Legal

Data protection

Data protection

See our data protection policy to find out how we secure and manage your personal information, guaranteeing your privacy and your rights.

1. Preamble

1. Respect for fundamental rights and freedoms, and in particular the protection of personal data, are values that "Easytransac" is committed to upholding.
These values are reflected in the respect and application of the European Regulation on the Protection of Personal Data (RGPD) as well as the French Data Protection Act (Loi informatique et liberté) aimed at transparency and protection of your personal data.

This is why "Easytransac", SAS with registered office at 204 avenue de Colmar, 67100 Strasbourg, in its capacity as data controller, is committed to a policy of compliance with regulations on the protection of personal data.

2. "Easytransac", in its capacity as data controller, collects data directly from users of its website and "Easytransac" services (account creation, browsing, support contact, etc.) (together the "Site"), and from the social networks on which it is present.

In the course of its business, "Easytransac" also collects and processes personal data relating to its prospects and business partners. In some cases, "Easytransac" works with partners to collect data indirectly.

3. Easytransac" is committed to developing its business while respecting the rights of individuals, and has put in place the technical and organizational means necessary to protect the personal data it processes.

4. The purpose of this policy is to present the commitments made by "Easytransac" with regard to the protection of personal data.

2. Legal basis and purposes of our data processing operations

5. "Easytransac "collects your personal data for the following purposes and legal bases:

Customer account management :

On the legal basis for establishing a pre-contractual relationship and performing the contract :

  • Create customer accounts.
  • Customer account management.
  • Provision of subscribed services.
  • Claims and disputes management.

 

On the legal basis oflegitimate interest:

  • Give you access to the functionalities of the "Easytransac" Site (example: e-commerce site).
  • Keep you informed of news on the "Easytransac" site (updates to the Terms and Conditions, etc.).
  • Communicate to you by electronic and/or postal means the evolution of its offers, products and services related to the Site.
  • Send you satisfaction surveys on the Site and "Easytransac" services

 

Competition

Legal basis for consent :

- Participate in contests organized by "Easytransac".

 

On the legal basis for theperformance of a contract :

- Draw the winner and the prize (game rules).

 

Contact

On the legal basis oflegitimate interest:

- Receive, process and respond to your contact requests.

- Store exchanges.

 

Customer relations

On the legal basis for theperformance of a contract :

- Manage contractual relations with customers.

 

Social networking

On the legal basis oflegitimate interest:

- Technical administration of accounts (creation, publications).

- Interact (public or private messaging) with platform users.

- Generate usage statistics.

 

Website

On the legal basis oflegitimate interest:

- To enable you to navigate the site securely and improve your user experience.

- To manage and operate the Site administratively and technically. Ensure its smooth operation.

- Prevent, detect and combat fraud and abuse.

 

Legal basis for consent :

- Store and access information on your browser.

- Offer targeted, personalized advertising to Internet users.

- Carry out statistical studies on site traffic in order to measure and improve performance.

 

Legal obligations

- In some cases, we are subject to certain obligations which require us to process and/or transmit certain data to authorities or institutions determined by law.

- Exercising your RGPD rights.

3. Category of data processed

6. The personal data concerning you that are processed by "Easytransac" are the following:

Customer account management :

- Mandatory data collected: such as - e-mail address - telephone number - business sector.

 

Competition

- Mandatory data collected: such as - Last name - First name - Email address - Telephone number - Proof of identity (national identity card, passport or other) - Proof of address - Bank details

- Optional data collected: such as - Telephone number

 

Contact us

- Mandatory data collected: such as - Last name - First name - Email address - Telephone number - Purpose, date of request - Exchange history

 

Support requests

- Mandatory data collected: such as - Last name - First name - Email address - Telephone number - Purpose, date of request - Exchange history

 

Social networking

- Optional data collected: such as - Platform usage data - Identification data

 

Management of the "Easytransac.com" website and sub-domains

- Mandatory data collected: such as - IP address - Metadata (time and date of connection) - Necessary cookies - Timestamp - logs

- Optional data collected: such as - X/Y coordinates - Optional cookies and tracers

 

Legal obligations

- Mandatory data collected: All data required by the authority or law in question, such as - Last name - First name - Email address

- Optional data collected: such as - Postal address - Telephone number - National identity card

7. Our website, mobile application and social networks are not intended for minors, which is why we do not knowingly collect data relating to children.

 

4. Recipients of your data

8. The Data collected is processed solely for the purposes defined in "2) Legal basis and purposes of processing". It is intended for :

A- for "Easytransac's" own use,

B- during your visit to the website, other companies, in their capacity as data processors, may collect personal data about you. These companies may publish cookies, tracers or tags.

  • Google Tag Manager
  • Social networking
     

C- to a subcontractor for services performed on its behalf

  • Developer: Studio Flowthesun, Webflow
  • Host : Webflow
  • Bailiff
  • Cookie management, preferences, rights: Didomi
  • Analysis, optimization and management of the Site's audience and performance: Matomo
  • Targeted advertising: Google ads, Influ2, social networks (Linkedin, facebook, instagram, twitter (X))

E- if required, to public bodies, legal auxiliaries and ministerial officers (to comply with our legal obligations),

9. "Easytransac" ensures that only authorized persons have access to this data.

5. Transferring your data

10. "Easytransac" transfers your data outside the European Union only if this transfer is based on exemptions for specific situations (your consent, transfer necessary for the performance of a contract between you and "Easytransac" or between "Easytransac" and its customers or for the implementation of pre-contractual measures taken at your request etc.).

11. Prior to any transfer outside the European Union, and in accordance with the regulations in force, "Easytransac" implements all the procedures required to obtain the guarantees necessary to ensure the security of such transfers.

