Privacy policy
What is GDPR?
GDPR stands for "General Data Protection Regulation" (GDPR). It is a European text that has governed the processing of personal data on the territory of the European Union since May 25, 2018.
Legal context: In line with the French Data Protection Act of 1978 (Data Protection Act), the GDPR adapts and follows the evolution of technologies and our societies.
The GDPR strengthens citizens' control over how their data can be used.
Azur Health Science is committed to ensuring that the processing of personal data carried out on its website complies with the GDPR and the Data Protection Act.
This privacy policy informs you about the purposes of the processing carried out through this website, as well as their legal bases and storage periods, the recipients of the data, the security measures (general description), the possible existence of data transfers outside the European Union or automated decision-making, the use and management of cookies, your data protection rights and how to exercise them.
Who is the data controller?
The data controller for the data processing carried out by the website through the aurhealthscience.com website is Azur Health Science , whose registered office is located at 2A rue des Prés 68700 Cernay.
For further information, please refer to the legal notice on this site.
Who is the Data Protection Officer?
Azur Health Science has appointed a Data Protection Officer (DPO) to support it in its efforts to comply with the GDPR.
You can contact him electronically at the following address: dpo@azurhealthscience.com.
What types of data may be collected and for what purposes?
"Personal data" is "any information relating to an identified or identifiable natural person".
An individual can be identified:
- directly (example: surname, first name)
- or indirectly (e.g. by an identifier, a customer number, a telephone number, etc.)
When using the aurhealthscience.com website, the following purposes may be collected:
| Origin of data collection | Personal data | Purpose of processing |
|---|---|---|
| Contact form | Last name, first name, company, phone, email Data contained in the message. |
Management of contact requests and processing by the relevant internal departments |
| Contacts through the “career” tab | To find out more, please consult the RGPD information note for candidates the information note for applicants | Reception and analysis of applications made via the website. |
| Newsletter | Management of registrations and mailing of newsletters and processing by the relevant internal departments | |
| Sales prospecting (landing page, MailerLite, CRM) | Last name, first name, email address, company name, telephone number (optional), interests, behavioral data (clicks, downloaded resources), prospect status (CRM), proof of consent | Management of B2B sales prospecting actions: collection via landing pages (opt-in), marketing qualification (MailerLite), commercial activation via CRM (Odoo), sending of newsletters and periodic communications, management of rights and objections |
| Cookie banner | Connection data | Securing the user session. Find out more about cookie management. |
| Login Portal | Username/email address and password | Connection Management |
| Online payment module (Mentoring website) | Card number, expiration date, CVV, and country | Online payments are provided by the STRIPE payment module. Find out more about STRIPE |
| GDPR Law Requests | Photocopy of identity card | Management and processing of requests relating to the rights of the data subject, exercised under the GDPR and the Data Protection Act. |
What is the legal basis for the processing carried out by this site?
The processing of your personal data by Azur Health Science is based on:
- Or on your consent in the event that you entrust your personal data yourself. This is for example the case where you subscribe to the newsletter or to our resources via our prospecting landing pages. Your consent can of course be withdrawn at any time.
- Or on compliance with a legal obligation , in particular with regard to exercising your rights under the GDPR and the Data Protection Act.
- Either on the performance of a contract to which Azur Health Science is a party, or on the implementation of pre-contractual measures at its request.
- Or on its legitimate interest in the protection of its documents and information, as well as in B2B commercial prospecting with professional contacts who have expressed an interest in its services (CNIL reference of February 3, 2022).
Who are the recipients of the data? Are they transferred outside the European Union?
The data collected is intended for the processing of requests by Azur Health Science's services. Only the staff of the services authorised to process the request will have access to your data.
The personal data collected and generated by this website is not transferred to actors located outside the European Union (EU).
Exceptions: The data displayed on our website or social media channels is visible outside the EU (e.g. images of data subjects).
How is the data secured?
