General Data Protection Policy

General data protection policy

Primobox is particularly committed to the protection of personal data, which is a central component of our general policy.

We are committed to implementing all technical and organizational measures to ensure the protection, confidentiality and security of personal data of any person from whom data is collected.

The purpose of this data protection policy is to inform you of the commitments made by Primobox to ensure that your personal data is respected.

The purpose of our data protection policy

This personal data protection policy applies to all personal data processing implemented by Primobox, relating to external persons (including customers, partners, prospective employees, suppliers, Internet users).

The data we collect

In order to be able to provide you with certain services, Primobox may ask you to provide personal data, for example in order to respond to a contact request, follow an application file, send a newsletter… We may also collect your contact information (name, address, phone number, email address, etc.) and other information, such as those essential to creating your account or data related to your career path when you apply.

In all cases, Primobox collects and processes relevant, adequate and non-excessive personal data that is strictly necessary to achieve the purposes that have been previously determined.

In this regard, Primobox makes all necessary arrangements to ensure that your data is accurate, complete and, if necessary, updated. This information is collected for specific and legitimate purposes.

We do not collect your personal data without first asking for your consent.

Recipients of collected data

Primobox only communicates your personal data to authorized and pre-determined recipients. The recipients of your data are services relevant to Primobox, as well as, if necessary, the authorized staff of partner companies or providers.

Transfers of your data outside the European Union

We process your personal data on servers located in France, within the European Union. In the event that your data is processed outside the European Union we are committed to keeping you informed. With this in mind, we take appropriate physical, technical and organizational measures to prevent any tampering or loss of your data, or unauthorized access to it as much as possible.

How to exercise your rights

In accordance with the Data Processing and Civil Liberties Act of January 6, 1978 and European Regulation 2016/679 of the European Parliament and the Council of April 27, 2016 (GDPR), you benefit, at all times, from the following rights, by simply proving your identity:

The right to access and correct information about you

The right to object: you have the right to object to your data being processed for serious and legitimate reasons (unless processing is necessary to conclude and execute the contract)

The right to oppose to commercial prospecting operations

The right to be forgotten: you have the right to request the erasure of your personal data in cases listed by law

The right to limit processing: you may ask us in some cases to limit your data

The duty to notify the controller: we are obliged to inform you of any correction, erasure, or limitation of processing.

A right to the portability of your data: you can request the transfer of your personal data to a third party in a structured, commonly used and machine-readable format.

Length of data storage

Primobox keeps your data for the duration necessary for the operations for which it was collected, in accordance with current legislation.

Personal data that we are likely to share with third parties

Your data can therefore be communicated as needed and for the purposes mentioned…

In addition, in order to meet legal and regulatory obligations, we may be required to disclose personal information to administrative or judicial authorities upon specific written request motivated by the legislative texts establishing the right of communication.

Security of your personal data

All necessary steps are taken to ensure the security of your personal data:

Putting in place security measures tailored to the sensitivity of personal data to protect it from malicious intrusion, loss, alteration, or disclosure to unauthorized third parties

Guaranteeing the security of information exchanged during transactions or payment

Authorizing access to our information system only to those who need it to carry out their work

Setting up audits to verify the correct operational application of these rules

Access to personal data is strictly reserved for our employees and subcontractors who need to access it in order to process it on our behalf. These individuals are subject to strict confidentiality obligations and may be subject to sanctions for breaches of these obligations.

Cookies

Cookies are data stored in an Internet user’s terminal equipment and used by a website to send information to the user’s browser, allowing that browser to send information to the original site (e.g. a session ID, choice of language, or a date).

You are informed that, during your visits to our websites, cookies (connection cookies) can be installed on your browser software.

To learn more about cookies, please visit the “Cookies” section.

Appointment of a Data Protection Delegate (DPD)

We have appointed a DPD to ensure compliance with GDPR. We have provided them with all the organizational and technical means necessary to make our company compliant.

They are your direct contact For any questions about the processing of Personal Data, you can contact the Data Protection Delegate:

By mail: PRIMOBOX – For the attention of the Data Protection Delegate – 15 avenue Léonard de Vinci, 33600 PESSAC.

By email: dpo@primobox.com.

This policy may be amended at any time as a result of changes in the legislative and regulatory framework.