Preamble
SAMSIC RH is a société par actions simplifiée (simplified joint stock company), registered under number 385 052 618 in the Rennes Trade and Companies Register, with its registered office at 4, rue de Châtillon – La Rigourdière, 35510 CESSON-SEVIGNE.
Trust is an essential part of our relationship, in particular, from the moment you use our digital services. Protecting your personal data is of the utmost importance to us.
This Privacy Policy informs you of the terms and conditions under which SAMSIC RH, as Data Controller, collects and processes your personal data as well as your rights, in accordance with the amended French Data Protection Act no. 78-17 of 6 January 1978 and the European Regulation 2016/679 of 27 April 2016 known as the General Data Protection Regulation or “GDPR”).
Definitions
” Personal Data ” means any information relating to an identified or identifiable natural person. A person is “identifiable” if he or she can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to that person.
” Data subject ” means an identified or identifiable natural person whose data is collected by the data controller.
” Processing controller ” means the person who determines the purposes and means of a processing operation, i.e. the objective and the way in which it is carried out
” Processing ” means any operation or set of operations, whether or not performed by automated means, applied to personal data or a set of personal data, whatever the process used (collection, recording, organisation, structuring, storage, adaptation, modification, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment, restriction, erasure or destruction).
The ” Users ” are natural persons who visit this site.
1. To whom does this confidentiality policy apply?
The scope of our privacy policy targets Users on this site. The Site is intended to present the services offered by SAMSIC RH.
This Policy does not apply to third parties, in particular temporary profiles recruited or in the process of being recruited by one of SAMSIC RH’s subsidiaries. Temporary workers have a dedicated confidentiality policy.
2. What data do we process ?
To enable you to use some of our services, we process several types of data about you.
-
Identity data
Title, Surnames, First names
-
Contact details
We only process the following contact data if you complete the contact form.
Business e-mail address, business telephone number
-
Technical data
To find out more, click here : Cookie policy
3. Is it compulsory to collect and process your data?
Your identity and contact details are required so that you can use the contact form service. If you do not use this service, only your technical data will be collected insofar as this is necessary to optimise the user experience on the site and the quality of the content provided to you.
4. Where does your personal data come from?
We may receive your data from various sources:
- Information you provide on the contact form
- When you visit our website, we may automatically collect information (IP address, frequency of visits, date, time, etc.).
5. What are the lawful bases and the purposes of the Processing?
I. The lawful bases
There are four lawful bases for processing in accordance with Article 6(1) of the GDPR:
a) Consent
Consent must be given by a clear positive act by which you freely, specifically and unambiguously express your agreement to the processing of your Personal Data. If the Processing is based on your consent, you may withdraw your consent at any time and we will stop processing your data.
b) The performance of pre-contractual measures or a contract
Your data may be processed on the basis of the performance of a contract or as part of pre-contractual measures. This data is necessary to enable you to benefit from the services we offer. Consequently, if you do not wish your data to be processed, you will not be able to access these services either.
c) Legitimate interest
Legitimate interest instances also constitute a legal basis for processing to the extent that you have a relationship with us, particularly when you use our services on behalf of a client.
d) Legal obligations
A legal obligation arises when we are subject to a legal requirement to process your personal data.
II. Purposes
The purposes refer to the objective pursued by the processing. They vary according to the category of data subject and also according to the category of personal data processed. The table below sets out all the purposes.
6. How long do we keep your data?
Your Personal Data is kept for the period necessary for the purposes for which it is collected and processed. Wherever possible, we will determine a precise period for which Your data will be stored, otherwise we will indicate the criteria used to determine this period.
| Type of data | Purposes | Legal bases | Retention time: |
| -Identity data
-Contact data |
– Process the request sent via a contact form
|
Consent | One-off request:
6 to 12 months
|
| 3 years from last contact | |||
| Technical data | – Improve your user experience
– Developing and improving the SAMSIC RH website
|
Satisfying legitimate interests to promote and improve our products and Services | Cookie policy |
7. Do we use profiling to make automated decisions?
We do not use artificial intelligence (AI) to process your data. Thus, no profiling will result in a decision based exclusively on automated processing.
8. Who may receive your data?
We transmit personal data to our web service providers :
- Our host Cognix Systems, a limited liability company (SARL) with capital of 40,000 euros, with its registered office located at 50 rue Paul LANGEVIN – 35200 RENNES, RCS Rennes 444 724 462, represented by Davy Marc René Cremer, in his capacity as Manager
- Our mail service provider MAILJET SAS, with a capital of 78.669,66 €, with its registered office located at 43 RUE DE DUNKERQUE 75010 PARIS; R.C.S. Paris 524 536 992 to enable us to process requests made via a contact form
- Our Google Analytics audience measurement provider, owned by Google LLC
We may also disclose your information to certain public bodies, judicial authorities or law enforcement officers if we are required to do so by law.
9. Do we make transfers outside the European Economic Area?
Your Personal Data may be transferred to a country outside the European Union, in particular by our web service providers. In order to guarantee the security and confidentiality of personal data transferred in this way, we take all necessary steps to ensure that such data is adequately protected.
10. What are your rights?
Under Articles 15 et seq. of the General Data Protection Regulation, you have rights:.
a) Right of access
You have the right to request access to the personal data we hold about you and you may be given certain information about how it is processed.
b) Right of rectification
If your personal data is incorrect, you can ask for it to be updated or rectified.
c) Right “to be forgotten” / erasure of your personal data
You have the right to have your personal data erased if it is no longer required for the purpose for which it was collected. However, this right is limited in certain cases where we are obliged to retain data, for legal reasons for example. If your request for erasure is accepted, it will be processed by our services. Please note that once your details have been erased, you will no longer be able to access the services offered. If you wish to use it again, you will have to re-enter your details.
d) Right to object to and limit processing
You may object to the processing of your personal data if you provide reasons relating to your particular situation in accordance with Article 21 of the GDPR.
You also have the right to restrict the processing of your personal data.
e) Portability
In certain cases, you may request that your personal data be transferred directly to a third party.
f) Withdrawal of consent
If the processing of your personal data is based specifically on your consent, you have the right to withdraw that consent at any time..
11. What security measures are taken to protect your data?
We take appropriate technical and organisational security measures to protect your personal data against manipulation, destruction and unauthorised access by third parties.
In cooperation with our hosting providers, we do our utmost to protect databases against unauthorised access, loss, misuse or falsification.
12. Contact
If you have any questions about the application of this Privacy Policy, please contact: dpo@samsic.com
13. Can the confidentiality policy change?
Regulations on the protection of personal data and our activities may change in the future. This Policy may therefore be amended and updated from time to time. The date of the last update is shown above.