Privacy Policy

CBMS Consulting

Last updated - 11-01-2022

Legal Context

We abide by the recommendations of the relevant authorities and have put in place an organization to ensure our compliance with the regulatory framework established by the General Data Protection Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and any other laws or regulations relating to personal data that apply to us.

Our Commitments

In order to comply with the principle of lawfulness, the legal bases for each data processing is determined carefully and on a case-by-case basis in accordance with the list provided by Article 6 of the General Regulation on Data Protection (GDPR).

  • Consent: you have given clear consent to process your personal data for a specific purpose.

We do not process your data without your knowledge, nor do we sell or rent your personal data.

What personal data do we collect?

We only collect and process personal data that are relevant and adequate. We give a special attention to its accuracy and updates when needed. Personal data includes in particular:

  • Cookies
  • Analytics
  • Metrics
  • Location

How do we use your personal data?

We only collect and process personal data for specified, explicit and legitimate purposes, like:

  • Follow up on services requested.
  • Newsletters
  • Customer Records

Your personal data will never be processed for incompatible purposes regarding why it was first collected.

To whom do we disclose your personal data?

Recipients to whom we disclose your personal data are carefully chosen by us. They receive data for legitimate purposes, whether it is to pursue our activity (hosting provider) or to conform with legal obligations (tax authority).

When we transfer your personal data to a recipient outside the European Union, we take care of putting in place sufficient guarantees in accordance with the list provided by Article 44 to 50 of the General Regulation on Data Protection (GDPR), whether it is having it stored in a country with an adequate privacy protection or contracting data protection agreements to ensure your data are protected.

What are the retention periods for your personal data?

Retention periods of your personal data are determined according to the purposes for which we collected it and our legal obligations. When theses purposes are fulfilled or when you ask us, your personal data are archived, erased or anonymized.

For instance, we store your email information to send you our newsletter if you don't unsubscribe from it.

Is your data processed securely?

We care deeply about the safety of your personal data and that is why we put in place adequate technical and organizational security measures to preserve its confidentiality, integrity and availability (for instance, Secure Hosting, SSL Encryption, Multifactor Authentication).

We take into account the risks for data subjects and therefore follow with great care the recommendations of the competent authorities regarding security.

What are your rights and how to exercise them?

In accordance with Articles 12 to 23 of the General Regulation on Data Protection (GDPR), you have rights over your personal data that we are committed to respect: right of access, right of rectification, right to object, right to data portability, right to erasure, right to limitation of processing.

These rights can be exercised directly and at any time via [list here the channels that can be used to exercise rights, usually on the website or by email]. We make every effort to answer requests in the shortest possible time.

You are duly informed in clear and simple terms in our Privacy Information Notices available on our forms and subscription page.

Policy Change

This Privacy Policy may be modified in the future to keep it updated with legal jurisprudence and evolution. You'll be informed either by a special mention on our website or by a personalized warning, by email for instance.