1. Who are we?
Your personal data will be processed by AGICAP, a simplified joint stock company with capital of €18,258 and head offices located at 13 quai du Commerce, 69009 Lyon, France, registered with the Lyon Trade & Companies Register (RCS) under number 823 248 703 (hereinafter “AGICAP”).
2. When do we collect personal data?
When you are in contact with AGICAP, by any available means, particularly when you visit and use the Website, you may communicate a number of personal data, meaning information which could directly or indirectly identify you. You will communicate personal data when you:
- create or log into your personal account
- navigate the Website
- complete any of the forms on the Website
- sign up for our newsletter
- subscribe to a package
- post a review
- correspond with us by telephone, email, social media, forums or any other means
- report a problem, request assistance or contact customer service.
After creating your account, you may, if you have consented to it, receive information and marketing offers from AGICAP through electronic communications (newsletters, emails, text messages, etc.). Those communications allow you to keep up with the latest news from AGICAP and any extra benefits available to you. We measure our electronic communications’ open rate so we can adapt them to be more closely aligned with your needs. Some of the personal data we request is required. Required information is indicated by an asterisk (*). All other information is optional. If you do not provide all the required personal information, you will be unable to access all of the services offered by AGICAP. The products and services provided by AGICAP and, more specifically, the Website are not intended for use by minors.
3. What personal data do we collect?
AGICAP may collect the following personal data from you via the Website:
For all other data we collect, the form you use will explain the rules which are applicable to the data being collected, if they differ from the rules presented in this policy.
4. For what purposes are the data collected?
Over the course of your relationship with AGICAP, regardless of the type of relationship, AGICAP may collect personal data from you for a variety of reasons: Management of access to certain services on the Website Supply of the services that AGICAP offers via the Website Management of subscriptions and customer relations (such as billing, accounts and in particular client account management, monitoring of customer relations, and management of outstanding debt and claims) Payment for your orders: when you make a payment on the Website, your transactions are secure. AGICAP does not collect your payment data, just a payment identifier and the last four digits of your payment card so you can identify the card used to make the payment. Your bank details are only collected by Stripe, our certified payment service provider, ensuring the security of your transactions Transmission of newsletters, requests and promotional messages, with your consent Calculation of business statistics and statistics on the use of our services Performance analysis and personalization of the content presented on the Website in order to adapt it to your preferences (language, display, etc.) Management of user reviews of our services and content Management of recruitment processes Compliance with our legal and regulatory obligations Management of your requests relating to your rights as described under point 8. We may use personal data to gain a better understanding of our clients or for statistical purposes in order to analyse activity on the Website and improve the services we offer. The legal bases of our personal data processing cover processing which: is necessary to fulfil the contract between you and AGICAP, for example by processing your subscription, monitoring, fulfilling and managing your contract (management of subscriptions, creation of your personal account, payments, billing, management of outstanding debt and any disputes, responses to your searches and requests for information about the services we offer, responses to claims, etc.) in accordance with the applicable legal and regulatory conditions, providing the services you have ordered and answering your requests is necessary for compliance with AGICAP’s legal and regulatory obligations, such as payroll and tax declarations and accounting obligations is necessary to our legitimate interests, such as the development of AGICAP’s activities, improvements to our services, research into new services, the administration, maintenance and enhancement of our Website, fraud prevention and management of your client account is based on our clients’ consent, which may be withdrawn at any time under the terms and conditions laid out under point 8 of this policy, namely so we can communicate with you about our services and provide you with information about them.
5. How long do we store personal data?
Over the course of your relationship with AGICAP, regardless of the type of relationship, AGICAP may collect personal data from you under the following conditions:
