Since its creation, PENTALABBS has put privacy at the heart of its business.
PENTALABBS is therefore committed to the protection of and respect for the fundamental rights guaranteed by the laws and regulations in force, in particular the General Data Protection Regulation (‘GDPR’) in force from 25 May 2018.
The terms used in this Policy have the meaning of the definitions set out in the law in force and/or the GDPR.
2. DATA COLLECTED BY PENTALABBS
PENTALABBS may collect and process data relating to:
- Candidates for positions within PENTALABBS;
- Visitors of the website.
3. HOW DOES PENTALABBS USE THE DATA COLLECTED?
PENTALABBS uses the data collected for the purposes of:
3.1. Assessing candidates for positions offered;
3.2. Due diligence: preparatory step for the signing of an employment contract;
3.3. Due diligence: in order to confirm Candidates’ identities;
3.4. Sending targeted offers and marketing communications;
3.5. Communicating with Prospects;
3.6. Answer to a request made via a contact form;
3.7. Due diligence: preparatory step for the signing of a contract with a client or supplier;
3.8. Communicating with interested parties.
4. WHO RECEIVES THE INFORMATION COLLECTED BY PENTALABBS AND WHY IS THIS INFORMATION IS TRANSFERRED TO THEM?
4.1. For the purpose of making best use of its services, some information that you share with PENTALABBS is transferred on to other companies in the PENTALOG Group, in accordance with this Policy.
4.2. PENTALABBS works in close collaboration with companies of PENTALOG Group and third-party companies who may have access to your personal data. This is particularly the case:
- for technical services;
- to confirm your identity;
- for suppliers;
- for internal administrative and accounting matters;
- for recruitment when using its affiliate SkillValue to assess applications.
4.3. PENTALABBS only shares data with the third parties mentioned in article 4.2. in the following cases:
- 4.3.1 When PENTALABBS uses suppliers to improve and optimise its Website and services;
- 4.3.2 When using communication tools (social networks) and email clients to communicate with you;
- 4.3.3 When PENTALABBS is (1) legally required to comply with a request from the legal authorities, (2) an emergency poses a risk to an individual’s physical safety, (3) when PENTALABBS needs to implement a contract or prepare for the implementation of a contract between its users and its clients, (4) to guarantee the rights of PENTALABBS;
- 4.3.4 In the event of the sale or purchase of a company or assets, PENTALABBS reserves the right to share its users’ personal data with the potential seller or buyer of this company or these assets.
- 4.3.5 If PENTALABBS or all or part of its assets are acquired by a third party, the data in its possession shall, where required, be transferred to the new owner.
- 4.3.6 Under the regulations in force and with its users’ consent, PENTALABBS may, where necessary, aggregate data and send it to companies in the PENTALABBS Group, including all or part of its users’ personal data and the cookies collected. This information shall be used strictly for the purposes described above.
5. HOW DOES PENTALABBS USE AND MODERATE COMMENTS?
PENTALABBS reads comments posted on its blog and ensures that comments do not contain inappropriate content.
6. EMAILS SENT BY PENTALABBS
6.1. PENTALABBS may only use your data provided on its Website in accordance with the legislation in force and with your consent where required, in particular to send targeted marketing content, ((1) send a newsletter, (2) respond to an information request made by a Visitor on the Website, and (3) send an event invitation.
6.2. In accordance with its legitimate interests, PENTALABBS may send you emails if you are likely to be interested in its services or if you have shown an interest in its services.
6.3. Pursuant to the legislation in force, you may decide to stop receiving emails from PENTALABBS, at any time, by withdrawing your consent. To do so, you must unsubscribe via the link included at the bottom of every marketing email or by emailing PENTALABBS with the details of the request at the following address: contact@PENTALABBS.com.
6.4. For personal data collected indirectly by PENTALABBS, the right of information as defined by the GDPR shall be respected at all times by PENTALABBS from the first communication with the data subjects. They may decide, at any time, to exercise the rights set out in article 6.3.
On social networks (for example, Facebook and Twitter), you can oppose the processing of your data at any time by configuring your account settings relating to advertising;
On third-party websites: you can refer to the Cookie Charter to find out how to withdraw your consent.
