↳ Who collects the personal data (Identity of the data controller)?
Your personal data is collected by Insign – 7, rue de la République 69001 Lyon – SAS – registered under SIREN number 524347945 in the Lyon trade and companies register.
Insign has appointed a dedicated personal data protection team that can be reached at the following address: rgpd@insign.fr.
↳ What personal data is collected?
The term "personal data" refers to any information related to an identified or identifiable natural person, either directly or indirectly.
By using our site, you provide us with information, some of which can identify you and therefore constitute personal data. This is particularly true when you fill out the contact form or subscribe to the newsletter.
Personal data includes information about you that enables your identification, such as:
| Identification Details |
|
| Professional Life |
|
| Connection Data | IP address, browsing history, visit path, operating system, device information you use to access the website, etc. |
For any other data collected elsewhere, the data collection form will outline the rules applicable to the data collected in cases where they differ from the rules in this Policy.
When collecting data, you will be informed if certain information is mandatory or optional. The data marked with an asterisk in the collection form is required. If not provided, processing your request may be limited.
If you connect to our services using social media features available to you, we will have access to some of your data (including your first and last name, photo, email address, and number of Facebook friends) from that social media account, in accordance with the terms of use of the respective social network. We may also collect some of your data when you interact with features on these social networks, such as the 'Like' features.
↳ When do we collect personal data?
Insign collects your personal data explicitly and transparently, thanks to the presence of information notices or references to this Policy.
Your personal data may be collected when you:
browse the website,
fill out any form on the website or leave a message,
sign up for our newsletter,
want to receive a catalog or information about our expertise,
communicate with us via phone, email, social media, forums, or any other means,
apply for a job position,
report a problem or request support.
↳ What are the purposes for collecting personal data, and what is the legal basis for processing?
Your personal data is collected and processed only for a specific purpose, which will be explained to you at the time of collection.
Insign is committed to collecting personal data only for specific, clear, and legitimate purposes, and not processing this data in ways that are incompatible with those purposes.
Insign promises to collect and process only the personal data that is adequate, relevant, and not excessive for the purposes for which it is collected.
We use the data we gather in order to:
| Purposes | Legal Basis |
| Respond to your inquiries | Consent |
| Manage recruitment | Execution of pre-contractual measures |
| Communicate with you about our products and services and provide marketing information | Consent |
| Operate, maintain, and improve the website | Legitimate interest |
↳ Who are the recipients of my personal data?
The data collected by Insign is intended for us in our role as data controller.
Insign is committed to not selling, renting, or transferring your personal data to third parties without your prior and explicit consent.
However, Insign may need to share your personal data with other entities.
↳ Data shared with third parties
We work closely with third-party companies that may have access to your data, specifically including:
Our service providers and subcontractors. In particular, Insign may use third-party providers to host the website, provide services related to the site's operation, maintain the site, and send communications and commercial offers. We only provide these third parties with the data they need to perform their services, and we require them not to use your data for any other purposes. These third parties will act only according to our instructions and are contractually obligated to ensure the same level of security and confidentiality of your data as we do, and to comply with applicable data protection regulations.
Our business partners (Google, Hubspot, GetQuanty) and other entities within the Insign group within the European Union (http://agenceproches.com/fr, https://thewhyfactorcompany.com/) subject to your explicit and prior consent, so that they can offer you special deals and ads.
We may also transfer your personal data to any potential buyer in the event of the sale of an Insign entity or its assets.
↳ Data transferred to authorities and/or public bodies.
In accordance with current regulations, the personal data collected by Insign may be transmitted to competent authorities upon request, including public bodies, legal assistants, law officers, entities responsible for debt collection, solely to meet legal obligations, as well as in the pursuit of offenders of internet crimes.
How long will my personal data be retained?
Insign keeps your personal data secure for as long as necessary to achieve the purposes for which they were collected, in accordance with retention periods recommended by the CNIL and/or applicable legislation.
| Objectives | Retention Period |
| Responding to your inquiries | 3 years after last contact |
| Managing recruitment | 24 months |
| Connecting with you about our products and services and providing marketing information | 3 years after last contact |
| Website operation, maintenance, and enhancement | 12 months |
Are my personal data transferred outside the European Union?
The personal data we collect isn't transferred outside the European Union. It's securely hosted in France.
How is my personal data protected?
Insign implements technical and organizational measures to ensure the privacy and security of your personal data, preventing any unauthorized changes, damage, deletion, or access by third parties.
Only authorized staff, based on their job roles, are able to access your personal data. They are also bound by confidentiality obligations.
In the event of a personal data breach, Insign is required to notify the relevant supervisory authority (CNIL) and inform you, as promptly as possible, of any data breaches that may pose a significant risk to your rights and freedoms, so that you can take appropriate actions.
What are my rights, and how can I exercise them?
In accordance with the applicable regulations, you have the right to access, correct, delete, limit the processing of your data, oppose processing, and ensure the portability of your data.
If processing is based on your consent, you also have the right to withdraw your consent at any time.
You also have the right to lodge a complaint with the CNIL or a data protection authority of an EU Member State and to set post-mortem directives.
You can exercise your rights at any time by emailing: dpo@insign.fr.
Regarding commercial prospecting, you have the right to object and can opt out of receiving any further business solicitations at any time by using the unsubscribe link provided in the message.
↳ Personal data protection for minors
This site is not intended for minors under the age of 15.
However, if you are a minor and have shared personal information, you confirm that you have obtained prior permission from one of your parents, as Insign is not liable for any issues that arise from a lack of such permission. All parents and guardians are encouraged to promote responsible and careful behavior in minors when they share personal information online.
Links to other websites
The Insign site may contain links to third-party sites with which Insign is not affiliated.
Insign has no control over these sites and cannot be held responsible for their content or how they use your personal data.
To ensure the protection of your personal data, we recommend reviewing the privacy policy of any other site you access via a link on one of our websites. In any case, we disclaim any responsibility regarding such policies.
Updates to the Policy
Insign reserves the right to change the Policy at any time and without prior notice, especially to comply with any regulatory, legal, editorial, or technical changes. If applicable, this modification will be announced on the site and will be effective immediately upon publication. The date of modification will be inserted at the top of this policy.
We encourage you to check this page regularly to stay updated on any changes and updates made to this policy.
Get in Touch with Insign
If you have any comments or questions regarding this document, wish to exercise your rights, or have any inquiries concerning your personal data, you can reach out to us at:
via email: at dpo@insign.fr;
or by mail at the following address: INSIGN SAS 7, rue de la République 69001 Lyon.
For any information on personal data protection, you can also visit the website of the National Commission for Information Technology and Liberties (CNIL) at www.cnil.fr.