6. Who will receive your personal data?
AGICAP does not sell the personal data it collects to any third parties. We may however share those personal data with other entities: authorized members of AGICAP’s personnel for the purpose of fulfilment of the duties stemming from the processing purposes identified above service providers, particularly those that perform certain functions on our behalf, i.e. our hosting service provider Microsoft Azure (https://azure.microsoft.com) and our payment service provider Stripe (https://stripe.com) our bank account aggregators Budget Insight (https://www.budget-insight.com), Oxlin (https://www.linxo.com), Perspecteev (https://bankin.com) and Salt Edge (https://www.saltedge.com/pages/dashboard_terms_of_service / https://www.saltedge.com/pages/dashboard_privacy_policy) our chatbot support provider Intercom (https://www.intercom.com) our CRM software provider Hubspot (https://www.hubspot.com) our analytics and performance software providers Google Analytics, Google Tag Manager and Hotjar our advertising service providers Facebook Ads, Google AdWords, LinkedIn Insight Tag, Bing Ads and Twitter Ads our third party provider Zendesk business partners: with your express prior agreement, we may share your personal data with select business partners so they can send you special offers and advertising messages representatives of the law and ministerial officers as part of the dispute management and debt collection duties: in the event of a dispute, we may share your personal data in defence of our rights government administrations for payroll and tax declarations in particular third parties, if you have given your consent for us to do so. We may also disclose your personal data to potential buyers in the event of the sale of an AGICAP entity or its assets. We reserve the right to disclose your personal data to other parties when a current law, regulation, regulatory provision or court order requires or allows it, or if that disclosure is necessary as a part of an investigation or legal proceedings, either in France or abroad. In addition to the above scenarios, we may disclose non-personal information to third parties, such as aggregate statistical data.
7. How are your personal data protected?
It is important to AGICAP that we guarantee the security of the data you provide to us. To prevent any unauthorized access, use, modification, destruction, loss, damage or disclosure, appropriate technical and organizational measures have been taken to protect the data we collect. In particular, your data are secured by means of: authentication with a username and password use of the industry standard TLS to ensure secure exchanges. To further enhance your data protection, we recommend that you avoid choosing a username and password that are too obvious and that you regularly change your password and make sure not to share it with anyone. Unfortunately, the transmission of information, particularly via the Internet, is not completely secure. Although AGICAP is committed to doing everything we can to protect your personal data, we cannot guarantee the complete security of the data you transmit to us. In the event of a breach of personal data which poses a risk to the data subjects’ rights and freedoms, you should know that AGICAP has an obligation to notify the competent supervisory authority of that breach and to inform you as soon as possible of any breach of your personal data that poses a high risk to your rights and freedoms, so you can take any appropriate steps.
8. What are your rights?
You have the right to access, modify and erase your data, the right to be forgotten by AGICAP, the right to restrict the processing of your data, the right to receive your personal data provided to AGICAP in a structured, commonly used, machine-readable format, and the right to object to the processing of your personal data on legitimate grounds. For processing based on your consent, you have the right to withdraw that consent. You also have the right to lodge a complaint with an EU Member State’s data protection authority and to define instructions for what to do with your data in the event of your death. You can exercise these rights at any time: Either via the contact form provided on the Website Or by writing to AGICAP at 13 quai du Commerce, 69009 Lyon, France. So that AGICAP can respond rapidly to your request, we ask you to please include your full name, email address, postal address and if possible your client reference. Certain requests to exercise your rights (right of access) must be accompanied by a photocopy of an official form of identification bearing your signature so we can verify your identity, as well as the address where you want to receive your response. Except in special cases, you will receive a reply within one (1) month of receipt of your request.
9. Will your data be transferred outside the European Union?
As a general rule, the personal data we collect will not be transferred outside the European Union. Those personal data will be hosted on a server located in the EU. However, in the event that certain subsequent data processors are located outside the European Union, your data may be transmitted for the purposes identified above to companies in non-EU countries. Prior to their transfer outside the European Union, AGICAP will implement the necessary measures and guarantees to secure those transfers and is committed to ensuring that such transfers are covered by: an adequacy decision made by the European Commission in accordance with Article 45 of the GDPR the standard contractual clauses published by the European Commission or a supervisory authority, pursuant to Article 46 of the GDPR binding corporate rules approved by a competent supervisory authority by virtue of Article 47 of the GDPR. If a data transfer to a country not recognized by the European Commission as offering an adequate level of protection is being considered, AGICAP will notify you of this.
10. What about cookies?
11. Social media
The Website uses social media modules or plug-ins. These are those little “Like”, “Share” and other buttons from social networks like Facebook, Instagram, YouTube and Twitter, which you will find on the Website. When you view a Website page containing social media modules or plug-ins, a connection is established with the concerned networks’ servers which are then informed that you have accessed the corresponding page on the Website, even if you do not have an account with them.
13. Contacting AGICAP about data protection
For any questions about the processing of your personal data or to communicate any other requests, comments or complaints relating to data privacy, you can email our Data Protection Officer at email@example.com.