Privacy Policy

Transaction Connect SAS (“Transaction Connect” or “we”) regards as of paramount importance the protection and security of individuals’ data. 

This information notice (the “Privacy Policy”) sets out how we may collect and process your personal data, as well as security measures we implement to ensure the confidentiality and integrity of your personal data and the rights you have to control them throughout your use of our website, transactionconnect.com, in accordance with the Applicable Laws.

We encourage you to read this policy carefully. If you do not agree with or you are not comfortable with any aspect of this Privacy Policy, please do not use our website or do not provide your personal data through the website.

Who are we?

Transaction Connect SAS, a simplified joint-stock company registered with the Paris Trade and Companies Register under number 822 619 185, with a capital of 40.862 € whose registered office is located 86 rue du Faubourg Saint Denis 75010 Paris, France, is the main controller of your personal data processed throughout the use of this website, as provided by the French Data Protection Act and the Applicable Laws (as defined below).

What are applicable laws?

The processing of your personal data and other information are performed in accordance with French Law n°78-17 of 6 January 1978 (the “French Data Protection Act” ), with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (the “GDPR”), as well as with French and European laws regulating personal data and privacy protection in electronic communications, notably the “ePrivacy” Directive 2002/58/EC (together the “Applicable Laws”), as interpreted by the French Data Protection Authority (the “CNIL”) and by the European Court of Justice (the “ECJ”).le Laws (as defined below).

What information do we collect?

Personal data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

We collect the following Personal data through the Website:

  • when you browse on the website:
    • your navigation data, the overall traffic of all visitors on different pages, as specified within our Cookie policy (ink)
  • when you contact us through the contact form:
    • certain personal details such as your full name and email address
    • the content of the question or message you send us.

The main purpose of collecting Personal data through the website is to:

  • allow us to respond to your request that you submitted by the means of our contact form;
  • to analyse the traffic on the website in order to improve its functionalities and services and
  • carry out necessary operations for the maintenance and security of the Website; for this purpose, statistic data is used.

What legal ground(s) do we rely on?

The use of our Personal data collected via contact form is necessary to meet your request for information. For this processing, we rely on your consent regarding the use of your personal data in order to respond to your question.

Fields marked with an asterisk on the contact form are required to process and respond to your request. If you do not provide any data within the marked field, we will not be able to process and respond to your request.

In case certain personal data will be collected via cookies to analyze website traffic, we rely on your consent.

How long do we keep your information?

In accordance with the storage limitation principle set forth under Applicable Laws, we endeavor retaining data for no longer than the time required to achieve and comply with such legitimate and legal purposes, including satisfying any legal, accounting, tax or other compliance reporting requirements. 

We may archive some of your personal data, with restricted access, for an additional period of time when it is strictly necessary for us to comply with our legal and/or regulatory archiving obligations and for the applicable statute of limitation periods. At the end of this additional period, your remaining personal data will be permanently erased or anonymized from our systems.

Who may we share your information with?

As your personal data is confidential, only persons duly authorised by us due to their functions can access your personal data, without prejudice to their possible transmission to the extent required by the applicable regulations. All persons for which we are responsible with access to your personal data are bound by a confidentiality agreement.

Our authorised service providers may also be required to process your personal data strictly necessary for the performance of the services we entrust to them.

In certain circumstances and only where required by Applicable Laws, we may disclose some of your data to competent administrative or judicial authorities or any other authorized third party.

What are your rights regarding your personal data?

You can withdraw your consent to receiving our marketing emails by clicking on the “Unsubscribe” link at the bottom of the emails we sent you.

You have the right to request access to the personal data we retain about you, their rectification or erasure, as well as the right to request the restriction of the processing or to object to the processing of your personal data.

You also have the right to request a copy, in an interoperable format (right to your data “portability”), of the personal data that you have provided to us for the performance of a contract with us or under your sole consent.

Finally, French data subjects also have the right to set general or specific guidelines regarding the fate of their personal data in the event of death and to change them at any time. They have the option to register such guidelines with a digital trusted third party certified by the French data protection authority.

If you object to the processing or ask for the erasure of your personal data by Transaction Connect, we shall acknowledge the receipt of your request and, within a maximum one month period, we shall stop processing your personal data or erase it from our IT systems, except where we have legitimate and compelling grounds for processing, or for the purpose of ascertaining, exercising or defending our legal rights in accordance with the Applicable Laws. If necessary, we shall inform you of the legal grounds and reasons why your request could not be satisfied in whole or in part.

To exercise any of the abovementioned rights, please send us a request using the below Contact Information. We will take steps to verify your identity, to ensure, with a reasonable degree of certainty, that you are at the origin of the data subjects’ right request.

Contact information

If you wish to access, correct, modify or delete the personal information we have about you, object to their processing, exercise your right to portability, file a complaint, exercise any of the above-mentioned rights or simply obtain more information about the use of your personal data, please contact dataprotection@transactionconnect.com

We will endeavor to find a satisfactory solution to ensure compliance with the Applicable Laws.

In the absence of a response from us or if you are not satisfied by our response or proposal or at any moment, you have the ability to lodge a complaint before the CNIL (the French data protection authority) or with the supervisory authority of the Member State of the European Union of your country of residence.

How do we secure personal data?

IWe implement the appropriate security measures in order to guarantee the protection and confidentiality of your data, and specifically, to prevent its destruction, loss, alteration, unauthorised disclosure of data, or unauthorised access of this data.

These measures include:

  • education and training to relevant staff to ensure they are aware of our privacy obligations when handling personal information
  • administrative and technical controls to restrict access to personal information on a ‘need to know’ basis
  • technological security measures, including fire walls, encryption and anti-virus software
  • physical security measures, such as staff security passes to access our premises. 

Although we use appropriate security measures once we have received your personal information, the transmission of data over the internet (including by e-mail) is never completely secure.  We endeavor to protect personal information, but we cannot guarantee the security of data transmitted to us or by us.

Changes to our Privacy Policy

We reserve the right to make changes to this Privacy Policy as we deem necessary from time to time or as may be required by law. All changes will be posted immediately on our website and you are deemed to have accepted the new terms of the Privacy Policy when you first use the website after such changes.