Privacy policy

Objectives and scope

Elmatec attaches the utmost importance and care to protecting privacy and personal data and complying with the relevant legal provisions.

The purpose of this privacy policy (hereinafter referred to as the « policy ») is to provide simple, clear and complete information about the processing of data concerning you and implemented by Elmatec in its capacity as data controller.

This policy covers data processing within the framework of:

  • Management of the www.elmatec.fr website and the requests sent from the site’s contact form.
  • Management of Elmatec’s customers, service providers and partners

 

For all of these processing operations, Elmatec is the entity that determines the means and purposes and thus acts as a data controller within the meaning of the applicable regulations on personal data and, in particular, EU Regulation 2016/679 on the protection of individuals concerning the processing of personal data and on the free movement of such data.

General information applicable to the processing of personal data

Elmatec ensures that each visitor complies with the basic principles of data protection. This section provides general information applicable to all the processing operations covered by this policy.

The contact form on the site limits the collection of personal data to what is strictly necessary (data minimisation). It indicates the purposes for which the data is collected and the recipients of the data.

The data required to process your request is marked with an asterisk on the contact form.

If you do not complete these mandatory fields, Elmatec will not respond to your requests and/or provide you with the desired services. The other information is optional and allows us to manage your request better and improve our communications and services for you.

We never share your personal Information with other companies for marketing purposes.

Each section dedicated to a data processing operation details the internal recipients responsible for accessing and processing the data. The data may be transmitted to technical service providers chosen for their expertise and reliability who act on our behalf and according to our instructions (IT subcontractor, host of our servers, etc.).

We allow these providers to use your data only to the extent necessary to perform services on our behalf or comply with legal requirements. We strive to ensure that your data is protected at all times.

Elmatec may also disclose your data to third parties when such disclosure is required by law, regulation or court order, or if such disclosure is necessary to protect and defend our rights.

All such third parties may come from countries inside or outside the European Union (« EU »), including countries that do not offer the same level of data protection as your country of residence. In such a case and to the extent required by applicable law, we shall:

  • Either obtain your express and unambiguous consent to share your data with these third parties;
  • Or conclude data transfer contacts complying at least with the standard contractual clauses adopted by the European Commission;
  • Or ensure that these third parties in the United States have joined the EU-U.S. Privacy Shield and registered as such with the U.S. government.

Elmatec is committed to protecting your data from loss, destruction, alteration, unauthorized access or disclosure.

To this end, Elmatec implements appropriate technical and organizational measures concerning the nature of the data and the risks involved in processing it to preserve the security and confidentiality of your data and, in particular, to prevent it from being distorted, damaged or accessed by unauthorised third parties.

These measures may include, but are not limited to, precautions such as limiting access to data to authorized staff only because of their functions, contractual guarantees in the event of recourse to an external provider, conducting privacy impact assessments, regularly reviewing our privacy practices and policies and/or physical and/or logical security measures (secure access, authentication process, backups, antivirus software, firewall, etc.).

Elmatec services are not intended for minors. Therefore, we do not knowingly collect or process personal relating to minors.

If we become aware that personal data has been collected from minors without the prior consent of the parent or legal guardian, appropriate measures shall be taken to delete such personal data from our servers and/or those of our providers.

Data processing implemented by Elmatec

When you browse the Elmatec website, you may be asked to make a contact request via the form.

Within the framework of these activities, and based on your consent that you express by submitting the contact request, Elmatec processes and stores the following personal data concerning you:

  • To respond to your contact request: the information provided on the form, i.e. your identity, your professional contact details (see data minimization) and, where applicable, the content of the message, as well as any information communicated subsequently during our exchanges. These data are processed by the department concerned by your request for the time necessary to answer you.

 

Depending on your request and the content of our exchanges, the data thus collected may be used for other purposes such as managing a request for a quote; these data processing operations are then subject to the terms and conditions relating thereto.

We would also like to inform you that we compile anonymous statistics about the number of visitors to the Elmatec website, which do not allow us to identify you.

Elmatec collects and uses the identification and business contact information of prospective customers and clients, including publicly available information found on the Internet, to promote Elmatec’s services.

