Privacy policy
What is GDPR?
GDPR stands for “General Data Protection Regulation” (GDPR). It is a European law that has governed the processing of personal data in the European Union since 25 May 2018.
Legal context: Following on from the French Data Protection Act of 1978 (Loi Informatique et libertés), the GDPR adapts and follows the evolution of technology and our societies.
GDPR reinforces citizens’ control over the use that may be made of their data.
Azur Health Science is committed to ensuring that the processing of personal data carried out on its website complies with GDPR and the French Data Protection Act.
This privacy policy informs you about the purposes of the processing carried out via this website, as well as their legal bases and retention periods, the recipients of the data, the security measures (general description), the possible existence of data transfers outside the European Union or automated decision-making, the use and management of cookies, your IT rights and freedoms and how to exercise them.
Who is the data controller?
The person responsible for data processing via the aurhealthscience.com website is Azur Health Science, whose registered office is located at 1 Chemin des Cigognes 68550 Saint-Amarin.
For further information, please refer to the legal notice on this site.
Who is the Data Protection Officer?
Azur Health Science has appointed a Data Protection Officer (DPO) to accompany it in its compliance with GDPR: l’Agence RGPD du Var.
You can contact the DPO:
– Electronically at the following address: dpo-azurhealthscience@agencergpd.eu
– By post, by sending your letter to the following address Centre d’affaires l’hexagone – Bât. E – RDC – 83170 BRIGNOLES.
What types of data may be collected and for what purposes?
Personal data” is “any information relating to an identified or identifiable natural person”.
A person may be identified :
– directly (e.g. surname, first name)
– or indirectly (e.g. by an identifier, a customer number, a telephone number, etc.).
When using the aurhealthscience.com website, data may be collected for the following purposes:
Origin of data collection | Personal data | Purpose of processing |
---|---|---|
Contact form | Surname, first name, postal address, telephone, e-mail Data contained in the message | Management of contact requests and processing by the relevant internal departments |
Contacts through the “career” tab | For more information, please consult the information note for applicants | Receipt and analysis of applications via the website. |
Newsletter | Management of subscriptions and dispatch of newsletters and processing by the relevant internal departments. | |
Cookie banner | Connection data | Securing the user session. |
Connection portal | Username/email address and password | Connection management |
Online payment module (Mentoring site) | Card number, expiry date, visual cryptogram and country | Online payments are handled by the STRIPE payment module. Find out more about STRIPE |
Requests for GDPR rights | Photocopy of identity card | Management and processing of requests relating to the rights of the data subject, exercised under the GDPR and the Data Protection Act. |
What is the legal basis for the processing carried out by this site?
The processing of your personal data by Azur Health Science is based :
– Either on your consent in the case where you entrust your personal data yourself. This is the case, for example, when you subscribe to the newsletter. Your consent may, of course, be withdrawn at any time.
– Or to comply with a legal obligation, particularly in terms of exercising your rights under the GDPR and the “Loi Informatique et libertés”.
– Or for the performance of a contract to which Azur Health Science is a party, or for the implementation of pre-contractual measures at its request.
– Or on the basis of its legitimate interest in protecting its documents and information.
Who receives the data? Is it transferred outside the European Union?
The data collected is intended for the processing of requests by Azur Health Science departments. Only the personnel of the departments authorised to process the request will have access to your data.
The personal data collected and generated by this website are under no circumstances transferred to parties located outside the European Union (EU).
Exceptions: data displayed on our website or social networks is visible outside the EU (e.g. images of the persons concerned).
How is the data secured?
Azur Health Science is committed to protecting the personal data processed within the framework of this site, in compliance with the state of the art. The indications below are the main security measures to protect your personal data:
– Procedure for compliance with the principle of Privacy by Design: each project to modify the site involves a study of GDPR compliance and a questioning of the cookies that could be put in place, as well as transparent information for users.
– Procedures in the event of the detection of a security flaw or data breach: each member of Azur Health Science knows the procedure to follow in order to be able to correct the former as quickly and as efficiently as possible, and to limit as far as possible the harmful consequences of the latter.
– Secure website using SSL protocol.
– Hosting on an encrypted server.
– Log monitoring.
– Recurring back-ups.
How long are personal data kept?
Origin of the collection | Purposes of processing |
---|---|
Contact form | As long as it takes to process your request and for 2 years from the last contact. |
Career tab | To find out more, please consult the RGPD information note for candidates |
Newsletters | 3 years or until you withdraw your consent (unsubscribe) |
Online payment module | Azur Health Science does not store credit card information. Only the buyer’s identity data may be kept for 10 years, in accordance with the periods applicable within the framework of the invoicing process (article L.123-22 of the French Commercial Code). |
Connection logs | 12 months maximum |
Cookie banner | Refer to the cookies policy |
Requests for GDPR rights | The time it takes to process your request (1 month) |
FFor more information on the retention period for a particular item of data, you can contact the Data Protection Officer (DPO) appointed by Azur Health Science by e-mail: dpo-azurhealthscience@agencergpd.euu
What are your rights?
In accordance with the applicable legislation on the protection of personal data, you have the following rights:
– Right of access to your personal data and to information concerning them;
– Right of rectification, deletion and portability of your personal data;
– Right to limit and object to the processing of your personal data;
– Right to withdraw your consent;
– Right not to be the subject of a fully automated decision.
You also have the right (where applicable) to formulate general or specific instructions relating to the storage, deletion and communication of your personal data after your death.
How can I exercise my rights?
Your requests can be made in different ways:
– Via the rights management module administered by the GDPR Agency, Azur Health Science’s Personal Data Protection Officer: Management of your rights
– By post by writing to Azur Health Science located at 1 Chemin des Cigognes 68550 Saint-Amarin
– In person at Azur Health Science reception, located at 1 Chemin des Cigognes 68550 Saint-Amarin
Please make each of your requests by one of the above means, enclosing a copy of your identity document. This enables Azur Health Science to verify your identity before transmitting any category of personal data. This document will be deleted as soon as your request is closed.
Azur Health Science may require payment of a reasonable fee based on administrative costs for any additional copy requested (Article 15.3 of GDPR).
In the event of manifestly unfounded or excessive requests, Azur Health Science may require the payment of reasonable fees that take into account the administrative costs incurred to provide the information or refuse to comply with these requests (Article 12.5 of GDPR).
Does this site use cookies?
When you consult this site, cookies (connection cookies) are deposited on your computer, tablet or telephone.
Azur Health Science can, in particular with the help of cookies, make the content or information on its website more relevant and adapt it to your personal needs. Under no circumstances can Azur Health Science identify a user by a cookie.
The cookies used by Azur Health Science on this website are necessary cookies (which allow you to use the main functions of the site) or optional cookies (which allow you to improve your experience on the site as a user)
For more information on cookies, you can consult our policy on the use of cookies or visit the CNIL website.
Is there any recourse?
If, after contacting us, you feel that your rights have not been respected, you may lodge a complaint with the Commission Nationale de l’Informatique et des Libertés (CNIL – the competent French supervisory authority):
– By mail: contact the DPO of the CNIL;
– By telephone on 01 53 73 22 22;
– By post to the following address: 3 Place de Fontenoy – TSA 80715 – 75334 Paris Cedex 07, France.
Updated on 10.04.24