Effective date: May 2021
Any reference to “Ideolys”, “us”, “our” or the “Company” shall be a reference to Ideolys, a simplified joint stock company with capital of €272,040, having its registered office at ZAC Beaupuy – 52 rue Jacques-Yves Cousteau – 85000 La Roche sur Yon, registered with the trade and companies register of La Roche-sur-Yon under number 521 295 162 B, and its subsidiaries.
Regulation no 2016/679, known as the General Data Protection Regulation (hereinafter “GDPR”) is a regulation of reference in respect of the protection of personal data. It sets out a regulatory framework for the protection of the data of individuals within the European Union.
Ideolys processes your personal data in accordance with the GDPR.
Under the GDPR, personally identifiable data (hereinafter “Personal Data”) means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, economic, cultural or social identity of that natural person.
Ideolys may act both as the Controller of your Personal Data and as the Processor. Under the GDPR, Controller means the natural or legal person which determines the purposes and means of the processing, that is to say the aim and manner of processing. Processor means a natural or legal person which processes Personal Data on behalf of another party as part of a service.
For the purpose of the Processing of the data you provide us while using the service as a customer (see the “YOUR CUSTOMER DATA” section), Ideolys acts as a processor according to your instructions. You are then the data controller.
For the purpose of the Processing of the Personal Data of administrators and users of the service provided by Ideolys, we act as the Controller (see the “YOUR PERSONAL DATA” section).
Customer data refers to information about your activity as a customer of Ideolys. In such a case, Ideolys is considered to be the processor and you are the data controller.
Customer data are the data that are entered, submitted or processed as part of the use you make of our services. These are also the data that we collect and process on your instructions, where we do not determine the purpose of processing. Customer data may contain Personal Data. Such data may be entered directly by you in Easilys software or by Ideolys. When the data are entered by Ideolys, you submit the data of your choice to Ideolys, which incorporates them into Easilys software. For example, these may be data about your suppliers or customers or data relating to your employees.
In its capacity as Processor, Ideolys agrees to:
If Ideolys considers that an instruction given by you goes against applicable Personal Data protection laws, it shall immediately inform you of the same.
Ideolys may also collect and process Personal Data for the purposes of:
In that case, Ideolys shall act as the controller.
In particular, Ideolys uses the Personal Data of the administrators and users of Easilys software. These particularly include the last name, first name, telephone number, email address and position so as to communicate with them to provide them with maintenance and functional assistance services, and to send them information about Easilys developments and news.
At any time, the recipients of the messages from Ideolys can opt out of receiving such information; however, in that case, they would not be fully informed of all the functions and developments of Easilys.
When you ask for a demo of Easilys software or when you sign up for our services online or download a guide, you complete the dedicated form with the following Personal Data: Last name, first name, email, telephone.
If you wish to apply for a job offered by Ideolys, you click the Jobs tab of the website easilys.com and are automatically taken to the Taleez web page. Taleez is our service provider for the management of applications in response to our job offers.
When you apply for a job offer, you complete the corresponding form with the following Personal Data: last name, first name, email, telephone number and any other information you elect to include in your CV.
If you have been sponsored, your sponsor has completed a dedicated form with the following Personal Data about you: last name, first name, email, telephone number. We will contact you to inform you that you have been sponsored and let you know the identity of your sponsor. Before any other communication, we will ask for your express consent to the continuing use of your Personal Data.
We may collect your Personal Data in the several ways described below.
Ideolys collects and processes Personal Data on the following legal bases:
Ideolys processes Personal Data for the following purposes:
As the data controller, Ideolys informs you that:
To exercise your rights, please send a message stating the subject of your request to email@example.com. We will respond by confirming the exercise of the rights and provide all the information required for that purpose, if necessary. We may also contact you if we need additional information from you in order to fulfil your request. In any event, we will reply within a month; that period may be longer if the request is complex or requires an additional study.
If we process your Personal Data for the purpose of sending you marketing messages, you may manage the receipt of such messages by clicking on the Unsubscribe link at the bottom of email messages.
Please note that unsubscribing from marketing messages does not take you off the list of recipients of important commercial messages relating to your current relationship with us, such as messages relating to your subscriptions or registration for events, service announcements or security information.
Ideolys may share your Personal Data with third-party service providers for the performance of the services provided to you. That is particularly true of online registration forms, the customer database management system of Ideolys and the service provider responsible for sending out Easilys news information. These service providers use servers located in the USA and are not permitted to use the Personal Data of the Customer other than for those purposes, and are bound by an obligation of confidentiality.
Your customer data, namely the data you provide us as part of your use of our services as a Customer, are hosted on OVH servers in France.
Your Personal Data may be stored in France when the third-party service provider has its servers in France, or in the USA when the servers are located there.
The data are hosted on OVH servers located only in France, using infrastructure covered by measures that offer optimum security. Access to the servers is made secure by a key, and is restricted to a limited number of individuals (four administrators).
Ideolys uses the following technical and organisational measures: (i) user password encryption; (ii) OVH server security measures: OVH agrees to optimally secure its infrastructure, particularly through the implementation of an information systems security policy and by fulfilling the requirements of several standards and certifications (PCI-DSS certification, ISO/IEC 27001 certification, SOC 1 TYPE II and SOC 2 TYPE II attestations etc.); (iii) user access control: secure password in accordance with the recommendations of the French data protection authority; (iv) customer data backup measures.
Where these parties are located outside the European Economic Area, Ideolys enters into standard contractual clauses with them, based on the model recommended by the European Commission, in order to adequately protect the transferred Personal Data.
+ Ideolys as Processor
++ Personal Data provided by the Customer in Easilys
+ Ideolys as Controller
++ Your Personal Data as a Customer
++ Your Personal Data as an applicant for a job