top of page

Privacy Policy

This privacy policy aims to explain why we collect your personal data and how we commit to protecting it.

Hato Communication is committed to protecting your personal data and privacy.

In this regard, and in compliance with the General Data Protection Regulation (GDPR), we provide you with the conditions under which your personal data will be processed by us.

1. What personal data do we process?

1.1 Purposes:

We may collect and store your personal data, including for the following purposes:

  • To process and respond to your messages

  • To create and manage access to your accounts

  • To receive and process your orders

  • To receive and process your participation in surveys or contests

  • To manage your subscriptions to our newsletters

  • To ensure the follow-up of any commercial relationship arising from your messages

  • To write a review/comment posted on the website

  • To process your job application

  • To collect your payment

  • To manage accounting and administration

  • To improve our customer service and follow-up

  • To ensure the proper functioning and customization of services

  • To send you commercial and advertising information based on your preferences

  • To detect attacks and take legal actions against fraud

  • To enable you to communicate with other users of the website

  • To remember your choices regarding the use of cookies

  • To process and respond to your requests for the exercise of rights

  • To meet regulatory requirements currently in force or under adoption

1.2 Categories of data:​

  • The categories of data we collect may include:

  • Contact details (e.g., name, surname, phone number, email)

  • Personal information (e.g., date of birth, nationality, marital status, profession)

  • Your preferences

  • Payment information

  • Technical and location data generated during the use of our services

  • No sensitive data is collected or processed

2. Legal basis for processing

The personal data processing activities carried out are based on:

  • The consent of the data subject (Article 6.1.a of the GDPR) for processing that requires prior consent. In online forms, mandatory fields are marked with an asterisk. Failure to answer mandatory questions means we cannot provide the requested services.

  • The execution of a contract or pre-contractual measures.

  • Legitimate interest (Article 6.1.f of the GDPR).

  • Compliance with a legal or regulatory obligation.

 

 

3. Data retention period

Your data is kept for the time necessary to fulfill the purposes mentioned above. The retention period varies based on the purpose and legal obligations:

  • Three years from collection for data collected without a commercial transaction (e.g., contact, surveys, etc.).

  • Duration of the contractual relationship for data necessary for the performance of a contract (e.g., orders, payments).

  • Legal archiving period (5 to 10 years) for evidentiary purposes (e.g., proof of a right, contract).

4. Who are the recipients of your data?

Your personal data is intended for Hato Communication and may be shared with:

  • Our internal departments: Sales, technical services, IT security personnel.

  • Our subcontractors: Trusted companies or individuals processing your information on our behalf, in accordance with our instructions.

  • Technical subcontractors: Our partners for services such as Google Analytics, HubSpot, Stripe, Mailjet, Cloudflare, etc.

  • Hosting in France: Your data is mainly stored in France.

  • Transfers outside the EU: In case of using a service provider located outside the EU, appropriate measures will be implemented to ensure an adequate level of data protection.

5. How does Hato Communication ensure the security of your data?

We implement organizational and technical measures to ensure an appropriate level of security, aiming to prevent any loss of confidentiality, integrity, or accessibility.

6. Your rights regarding your personal data

Under the GDPR, you have the following rights:

  • Right to rectification: Obtain the correction of inaccurate or incomplete data.

  • Right to erasure: Obtain the deletion of your data under certain conditions.

  • Right to restrict processing: Limit certain processing of your data.

  • Right to data portability: Receive your data in a structured, commonly used, and machine-readable format to transfer it to a third party.

  • Right to object: Object to processing based on legitimate interest or for direct marketing purposes.

  • Withdrawal of consent: Withdraw your consent at any time if the processing is based on this ground.

  • Right to lodge a complaint with a supervisory authority, such as the CNIL.

We will process your request promptly, in any case within 30 days. If needed, we will request proof of identity to ensure confidentiality.

7. Compliance with international legislation

Hato Communication ensures compliance with data protection laws for businesses based in several international jurisdictions, such as Switzerland (LPD), Canada (PIPEDA), and Japan (APPI). We are committed to adhering to these regulations while allowing you to exercise your rights and ensuring the security of your personal data.

 

8. Contact for GDPR-related requests

You can exercise your rights at any time by sending a written request, along with proof of identity, by email to contact@hato-communication.com or by mail to our postal address. We will respond within 30 days.

If you believe your rights have not been respected, you may file a complaint with the National Commission on Informatics and Liberties (CNIL): CNIL, 3 Place de Fontenoy TSA 80715 75334 Paris Cedex 07.

 

 

9. Modification of the Data Protection Policy

This policy may be updated regularly to ensure its compliance with applicable laws. We encourage you to review this page periodically to stay informed of any changes.

Last updated on November 11, 2024

 

bottom of page