Data Protection Policy
By using this website, or websites that directly link to this page, you are deemed to accept our privacy and data protection policy.
This policy may be revised to comply with regulations and guidelines issued by the CNIL (the French data protection authority). You are therefore advised to consult it regularly to make sure you are aware of any changes.
What data do we collect?
- The following personal data may be entered by the user and collected via our websites and web pages:
– Email address
If you have other interactions with Nomadic Labs or if you request information from us, you may also be asked for your contact details and other personal data/information so that we can process your enquiry.
- Automatically obtained data
When you visit the Nomadic Labs website, we may also automatically obtain certain information about your use and your device, only via your IP addresses.
This helps Nomadic Labs understand how visitors interact with our websites by collecting and communicating information anonymously.
Nevertheless, should you have any general question on cookies, we recommend you to check your cookie preference settings on your device and internet browser.
To find out more about cookies, please visit the CNIL website:
https://www.cnil.fr/fr/cookies-solutions-pour-les-outils-de-mesure-daudience (page available in French only)
No other personal data is collected by Nomadic Labs via its websites.
- How do we process this information ?
Data collected by NL are exclusively analysed by MATOMO, for further information, see https://matomo.org/
Purposes and legal basis of data processing
Personal data collected are processed for the following purposes:
To send you information and details of events through the newsletter;
– To comply with legal obligations;
– To ensure the security, continuity and performance of website activity.
The legal basis on which we process your data is as follows:
– Compliance with legal obligations (e.g. retaining records of objections while minimising data retention);
– Legitimate interests (e.g. website security, adaptation of the website according to user navigation);
– Consent of the data subject (e.g. when a user completes the required fields to subscribe to the newsletter)
IP addresses collected by Nomadic Labs are recorded in order to improve our website according to site traffic (number of site visits and also geographical area). This enables us to optimise website use (e.g. to schedule maintenance windows).
Email addresses are collected only for the purpose of sending a newsletter to a user who has expressly signed up to receive this service.
Users are free to choose whether to sign up for the newsletter.
Categories of data recipients
Data recipients are authorised persons acting within their powers and fall into the following categories:
- Persons acting in the course of their normal duties: Nomadic Labs’ communications staff, IT infrastructure managers and legal representatives, or suppliers/subcontractors acting within their duties under the terms of a contract with Nomadic Labs may have access to the data described above but such data will only be transferred to them for the legitimate purposes of their specific duties (and subject to the principles of data minimisation).
- Persons acting on behalf of authorised third parties: the relevant courts, arbitrators, mediators, government departments, supervisory and regulatory authorities and all public bodies authorised to receive such data, parties responsible for external and internal monitoring.
- Any transfers of personal data between Nomadic Labs and other affiliated or associated companies are governed by internal agreements for inter-company data transfer which are based on the provisions of the GDPR for the transfer of data between data controllers.
How long do we retain your data?
Your personal data will be retained by Nomadic Labs according to the following three timeframes:
- Data obtained directly as a result of a user request are retained on an ‘active database’ for the period needed to process them (e.g. two years in the case of a CV submitted by a job applicant to the email address stated on the website).
- After this, data are archived for an interim period: this is the retention period required for legal/accounting purposes etc. (e.g. reports and other feedback sent via the general contact mailbox).
- Ultimately, data will be permanently archived or destroyed depending on their nature and relevance.
Any data collected as a result of subscribing to the newsletter will be retained until your consent is withdrawn and will be deleted after a lengthy period of inactivity.
All individuals are entitled to the following rights over their data:
The right to access; the right to rectification; the right to erasure; the right to object; the right to withdraw consent at any time, although this has no effect on the lawfulness of the consent-based data processing prior to the withdrawal of consent; the right to data portability; the right to restrict processing; the right to determine the handling of your personal data in the event of your death; the right to complain to a monitoring authority, such as the CNIL in France.
You may exercise these rights directly with the data controller by emailing firstname.lastname@example.org.
If you have any questions or concerns or if you wish to make a complaint, you can contact Nomadic Labs at email@example.com.