This Privacy Policy informs you of how FAB-DIS collects and processes your personal data. We invite you to read it carefully.
Article 1: IDENTITY OF THE DATA CONTROLLER
All processing of collected personal data is carried out under the responsibility of:
FAB-DIS (the “Company”)
• A simplified joint-stock company (Société par Actions Simplifiée) with a share capital of €760,000
• Registered office: 17 rue de l’Amiral Hamelin, 75016 PARIS
• SIRET No.: 844 650 101 000 18
• APE Code: 6202A
• VAT No.: FR12844650101
• Contact: souscription-easycheck@fabdis.fr
The website https://connect.fabdis.fr is the property of FAB-DIS, a simplified joint-stock company whose registered office is located at 11-17 rue de l’Amiral Hamelin, 75116 PARIS.
Article 2: HOSTING AND TECHNICAL SUPPORT
The website https://connect.fabdis.fr/ (the “Site”) is hosted on the Microsoft Azure Cloud.
Hosting provider contact:
Microsoft France SAS
39 quai du Président Roosevelt, 92130 Issy-les-Moulineaux, France
Phone: +33 (0)8 05 98 00 79
Article 3: NATURE OF DATA COLLECTED AND PURPOSE OF PROCESSING
Data identified as mandatory is essential to provide the service requested by the Client. Failure to fill in a mandatory field will result in your request not being sent and the service(s) not being provided. All such data is collected on the basis of our legitimate interest in the continuous improvement of our customer relationship. We retain the data you provide for the time required to process your request and for a maximum period of 2 years after the services have been provided.
All data you provide to inform us of dissatisfaction with one of our products is retained for a maximum period of 10 years.
The table below lists the data collected. Whether data is mandatory or optional is indicated at the time of collection by an asterisk. Please also note that the content of attachments and messages you send us may also contain personal data. The Company collects and processes your personal data according to how you use the Site.
| Type of data collected | Purpose of processing |
|---|---|
| Title | • Respond to enquiries and requests in a personalised manner |
| First and last name | • Verify identity and respond to enquiries and requests on a named basis |
| Email address | • Process questions or requests for information by electronic means • Manage subscription requests and grant access rights to the subscribed services • Provide information about service continuity • Provide information about developments in the exchange format, the Easy-Check tools and commercial offers |
| Phone number | • Process questions or requests for information by phone |
| Company name and trade names of the user’s organisation | • Manage subscription requests and grant access rights to the services in accordance with the service eligibility criteria • Populate the list of users of the FAB-DIS format and refer to it • Allow the user to better monitor the control of their files, by preventing any abusive use of the service • Enable use of the file-sending automation service |
| User’s IP address | • Secure the automated sending of the user’s files • Detect possible abusive uses and uses that do not meet the subscription eligibility criteria |
| Accounting department email | Contact clients’ accounting departments regarding payment for the services provided |
| Accounting department phone number | Contact clients’ accounting departments regarding payment for the services provided |
| Position within the company | Propose use cases to clients based on their role within the company |
| Other company information (SIREN number, areas of activity, registered trademarks, NAF/APE code, membership of a professional organisation) | • Manage subscription requests and grant access rights to the subscribed services • Maintain consolidated and anonymous statistics on the number of users by area of activity • Detect possible abusive use of the services subscribed to by users |
We will retain your personal data for as long as necessary for the purposes for which we originally collected it. For commercial relationships, our retention period is 3 years from the Client’s last response to a commercial solicitation or from the end of an ongoing subscription agreement. For accounting and invoicing services, the retention period is the legal limitation period. Beyond that, our Clients’ personal data is either irreversibly anonymised or destroyed.
If you do not agree with this policy, you must stop browsing or using our Site.
Within the framework of the purposes described above, the Company may transfer or grant access to your personal data to the following authorised third parties:
- The service provider in charge of maintaining the Site
- Administrative or judicial authorities: in order to comply with the requirements of any law, regulation, legal process or enforceable governmental request.
We also reserve the right to disclose this personal data upon judicial request, in all cases required by law and where such disclosure is necessary to defend our interests in connection with any proceedings, whether judicial or not.
