All collection, processing and use (hereafter “usage”) of data by Reprtoir is exclusively for the purposes of providing the Reprtoir services (hereafter “services”). The services have been designed with the goal of collecting as little personal data as possible to function. By “personal data”, we mean all particulars related to an identified or identifiable natural person (the “data subject”).
The following statements describe which types of data we collect when you use our services, what happens with this data, and how you can object to this data processing, where applicable.
For the purposes of the EU General Data Protection Regulation (GDPR) (EU) 2016/679, the responsible entity is Rendez-Vous Digital SAS, 37 rue d’Antibes, 06130 Cannes, France. For questions related to data protection, you can contact us via email through email@example.com or by post.
“Our Website(s)” and “Reprtoir Websites” refers to any website owned and / or operated by Rendez-Vous Digital SAS (as listed above), especially reprtoir.com (including all subdomains) and reprtoir.io (including all subdomains).
“Reprtoir Application” refers to Reprtoir’s product.
What Data we Collect
When you visit our website, our server temporarily saves details of your access in its logs. These logs contain the following data, and are kept until their automatic deletion:
- The IP address of the computer making the request
- The date and time of your request
- The requested URI
- The amount of data transferred to you in response
- Whether the request was successfully processed or not
- Identifying data about the browser and operating system you use
- The referring website from which you made the request
- The name of your Internet Service Provider
The purpose of recording this data is to make it possible to serve the website to you (by establishing a TCP/IP connection), to secure our servers, the technical administration of our infrastructure as well as the optimisation of our services. Only in the case of unauthorised access or attacks on our infrastructure will your IP address be analysed.
No further information is required from you in order to access our website.
Securing your Data
In order to secure your data we have put in place technical and organisational measures which meet the requirements of the GDPR, and require any third-party service providers we use to do the same.
When we use third parties to provide the services, for example email and infrastructure service providers, these third parties are only engaged after a comprehensive review. This review carefully considers each third party’s competence as well as their technical and organisational data protection measures. The results of this review are recorded in writing, and a data processing agreement which is compliant with Article 28 of the GDPR is signed with the third party.
Your data is only ever saved on secure servers, which may only be accessed by a few authorised personnel. When you use a form on our website to transmit data to us, this transmission is only performed over an encrypted TLS connection.
You can find further information about security at https://https://reprtoir.com/security/
Third-Party Service Providers in non-EEA Countries
In order to provide our services, we use third-party services located outside the European Economic Area. To protect your personal data in this case, we have signed special data processing agreements with these service providers.
We use the following third-party service providers:
- Service providers which Reprtoir uses to send emails
- Service providers who offer server storage
In addition to the previously listed data, cookies will be saved on your computer when you use our website. Cookies are small pieces of textual data which are saved on your hard disk by your web browser, through which Reprtoir, who sets the cookie’s contents, can collect certain information about you. Cookies cannot execute any code, nor transfer any viruses to your computer. We use them in order to anonymously or pseudonymously analyse the use of the website, and present relevant offers to you.
This website uses the following types of cookies, whose scope and functionality is detailed in the following paragraphs:
Transient cookies are automatically deleted when you close your browser. They are used particularly as session cookies. These save a so-called “session ID” which is used to link subsequent requests made by your browser to each other. Through this, your computer can be recognised when you return to our website. These session cookies are deleted, when you log out, or close your browser.
Persistent cookies are only deleted after a predetermined duration, which can be different for each cookie. You can delete these persistent cookies anytime, though the “Settings” configuration of your browser. We advise you, that if you do so, that not all functionality of this website will be available.
The placement of cookies on your computer can be prevented through the relevant settings of your internet browser. Previously set cookies can also be deleted through the settings of your browser. We advise you that preventing the placement of cookies on your computer can mean that not all functionality of our website are available without limitations.
The data subject can register on the website. For this to take place, it is required that the data subject enter their details in the “Sign Up” form. The data given by the data subject to register will solely be used for registration, and not passed to any third parties unless Reprtoir has a lawful ground to do so. In the course of registration on our website, your IP address, date and time of access will be recorded, in order to prevent any potential misuse. During, or after the registration, the data subject is free to alter their personal data. It is also possible for the data subject to completely cancel their registration, so that all personal data is deleted.
Reprtoir uses Hubspot to manage information about our customers and leads.