7. WHERE AND HOW DATA IS SHARED BY PENTALABBS ?
PENTALABBS stores your personal data within the European Union.
7.1. However, in the course of using the Website, some user data may be transferred to other countries whose local personal data protection laws differ from those in the user’s country of residence.
7.2. This happens, in particular, when data is transferred via third-party application software. PENTALABBS uses this third-party application software to operate its services, communicate with you, and transfer information in preparation for the signing of a technical services contract.
7.3. This is also the case for companies in the PENTALABBS Group located outside the European Union to which PENTALABBS may transfer some data as part of the provision of services in these countries or certain administrative and accounting tasks.
7.4. When data is transferred, PENTALABBS shall ensure that it is processed in accordance with this Policy and guarantees users an adequate level of personal data protection through the use of either the standard contractual clauses of the European Commission or membership of the Privacy Shield.
7.5. In the interests of full transparency towards its users, PENTALABBS undertakes to provide on request the list of countries in which users’ personal data is stored in the European Union, and the list of countries to which data is occasionally transferred.
8. Security measures
PENTALABBS takes all the necessary technical and organisational measures in accordance with the GDPR to guarantee the best possible level of security, ensuring comprehensive protection of the personal data collected
These security measures will oblige for example PENTALABBS to verify the requested identity of an individual in case of exercise of the rights provided in the article 9.
If you believe your personal data has been infringed, please contact PENTALABBS immediately in accordance with article 13.
9. Your rights over your personal data
9.1. Under applicable law and in accordance with articles 12 and seq. of the GDPR:
9.1.1. You have the right to access your personal data processed and held by PENTALABBS.
9.1.2. When such a request is made by a user, PENTALABBS may, before responding, confirm the user’s identity by asking them to provide more information.
9.1.3. In the case of requests which, due to their number or repetitive or systematic nature, are manifestly unreasonable, excessive or unfounded, PENTALABBS may either refuse to pursue the request by demonstrating its manifestly excessive or unfounded nature, or request the payment of reasonable fees that take into account the administrative costs incurred in providing the information, sending correspondence or adopting the measures requested.
9.2. Under applicable law and in accordance with articles 12 and seq. of the GDPR, PENTALABBS shall respond to you as soon as possible and, in any case, within one month of receipt of the user’s request, or within two months taking into account the complexity and number of requests.
9.3. In this case, PENTALABBS shall inform you of the reasons for extending the deadline of one month from receipt of the request.
You may correct, change or remove any incorrect information.
9.4. It is your responsibility to provide PENTALABBS with full, accurate and up-to-date information. You may withdraw your consent at any time.
9.5. Any request to change or remove data must be made by contacting PENTALABBS directly in accordance with article 13, below.
9.6. PENTALABBS may store some of its users’ personal data if required by the legislation of an EU Member State in which it operates or EU legislation. This shall also be the case when PENTALABBS has a legitimate interest in doing so under the terms of the applicable law or the GDPR.
9.7. Under the applicable law, when this is the case, in particular in France pursuant to the new article 40-1 of the Data Protection Act, you may give instructions relating to the storage, deletion and disclosure of your data after your death.
11. LINKS TO OTHER WEBSITES AND SOCIAL NETWORKS FROM THE PENTALABBS’S WEBSITE
PENTALABBS shall visibly publish any substantial changes on its Website and they shall take effect from the date of publication. In this case, PENTALABBS shall contact you via email if necessary. PENTALABBS is committed to full transparency regarding the use of your data, subsequent uses and the third parties to whom PENTALABBS intends to disclose it.
13. CONTACT PENTALABBS
Users of the Website can contact PENTALABBS with any queries relating to this Policy or any requests relating to their personal data.
PENTALABBS can be contacted via its website, at the email address or, to exercise the rights guaranteed by the applicable laws and the GDPR, by sending this form by specifying the purpose of your request.
14. SUPERVISORY AUTHORITY
You may contact the relevant supervisory authority:
Commission Nationale de l’Informatique et des Libertés – CNIL
8 rue Vivienne, CS 30223
F-75002 Paris, Cedex 02
Tel.: +33 1 53 73 22 22
Fax: +33 1 53 73 22 00
Site internet: http://www.cnil.fr