Personal data protection policy and cookies

Page last updated: 09/09/2024

Ocedis SASU has always been concerned about protecting your personal data.

This is why your personal data is processed securely and in compliance with EU Regulation No. 2016/679 of the European Parliament and of the Council of 27 April 2016 on the Protection of Individuals with regard to the processing of personal data and on the free movement of such data (RGPD) and with all applicable French regulations, in particular Law No. 78-17 of 6 January 1978 on Data Processing, Data Files and Individual Liberties, as amended (LIL).

The purpose of this document is to present to you the processing that Ocedis SASU carries out on your personal data.

Ocedis SASU is the publisher of the website www.ocedis.com (hereinafter the "Site").


1 - Data controller and contact

Ocedis SASU acts as data controller with respect to the data of its clients, prospective clients, employees and candidates.

You may contact the Ocedis SASU Data Protection Officer at any time by sending an email to marketing@ocedis.com. He or she will reply as soon as possible.

You may also contact us by post at the address of the registered office of Ocedis SASU mentioned above.

2 - Legal basis for processing

The processing of your personal data (mainly collection and use) is based on :

  • a contract (e.g. when you place an order for a product offered on the Site)
  • your consent (e.g. if you apply for a job, collection of cookies)
  • our legal obligations (e.g. securing exchanges on the Site)
  • our legitimate interest (e.g. to build a commercial relationship between us and manage this relationship).


On the other hand, with regard to transactions and therefore your bank details, only the online payment module and therefore your bank holds your payment details.


3 - Personal data that Ocedis SASU may collect

Ocedis SASU collects and processes the personal data of :

  • its customers, both consumers and professionals,
  • users of the Site
  • employees
  • les perspectives
  • candidates for tenders

Only the data necessary for the purposes of the processing concerned is processed.

Some data is collected directly from you, others automatically.

A) Personal data collected directly from you

Data subjects

Personal data subject to processing

Internet user placing an order

- your identity: surname, first name - company name (optional) - e-mail address - telephone number - postal delivery address if applicable - country

Employees

Data required for the performance of your employment contract: Please refer to your employment contract/IT charter/internal regulations.

Candidats

Data required to process your application: - your identity: surname, first name - your contact details: e-mail address or telephone numbers - CV - any other data left to the applicant's discretion

Your personal data is processed in particular when :

  • You are browsing the Site;
  • Create an account;
  • You contract with Ocedis SASU, for example you order a product on the Site;
  • You post content on the Site, in particular job applications;
  • You can contact Ocedis SASU by telephone, email or any other means of communication;
  • You are reporting a problem with the Site or Company Name services;
  • You may exercise your rights as described below;

All users are reminded that they remain responsible for the data they freely enter or provide to Nom de la société.

B) Personal data collected automatically when you use our services

  • Connection traces (login, IP address, URL of the page visited, date and time, duration of consultation).
  • Site usage data (modules, menus).

C) Purposes of processing

For personal data collected directly from you:

  • Managing and executing orders through to delivery;
  • Manage unpaid bills and any disputes;
  • Responding to your requests (article 8 below)
  • Carry out customer relationship management operations, respond to requests for information and provide you with advice;
  • Manage our users and access to our services,
  • Comply with our legal and regulatory obligations

For data collected automatically :

  • Monitor access to the Site and ensure compliance with our legal obligations in this respect,
  • Optimising your browsing on the Site
  • Produce usage statistics
  • Minimising an identified risk to your data
  • Protect yourself against fraudulent actions

D) About cookies

A cookie is a text file placed on the Internet user's hard drive by the server of the website visited. However, a cookie does not identify the Internet user. It simply creates a random number that records information.

They are kept for 30 days.

What types of cookies do we use?

Essential: Some cookies are essential so that you can take advantage of all the features of our Site. They enable us to maintain user sessions and prevent any security threats. They do not collect or store any personal information. For example, these cookies allow you to log in to your account, add products to your basket and order in complete security.

Statistics: These cookies store information such as the number of visitors to the Site, the number of unique visitors, the pages of the Site that have been visited, the source of the visit, etc. This data helps us to understand and improve the Site. This data helps us to understand and analyse the performance of the Site and to identify improvements to the Site.

Preferences: These cookies help us to store your browsing settings and preferences such as language preferences so that you have a better and more efficient experience on future visits to the Site.How can I control my cookie preferences?

When you first log on, you will be asked to set your cookie preferences by accepting or rejecting certain types of cookies.

You can change your settings at any time during your browsing session on the Site or by blocking and deleting cookies using your browser settings.

