Security policy

Security policy

Preamble

The company v6Protect SAS (hereinafter v6Protect) strives to attach paramount importance to respecting the privacy of its customers and prospects, users of the websites it manages as well as the confidentiality of their personal data.

v6Protect undertakes to use the data it processes, in compliance with applicable regulations such as law no. 2018-493 of June 20, 2018 relating to computing, files and freedoms and the general regulation on protection of personal data (general data protection regulation: GDPR).

Definitions

Personal data: any information relating to a natural person capable of being identified, directly or indirectly.

Processing of personal data any operation, or set of operations, relating to such data, whatever the process used, automated or not (collection, recording, organization, conservation, adaptation, modification, extraction, consultation, use, communication by transmission, diffusion or any other form of making available, reconciliation or interconnection, locking, erasure or destruction, etc.).

Cookie: a cookie is a small text file sent by the website consulted by the User in his Internet browser or on the device used. Its function is to enable the site to function, to facilitate navigation (memorize technical choices, past activity), to improve the use of the site and the service and to better understand the user experience.

1- Privacy policy

The purpose of this Privacy Policy is to provide you with all information on the conditions under which v6Protect collects and processes your Personal Data.

The Confidentiality Policy is part of the General Terms and Conditions (when applicable to you) and the General Terms and Conditions of the Software. Each term defined in these documents has the same meaning in the Privacy Policy.

By accessing and using our websites and/or v6Protect software, you agree to read this Privacy Policy, which may be modified or updated at any time without notice.

1. Purposes of processing and nature of Personal Data processed

1.1.1. We collect and process the Personal Data that you voluntarily provide to us in order to access and use the software, to make requests to our teams (demonstrations, free trial, requests partnership, sponsorship or other) or to access our online resources.

We also collect and process data relating to our Users’ preferences and traffic on our sites (such as the IP addresses of visitors to our Site).

Finally, we also receive data about you from our partners, who collect it directly from you, or from public sources, as well as from our customers.

More specifically, we process your Data to allow:

Creating accounts on our websites (v6Protect account, trial account) in order to access the Software and use our services;
• The provision of our various websites (the website, our client platform), and their various functionalities;
• Management of our commercial operations (organization of events, etc.);
• Downloading our online resources;
• Management and monitoring of the commercial relationship (subscriptions, orders, payments, complaints and user support);
• Improving our sales service;
• Monitoring of Customer satisfaction (surveys, monitoring of Customer reviews);
• Management of technological and commercial partnerships;
• Management of prospecting and requests for information (sending commercial and marketing offers, newsletters, white papers, requests for online demonstrations, requests for quotes, etc.);
• Improving our services, by placing cookies on user terminals;
• Managing the security of our sites and software and their improvement, within the framework of tests;
• Management of requests to exercise various user rights: rights of access, rectification, erasure, portability, opposition, and limitation;
• Security of network access and online IT infrastructures, data protection, detection of intrusions or illicit activities;
• Collection of mandatory legal, accounting and legal information;
• Management of disputes and disputes.

When opening an account, you must provide us with various personal identification information:

Your name,
• Your civility,
• Your name,
• Your first name,
• Your professional postal address,
• Country of Residence,
• Your professional status,
• Your SIRET number,
• Your intra-community VAT number,
• Your professional email address
• Your phone number,
• Your domain name of your website.

You can complete your profile with other Personal Data (business address, other telephone number, name of your customers or prospects, etc.).

We undertake to never collect or process sensitive Personal Data, in accordance with current regulations, including, among other things, information on racial or ethnic origin, political opinions, religious or philosophical beliefs, union membership, health, etc.

1.1.2. We will only collect information relating to the contractual relationship between the different parties: histories, subscribed modules, billing and payment elements, requests and incidents reported to the support service.

1.1.3. We also collect data that you share during our telephone conversations.

1.1.4. We collect, through (or the channel of) certain cookies automatically placed on your terminal, or other cookies subject to your express consent, certain Personal Data during your visits to our site or during your use of the software: for example, the date, time and duration of your visit to our site, the path of your navigation, the type of your operating system, etc.

A cookie is a small text file sent by the website consulted by the User in their Internet browser or on the device used. Its function is to enable the site to function, to facilitate navigation (memorize technical choices, past activity), to improve the use of the site and the service and to better understand the user experience.
The maximum lifespan of a cookie is 13 months.

