Privacy Policy
This Dfns Support and Service Level Agreement is issued under and forms part of the Dfns Cloud Service Agreement or other Dfns agreement which references this policy, and capitalized terms not defined have the meanings set forth in such Dfns agreement.
Dfns is aware of the importance of data privacy and is committed to implementing the highest standards of confidentiality and security to ensure that your privacy is respected and protected.
This Privacy Policy informs you of the commitments and practical measures taken by Dfns to ensure that your personal data is kept confidential.
Data controller
Dfns, registered with the Paris Trade and Companies Register under number 888 176 575, whose registered office is located at 142 rue de Rivoli 75001, Paris, France, is the data controller. Dfns is responsible for collecting and processing your personal data.
Personal data collected and processed by DFNS
When you use Dfns’ website, we collect the following personal data:
- contact data: e-mail address, telephone number, etc.
- identification data: surname, first name, country etc.
- connection data: IP address, browser type and version, operating system and other software installed in your environment, mobile platform, technical identifier(s), error reports and execution data.
Purposes and legal basis of processing
Dfns ensures that it only collects and processes data that is strictly necessary for the purpose for which it is processed. Dfns collects and processes your personal data for various purposes based on the various legal bases detailed below.
We collect and process your personal data to provide marketing services and manage the business relationship for following purposes:
- Sending of articles and newsletters or marketing materials, invitation to events
- Management of the business relationship
We collect and process your personal data to protect our legitimate interests for the following purposes:
- Registration and prospection
- Fraud prevention
- Personalization of our offers
- Consent
For certain activities, including marketing and cookies, we seek your consent prior to processing your personal data. You may withdraw this consent at any time.
Recipients of personal data
In accordance with the purposes set out in this Policy, Dfns may share your personal data with:
- contact data: e-mail address, telephone number, etc.
- identification data: surname, first name, country etc.
- connection data: IP address, browser type and version, operating system and other software installed in your environment, mobile platform, technical identifier(s), error reports and execution data.
Purposes and legal basis of processing
Dfns ensures that it only collects and processes data that is strictly necessary for the purpose for which it is processed. Dfns collects and processes your personal data for various purposes based on the various legal bases detailed below.
We collect and process your personal data to provide marketing services and manage the business relationship for following purposes:
- Sending of articles and newsletters or marketing materials, invitation to events
- Management of the business relationship
We collect and process your personal data to protect our legitimate interests for the following purposes:
- Registration and prospection
- Fraud prevention
- Personalization of our offers
- Consent
For certain activities, including marketing and cookies, we seek your consent prior to processing your personal data. You may withdraw this consent at any time.
Recipients of personal data
In accordance with the purposes set out in this Policy, Dfns may share your personal data with:
- Duly authorized Dfns employees and managers. Any Dfns employee who has access to your personal data is subject to strict confidentiality obligations.
- Dfns’ subsidiaries when necessary to carry out the operation for which the personal data were collected
- Service providers, acting as subcontractors, performing services relating to Dfns’ services, in particular email service providers, telephony service providers, identity document analysis services.
- Administrative or Legal authorities, and authorized third-party, when such data sharing is required by law.
How long we keep your personal data
The retention periods we apply to your personal data are limited and proportionate to the purposes for which they were collected.
Purposes | Retention period |
---|---|
Management of prospect information | Data is kept for three (3) years from the date of collection or our last contact with the prospect |
Fraud prevention | Only the data necessary for pre-litigation or litigation purposes are archived until the legal statute of limitations is acquired. The statute of limitations in civil and commercial matters is five (5) years. In the event of litigation, this data is kept for the duration of the procedure and until the expiry of the ordinary and extraordinary remedies |
Management of cookies | The duration of data retention shall not exceed 13 months |
Transfers of data outside the european economic area ("EEA").
The personal data will be processed exclusively on the territory of (i) France, and/or any other member state of the European Union, and/or any other signatory state of the agreement on the European Economic Area, (ii) and/or any other state ensuring an adequate level of protection.
Your rights
- the right of access: you can obtain information about the data we hold about you and the processing carried out;
- the right of rectification: you can modify or correct your data;
- the right to erasure: you can ask us to delete your data in certain circumstances (please note that legal or regulatory provisions or legitimate reasons may require us to retain your data);
- the right to restriction and objection: you may ask us to restrict or object to the processing of your data, in certain circumstances (please note that we may continue to process your personal data if we have a legitimate reason to do so);
- the right to portability: you can ask us to receive data in electronic form and/or ask us to transmit this information to a third party where technically possible.
You can exercise your rights as well as contact our personal data protection department in the following ways:
- By e-mail at the following address: legal@dfns.co
- At the following postal address: Data Privacy – 198 Avenue de France, 75013 Paris, France
For any request to exercise your rights, we may ask you to provide an official document of identity in order to verify that you are the person concerned by the personal data that is the subject of the request.
We undertake to respond to any request as soon as possible. You will receive a response within a maximum of one (1) month from the receipt of your request. However, we inform you that this period may be extended by two (2) months if your request is particularly complex or given the number of requests. In this case, you will be informed of such an extension and the reasons for it within a maximum of one (1) month from the receipt of your request.
You may also file a complaint with the Commission Nationale de l'Informatique et des Libertés (CNIL), the French personal data regulator: www.cnil.fr.
Data security
Dfns ensures the security of your personal data by taking all physical, technical and organizational measures to ensure the confidentiality, integrity and availability of personal data, including encryption and anonymization. We also require all of our employees and partners of Dfns to adhere to strict standards of personal data security.
Changes
We will update this Privacy Policy periodically. Any changes will be posted on this page with a current revision date.