logo/base Created with Sketch.

Privacy notice

Data protection policy collected by Echosens on its website: V2 Updated on Feb. 15, 2023

Introduction

Echosens’ Privacy notice expresses the commitment of Echosens, registered in the Paris trade and companies register under number 438 209 157, having its head office located 6, rue Ferrus, 75014 Paris, France, acting as controller, to strive to protect personal information about users (prospects, customers, suppliers, internet users together the “Users”) of Echosens’ website (“Website”).

Purpose of the notice

The purpose of this notice is to provide Users with information on the processing of their personal information collected as part of their use of the Website, and on their rights with regard to such processing operations.

Details of the processing operations

Purposes of the processing

–        Managing requests/messages submitted via the dedicated contact forms;

–        Managing the commercial communications about Echosens’ products, services and events;

–        Management of the Website;

–        Measures of audience, of performance and realization of statistical reports / targeted advertising (see Cookies policy);

–        Improving our online services;

–        Contacting Echosens’ technical support;

–        Registration on Echosens Academy (e-learning platform).

Legal basis of the processing

–        Echosens’ legitimate interest to carry out commercial communications, to manage its Website and the registrations on Echosens Academy (e-learning platform);

–        Taking steps prior to entering into a contract.

Category of personal information

–        Identification data (name, first name, IP address, region or country);

–        Contact details (personal or professional email address and phone number);

–        Professional data (company, position, missions);

–        All personal information specified in the message sent to Echosens via contact forms;

–        Log data;

–        Cookies data.

Category of data subjects

–        Depending on the purpose of the processing, customers, prospects, suppliers or Internet users

Duration of the processing

–        Prospects: 3 years from the last contact with the prospect;

–        Customers: duration of the contractual relationship in active base and 5 years in intermediate base for evidential purposes;

–        Suppliers: duration of the contractual relationship in active base and 5 years in intermediate basis for evidential purposes;

–        Cookies: maximum of 25 months

–        Log data: 1 year from the collect.

 

Recipients of the Personal Data

Echosens may communicate Users’ personal information to authorized recipients who are subject to an appropriate obligation of confidentiality, which may be internal or external as the case may be:

Internal recipients are all Echosens personnel whose duties, functions and missions require the processing of Users’ personal information (customer department, IT department, etc.) for the sole purposes set forth in this Privacy notice and within the framework of the technical and organizational measures implemented by Echosens to preserve the confidentiality and security of personal information;

The external recipients are, depending on the purpose of the processing, the following:

  • any service providers or processors that Echosens may use in the context of the management of its relationships with the Users (e.g.: web site hosting provider);
  • entities in charge of consulting, auditing (including license audit) and financial control of Echosens (statutory auditor, lawyers, auditors);
  • administrative or judicial authorities within the scope of their powers;
  • In the event of a project to raise funds, to acquire or to sell an activity or assets of Echosens by any means whatsoever, including by selling the company carrying out this activity or owning these assets, the potential buyer(s) and their advisors will be audited prior to the operation.

 

Users’ rights

Depending of the User place of location, the latter may have the right to access his/her personal information. The User may also have the right to rectify and delete his/her personal information, as well as the right to object to their processing and to withdraw his/her consent to their processing, if applicable. In addition, User may have the right to the portability of his/her personal information, to the limitation of their processing and the right to formulate directives concerning the processing of his/her personal information after death. 

Users may exercise the aforementioned rights by contacting Echosens by mail at the following address Echosens, 6 rue Ferrus, 75014 Paris, or by email at the following address: dpo@echosens.com.

User’s request must originate from the latter (unless a mandate is given to a third party in due form) and be as clear and exhaustive as possible in order to allow Echosens to respond as quickly as possible, between one and three months depending on its level of complexity.

Echosens may ask the User to complete his/her request if it is not sufficiently precise, if the right he/she wishes to exercise is not easily identifiable or if he/she is unable to establish his/her identity, in which case Echosens may ask him or her to provide additional information and in particular proof of identity, which would be deleted after verification of his/her identity.

Furthermore, Echosens shall not be obliged to respond to a User’s request if it is manifestly unfounded or excessive, and in particular if the request is repetitive or too complex to be processed, which would have the purpose or effect of destabilizing Echosens’ activities or deviating from the purpose of the rights of individuals with respect to their personal information.

Transfer of personal information abroad

Personal information of Users located in the European Economic Area (EEA) may be transferred to countries outside the EEA. In this situation, Echosens complies with all obligations regarding the transfer of personal information to a third country and implements appropriate safeguards such as standard contractual clauses (SCC), BCR or any other measure to ensure the security of personal information.

Security

Echosens implements the technical and organizational security measures it deems appropriate to preserve the confidentiality and security of the personal information it processes and to prevent their unauthorized destruction, loss, alteration or disclosure.

When Echosens uses processors, i.e. service providers to which it has delegated all or part of a processing operation and which process Users’ personal information in accordance with its instructions, Echosens undertakes to contractually impose on them security guarantees similar to those it implements to protect their personal information and reserves the right to audit them to ensure compliance with their obligations.

Updating of this notice

Echosens may modify, complete or update this notice at any time to take into account legal, regulatory and/or jurisprudential developments, a change in the characteristics of the processing operations or the implementation of a new processing. Any new version of this notice will be brought to the attention of the Users by any means Echosens chooses.

Contacts

Users may direct any questions, complaints, recommendations or comments regarding this notice, in writing at the following address:

Users located in the EEA may also ask their national data protection authority any questions regarding the processing of their personal data or file a complaint with the latter.