2. Legal bases for the Processing we carry out

We only use Personal Data in the cases provided for by current regulations, which are:

• The execution of the service provision contract relating to your use of the v6Protect software or pre-contractual measures;
• Compliance with a legal obligation;
• Your consent to use your data (from cookies): you can, at any time, withdraw this consent, without this affecting the lawfulness of the processing based on the consent given prior to its withdrawal;
• Our legitimate interest in carrying out prospecting or promotional operations concerning us (information concerning our products and services, our promotions or the events we organize within v6Protect).

3. Processing of Personal Data

v6Protect collects and processes your Personal Data in a fair and lawful manner, and in compliance with the principles of European Regulation 2016/679 of April 27, 2016 (GDPR).

This Privacy Policy describes the obligations of v6Protect as controller of your Personal Data within the meaning of the GDPR.

The person responsible for processing the personal data referred to herein is the company v6Protect SAS, whose head office is located at 11 rue Duffour Dubergier, 33200 Bordeaux, France, with capital of €10,000 – RCS Bordeaux – SIREN 851 576 926.

v6Protect has appointed a Data Protection Officer (DPO) who continuously monitors v6Protect’s compliance with the principles and rules of the GDPR and whom you can contact at dpo@v6protect.fr.

v6Protect collects and processes your Personal Data in a fair and lawful manner, and in compliance with the principles of European Regulation 2016/679 of April 27, 2016 (GDPR).

• To inform and advise the Data Controller on the application of the GDPR in the company;
• To raise awareness among v6Protect employees about the protection of Users’ Personal Data;
• To support them during the implementation of treatments;
• To respond to requests related to the exercise of your rights.

4. Conservation of your Personal Data

1.4.1. Security
v6Protect makes every effort to prevent the loss, misappropriation, intrusion, unauthorized disclosure, alteration or destruction of Personal Data that you communicate to us.

So :

• The Data is stored and hosted within the infrastructure of Akamai France and Scaleway. Monitoring of server security and updating of our operating software is carried out in real time;
• All information you transmit to us is encrypted [TLS V1.3 protocol];
• v6Protect employees are subject to an obligation of confidentiality and non-disclosure and have all signed a specific commitment relating to the protection of Personal Data;
• Access to your Data is governed by a strict access control policy, reserved for authorized persons, under defined conditions;
• When we use service providers to process Personal Data, we have previously verified that these service providers guarantee an equivalent level of security.

When the retention of Data is no longer justified by the management of a customer account, a legal obligation, commercial requirements, the establishment, exercise or defense of our legal rights, or when you request it from us by application of one of your rights (Article VIII), we will delete your Data securely.

1.4.2. Duration
v6Protect stores your Personal Data in accordance with the following legal and regulatory provisions:

• We keep information relating to the creation and management of prospecting files for 3 years from the last contact from the prospect;
• We keep inactive Customer Data for sending information about our commercial and marketing offers, for a period of 3 years after the end of the commercial relationship.

2. Data recipients, subcontractors

We only use Personal Data in the cases provided for by current regulations, which are:

• The execution of the service provision contract relating to your use of the v6Protect software or pre-contractual measures;
• Compliance with a legal obligation;
• Your consent to use your data (from cookies): you can, at any time, withdraw this consent, without this affecting the lawfulness of the processing based on the consent given prior to its withdrawal;
• Our legitimate interest in carrying out prospecting or promotional operations concerning us (information concerning our products and services, our promotions or the events we organize within v6Protect).

3. Rights

In accordance with current legislation, you have the rights of access, rectification, erasure, opposition and limitation of the processing of your personal data.

You can request portability for the data you have provided and which is necessary for the contract or the processing to which you have consented.

You can freely access, modify or delete your personal data, except under legal obligations (accounting, taxation, controls) to retain them by v6Protect.

You can also give instructions relating to the conservation, erasure and communication of your data after your death.

You can exercise your rights by logging into your member interface of the v6Protect.fr website or by contacting us, specifying your last name, first name, postal address and attaching a double-sided copy of your identity document, by :

Email: dpo@v6protect.fr,
Postal mail: v6Protect SAS, 11 rue Duffour Dubergier 33 000. Bordeaux, France.

You can withdraw your consent or unsubscribe from newsletters received from v6Protect at any time using the unsubscribe link at the bottom of each message sent.

In the event of a dispute, you can file a complaint with the CNIL, the contact details of which appear at the internet address CNIL.