This data processing is based on Elmatec’s legitimate interest in promoting its activities to professional profiles likely to be interested in Elmatec’s services and products.

In the event of indirect collection of your data for marketing communication purposes, particularly regarding public data on the Internet, Elmatec shall ensure that you are informed at the time of initial communication, and in any event within one month of the collection of the data, of the intended use and of your right to object to the processing of your data for marketing purposes.

Elmatec may also process personal data concerning you when:

  • You request a quote for services via the online contact form or directly by telephone with the sales department,
  • Your company concludes a contract with Elmatec as a customer, service provider or partner.

 

 In this context, Elmatec will collect information on:

  • The contact(s) indicated at Elmatec, such as the contact indicated on the contact form, the primary contact for the contract, the contact for invoice and any other contact (last name, first name, business e-mail address, business telephone number, position, and all information contained in the exchanges)
  • The signatory(ies) of the contract: last name, first name, position, signature,

 

 This data is intended, where necessary, for the employees responsible for monitoring the business relationship and/or the partnership, the accounting/invoicing and the employees of the departments involved in the request and/or the contract.

 They are collected and stored:

  • For requests for quotes that do not lead to the conclusion of a contract: the time required to study and follow up the request + one (1) year after the request is closed (or the last contact, if applicable),
  • For contracts and to execute the contract: the duration of the contractual relationship,
  • To meet our legitimate interest to ensure the protection and defense of our rights in the event of litigation, for five (5) years following the end of the contractual relationship.

Exercise of your rights and contact details of our Data Protection Officer

Under current regulations, you have the right to access and correct the information about yourself, and to request their deletion (right to be forgotten), the right to oppose the processing of your personal data and the right to obtain the limitation or portability of your personal data to the extent that this is applicable, subject to urgent, legitimate reasons that Elmatec may show to retain your data.

When you exercise your rights, our Data Protection Officer processes your data to manage your request (title, last name, first name, copy of identity document, nature of the request, response given). This data is kept for three (3) years, except for the copy of your identity document, which is kept for one (1) year.

For any information or exercise of your rights on the processing of personal data managed by Elmatec, you can contact: info@elmatec.fr

If there is reasonable doubt about the requesting party’s identity, proof of identity may be requested.

You also have the right to bring a claim with the French Data Protection Authority (Commission Nationale de l’Informatique et des Libertés, CNIL) about how Elmatec collects and processes your data:

3 Place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07.

Information about cookie management

Our website, www.elmatec.fr, uses cookies.

A « cookie » is a small text file that may be stored in a dedicated space on the hard drive of your terminal (computer, tablet, smartphone, etc.) when you consult the website. A cookie allows its issuer (us or our audience measurement providers) to identify and identify the terminal on which it is stored for the entire period of the cookie’s validity or storage (max. 13 months).

Our website uses 2 types of cookies:

  • Internal cookies necessary for the website to function: these cookies allow the website to function optimally. They allow you to navigate from one page to another. Their collection is functional and essential for site optimization. You cannot object to these cookies.
  • Cookies for audience measurement: to adapt the site to visitors’ requests, we measure the traffic on our site anonymously via an analytical solution. This solution measures the number of unique visitors, the number of pages viewed, the country of origin of the connection to the site, the service that provided access (live, via a search engine or a social network), the type of device used (computer, smartphone or tablet), the most viewed and shared articles, as well as the time and date of attendance. You may object to these cookies through our cookies banner on your first visit or by clicking on “revoke previously accepted cookies » at the bottom of your browser.

 We do not use cookies for commercial purposes such as retargeting.

Cookies settings can be configured directly via your Internet browser and, depending on the type of browser used, can be systematically refused while browsing or authorized on a case-by-case basis. To learn more about which configuration to follow, consult the dedicated page on the CNIL website.

The Elmatec website may contain links to social media platforms managed by persons or organizations over which the company has no control.

Therefore, Elmatec can in no way be held responsible for how your data will be stored or used on the servers of these third parties.

We advise you to read the applicable personal data protection charter of each third party website that you access through our website to access how your data will be used.

Changes to this policy

Elmatec may modify the Data Protection Policy from time to time.

We will make sure that you are informed of these changes by a special mention on our website.