Article 4: COMPANY UNDERTAKINGS
The Company undertakes to:
- Comply with the French Data Protection Act of 6 January 1978, as amended, as well as with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter the “Regulation”), repealing Directive 95/46/EC.
- Implement all appropriate technical and organisational measures and safeguards so that the processing of personal data carried out under the Agreement complies with the requirements of these rules.
This concerns, without limitation, the security of personal data (including its confidentiality and integrity), the minimisation of its processing, the limitation of its retention to the period authorised by law, and compliance with the rules on cross-border transfers of personal data.
The Company also undertakes to:
- Process identification data solely for the purposes described in the table above;
- Guarantee the confidentiality of personal data processed under the Agreement. To this end, the Company undertakes:
- ➜ Not to communicate and/or disclose in any way to third parties any information or documents concerning the Agreement, its content or its performance, including without limitation any commercial, technical and/or financial information exchanged between the Parties during the performance of the Agreement;
- ➜ To ensure that third-party contractors (e.g. service providers, IT subcontractors, hosting providers, email routers, etc.), and more generally any person with access to personal data, are bound by the same confidentiality obligation;
- ➜ Not to share the personal data provided with anyone for commercial or marketing prospecting purposes.
- Ensure that persons authorised to process personal data under the Agreement:
- ➜ undertake to respect confidentiality or are subject to an appropriate legal confidentiality obligation;
- ➜ receive the necessary training in personal data protection;
- Take into account, with regard to its tools, products, applications or services, the principles of data protection by design and by default.
The Company undertakes that the subcontractors it uses will:
- Process personal data only on documented instructions (reports, emails, letters, etc.) from FAB-DIS, the data controller, and ensure the security of the processing;
- Ensure that operational staff processing personal data are bound by confidentiality obligations (the terms depend on data sensitivity, to be specified in an appendix to the contract);
- Comply with the conditions for engaging further subcontractors (in particular, prior written authorisation);
- Assist the Company, through technical and organisational measures, in fulfilling its obligations towards data subjects;
- Make available all information demonstrating compliance with these obligations, allowing audits and inspections to be carried out, and contribute to such audits.
Lastly, the Company undertakes to implement appropriate security measures and to use secure means and processes. In any event, and in the absence of an express assignment to the Company, the Client remains the owner of the data collected.
Article 5: COOKIES
You are informed that we may use an automated tracking process (cookies or other files deposited when using the services), which you can object to by changing the relevant settings in your browser.
When you visit our website https://connect.fabdis.fr, cookies are placed on your computer, mobile device or tablet. Our site is designed to be particularly attentive to the needs and expectations of our visitors. This is, among other reasons, why we use cookies to identify you and remember your browsing activity. The following explanations will help you better understand how cookies work and how to configure them. A cookie is a small text file placed on your computer when you visit a site or view an advertisement. Its purpose is, in particular, to collect information about your browsing on websites and to provide you with personalised services.
On your computer, cookies are managed by your web browser. The cookies placed by FAB-DIS on your device are necessary for browsing our website and for optimising and personalising our services on the site. The cookies placed by FAB-DIS are necessary for the proper operation of our site for navigation. Without this information, you will not be able to use our site normally or enjoy the usual browsing experience. They are also used for site analytics, which enable us to track the use and performance of our site and to improve its functioning, content, products and services.
Article 6: EXERCISING USER RIGHTS
In accordance with data protection regulations, you may exercise your rights to:
- access your personal data;
- rectify your personal data;
- withdraw your consent, where processing is based on your prior consent and for any processing for marketing purposes;
- object to the processing of your personal data, where processing is based on our legitimate interest;
- erase your personal data;
- restrict the processing of your personal data;
- receive your personal data for transmission to a third party or obtain the transfer of your personal data to a third party of your choice;
- lodge a complaint with a competent data protection authority if you consider that the processing of your personal data infringes data protection regulations;
- give specific instructions on what happens to your data after your death and have your wishes regarding the future of the collected data respected.