For Mozilla Firefox: 1. choose the "Tools" menu, then "Options", 2. click on the "Privacy and Security" icon, 3. locate the "Retention Rules" menu and select the options that suit you.

For Microsoft Internet Explorer: 1. choose the "tools" menu, then "internet options", 2. click on the "confidentiality" tab, then "advanced settings", 3. select the options that suit you.

For Google Chrome: 1. choose the "settings" menu, then "advanced settings", then "content settings", 2. choose the "cookies" menu and select "disable cookies".

For Safari: 1. choose the "Safari" menu, then "Preferences", then "Privacy" 2. Select "Refuse cookies".

For Opera: 1. choose the "Preferences" menu, then "Advanced", then "Cookies" 2. Select "Never accept cookies".

To help you detect the cookies that may be installed on your computers, you can refer to certain sites, in particular YourOnlineChoices, which offers tools for listing and configuring your cookies.

4 - Recipients of personal data

Your personal data is intended for :

  • Ocedis SASU and its staff Technical
  • subcontractors of Ocedis SASU

Data may be transmitted to subcontractors that Ocedis SASU may call upon to perform services and to the extent necessary to accomplish the tasks entrusted to them.

In particular

  • The online payment module
  • The delivery module for products ordered
  • The hosting of the Site
  • The provision of analytical solutions or audience measurement statistics.

Ocedis SASU ensures that its staff and subcontractors comply with the regulations in force relating to data and with this privacy policy.

Ocedis SASU requires its subcontractors and staff to pay particular attention to data confidentiality and security.

Under no circumstances will your data be shared with or sold to third parties without your express prior consent.


5 - Location of personal data

Your personal data is stored in France and is not transferred outside Europe.

6 - Security of personal data

Ocedis SASU is committed to ensuring the security and confidentiality of your personal data, in accordance with best practice, i.e. by requiring an adequate level of protection as recommended by the CNIL.

Ocedis SASU regularly tests its processes in the event of both technical and physical incidents in order to guarantee and maintain an optimum level of responsiveness and efficiency. However, given the structure of the Internet and networks, Ocedis SASU cannot commit itself to an obligation of security of result. In the event of the detection of a security vulnerability likely to generate a high risk for your rights and freedoms, Ocedis SASU undertakes to inform you as soon as possible and to take, as far as possible, the best means to neutralize the intrusion and minimize its impact.

Ocedis SASU regularly backs up your personal data in order to limit the impact of a security breach.

7 - Data retention periods

We will retain your information for as long as we are required to do so under applicable law.

DATA

DURATIONS

Customer file management

Customer identification data Contract performance data

duration of the commercial relationship 10 years after the end of the contract.

Prospect management

Prospect data

3 years from the end of the commercial relationship or the last contact

Traffic data

Cookies - IP address, the date, time and duration of each connection or information enabling the recipient of a communication to be identified.

13 months from collection

When you have terminated your use of our services, we may store your information in an anonymised format for statistical purposes.

Notwithstanding the above, we may also retain personal data as reasonably necessary to comply with our legal obligations, to enable us to resolve and litigate disputes, and to enforce our agreements.

Candidates' personal data is kept for a maximum of 2 years from the date of last contact.


8 - Exercising your rights

In accordance with the applicable regulations on the protection of personal data, you may, at any time, exercise your rights of access, rectification and deletion of data concerning you, as well as your rights to limit and oppose the processing and portability of your data.

To exercise your rights, you may send an e-mail to the Ocedis SASU contact at marketing@ocedis.com or by post to : 69 allée des Peupliers - ZI de Fétan 01600 TRÉVOUX France.

In this context, you should include with your request the elements necessary for your identification (surname, first name, e-mail) as well as any other information necessary to confirm your identity. In case of doubt, Ocedis SASU may ask you for a copy of your identity card in accordance with the provisions of the regulations applicable to personal data.

Ocedis SASU undertakes to consider the exercise of your rights as soon as possible unless the law or a legitimate reason requires them to retain some of your data.

Ocedis SASU reserves the right to charge the actual costs associated with your request within the limits set by the LIL.

In any event, you may lodge a complaint with the CNIL (www.cnil.fr).

9 - Modification of the confidentiality policy

Ocedis SASU reserves the right to modify this document in order to comply with applicable laws and regulations.

We will use commercially reasonable efforts to generally inform all users of material changes to this Privacy Policy, including by posting a notice on our website.

Nevertheless, you should consult this policy regularly. For your convenience, we will update the "Last updated" date at the beginning of this document to reflect the effective date of our data protection policy.

Your continued access or use of our services after the update date constitutes your acceptance of it. If you do not accept the updated data protection policy, you must stop accessing or using our services.