The responsible entity is HubSpot, Inc. 25 First Street, 2nd Floor, Cambridge, MA 02141, USA.
Personally identifiable information, including name, email address, phone number and location & country is submitted to Hubspot’s servers and saved there when a user chooses to sign up to the Reprtoir Application, to sign up for an event hosted or sponsored by Reprtoir, or to subscribe to notifications about new product features and other information from Reprtoir.
Other information, including IP address, browser & OS version, and timestamps, is submitted to Hubspot when a user loads resources embedded in, or a link contained an email sent through Hubspot.
The analyses of your actions on our website and with the notifications sent through Hubspot is transferred to us in the form of reports. Hubspot may give any of your information to further parties where legally required to do so, or these parties are contracted to by Hubspot.
You can find further information about Hubspot’s data processing and data protection at https://legal.hubspot.com/privacy-policy
Reprtoir has integrate AdRoll into its website to serve ads on third party websites to target or retarget users and leads.
The responsible entity is Lucid Privacy Group, Attn: AdRoll Data Protection Officer, 1556 Shrader Street, San, Francisco, CA 94117, USA.
If you wish to escalate your inquiry after contacting AdRoll, you are welcome to contact firstname.lastname@example.org or Data Protection Officer: Lucid Privacy Group. If you are located in a European Territory and AdRoll are processing your data as a data controller, AdRoll Advertising Limited is the data controller of your information. To contact AdRoll Advertising Limited please email email@example.com or write at the following address:
AdRoll Advertising Limited, Attn: Privacy, Level 6, 1, Burlington Plaza, Burlington Road, Dublin 4, Ireland.
AdRoll Group provides targeted advertising and marketing services for advertiser clients. When a user visit a website or a mobile application we serve you an ad on behalf of an Advertiser on a third party site, we may collect some or all of the data described in this Privacy Notice. Our platform uses that data, as well as other data described below, to help Advertisers provide ads to you that are more relevant to you.
You can find further information about AdRoll’s data processing and data protection at https://www.adrollgroup.com/privacy
Reprtoir has integrate Facebook into its website.
The responsible entity is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA.
When a data subject lives outside the United States or Canada, and Facebook undertakes data processing, the responsible entity is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
When a user clicks the Facebook button, Facebook’s website will be contacted, and user acquisition data will be transferred from Reprtoir to Facebook. Facebook will receive through this the information that the user has visited Reprtoir’s website.
Details of the Facebook-supplied plugins can be accessed at https://developers.facebook.com/docs/plugins
If the user is logged into a Facebook account (even if it is not their own account) at the same time that they access they Reprtoir website, Facebook will additionally receive a notification that they have visited Reprtoir’s website. Facebook collects this information, so the theoretical possibility exists that it could associate it with the Facebook account. The same also applies to the “Like” button, or to the usage of Facebook comment forms; Facebook could associate this information with the logged-in Facebook account.
To prevent this, you can log out of any Facebook accounts prior to visiting the Reprtoir website. To do this, you must visit the Facebook website.
For further information relating to data protection and Facebook, please see https://facebook.com/about/privacy
Reprtoir uses Twitter.
The responsible entity is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.
When a user clicks the Twitter button, Twitter will be contacted, and user acquisition data will be transferred from Reprtoir to Facebook. Twitter will receive through this the information that the user has visited Reprtoir’s website.
If the user is logged into a Twitter account (even if it is not their own account) at the same time that they access they Reprtoir website, Twitter will additionally receive a notification that they have visited Reprtoir’s website. Twitter collects this information, so the theoretical possibility exists that it could associate it with the Twitter account.
To prevent this, you can log out of any Twitter accounts prior to visiting the Reprtoir website. To do this, you must visit the Twitter website.
For further information relating to data protection and Twitter, please see https://twitter.com/en/privacy.
Reprtoir uses LinkedIn on its website.
The responsible entity is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA
If the user is logged into a LinkedIn account (even if it is not their own account) at the same time that they access the Reprtoir website, LinkedIn will additionally receive a notification that they have visited Reprtoir’s website. LinkedIn collects this information, so the theoretical possibility exists that it could associate it with the LinkedIn account.
To prevent this, you can log out of any LinkedIn accounts prior to visiting the Reprtoir website. To do this, you must visit the LinkedIn website.
