IMV Technologies is committed to ensuring that the processing of personal data carried out as part of its activities complies with European Regulation (EU) No. 2016/679, known as the General Data Protection Regulation (GDPR), as well as with the French Data Protection Act «Loi Informatique et Libertés».
In this Privacy Policy (the “Policy”), we explain how and why we use your personal data, what your rights are, and how to exercise them.
1. What is personal data?
Personal data (“Personal Data” or “Data”) refers to any information relating to an identified or identifiable natural person:
Directly (first name, last name, email address), or
Indirectly, when it can be linked with other information to identify you (IP address, geolocation)
2. Who does this Privacy Policy apply to?
This Policy applies to all our online services and to third parties.
It is intended for:
3. Who collects your Data?
The data controller, within the meaning of the European Data Protection Regulation, is IMV Technologies, whose registered office is located at ZI n°1 Est, 61300 L’Aigle, France.
4. How do we collect your Data?
Your data is collected via the online form available on our Website, and, where applicable, through the use of cookies.
We collect your data when you use one or more of our mobile applications, when you log into your accounts, and when you use our products.
We collect your data when you use one or more of our mobile applications, when you log into your accounts, and when you use our products.
Depending on the case, we collect your data via:
5. Why do we collect your Data?
Website users’ Data:
Purpose of processing | Categories of data | Legal basis |
Use of cookies | Browsing data (IP address) | Consent For more information, you can refer to our Cookie Policy. |
Mobile application users’ Data:
Purpose of processing | Categories of data | Legal basis |
Provide the application’s functionalities Process and analyze user data Maintain and improve the application Diagnose technical issues | Browsing data: information about the device used (model, operating system version, application version), and network information required to communicate with IMV systems Professional data: files or images selected by the user | Consent For more information, you can refer to our Cookie Policy. |
Data of prospects:
Purpose of processing | Categories of data | Legal basis |
BtoB prospecting | Identity data: first name, last name Contact data: phone number, email address, etc. Professional information: company name, role, etc. | Legitimate interest |
Data of customers:
Purpose of processing | Categories of data | Legal basis |
Customer relationship management | Identity data: last name Contact data: phone number, email address, etc. Professional information: company name, role, etc. | Contract performance |
Handling of customer testimonials | Contact data: professional email address | Consent Image rights |
Data of candidates:
Purpose of processing | Categories of data | Legal basis |
Recruitment management | Identity data: last name Contact data: phone number, email address, etc. Professional data: CV, education For sensitive positions: Criminal records data: criminal record extract, sworn statement | Legitimate interest |
6. Are you required to provide your Personal Data?
Some fields in our data collection forms are not mandatory. Mandatory fields are marked with an asterisk “*”.
7. How long do we retain your Data?
We retain your Personal Data for the period necessary to carry out the purposes for which it was collected, unless a different retention period is required by law.
Data subjects | Data retention |
Website user | For the purposes of analytics and audience measurement, your Personal Data is retained for a maximum period of thirteen (13) months, after which it will be deleted. For more information, you can refer to our Cookie Policy. |
Users of the mobile applications | Your Data is retained in the mobile application for the entire duration of its installation and use and is deleted when the application is uninstalled. |
Prospects | Your Data is retained for three (3) years after your last contact with CLIENT NAME. |
Customers | Your Data is retained for the entire duration of the service agreement, as well as for five (5) years following its termination. Your billing data is retained for ten (10) years, in accordance with the provisions of the Commercial Code. Data relating to the collection of testimonials is retained for the duration specified in the signed authorization or until consent is withdrawn. |
Job applicants | Your Data is retained for two (2) years following your last contact with CLIENT NAME. This retention period may be extended with your explicit consent. For sensitive positions, the B3 extract of the criminal record is not retained. |
8. Who do we share your Data with?
Processing carried out by IMV Technologies partners is governed by agreements under which processors undertake to comply with applicable laws and regulations, and more generally with all obligations incumbent upon them, particularly regarding the security and confidentiality of Personal Data.
Some job offers on the Website relate to positions located outside the European Union. If you apply for one of these positions, your application will be forwarded to the relevant entity.
9. What security measures have we implemented to protect you?
We are committed to implementing all necessary technical and organizational measures to ensure the protection of your Personal Data (impact assessments, audits, access rights and authorization management policies, application mapping).
In particular, we carry out audits of our service providers to ensure that appropriate security measures are in place to guarantee the integrity, confidentiality, and availability of your Data.
Our contracts with service providers include provisions dedicated to data protection, in compliance with applicable laws.
10. What are your rights?
In accordance with the French Data Protection Act « Loi Informatique et Libertés » and subject to compliance with the legal obligations imposed on IMV Technologies in the context of its activities, each individual may exercise the following rights:
You may:
You may also provide instructions regarding the retention, deletion, and disclosure of your Personal Data after your death, in accordance with Article 85 of French Law No. 78-17 of January 6, 1978.
11. How can you exercise your rights?
These rights and instructions may be exercised and submitted by contacting us :
- by post at the following address:
IMV Technologies ZI n°1 Est, 61300 L'Aigle
- by email: DPO, dpo@imv-technologies.com
Depending on the nature of your request and in case of doubt regarding your identity, we may ask you to provide proof of identity upon receipt of your request.
A response will be sent to you within one month of receiving your request. In certain cases, due to the complexity of the request or the number of requests, this period may be extended by two months.
You may also lodge a complaint with the French Data Protection Authority (Commission Nationale de l’Informatique et des Libertés – CNIL), the supervisory authority responsible for ensuring compliance with personal data protection regulations in France, online at https://www.cnil.fr/fr/agir or by post at the following address: Commission Nationale de l'Informatique et des Libertés, 3 Place de Fontenoy - TSA 80715, 75334 Paris Cedex, France.
12. Revision to this Privacy Policy
We may update this Policy by publishing a new version on our Website, in which case you will be informed upon your next visit to the Website.
13. Contact
For any questions regarding this Privacy Policy, you may contact us through the following means :
