At EASYSTART, the protection of your personal data is a priority.
When you use the EASYSTART website (the "Site") and as part of the management of our contractual relationships with our customers, we may collect personal data about you.
The purpose of this policy is to inform you of the methods by which we process this data in accordance with Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the "GDPR") and French Law No. 78-17 of 6 January 1978 on information technology, files and freedoms (together the "Applicable Regulations").
This Privacy Policy (the "Policy") describes how we collect, use, and disclose the information we collect from our website and other online services (collectively with the website, the "Services"), and information we may collect offline.
Mandatory data is indicated when you provide us with your data. They are reported by all means.
Providing our Services on the Site via your account
Execution of pre-contractual measures taken at your request and/or performance of the contract you or your company have entered into with Us
When you have created an account: your data is kept for the duration of your account. Your connection logs are kept for 1 year.In the event of an account that has been inactive for 2 years, your personal data will be deleted if you do not respond to our reactivation email.In addition, your data may be archived for evidentiary purposes for a period of 5 years.
Executing your order, carrying out operations relating to the management of our customers concerning contracts, orders, quotes, invoices, and ensuring the follow-up of the contractual relationship with our customers
Performance of the contract you or your company has entered into with Us
Personal data is kept for the duration of the contractual relationship.In addition, your data (with the exception of your bank details) is archived for evidentiary purposes for a period of 5 years.The data relating to your contract and the elements relating to the signing of the contract will be kept for 10 years from the performance of the service.Regarding your credit card data, they are kept by our payment service provider until the performance of the service plus your withdrawal period. The data relating to the CVV2 cryptogram, written on your bank card, is not stored.
Improving our services
Our legitimate interest in improving our services
Recordings of telephone calls, if any, are kept for 6 months from the time they are collected.Telephone call content analysis documents are kept for 1 year from the date of recording.
Managing your reviews of our services
Our legitimate interest in collecting your feedback on our products, services or content
2 years from the date of publication of the notice
Building a file of customers and prospects
Our legitimate interest in developing and promoting our business
For customers: the data is kept for the duration of the contractual relationship.For prospects: the data is kept for a period of 3 years from your last contact.
Sending newsletters, solicitations and promotional messages by email
For customers: our legitimate interest in retaining and informing our customers of our latest newsFor prospects: your consent
The data is kept for 3 years from your last contact with Us or until the withdrawal of your consent.
Carrying out cold calling
Our legitimate interest in developing and promoting our business
The data is kept for 3 years from your last contact.We undertake to check beforehand that your number is not on a BLOCTEL-type opposition list.
Responding to your requests for information
Our legitimate interest in responding to your requests
The data is kept for a period of 3 years from your last contact.
Complying with legal obligations applicable to our business
Complying with our legal and regulatory obligations
For invoices: invoices are archived for a period of 10 years.Data relating to your transactions (with the exception of bank details) is kept for 5 years.The data relating to your contract and the elements relating to the signing of the contract will be kept for 10 years from the performance of the service.
Managing requests to exercise rights
Complying with our legal and regulatory obligations
If we ask you for a proof of identity: we will only keep it for as long as it takes to verify your identity. Once the verification is complete, the receipt is deleted.If you exercise your right to object to receiving direct marketing: we keep this information for 3 years.
5. Who are the recipients of your data? The following will have access to your personal data:
(i) The staff of our company;
(ii) Our subcontractors: hosting provider, newsletter provider, email provider, secure payment provider, customer relationship management tool - CRM, invoicing tool, appointment scheduling tool;
(iii) Where applicable: public and private bodies, exclusively to meet our legal obligations and necessary for the performance of the Services (for example: relevant government institutions for visa applications, real estate agencies for housing services, etc).
6. Is your data likely to be transferred outside the European Union? Your data is kept and stored for the duration of the processing on Webflow's servers.
As part of the tools we use (see article on recipients concerning our subcontractors), your data may be transferred outside the European Union. The transfer of your data in this context is secured by means of the following tools:
- either the data is transferred to a country that has been the subject of an adequacy decision by the European Commission, in accordance with Article 45 of the GDPR: in this case, this country ensures a level of protection deemed sufficient and adequate to the provisions of the GDPR;
- or the data is transferred to a country whose level of data protection has not been recognized as adequate by the GDPR: in this case, these transfers are based on appropriate guarantees indicated in Article 46 of the GDPR, adapted to each provider, including but not limited to the conclusion of standard contractual clauses approved by the European Commission, the application of binding corporate rules or under an approved certification mechanism;
- or the data is transferred on the basis of one of the appropriate safeguards described in Chapter V of the GDPR.You can obtain a copy of the tools allowing the transfer of your data outside the European Union by contacting us using the contact details indicated in the article "Point of contact to exercise your rights" below.
7. What are your rights over your data? You have the following rights in relation to your personal data:
Right to information: This is precisely why we have drafted this policy. This right is provided for in Articles 13 and 14 of the GDPR.
Right of access: You have the right to access all of your personal data at any time, pursuant to Article 15 of the GDPR.
Right to rectification: You have the right to rectify your inaccurate, incomplete or outdated personal data at any time in accordance with Article 16 of the GDPR.
Right to restriction: You have the right to obtain the restriction of the processing of your personal data in certain cases defined in Article 18 of the GDPR.
Right to erasure: You have the right to demand that your personal data be erased, and to prohibit any future collection of your personal data on the grounds set out in Article 17 of the GDPR.
Right to lodge a complaint with a competent supervisory authority (in France, the CNIL), if you consider that the processing of your personal data constitutes a violation of the applicable laws, in accordance with Article 77 of the GDPR.
The right to set guidelines for the retention, erasure and disclosure of your personal data after your death.
Right to withdraw your consent at any time: For purposes based on consent, Article 7 of the GDPR states that you can withdraw your consent at any time. This withdrawal will not call into question the lawfulness of the processing carried out before the withdrawal.
Right to portability: Under certain conditions specified in Article 20 of the GDPR, you have the right to receive the personal data you have provided to us in a standard machine-readable format and to request its transfer to the recipient of your choice.
Right to object: Pursuant to Article 21 of the GDPR, you have the right to object to the processing of your personal data. Please note, however, that we may continue to process them despite this objection, for legitimate reasons or to defend legal claims.You can exercise these rights by writing to us using the contact details below. We may ask you to provide us with additional information or documents to prove your identity.
8. What cookies do we use? To find out more about managing cookies, please consult our Cookie Policy.
9. Point of contact to exercise your rights
Contact email : contact@easystart.me
Contact address : 95 avenue de Choisy, 75013 – Paris
10. Changes We may modify this policy at any time, in particular in order to comply with any regulatory, jurisprudential, editorial or technical developments. These amendments will apply on the effective date of the amended version. You are therefore invited to regularly consult the latest version of this policy. Nevertheless, we will keep you informed of any material changes to this Privacy Policy.
Coming into force: 30 October 2024