- Nature of the collection of personal data
- What data do we collect ?
- Legal basis and purpose of processing
- For what purpose do we collect your data?
- Who can access your data?
- What are your rights?
- How to exercise your rights?
- Transfer of data outside the European Union
- Contact details
The protection of your personal data is an important issue for us. Therefore, we invite you to read the following rules carefully and to contact our data protection team for any question on this subject at firstname.lastname@example.org.
The data you provide will be processed by the Société par actions simplifiées Octopulse S.A.S. (hereinafter "the Company") with a capital of 13025 euros, registered with the R.C.S. of Paris under the number 841 325 186, whose registered office is located at 5 Avenue du Général de Gaulle, 94160 Saint-Mandé, represented by Simon Deboeuf.
the legal basis and purposes for which we process your personal data; and
your rights and our company's obligations in relation to such processing.
Nature of the collection of personal data
In the context of using the Site and the services it offers, you may be required to provide our company, in its capacity as data controller, with personal data concerning you. Some personal data is compulsory, others optional, in order to access or benefit from certain services present on the Site, such as the contact forms or the Site registration form. The mandatory or optional nature of the data is indicated at the time of collection. In the absence of communication of the obligatory personal data, our company will not be able to answer your request.
What data do we collect ?
The categories of data concerned are the following:
- last name;
- first name;
- postal address ;
- email ;
- phone ;
- banking data;
- IP address ;
- website preferences ;
Legal basis and purpose of processing
Dokey is not permitted to process personal data if we do not have a legal basis to do so. Therefore, we only process your personal data if (i) we have obtained your prior consent, (ii) the processing is necessary for the provision of the services we offer to you, or (iii) the processing is necessary for the fulfilment of our company's legitimate interests as data controller.
For what purpose do we collect your data?
The main purpose of collecting, storing and processing personal data is to:
- to manage registration on the site;
- to process subscriptions ;
- to manage and improve the relationship between our company and you ;
- to provide our services ;
- to enable the operation of the Site ;
- to answer to your requests ;
- to send you our publications, announcements and information, including our newsletter;
- to enable us to consider applications ;
- to enable us to comply with our legal regulatory obligations, in particular with regard to security;
- to communicate or allow access by third parties in the context of a possible sale, merger and/or restructuring ;
- to improve the user's experience ;and
- commercial prospecting, subject to the express authorisation of the person concerned.
Who can access your data?
Recipient(s) of the Personal Data
Your personal data will not be transmitted or made accessible to third parties, with the exception of authorised members of our company's staff and our service providers (such as IT system suppliers, hosts, consultants, payment service providers), it being specified that each of these service providers is subject to strict data protection and confidentiality obligations.
In addition, in the event of a proven breach of legal or regulatory provisions, this data may be communicated to the judicial authorities at their express and justified request.
We may share your personal data, as far as possible in a concealed manner, with other third parties, and this solely for the purposes of the operation and within the framework of an obligation of confidentiality. In the event of a security breach of personal data, we will inform you and the relevant supervisory authority as required by applicable law.
With respect to banking data, it will be processed by the payment service provider Stripe, located at 354 Oyster Point Blvd South San Francisco, CA 94080 United States.
How long will your Data be kept?
Your personal data will only be kept for the period necessary to fulfil the purposes for which it was processed or to comply with legal or regulatory requirements.
In particular, your personal data will be retained for the duration of the business relationship and beyond that for promotional purposes, for evidential purposes and to meet accounting obligations, for a period not exceeding the statutory limitation periods.
When you fill in the contact form to submit a question or comment: Your data will be kept for a period of 1 year from the date of your request.
When you subscribe to the site or request the provision of our services: Your data will be retained for the duration of your subscription and while the services continue to be provided.
What are your rights?
In accordance with the applicable legal provisions, you have the following rights:
You can ask us to access all or part of your data
Right of rectification
You can ask us to rectify all or part of your data that are inaccurate or out of date
Right of deletion
You can ask us to delete all or part of your data, in particular when the data is no longer necessary to achieve the purposes for which it was collected
Right to object
You may object at any time to the processing of your data for the purposes of our legitimate interests.
Right to limitation
You may request that your data be processed in a limited manner (no processing is possible except for storage) in the following cases i) for the period of time required to verify the accuracy of your data following a challenge to its accuracy by you ii) you consider the processing to be unlawful and request a restriction on the use of the data instead of erasure iii) we no longer need to process your data but it is still necessary for the (iv) you have objected to the processing of your data and wish to restrict their use while we verify whether our legitimate reasons justify further processing.
Right to portability
You may request that your data be exported to a third party where you have consented to the collection of your data or where your data has been collected for the purpose of performing a contract.
How to exercise your rights?
You can exercise your rights by sending your precise request (expressly stating the right you wish to exercise) in writing to the following address
OCTOPULSE : 5 Avenue du Général de Gaulle, 94160, Saint-Mandé, France
Email : email@example.com
Furthermore, you have the right to lodge a complaint with a data protection authority.
In accordance with the regulations on the protection of personal data, you have the right to access, rectify, delete, if necessary limit and port your personal data, as well as the right to object to their processing. You also have the right to withdraw your consent to the processing of your personal data (without this withdrawal affecting the lawfulness of the processing carried out previously). In addition, you have the right to set out instructions on what to do with your data in the event of your death.
If necessary, you have the right to lodge a complaint with the data protection authority of the Member State in which you reside.
Dokey has implemented technical and organisational measures to protect your personal data against unauthorised, accidental or unlawful destruction, loss, alteration, misuse or unauthorised disclosure of your personal data. These measures ensure an appropriate level of data security and take into account the state of knowledge, the costs of implementation in relation to the risks and the nature of the data to be protected.
Our company also guarantees that the staff members who process your personal data comply with the internal rules and procedures relating to the processing of personal data and in particular the technical and organisational security measures put in place to protect your personal data.
Transfer of data outside the European Union
As some of our partners/service providers may be located outside the European Union, the data collected may be transferred to countries outside the European Union, whose legislation on the protection of personal data differs from that of the European Union, it being specified that, in the event that the recipient country or countries do not ensure a level of data protection equivalent to that of the European Union, our company undertakes to take all necessary guarantees, either on the basis of an adequacy decision or, in the absence of such a decision, on the basis of appropriate guarantees such as binding internal rules, standard contractual clauses adopted by the European Commission, a code of conduct or a certification mechanism duly approved by the competent authority, and which can be obtained by sending an e-mail to the following address firstname.lastname@example.org.