You may send us a request regarding the exercise of your rights at any time at the following address: souscription-easycheck@fabdis.fr
Please note that the exercise of these rights is subject to certain legal conditions and limitations; we may therefore refuse your request if those conditions are not met or if legal limitations apply.
If you object to the processing of your data, it will no longer be possible to access certain features of the Site or of the subscribed services, since their operation requires the processing of your data.
The personal data you have provided is available from the Client area of the Site (My Account page). Upon request, we can send it to you. The request should be sent to souscription-easycheck@fabdis.fr
Your request will be processed within one month of receipt. If necessary, this period may be extended by two months, taking into account the complexity and number of requests. In such a case, you will be informed of this extension and of the reasons for the delay within one month of receipt of the request.
No payment will be required for the exercise of your rights, except in the case of a manifestly unfounded or excessive request.
If you remain dissatisfied with our response, please note that you may file a complaint with the French Data Protection Authority (CNIL): https://www.cnil.fr
Article 7: DATA SECURITY
The Company has implemented appropriate physical, electronic and administrative protection measures that comply with applicable regulations to protect your personal data. However, the Company wishes to draw users’ attention to the potential risks to data confidentiality inherent in the operation of the Internet.
In particular, it is the responsibility of users to put in place or ensure the existence of means to secure their personal computer network, as well as to ensure the proper configuration of the connection box (router) connected to the internet service provider, and other wireless access points (e.g. Wi-Fi, 4G, etc.).
Article 8: TERMS OF USE
You may only use this site in compliance with these legal notices and for lawful purposes, observing all laws, regulations and customs in force in France or in the country from which you access this site. Accordingly, it is prohibited to:
- Publish, transmit or distribute any harmful, obscene, defamatory or unlawful information either on this site or from it;
- Use this site in a way that could infringe the rights of others;
- Use any “routine” software or device to hinder or attempt to hinder the proper operation of the site, whether manually or electronically, by any means whatsoever, including downloading or making available files containing altered data or viruses;
- Damage, alter or modify the graphic appearance of this site or the software code making it up;
- Undertake any action likely to result in unreasonable or disproportionate traffic on the site or on any related infrastructure.
Without prejudice to any of its other rights, FAB-DIS reserves the right to:
- modify these legal notices at any time, such modifications being immediately applicable as soon as they are published online on this site;
- deny you access to this site if it considers that you are in breach of any of the provisions of these legal notices;
- make improvements or changes to the information, services, products and other elements of this site, or close it, at any time, without prior notice.
Article 9: INTELLECTUAL PROPERTY
FAB-DIS owns, reserves and retains all ownership rights, including intellectual property rights and reproduction rights, in this site and the items it contains. The trademarks mentioned on this site (non-exhaustive list) are registered trademarks. All patents, logos, texts, layouts, visuals, photographs, graphics, icons and any other distinctive elements contained in the pages of this site are the exclusive property of FAB-DIS.
Under the French law of 11 March 1957 on copyright and the French Intellectual Property Code, any full or partial representation or reproduction for collective use, on any medium and by any means, is strictly prohibited without the prior written authorisation of FAB-DIS. Any infringement of this copyright would therefore constitute an offence punishable under Articles L 335-2 et seq. of the French Intellectual Property Code.
Article 10: SITE CONTENT
FAB-DIS strives to provide reliable content, and despite the care taken in drafting the texts and publishing the photographs, errors may remain in the information on this site. Under no circumstances may FAB-DIS be held liable for any direct or indirect damage that may result from accessing the site or using the information it presents (e.g. errors, omissions, unavailability, data loss, deterioration, destruction or viruses that may affect the user’s computer equipment). Consequently, the user acknowledges that they use this information at their own risk and is invited to carry out all appropriate checks.
Article 11: HYPERTEXT LINKS
FAB-DIS has no means of controlling the content of third-party sites and formally disclaims any responsibility for the content of the sites (descriptions, photos, prices displayed, etc.) to which links lead. Sites not affiliated with FAB-DIS are subject to their own terms of use.
Article 12: AMENDMENTS TO THIS PERSONAL DATA POLICY
This document may be amended at any time without notice. We invite you to consult it regularly.