GDPR
To conduct its business, i2a, whose registered office is located at 408 Avenue du Walhalla 34000 Montpellier in France, is required to collect and process information, some of which is referred to as “personal data”. i2a attaches great importance to respect for privacy, and only uses data in a responsible and confidential manner and for a specific purpose.
1. PERSONAL DATA
On the www.i2a-diagnostics.fr website, 2 types of data may be collected:
- Data transmitted directly
This data is what you send us directly, either via a contact form or by direct e-mail contact. The fields “first name and surname”, “company or organization” and “email” are mandatory in the contact form. - Data collected automatically
During your visits to our wensite, once you have given your consent, we may collect “web analytics” type information relating to your browsing, the duration of your visit, your IP address, your browser type and version. The technology used is the cookie technology.
The mandatory or optional nature of the data to be provided is indicated by an asterisk at the time of collection. The user provides this information with full knowledge of the facts, in particular when he/she enters it himself/herself.
2. DATA USAGE
The data you send us directly is used for the following purposes:
- to contact you again and/or within the framework of your request;
- for site management purposes;
- for site navigation: connection and site usage data;
- to prevent and block computer fraud (spamming, hacking, etc.): hardware used for browsing, IP address, password, etc;
- to meet legal or regulatory requirements;
- for the possibility of carrying out optional satisfaction surveys (using e-mail address);
internal statistics concerning site navigation; - to send newsletters by e-mail.
Web analytics” data is collected anonymously (by recording anonymous IP addresses) by Google Analytics, and enables us to measure our website audience, consultations and any errors in order to constantly improve the user experience. This data is used by i2a, the data controller, and will never be transferred to a third party or used for purposes other than those detailed above.
Recipients of personal data are :
- i2a and its staff;
- i2a’s service providers and subcontractors;
- The competent authorities, at their request, in the context of legal proceedings, in the context of legal investigations and requests at the request of the authorities or in order to comply with other legal obligations.
3. LEGAL BASIS
Personal data is only collected with the compulsory consent of the user. This consent must be validly obtained (buttons and checkboxes), free, clear and unequivocal.
4. RETENTION PERIOD
Data will be stored for a maximum of 3 years.
After this period, the data will be deleted.
In case of legal or regulatory requirements, data may be kept for the time necessary to enable i2a to meet its obligations.
At the user’s request, and in any event on expiry of the above-mentioned periods, i2a undertakes to archive its access to personal data and to destroy the data in its possession, unless the applicable regulations require the data to be kept for a longer period.
The user’s rights are as follows:
- The right to object to the processing of personal data;
- Right of access to personal data;
- The right to rectify or delete personal data;
- Right to data portability;
- Right to limit processing;
- The right to define directives concerning the storage, deletion and communication of personal data;
- The right to withdraw consent to the processing of personal data at any time.
You can exercise your rights :
- By email: i2a@i2a.info
- By post: Société i2a, 401 Avenue du Walhalla-Parc Eurêka- 34000 MONTPELLIER
In order to identify themselves, users may be asked to provide a copy of an official identity document, such as an identity card or passport.
A reply will be made to the user in writing within a reasonable period not exceeding 30 days.
The said rights may be exercised under the conditions set out in articles 16 et seq. of the European Data Protection Regulation 2016/679.
The user is informed of the right to lodge a complaint with the Commission Nationale de l’Informatique et des Libertés (CNIL): 3 Place de Fontenoy – TSA 80715 – 75334 Paris 07.
5. COOKIES
Here is the list of cookies used and their purpose:
- Google Analytics cookies (exhaustive list) : Web analytics
Contact for data protection: dpo@i2a.info
A “Cookie” is a file which records information relating to browsing on the Site (pages consulted, date and time of consultation, etc.) and stored on the User’s terminal (e.g. computer, smartphone), which the User may read during subsequent visits, notably for analysis purposes. Cookies are in no way likely to damage the User’s terminal.
Cookies facilitate browsing and/or the provision of services offered by the site, and the User may configure his/her browser to allow him/her to decide whether or not to accept them, so that Cookies are stored in the terminal or, on the contrary, are rejected, either systematically, or depending on the sender. Users may also configure their browsers so that they are prompted to accept or reject Cookies from time to time, before a Cookie is likely to be stored on their terminal. i2a informs users that, in this case, not all functions of their browser may be available.
Where applicable, i2a declines all responsibility for the consequences linked to the degraded operation of the site or even the impossibility of using the site resulting from (i) the refusal of Cookies by the user (ii) the impossibility for i2a to record or consult the Cookies necessary for their operation due to the user’s choice. Each browser is configured differently to manage cookies and user choices. This is described in the browser’s help menu, which will indicate how the user can modify his or her wishes with regard to Cookies.
6. INCIDENT NOTIFICATION
No method of transmission over the Internet and no method of electronic storage is completely secure. If i2a becomes aware of a security breach, it will notify the users concerned so that they can take appropriate action.