Skip to content
Employees areas
Contact us

Third Party Data Protection

The Sofinord group, of which ARMONIA is a division, wishes to build a relationship of trust with its clients, partners, and employees. In this context, the Sofinord group is committed to ensuring the highest level of protection for your Personal Data.

This policy demonstrates ARMONIA's commitment to comply with the French Data Protection Act of January 6, 1978, as well as the General Data Protection Regulation (GDPR: No. 2016-679). It will allow you to learn more about the collection and processing of your personal data, as well as your rights.

Definitions:

“Personal data” : Personal data is any information relating to an identified or identifiable natural person. Since they concern individuals, people must keep control over them. A natural person can be identified:

  • directly (example: first and last name);
  • indirectly (example: by a telephone number or license plate, an identifier such as a social security number, a postal or email address, but also voice or image).

“Processing” : The processing of personal data is any operation, or set of operations, on personal data, regardless of the process used (collection, recording, organization, storage, adaptation, modification, extraction, consultation, use, communication by transmission or dissemination or any other form of making it available, comparison).

“Data controller” : The data controller is the legal or natural person who determines the purposes and means of processing, i.e., the objective and how it is carried out.

“Purpose of processing” : The purpose of processing is the main objective for using personal data. Data is collected for a specific and legitimate purpose and must not be processed later in a manner incompatible with this initial objective.

“We” : refers to the Sofinord group entity operating personal data processing activities.

Who is the data controller for your data?

For Personal Data collected in the context of browsing the Site, the data controller is: ARMONIA, a division of the Sofinord group.

As the data controller for the data we collect, we are committed to complying with the applicable legal provisions. In particular, we are responsible for determining the purposes of data processing, providing our prospects and clients, as well as our employees, candidates, or internet users with complete information about the processing of their personal data, and maintaining a registry of processing activities that reflects reality.  

What data do we collect?

When you browse the site, we may collect the following data:

  • Information you provide by filling in contact forms or by contacting us via an email address (first name, last name, email address, and any other information you provide us)
  • Information you provide when applying to ARMONIA: your first name(s), last name(s), email address, resume, and any other optional items you wish to share with us.
  • Cookies, when you agree to their collection. Some cookies are mandatory and necessary for the proper functioning of the site, others are optional and require your consent. You may withdraw your consent at any time and choose which cookies you allow to be collected by clicking on the cookie settings.
  • Social media: on our site, you can click on icons allowing you to access our dedicated pages on social networks (for example, Facebook, Instagram, Twitter, or LinkedIn). When you click on these icons and choose to follow us on one of these networks, we may access the personal data you choose to make accessible on your profiles.
  • IP addresses: this is an identifier that some electronic devices use to identify themselves and communicate with each other on the Internet. When you visit our site, we may use the IP address of the device you use to connect. We use this information to determine the approximate physical location of the device and to understand from which geographical area site visitors are coming.
  • Statistics: our site uses Matomo Analytics to generate statistical reports, which allow us to know how many internet users have visited the site, which pages have been visited, and from what geographic area visitors originate. The information collected through statistics may include your IP address, the website from which you arrived at our site, and the type of device you use. We do not use any of this information to identify visitors and we do not share it with third parties.

In any case, we do not commercialize any of the personal data we collect.

 

Purpose of collected data

We may process your personal data for the following purposes:

Purpose of processing

Management of recruitment and hiring

Legal basis for processing

- Our legitimate interest in recruiting profiles suitable for our needs

- Your consent to send us your application

- Compliance with legal obligations

- The performance of the contractual relationship, when you are hired by ARMONIA

Data retention period

- If you are recruited: for the duration of the contractual relationship

- If you are not recruited and recruitment is possible in the future: 2 years from the date your application was sent

- If no recruitment is considered: only for the duration of the recruitment process

Purpose of processing

Respond to your requests for information, quotes, or contact

Legal basis for processing

- Our legitimate interest in responding to your requests, in order to provide you with the best quality of service

- If applicable, the performance of the contractual relationship we have with you

Data retention period

Maximum of 3 years from the last contact or data collection

Purpose of processing

Improve your navigation on our website

Legal basis for processing

- Our legitimate interest in providing you with the best quality of service

Data retention period

Maximum of 12 months after last contact or data collection

What are your rights?

In accordance with applicable regulations, you have the following rights over your personal data:

- Right to access and rectify, update, or complete your personal data. Right to block or erase your personal data when they are inaccurate, incomplete, ambiguous, outdated, or when their collection, use, disclosure, or retention is prohibited

- Right to withdraw your consent at any time

- Right to the limitation of processing of your data

- Right to object to the processing of your data

- Right to data portability for data you have provided, when such data is subject to automated processing based on your consent or on a contract

- Right to determine what happens to your data after your death and to choose a third party to whom we must communicate your data.

 

As soon as we are informed of a user's death and in the absence of instructions from them, we undertake to destroy their data, unless their retention is necessary for evidentiary purposes or to meet a legal obligation.

If you wish to know how we use your personal data, request to rectify it, or if you wish to exercise any other right over your personal data, you can contact our DPO at the following address: dpo@sofinord.com 

 

In this case, you must clearly state your request. If your request concerns rectification, updating, or erasure, please indicate the personal data you wish us to correct, update, or delete. If there is any doubt about your identity, we may ask you for a copy of an identity document (identity card, passport, or any equivalent document).

Requests for deletion of Personal Data will be subject to legal obligations, particularly regarding the retention or archiving of documents. Finally, you may file a complaint with the supervisory authorities, notably the CNIL.

Transfers of data outside the EU

In general, we do not transfer any personal data about you to a country outside the European Union. However, should your personal data be transferred outside the European Union, we undertake to inform you in advance. We also undertake to take all necessary measures to ensure a sufficient and appropriate level of data protection.

Security

We undertake to take all necessary precautions to preserve the security of your data, and to take all reasonable measures to protect them against any loss, misuse, unauthorized access, disclosure, alteration, or destruction. However, if an incident affecting the integrity or confidentiality of your personal data comes to our attention, we will inform you as soon as possible and communicate to you the corrective measures taken.

To ensure the security and confidentiality of Personal Data, our site uses networks protected by standard devices such as firewalls, pseudonymization, encryption, and passwords.

Incident Notification

Despite all efforts, no method of transmission over the Internet or method of electronic storage is completely secure. Therefore, we cannot guarantee absolute security. If we become aware of a security breach, we will notify the affected users so they can take appropriate measures. Our incident notification procedures take our legal obligations into account, whether at the national or European level. We are committed to fully informing you of any matters relating to the security of your data.

Applicable law and jurisdiction

Any dispute related to the use of the site is subject to French law. Except where not permitted by law, exclusive jurisdiction is given to the competent courts of Paris.

Updating our policy

In case of changes in regulation, or personal data processing carried out on this site, we may update or modify this policy.

 

Contact

For any question relating to this policy, the processing of your personal data, or to exercise your rights, you can contact the data protection officer of the Sofinord group at the following address: dpo@sofinord.com

All we need is Armonia