Data Protection Policy

Foreword

The protection of personal data is one of our major concerns. This privacy policy is established within a legal context defined by the European Data Protection Regulation (EU Regulation 2016/679 of April 27, 2016), applicable since May 25, 2018, and the amended Data Protection Act No. 78-17 of January 6, 1978, relating to data processing, files, and freedoms.

General Principles

In accordance with the provisions of Article 5 of the General Data Protection Regulation (GDPR), the collection and processing of your personal data adhere to the following principles:

Lawfulness, fairness, and transparency: The collection and processing of personal data can only be based on a predefined legal basis (contract execution, legal obligation, consent, legitimate interest, preservation of vital interests)
Purpose limitation: The collection and processing of personal data are carried out to meet one or more defined objectives
Data minimization: Only data strictly necessary for the proper execution of the stated objectives is collected
Storage limitation: The data controller is obliged to define retention periods for the personal data processed
Integrity and confidentiality of collected and processed data: The data controller undertakes to guarantee the integrity and confidentiality of the collected data.

Data Controller

As the data controller, DGIN undertakes to comply with the obligations arising from the Regulation and the amended Data Protection Act, concerning the collection and processing of personal data. In accordance with Article 32 of the GDPR, we implement all technical and organizational measures to ensure the protection of your personal data.

Who has access to your personal data

DGIN undertakes to transmit your personal data only to authorized internal personnel and authorized third parties such as tax, customs, or economic administrations, the justice system, police and gendarmerie, or social welfare and health authorities.

Except for the recipients mentioned above, DGIN undertakes not to transmit your personal data to third parties or external organizations without your express consent.

DGIN does not and will not sell, assign, or communicate your personal data to unauthorized third parties.

DGIN does not use automated decision-making based on your personal data. No profiling is implemented during processing, and the data we collect will never be used without human intervention.

Your Rights

In accordance with current regulations, you have the following rights regarding your personal data:

DGIN has appointed a Data Protection Officer (DPO). To exercise your rights, you can contact our Data Protection Officer (DPO) at the following address: DGIN Ecotec, 408 avenue des Amaranches F-74460 Marnaz or by email at: infos@dgin.fr

You can, at any time, lodge a complaint with the competent authority, namely the French National Commission for Information Technology and Civil Liberties (CNIL), by following this link: https://www.cnil.fr/fr/plaintes.

Security Measures

DGIN is concerned about the security of personal data and undertakes to process it securely and only for the duration necessary to achieve the intended purpose.

DGIN has implemented technical and organizational measures to ensure an adequate level of data protection relative to the nature and purpose of the processing.

The security obligation remains an obligation of means, meaning that we make every effort to guarantee the confidentiality and integrity of your personal data.

All individuals with access to your personal data have been trained in best practices for data protection.

Cookies

As with most websites, our website uses cookies.

If you wish to limit your digital footprint, it is recommended to refuse them by default via the cookie management banner we have implemented on our website.

You will also find in our Cookie Policy the procedure to follow to accept, customize, or refuse cookies by expressing your choice using the banner that appears at the bottom of your screen.