Preamble

The Privacy Policy’s purpose is to describe the methods of collection, retention and use of Web site visitor (hereinafter referred to as the “User”) data. The Privacy Policy’s purpose is also to indicate to Users the purpose of obtaining personal data from the ZENDATA site. We are committed to protecting the privacy of our Users. The information transmitted will remain private and confidential, and will be used solely to provide the service requested by the User. For this reason, ZENDATA is committed to complying with Switzerland’s Data Protection Act (DPA) and the General Data Protection Regulation (GDPR).

This policy applies to the Web site, the connected objects sold, the various applications and any other tools that would collect personal data.

User’s Consent

From the moment the User benefits from ZENDATA’s products and services, (s)he consents to having his/her personal data exploited by ZENDATA. User consent is given for each different process and data used. Consent may be withdrawn at any time. The User agrees, as part of his/her personal data’s transmission to ZENDATA, via the Newsletter or the form, that ZENDATA uses them in order to best meet the User’s requirements.

Collection of Personal Data

On the Web site, only the IP address gets collected. ZENDATA encrypts this IP address, so that nobody can identify the address’s owner. Visitors’ personal data collected from the Web site may be more extensive when it comes:

• From the newsletter:
  In the newsletter’s context, personal data collected are the given name, surname and e-mail address of the person concerned,
• From the form:
  As part of the form, the personal data collected are the given name, surname, e-mail address and telephone number of the person concerned. These personal data are collected for a specific purpose and need described in the purpose article below.

Purpose of Process

The purpose must be determined, legitimate and explicit. This purpose is consistent with the objective and compatible with the organization’s missions. Personal data is used in the following cases:

• As part of a simple visit, IP address collection allows us to study visit statistics on our Web site.
• In the newsletter’s context, the personal data collected are those that enable us to send monthly news from the ZENDATA blog via personalized e-mail message (with the name of the person concerned).
• As part of the form, the personal data collected enable us to respond to our clients’ requests as best, quickly and efficiently as possible.

Personal data shall only be used for the above-stated purposes. In consequence, the data will be retained for a fixed period of time to meet the purpose. Data will not be retained beyond the following specified period:

• In the case of data collected for site statistics, personal data will be retained for a period of three years in order to enable ZENDATA to produce suitable statistics.
• As part of its Newsletter, ZENDATA retains personal data of the person concerned as long as the latter does not unsubscribe from the newsletter.
• As part of the form, personal data are kept for the time needed to respond to the prospect’s request, since the prospect has access to the newsletter, his/her data are kept until (s)he cancels his/her subscription.

Rights of Persons Concerned

The person concerned with data processing has several rights under Section 9 of the GDPR. To begin with, the Web site User can appeal his right to information. This information will be available following collection or to any process. The individual concerned with the personal data may object to the processing authority’s handling of their data, including reuse of his/her data for new processing purposes. This can take on the form of commercial solicitations, upon placing an order or signing a contract. In addition, anyone can object to processing for legitimate reasons, unless it comes under a legal obligation. Opposition cannot be accepted if the personal data in question are indispensable to the order or contract’s proper processing. The access right is characterized as allowing the person concerned to access all the information about him/her, including the origin of said information about him/her, to access the information on which the processing authority based his/her decision, and to obtain a copy. The User may require correction, completion, modification or deletion of his/her data. The processing authority shall respect any other rights outlined in the GDPR. These rights may be exercised by sending an e-mail message to address info@zendata.security . However, these rights must not be abused; otherwise, the processing authority may decide to refuse the access request. Data access rejection must be motivated and inform the person concerned of the recourse processes offered and related timeframes.

Transfer of Personal Data

Users’ personal data are stored and transferred outside the European Union, in particular in Switzerland, a country recognized by the European Union as having an appropriate level of protection. Some data are also stored in European Union countries, such as France. ZENDATA, as part of its GDPR policy, undertakes to only work on personal data in and send them to countries outside the European Union that have an appropriate level of protection and/or to companies that are members of the Privacy Shield if they are in the United States. Transfer of personal data is done only in useful settings to meet specific needs. If personal data are transferred outside the above-mentioned cases, it is impossible for ZENDATA to guarantee the absolute inviolability of personal data in this context.

Sharing personal data

Users’ personal data are shared only in very specific cases, such as to meet contractual requirements with suppliers of goods or services. ZENDATA contracts only, ideally, with GDPR-compliant suppliers, or at least DPA-compliant, in order to provide the best possible service to its clients.

Personal Data Security

ZENDATA follows current security rules, and thus has implemented technical and organizational measures to meet these requirements. Personal data are therefore protected through these measures against loss, tampering or access by unauthorized third parties. Data storage and deletion follow the required security rules. This ensures that the data are retained appropriately and will be deleted at expiry of a reasonable period given the process’s purpose. Data updates and backups take place on a regular basis to keep only what is useful to ZENDATA. This also allows for keeping the retained data up to date and therefore deleting them when the retention period has elapsed.

Cookies

A cookie is a tracer that can be deposited or read during Internet navigation, the reading of an e-mail message, or installation or use of a software or mobile application. These cookies analyze users’ browsing, travel and viewing habits on the ZENDATA Web site. T Users may accept or reject use of cookies. If they refuse, they will be redirected to https://cookieinfo.org , which will inform them about cookies and the GDPR. If they agree to use cookies, they can continue to browse the ZENDATA site. If the User wishes to obtain more information, it may be accessed, in particular, by clicking on “More information.” ZENDATA primarily uses statistical analysis cookies on its Web site. To delete these cookies, the User has to click on the following link: https://lmgtfy.com/?iie=1&q=how+to+remove+cookies.

Google Analytics

The ZENDATA Web site uses Google Analytics to assess visitors’ use of our site. It therefore allows for site audience analysis, in order to facilitate decision-making on the various policies that ZENDATA’s senior management will subsequently adopt.

Social Networks

The ZENDATA Web site contains links leading to various ZENDATA social networks, such as Facebook, Twitter and LinkedIn. These links do not send any personal data about the individuals clicking on them; they simply redirect the User.

Contact

In case of any questions or to obtain complementary information, please contact us at the following email address: info@zendata.security.