1. Overview

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. Einix SA is committed to full compliance with GDPR requirements and protecting the privacy rights of all individuals whose personal data we process.

2. Legal Basis for Processing

We process personal data under the following legal bases:

• Consent: When you provide explicit consent for specific processing activities
• Contract: When processing is necessary for contract performance
• Legitimate Interest: When we have a legitimate business interest that doesn't override your rights
• Legal Obligation: When required by law or regulation
• Vital Interest: When necessary to protect someone's life or health

3. Your Rights Under GDPR

As a data subject, you have the following rights:

Right of Access (Article 15)

You have the right to obtain confirmation that we process your personal data and access to that data, along with information about the processing.

Right to Rectification (Article 16)

You can request correction of inaccurate personal data and completion of incomplete data.

Right to Erasure (Article 17)

Also known as the "right to be forgotten," you can request deletion of your personal data in certain circumstances.

Right to Restrict Processing (Article 18)

You can request that we limit the processing of your personal data in specific situations.

Right to Data Portability (Article 20)

You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller.

Right to Object (Article 21)

You can object to processing of your personal data based on legitimate interests or for direct marketing purposes.

4. Data Protection Measures

We implement appropriate technical and organizational measures to ensure data security:

• Encryption of data in transit and at rest
• Regular security assessments and audits
• Access controls and authentication systems
• Employee training on data protection
• Incident response and breach notification procedures
• Data minimization and retention policies

5. International Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure adequate protection through:

• Standard Contractual Clauses (SCCs)
• Adequacy decisions by the European Commission
• Binding Corporate Rules where applicable
• Specific derogations for particular situations

6. Data Processing Records

We maintain detailed records of our data processing activities, including:

• Categories of personal data processed
• Purposes of processing
• Categories of data subjects
• Recipients of personal data
• Retention periods
• Security measures implemented

7. Data Protection Officer

Our Data Protection Officer (DPO) oversees GDPR compliance and serves as the point of contact for data protection matters:

Email: dpo....einix.fr
Phone: (none)
Address: 15 rue des Halles, Paris, 75001, France

8. Exercising Your Rights

To exercise any of your GDPR rights, please contact us using the following methods:

• Email: privacy....einix.fr
• Phone: (none)
• Online form: Available on our contact page
• Mail: 15 rue des Halles, Paris, 75001, France

We will respond to your request within one month, or inform you if we need additional time (up to three months for complex requests).

9. Complaints

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority. You can also contact us directly to resolve any concerns.

← Back to Home