and regulatory provisions mentioned above, you have:

• The right to question;
• A right of access to your data;
• A right to correction;
• A right to erasure;
• A right to limit the processing of your data
• A right to the portability of your data to a certain extent, i.e. the right to receive the personal data that you have provided to us in a structured, commonly used format and the right to transmit this data to another data controller;
• The right to object to the processing of personal data concerning you;
• The right to object to your data being used for prospecting purposes, in particular commercial purposes;
• A right to object to marketing profiling, this means that you will continue to receive commercial solicitations, but these will be less relevant and will no longer be targeted according to your interests;
• The right to define general and/or specific guidelines relating to the fate of your personal data and the way in which you want your rights to be exercised after your death. In this respect, in the event of death that is brought to our attention, your data will be deleted, unless it is necessary to keep it for a fixed period of time for reasons relating to our legal and regulatory obligations and/or legal limitation periods, and after, where applicable, having been communicated to a third party possibly designated by you.

‍

6.2 You can exercise your rights with the Personal Data Protection Officer

1. By sending him a letter to the following address:

Personal Data Protection Officer — Purecontrol
68 Avenue Sergent Maginot
35000 — Reindeer
france

2. By sending him an email to the following email address: dpo@purecontrol.com

For the sake of confidentiality and protection of your personal data, the company must ensure your identity before responding to such a request. Also, any request for the exercise of these rights must be accompanied by a copy of a signed identity document.

In the event of an unsatisfactory response, you can file a complaint with the Commission Nationale de l'Informatique et des Libertés (CNIL)

6.3 Opposition to commercial offers

You can object to commercial solicitations at any time, according to the methods provided for by the communication medium concerned.

In case of solicitation by email:

You always have the option of opposing the receipt of these requests by taking the following actions:

• By clicking on the unsubscribe link provided in each email or by contacting our customer service: support@purecontrol.com 

Commercial solicitations by telephone

You have the option of opposing telephone solicitations by carrying out the following actions:

• Sending an email to the address dpo@purecontrol.com requesting the immediate end of commercial telephone solicitation from Purecontrol.

‍

7. Personal data security

As data controller, we take all necessary measures to preserve the security and confidentiality of data and in particular, to prevent it from being damaged or from being accessed by unauthorized third parties. To this end, we make every effort to guarantee the physical security of the buildings housing our computer systems, as well as the security of the computer system, in particular by providing for encryption measures. In addition, we ensure that our subcontractors comply with personal data protection rules.

7.1 Update of the personal data protection policy

This personal data protection policy may be modified or adjusted at any time.

7.2 Procedures implemented in the event of a data leak

We take the protection of your personal data very seriously and are committed to acting quickly and effectively in the event of a data breach. This section describes the procedures we have put in place to deal with such situations.

7.2.1 Data Leak Notification

If we become aware of a data breach that could result in a risk to your rights and freedoms, we will immediately notify the competent supervisory authority in accordance with our obligations under the GDPR. We will also take steps to mitigate the possible harmful effects of the data breach.

7.2.2 Notification to Data Subjects

In cases where the data breach could result in a high risk to your rights and freedoms, we will inform you appropriately and in accordance with current legal requirements. This notification will include information about the nature of the breach, the data affected, the possible consequences, and the steps taken to remedy the situation.

7.2.3 Investigation and Remedial Actions

We will conduct a comprehensive internal investigation to understand the nature of the data breach, its causes, and extent. Based on the results of this investigation, we will take corrective actions to prevent future similar breaches.

7.2.4 Communication with Control Authorities and Data Subjects

We will cooperate fully with the supervisory authorities and the persons concerned in the investigation of the data leak. We will provide all required information in a transparent manner and in accordance with applicable regulations.

7.2.5 Documentation

We will maintain detailed records of all data breaches, including details of the breach, actions taken to address it, notifications made, and corrective actions taken. These documents will be kept in accordance with current legal requirements.

7.2.6 Data Leak Contact Point

If you are aware of or suspect a data breach related to your personal information in our possession, please contact us immediately at [email address for data breaches] or [emergency telephone number]. We will encourage you to report any concerns about data security as your contribution is critical to protecting your personal data.