Azur Health Science is committed to protecting the personal data processed within the framework of this site, in accordance with the state of the art. The following are the main security measures to protect your personal data:
- Procedure for compliance with the principle of Privacy by design : each project to modify the site involves a GDPR compliance study and a questioning of the cookies that could be set up as well as transparent information for users.
- Procedures in the event of the detection of a security breach or a data breach : each member of Azur Health Science knows the procedure to follow in order to be able to correct the former as quickly and effectively as possible, and limit the harmful consequences of the latter as much as possible.
- Website security with SSL protocol.
- Encrypted server hosting.
- Log monitoring.
- Recurring backups.
How long is personal data kept?
| Origin of the collection | Retention periods |
| Contact form | The time it takes to process your request and for 2 years from the last contact |
| Career tab | To find out more + please consult the GDPR information note for candidates |
| Newsletters | 3 years or until you withdraw your consent (opt-out) |
| Commercial prospecting (prospect data) | Active base: duration of the prospecting relationship. Intermediate archiving: 3 years from the last contact (click, reply, request). Consent data (registration landing page): 5 years from the withdrawal or last contact. Reference: CNIL reference of February 3, 2022. |
| Online payment module | Azur Health Science does not store credit card information.
Only the buyer’s identity data may be kept for 10 years, in accordance with the periods applicable in the context of the invoicing process (Article L.123-22 of the French Commercial Code). |
| Connection logs | 12 months maximum |
| Cookie Banner | Refer to the cookie policy |
| GDPR Law Requests | The time it takes to process your application (1 month) |
For more information on how long a particular piece of data is kept, you can contact the Data Protection Officer (DPO) appointed by Azur Health Science by e-mail: dpo@azurhealthscience.com.
What are your rights?
In accordance with the applicable legislation on the protection of personal data, you have the following rights:
- Right of access to your personal data and information about it;
- Right to rectification, erasure and portability of your personal data;
- Right to limit and object to the processing of your personal data;
- Right to withdraw your consent;
- Right not to be subject to a fully automated decision.
You also have the right (where applicable) to issue general or specific instructions relating to the storage, deletion and disclosure of your personal data after your death.
How can I exercise my rights?
Your requests can be made in different ways:
– By contacting Azur Health Science’s Data Protection Officer at the following e-mail address: dpo@azurhealthscience.com
– By post, by writing to Azur Health Science at 2A rue des Prés 68700 Cernay.
– In person at Azur Health Science’s reception desk, located at 2A rue des Prés 68700 Cernay.
Please make each of your requests by one of the above means by attaching a copy of your identity document. This process allows Azur Health Science to verify your identity before transmitting any category of personal data. This document will be deleted as soon as your application is closed.
Azur Health Science may require the payment of a reasonable fee based on administrative costs for any additional copies requested (Article 15.3 of the GDPR).
In the event of manifestly unfounded or excessive requests, Azur Health Science may require the payment of a reasonable fee that takes into account the administrative costs incurred in providing the information or refusing to comply with such requests (Article 12.5 of the GDPR).
Does this site use cookies?
When you visit this website, cookies are placed on your computer, tablet or phone.
Azur Health Science may, in particular by using cookies, make the content or information on its website more relevant and adapt it to your personal needs. Under no circumstances can Azur Health Science identify a user by a cookie.
The cookies used by Azur Health Science on this website are necessary (which allow you to use the main features of the site) or optional (to improve your experience on the site as a user)
For more information on cookies, you can consult our cookie policy or visit the CNIL website.
Is there any recourse?
If you believe after contacting us that your rights have not been respected, you can file a complaint with the Commission Nationale de l’Informatique et des Libertés (CNIL – competent French supervisory authority):
- By electronic means: contact the CNIL’s DPO ;
- By phone on 01 53 73 22 22;
- By post to the following postal address: 3 Place de Fontenoy – TSA 80715 – 75334 Paris Cedex 07
Updated on 07.04.26
