1. General information regarding BGFI
1.1 BGFI Consulting S.A.S. is legally registered in accordance with French law with registered offices in 92, avenue des Champs Elysées, 75008 Paris, France and registered under the SIREN number 441.758.984 (hereafter referred to as “BGFI”).
2. BGFI’s commitments regarding the protection of personal data
2.1 Given the importance of protecting personal data, BGFI is committed to adhere to regulations concerning the privacy, especially to the Law of 20 of June 2018 relating to the protection of personal data (« Law of 20 June 2018”) as well as the General Data Protection Regulation of 27 April 2016 (“GDPR”), and take all reasonable measures to ensure that personal data provided to us will remain properly handled, confidential where appropriate and safely protected.
2.3 More specifically, BGFI undertakes to respect the following principles:
- i. your personal data are processed lawfully, fairly, and transparently, in accordance with article 5.1 a) of the GDPR;
- ii. your personal data are collected for specific, explicit and legitimate purposes and are not further processed in way incompatible with these purposes, in accordance with article 5.1 b) of the GDPR;
- iii. your personal data are stored in an appropriate and relevant manner and are limited to what is necessary for the purposes for which they are processed, in accordance with article 5.1 c) of the GDPR;
- iv. your personal data are accurate, kept up to date and all reasonable steps are taken to ensure that inaccurate data, having regard to the purposes for which they are processed, are erased or rectified without delay, in accordance with article 5.1 d) of the GDPR;
- v. your personal data are kept in a form which permits identification of data subjects for no longer than necessary for the purposes for which the personal data are processed, in accordance with article 5.1 e) of the GDPR;
- vi. in accordance with article 5.1 f) of the GDPR, BGFI implements appropriate technical and organizational measures to ensure appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage.
2.4 Finally, BGFI undertakes to comply with all other principles required under the applicable regulations on the protection of personal data.
2.5 However, BGFI does not accept unauthorized idea submissions outside of established business relationships. To protect the interests of our current clients and ourselves, we must treat the issue of such submissions with great care. Importantly, without a clear business relationship, BGFI cannot and does not treat any such submissions in confidence. Accordingly, please do not communicate unauthorized idea submissions to BGFI through this website. Any ideas disclosed to BGFI outside a pre-existing and documented confidential business relationship are not confidential and BGFI may therefore develop, use and freely disclose or publish similar ideas without compensating you or accounting to you. BGFI will make every reasonable effort to return or destroy any unauthorized idea submissions without detailed review of them. However, if a review is necessary in BGFI’s sole discretion, it will be with the understanding that BGFI assumes no obligation to protect the confidentiality of your idea or compensate you for its disclosure or use. By submitting an idea or other detailed submission to BGFI through this website, you agree to be bound by the terms of this stated policy.
3. Items of personal information which may be collected and processed by BGFI
3.1 When using BGFI’s services or contacting and interacting with us, you may provide us with your personal information voluntarily which is collected on an individual basis. This includes:
- your name and email address;
- if applicable, all information included in your curriculum vitae;
- If applicable, the VAT-number used for your commercial activities with BGFI;
3.2 « Cookies » are used in some parts of Beelance’s website and applications in order to provide the internet user with a better service.
- 3.2.1 A cookie is a text file containing information about the behavior of someone visiting a website. It is created by software on the website server but stored on the computer hard drive of the user. During a subsequent visit to the website, the contents of the cookie can be retrieved by the website’s server.
- 3.2.2 Cookies generated by the website or application enable services to be personalized according to the areas of interest of each user, who can be identified by means of these cookies.
- 3.2.3 We use the LinkedIn Insight tag which enables the collection of data by LinkedIn regarding LinkedIn members’ visit to our website, including, the URL, referrer, IP address, device and browser characteristics (User Agent), and timestamps. This data is encrypted, the IP addresses are truncated, and member’s direct identifiers are removed within seven days in order to make the data pseudonymous. This remaining, pseudonymized data is then deleted within 90 days.
4. Methods of personal data collection
5.Purposes for which the information is collected and processed
The main purposes for which BGFI collects and processes your personal information are as follows:
5.1 To perform our contractual obligations and enable an appropriate level of service
5.2 For customer care purposes
5.3 To communicate with you
5.4 For direct marketing purposes
6. Legal basis of the processing of your personal data
6.1 BGFI processes your personal data (i) on the basis of your explicit consent, (ii) to perform the contract or in order to take steps at the request of the data subject prior to entering into a contract, (iii) to comply with legal obligations BGFI is subject to or (iv) to perform BGFI’s legitimate interests.
6.2 Your consent may always be withdrawn at any time in accordance with Article 10. In such case, be aware that the withdrawal of consent shall not affect the lawfulness of processing based on your consent before the withdrawal.
6.3 Furthermore, if you refuse to provide BGFI with some personal data or if you provide BGFI with incomplete or inaccurate information required for the performance of the contract or for compliance with a legal obligation, be aware that we may not be able to provide or deliver your all or parts of the services, which you may have requested from us in full quality.
6.4 When we process your personal data for our legitimate interests or the interests of a third party, BGFI ensures that a balance of these interests against your legitimate interests has been done. When necessary we have taken appropriate measures to limit implications and prevent unwarranted harm to you.