6. How long we keep your data

12. "Easytransac" keeps your Data for a period strictly necessary for the purposes pursued and in compliance with the Regulations. The retention period may vary depending on the purpose of the processing.

  • Account data: 5 years + current year from closure of their accounts or termination of their relationship
  • Data relating to complaints, disputes and the exercise of a RGPD right: retained for the time necessary to manage the dispute, then archived for 5 years.
  • Data related to winning the competition: deleted immediately after the prize is awarded.
  • Data related to your contact and support requests: 3 years after the last contact.
  • Data related to the management of the easytransac.com website: 6 months for user logs, 13 months for cookies, 15 minutes for authentication.
  • Data relating to compliance with legal obligations: legal time limits applicable to the obligation in question.

What constitutes a "last contact"? This is the last interaction with "Easytransac" services (e.g. logging in to your account).

13. It should be noted that this data may be stored in accordance with the rules of prescription applicable to intermediate archives and restricted access, in particular in order to comply with applicable legal obligations.

7. Data security

14. "Easytransac attaches particular importance to the security of personal data. This is why we have a dedicated data protection department.

15. Appropriate technical and organizational measures are implemented to ensure that data is processed in such a way as to guarantee its protection against accidental loss, destruction or damage that could undermine its confidentiality or integrity.

16. When developing, designing, or selecting and using the various tools that enable the processing of your personal data, "Easytransac" ensures that they provide an optimal level of protection for the data processed.

17. "Easytransac" thus implements measures that respect the principles of protection by design and protection by default of processed data.

8. Subcontracting

18. When using a service provider, "Easytransac" will only communicate personal data to the latter after having obtained a commitment and guarantees on its ability to meet these security and confidentiality requirements. "Easytransac" agrees with its subcontractors to comply with its legal and regulatory obligations by contractually defining the terms and conditions of personal data processing by the latter.

9. Your rights

19. "Easytransac" is particularly concerned about respecting your rights in the context of the data processing it implements, to guarantee you fair and transparent processing given the particular circumstances and context in which your personal data is processed.

9.1 Your right of access

20. This right gives you confirmation as to whether or not your personal data is being processed, and when it is, you have the right to request a copy of your data and information.

9.2 Your right to rectify your data

21. You may request that your personal data be corrected or completed if it is inaccurate, incomplete, ambiguous or out of date.

9.3 Your right to erase your data

22. You may request the erasure of your personal data when one of the following reasons applies:

  • the personal data is no longer required for the purposes for which it was collected or otherwise processed;
  • you withdraw the consent previously given ;
  • you object to the processing of your personal data if there are no compelling legitimate grounds for the processing;
  • the processing of personal data does not comply with applicable laws and regulations.

23. Please note that the right to erasure of data is not a general right, and can only be exercised if one of the grounds provided for in the applicable regulations is present.

24. Thus, if none of these reasons is present, "Easytransac" will not be able to respond favorably to your request; such will be the case if it is required to retain data because of a legal or regulatory obligation or for the establishment, exercise or defense of legal claims.

9.4 Your right to limit data processing

25. You may request the restriction of the processing of your personal data in the cases provided for by legislation and regulations.

9.5 Your right to object to data processing

26. You have the right to object at any time, for reasons relating to your particular situation, to the processing of your personal data for which the legal basis is legitimate interest.

27. If you exercise your right to object, "Easytransac" will not process your personal data any further in connection with the processing in question unless we can demonstrate compelling legitimate grounds for doing so. These grounds must outweigh your interests and your rights and freedoms, or the processing must be justified for the establishment, exercise or defense of legal claims.

9.6 Your right to data portability

28. You have the right to the portability of your personal data. Please note that this is not a general right. Not all data from all processing operations is portable, and this right only applies to automated processing operations, to the exclusion of manual or paper processing.

29. This right is limited to processing operations whose legal basis is your consent or the performance of pre-contractual measures or a contract.

30. The right to portability may not infringe the rights and freedoms of third parties, such as those protected by business secrecy.

9.7 Your right to withdraw your consent

31. When the data processing that we implement is based on your consent, you may withdraw it at any time. "Easytransac" will then cease to process your personal data without affecting any previous operations for which you have given your consent.

9.8 The right not to be subject to a decision based on automated processing

32. In the course of its activities, "Easytransac" may implement automated data processing. You have the right not to be the subject of a decision based exclusively on automated processing that produces legal effects concerning or affecting you, except where such a decision is essential for the conclusion or performance of a contract, west legally authorized.

9.9 Your right to define post-mortem directives

34. You have the possibility of defining particular directives relating to the conservation, the erasure and the communication of your personal data after your death with our services according to the methods hereafter defined. These special instructions will only concern the processing carried out by us and will be limited to this scope.

9.10 How to exercise your rights

35. These rights may be exercised with the company "Easytransac" in the following manner:

By post, by writing to us at the following address:

Easytransac

DPO

204 avenue de Colmar

67100 Strasbourg

 

Or

 

Easytransac Services (InEvents)

DPO

1330, avenue de laLauzière,

Europarc de Pichaury -Bât D5 - CS 90607,

13592 Aix-en-Provence

 

By e-mail to: dpo@easytransac.com

It is important to provide us with your full name and email address (if applicable).

"Easytransac" may ask you for proof of identity in order to process your request.

36. If, despite our commitments, our response appears to be unsatisfactory, or if you do not receive a reply. You have the right to contact the supervisory authority in your country of residence. In France, this is the CNIL: https: //www.cnil.fr/

10. Modification of the present document

37. The Data Protection Officer appointed by "Easytransac" is responsible for ensuring compliance with the regulations and rules described in this document.

We keep abreast of changes in regulations, which is why our policy is regularly updated. We invite you to consult this page periodically.

 

July 2024.