Data Protection Information

Article 1: Preface

the gdpr and you…

the protection of personal data is one of our major concerns. the privacy policy is part of a legal context marked by the european data protection regulation (regulation eu 2016/679 of april 27, 2016), applicable since may 25, 2018, and the amended data protection act no 78-17 of january 6, 1978, relating to data processing, files, and freedoms.

thus, the purpose of this data protection policy is to introduce you to:

  • the personal data controller
  • how your data is collected and processed. personal data refers to any data that allows the identification of a physical person
  • your rights regarding the use of your personal data
  • the recipients to whom your data is transmitted

this privacy policy complements the legal notice (see mentions légales) on the website.

Article 2: Lexicon

we promise, you will understand us!

  • personal data is any information relating to an identified or identifiable person, meaning information that allows that person to be identified directly (e.g., name and surname) or indirectly (e.g., using cookies).
  • processing of personal data is any operation or set of operations (whether or not automated) applied to personal data, such as collection, recording, organization, storage, or transmission.
  • the data controller determines the purposes (objectives) and means of processing personal data.
  • the sub-contractor processes personal data on behalf of and under the instructions of the controller.

Article 3: General Principles

we have legal obligations!

in accordance with article 5 of the general data protection regulation (gdpr), the collection and processing of your personal data follow these principles:

  • legality, fairness, and transparency – data collection and processing must have a legal basis (e.g., contract performance, legal obligation, consent, legitimate interest, vital interest).
  • limited purposes – personal data is collected and processed only for defined purposes.
  • minimization of data – only necessary data is collected.
  • limited storage – data retention periods must be defined.
  • integrity and confidentiality – the data controller ensures data security.

Article 4: Responsible for Data Processing

we are responsible for the data entrusted to us!

as the data controller, boTec complies with the european data protection regulation and the amended data protection act when collecting and processing personal data. in accordance with article 32 of the gdpr, we implement technical and organizational measures to protect your personal data.

Article 5: Personal Data Collected and Processed

what do we know about you?

in compliance with the principle of minimization, we only collect data necessary for our operations. thus, boTec collects and processes the following information:

we do not collect sensitive data such as religion, trade union membership, racial or ethnic origin, criminal records, or health-related data.

Article 6: Purposes of Data Collection and Processing

we would like to explain to you!

in all of these situations, boTec acts as a “data controller” under the gdpr.

collected datareasons for collectionstorage periodlegal basis
consultation of the websitelocation, internetto offer personalized services, analyze audience and statistics, secure our website, and protect against fraudmaximum 12 months
software developmentidentity, professional lifeto research and develop software applications, manage it projectsrelative to the development time of the project
support and maintenanceidentity, professional lifeto provide support and maintenanceup to 1 year

Article 7: Who has Access to your Personal Data?

we don’t pass them on to just anyone!

boTec only transmits personal data to authorized internal personnel and necessary third parties such as tax authorities, justice departments, and the police.

when necessary, boTec shares personal data with subcontractors essential for service performance. we verify their compliance with gdpr and data protection laws.

boTec may share personal data with its subsidiary botec GmbH as part of a distribution contract.

apart from these cases, boTec does not share personal data with third parties or external organizations without express consent.

boTec does not and will not sell, transfer, or disclose personal data to unauthorized third parties.

boTec does not use automated decision-making based on personal data. no profiling occurs during processing, and all collected data undergoes human supervision.

Article 8: Your Rights

you have all the cards in hand!

8.1 your rights

in accordance with the regulations in force, you have the following rights concerning your personal data:

  • right to access
  • right to rectification
  • right to erasure
  • right to restrict processing
  • right to data portability
  • right to object

8.2 the internal referent

boTec has appointed an internal data protection referent. to exercise your rights, you can contact our referent at:

name: boTec
contact: rgpd AT botec.sarl
address: boTec SARL, 1545 Route d’Epagny, 74330 Sillingy, France

8.3 complaint to the cnil

you may file a complaint at any time with the commission nationale de l’informatique et des libertés (cnil) via this link: https://www.cnil.fr/fr/plaintes.

Article 9: Security Measures

you entrust us with your data, we take care of it!

boTec ensures data security by processing personal data securely and only for as long as necessary.

as required by article 32 of the gdpr, boTec has implemented:

  • measures ensuring confidentiality, integrity, availability, and resilience of processing systems
  • procedures to restore data access in case of an incident

while security is an obligation of means rather than result, we strive to guarantee confidentiality and integrity.

all personnel handling personal data are trained in best practices, bound by confidentiality agreements, and subject to disciplinary action in case of non-compliance.

Article 10: Data Transfers outside the European Union

a well-organized trip!

we do not transfer your data outside the european union.

however, if such transfers become necessary, we will ensure that the receiving countries guarantee an adequate level of data protection.

we will inform you in advance of any data transfer outside the eu and the protective measures taken.

Article 11: Updates to the Data Protection Policy

you are on the right track, it’s almost the end of the reading!

this privacy policy may be updated periodically.

last update: 02/01/2026

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.