7. Disclosure to Third Parties
7.1 Potential recipient of your Personal Data
- 7.1.1 BGFI may disclose certain personal information to third parties, such as authorized BGFI’s employees, undertakings of BGFI’s group (i.e. undertakings of the Positive Thinking Company), and strategic partners that work with BGFI to provide products and services.
- 7.1.2 However, Personal Data will not be shared with third parties for their marketing purposes.
- 7.1.3 BGFI may be required by law, legal process, litigation and/or requests from public and governmental authorities within or outside your country of residence to disclose your personal information.
- 7.1.4 BGFI may disclose personal information, on a legitimate basis, if BGFI determines that disclosure is reasonably necessary to enforce our terms and conditions or protect our operations or users.
- 7.1.5 Additionally, in the event of a reorganization, merger, or sale we may transfer any and all personal information we collect to the relevant third party.
7.2 Transfers of Personal Data to third countries
7.2.1 You are informed that BGFI may transfer your Personal Data to third parties located outside the European Union in order to be processed and stored.
7.2.2 In that context and if applicable, BGFI undertakes to guarantee the processing of your Personal Data in accordance with Article 46 of the GDPR.
8. Technical measures for protecting personal Information
8.1 To secure the safety of personal information from a loss, theft, leak, falsification, or damage, BGFI implements the following technical, managerial and physical devises:
- prevent personal information from leakage or damage by hacking or computer virus;
- implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including the pseudonymization;
- ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services;
- restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;
- ensure a process for regular testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing;
- minimize the number of employees for managing personal information.
9. Period for Personal Data retention
10. Your rights to the personal data collected
10.1 As the possessor of personal data, you have the following rights which can be exercised at the following email address: firstname.lastname@example.org.
10.2 If you choose to request information from BGFI you may need to communicate personal information of a general nature. In addition to, if you choose to correspond further with us through email, we may retain the content of your email messages together with your email address and our responses. We provide the same protection for these electronic communications that we employ in the maintenance of information received by mail or telephone.
10.3 Your rights, resulting from the Law of 20 June 2018 and the GDPR nevertheless remain guaranteed for as much and insofar as this technology allows it.
10.4 The right of access:
10.4.1 Any individual concerned may access the data concerning him, processed by BGFI and, if necessary, request that incorrect data be corrected or deleted.
10.5 The right of rectification:
10.5.1 BGFI makes it easy for you to keep your personal information accurate, complete and up to date. You have the right to obtain from BGFI the rectification of inaccurate or incomplete personal data concerning you.
10.6 The right to be forgotten:
10.6.1 You have the right to obtain the erasure of your personal data stored by BGFI in the situations provided by the GDPR such as in situations where your personal data are no longer necessary in relation to the initial purposes for which they were processed as well as situations where they were processed unlawfully.
10.7 The right to restriction of processing:
10.7.1 You have the right to obtain from BGFI a limitation of the processing of your personal data without deleting the personal data concerned on the conditions stated in the GDPR.
10.8 The right to data portability:
10.8.1 You have the right to recover some of your data for your own use or to transmit them to another company in the conditions provided by the GDPR.
10.9 The right to object:
10.9.1 You have the right to object at any time to the processing of your data for prospecting and marketing purposes, including profiling and direct marketing.
10.10 The right to withdraw consent:
10.10.1 When the processing of your personal data is subject to your prior consent, you have the right to withdraw your consent at any time.
10.10.2 You shall be aware that the withdrawal of consent shall not affect the lawfulness of processing based on your consent before the withdrawal. In case of withdrawal, it may mean that we will not be able to provide or deliver you all or parts of the service.
10.11 The right to lodge a complaint:
10.11.1 You have the right to lodge a complaint with the Data Protection Authority (DPA) if you consider that the processing of your personal data constitutes a violation of the GDPR.
11. Communication with you and notification to the Data Protection Authority in case of a breach of your personal data
11.1 We will communicate immediately, when your personal data are breached, to you and the Data Protection Authority every time it is required by the GDPR. This communication about your personal data breach will describe in clear and plain language the nature of the personal data breach and contain at least the following information and measures:
- communicate the name and contact details of the Data Protection Officer or other contact point where more information can be obtained;
- describe the likely consequences of the personal data breach;
- describe the measures taken or proposed to be taken by the controller to address the personal data breach, including, when appropriate, measures to mitigate its possible adverse effects.
11.2 This communication shall not be required if any of the following conditions are met:
- BGFI has implemented appropriate technical and organizational protection measures, and those measures were applied to the personal data affected by the personal data breach, in particular those that render the personal data unintelligible to any person which is not authorized to access it, such as encryption;
- BGFI has taken subsequent measures which ensure that the high risk to your rights and freedoms referred to in the first paragraph is no longer likely to materialize;
- It would involve disproportionate effort for BGFI. In such a case, there shall instead be a public communication or similar measure whereby you are informed in an equally effective manner.
12. The Data Controller and the Data Protection Officer:
12.1 The Data Controller is BGFI S.A.S, with registered offices in 92, avenue des Champs Elysées, 75008 Paris, France and registered under the SIREN number 441.758.984 (email: email@example.com).
12.2 In order to ensure the security of your personal information and to protect your rights and freedoms, BGFI has appointed a Data Protection Officer:
Mr. Cédric Neef de Sainval
Address: BGFI S.A.S, 92, avenue des Champs Elysées, 75008 Paris, France