For further information relating to data protection and LinkedIn, please see https://www.linkedin.com/legal/privacy-policy
Our website uses Google Analytics. This is a service of Google Inc (hereafter “Google”) which analyses website access, and enables us to improve our site.
The responsible entity is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
You can stop the placement of Google Analytics cookies on your computer through the settings of your web browser. If you do so, we cannot guarantee that all the functions of our website will be fully available to you. You may also stop the placement of cookies through the use of browser extensions, such as https://tools.google.com/dlpage/gaoptout
Reprtoir uses Stripe to process payments for existing customers and provide billing information to these customers.
The responsible entity is Stripe, Inc., 185 Berry Street, Suite 550, San Francisco, CA 94107, USA.
For those existing customers who are billed with Stripe or Recurly, the following data is sent, and stored by Stripe. If you sign up to a paid Reprtoir subscription, the following data will be sent to Stripe, and saved by them:
- Your name and email address
- Details of your payment method (credit card number, expiry date, CVC)
- Your IP address, and the time and date of your transaction
If you wish to avoid sending your data to Stripe, you can do so by not signing up for a paid Reprtoir plan. If you do so however, your ability to use Reprtoir’s functions could be severely reduced.
You may find further information about Stripe’s data processing and data protection here https://stripe.com/us/privacy
Legal Basis for Processing Personal Data
In order to process personal data, a lawful ground must exist. A number of permitted grounds for processing are enumerated in Article 6 of the GDPR.
One ground for the processing of personal data is Article 6, Paragraph 1(a) of the GDPR, which is the freely given consent of the data subject to do so. This consent is bound to a particular purpose. A second ground for the processing of personal data is in order to fulfil the requirements of a contract, as specified in Article 6, Paragraph 1(b) of the GDPR. However, this clause must be understood to include the initiation of a commercial relationship with the corresponding data processing. This ground applies to Reprtoir, in the case that the user uses our contact form or contacts our Success or Sales team using any other means to obtain an non-binding quotation. Article 6, Paragraph 1© of the GDPR permits the processing of personal data where a legal requirement to do so exists. Article 6, paragraph 1(d) permits the processing of personal data in exceptional circumstances, where doing so is necessary to protect the vital interests of the data subject. This ground is relevant to Reprtoir’s data processing, where Reprtoir, or at a Reprtoir event, may have to provide personal data to emergency services – such as name, contact details or health insurance – in order to prevent or treat an injury or other damage to health. It is also possible that personal data will be processed on the basis of Article 6, paragraph 1(f) of the GDPR. This is the so-called “legitimate interests” ground, which is interpreted with reference to Recital 47 of the GDPR. The GDPR treats this ground in the sense of a “fallback ground”, which only applies where no other previously listed lawful ground for processing does. When this ground is relied upon, an assessment must carefully weigh the legitimate interests of the data subject against the legitimate interests of the data controller.
Deletion of Personal Data
Reprtoir only keeps and processes personal data for so long as it is necessary. When the purpose of the data processing has been fulfilled, your personal data will be deleted in accordance with our data retention policy, unless we are legally required to retain it.
You have the following rights concerning your personal data:
- The right to access your personal data
- The right to correct or delete your personal data
- The right to restrict processing of your personal data
- The right to object to the processing of your personal data
- The right to data portability
- The right to confirm whether your personal data is being processed or not.
If you have given your consent to the processing of your personal data, you can withdraw this consent at any time. Such a withdrawal of consent will only affect the processing of your data after it is given.
Should we continue to process your personal data because we assess our legitimate interests to do so outweigh your legitimate interests (per Article 6, paragraph 1(f) of the GDPR) you may object to this processing. This is only applicable in the case where the processing of personal data is not required in order for us to fulfil a contract with you. To exercise such an objection, we request that you detail the grounds based on which we should no longer process your personal data. We will check the details of your circumstances based on the grounds you provide, and either stop processing your personal data, or detail to you the legal basis on which we continue to process your personal data.
Additionally, you always have the right to make a complaint to the relevant authorities regarding our processing of your personal data.
How you can exercise your rights
Should you wish to exercise any of these rights, you will need to provide proof of identification that you are the person to whom the data relates. The data you will receive includes data we have related to you, the source of that data, the recipients, or types of recipients to whom the data was transferred, and the purposes for which the data was stored. To exercise these rights, please contact our data protection officer named in the beginning of this document.
Updated: May 25, 2018