Article 1. Object

The purpose of this data use policy is to set out in a clear and transparent manner the way in which DIGITALEO (*), as data controller, collects, records, stores and communicates the data of the persons consulting its website (hereinafter referred to as “the Users” or “the User”).

DIGITALEO undertakes that this policy, as well as the way in which the data of the Users are treated in practice, are in conformity with the Data Protection Act, as well as with the Data Protection Regulation.

This Privacy Policy also informs you about your rights and choices regarding your personal information, and how you can contact us to update your contact information or obtain answers to questions you may have about our privacy practices.

20 avenue Jules Maniez
35000 RENNES
+33 (2) 56 03 67 00
Mail :

Article 2. Data Protection Officer

In order to guarantee the conformity of its practices with the Data Protection Act and the Data Protection Regulation, DIGITALEO has chosen to appoint a Data Protection Officer (*) (hereafter “DPO”).

The DPO is associated with each project of the company involving the processing of personal data, in order to ensure the conformity of the latter with the regulations in force.

The User may contact the DPO for any questions relating to the processing of his/her data and the exercise of his/her rights in relation thereto (on this subject, please refer to Article 6 of this document).

* DIGITALEO – Data Protection Officer (DPO)
20 avenue Jules Maniez
35000 Rennes
Mail :

1 Law no. 78-17 of January 6, 1978 on information technology, files and freedoms
2 Regulation (EU) 2016 of the European Parliament of the Council of April 27, 2016.

Article 3. Collected data

1. When you fill in a form on our website

1.1 Each collection form on the website limits the collection of data to what is strictly necessary.

1.2 In any case DIGITALEO does not collect, of its own accord, more than the following data:

  • Name and first name
  • Telephone and email address
  • Name and coordinates of the company
  • Function within the company
  • Identifier assigned to the customer account accessible via the website

Additional data can however be collected by DIGITALEO if the User chooses to fill in the free fields left at his disposal on the site.

1.3 Certain data must be communicated, without which the User will not be able to access the services offered by DIGITALEO on its Internet site. These data are indicated by an asterisk.

It is specified that the failure to respond to information not indicated by an asterisk does not prevent access to services.


2. When you use our services

2.1 DIGITALEO is required to process your Personal Data in order to: create and configure your customer account, manage your orders, monitor customer relations, manage customer support, send newsletters, information on new products, promotional offers, improve the functionality and user-friendliness of the Services, manage the exercise of your rights with regard to the rules on the protection of Personal Data, manage outstanding payments and litigation, etc.

2.2 The personal data processed is:
– surname(s), first name(s), title, personal telephone number, personal email address
– Business telephone, business email, company name, company contact details, position within the company
– Identification of the User in the CRM (Customer Relationship Management) of DIGITALEO
– Social media.

In order to allow you to manage your communications on the social networks, we can allow you to connect a page or a social profile to your DIGITALEO account, to ask you to provide or reach your name of user, your identifiers of account (token), your social identifier, your photo of profile, your address e-mail and other information. This data will only be used by DIGITALEO to provide you with the Service you expect and will not be shared with third parties.

When Users connect a social profile to the Service, they can create, publish, transmit, consult, display or share data or information within the framework of the Service.

They may also obtain and analyse campaign performance statistics (number of views, number and type of interaction).

Article 4. What Information We Collect About You

Origin  Objectives Legal base Recipients of data Duration of data storage
Application form Recruitment management
Collection of unsolicited applications or job offers
Management of applications
Management of interview invitations
Evaluation of interviews
Legitimate interest of DIGITALEO – the HR department
– the department in which the position is offered
– the Werecruit recruitment platform
– DIGITALEO’s service providers: IT maintenance, software publishers.
2 years after the last contact with the User.
This is so that DIGITALEO can contact the User in the event of creation of a position. Unless otherwise indicated by the User.
Contact forms Management of contact requests from Users
(contact by telephone, chat and/or contact form, sending of personalized estimates, demonstrations and/or tests of DIGITALEO products and services).
Legitimate interest of DIGITALEO – Customer Service department
– Sales department
– Marketing department
– DIGITALEO’s service providers: computer maintenance, software publishers
The time to provide the required service.
Newsletter subscription form Management of the newsletter
Management of mailings
Management of subscriptions
Elaboration of statistics
Legitimate interest of DIGITALEO. -the sales and marketing department
– DIGITALEO’s service providers: computer maintenance, software publishers
Until the User unsubscribes from the newsletter.
Forms for building a prospect file Prospects Management
Constitution of a file of prospects
Management of commercial prospecting operations
Elaboration of statistics
Legitimate interest of DIGITALEO – Marketing department
– Sales department
– DIGITALEO’s service providers: computer maintenance, software publishers
Until the User unsubscribes
If the User is not a customer of DIGITALEO, 3 years maximum after the last contact.
If the User is a customer of DIGITALEO, 3 years after the end of the commercial relationship.
Formulaire de gestion des données personnelles Management of user requests regarding personal data Legal requirement – Digitaleo’s DPO
– the Digitaleo departments concerned by the request
Data is kept for the calendar year of the request, plus five years.
Subscription to DIGITALEO Services Provision of the Service and Management of the commercial relationship between the User (hereinafter the “CUSTOMER”) and DIGITALEO.

✔ Management of contracts signed with the CUSTOMER
✔ Orders
✔ Invoices and accounting
✔ CUSTOMER account set-up and configuration
✔ Customer relations monitoring: satisfaction surveys, complaints and after-sales service management
✔ Selecting the CUSTOMER to carry out studies, surveys and service tests
✔ Technical support for the CUSTOMER in the development of DIGITALEO solutions.

Contractual relations Trade Department
Accounting Department
Customer Service
Marketing Department
Product Department
For the duration of the commercial relationship between DIGITALEO and the CUSTOMER, and for three years after its expiry, for statistical purposes.

Unless otherwise stipulated by law, data must be kept for a longer period.

Article 5. Security and confidentiality

DIGITALEO undertakes to take all necessary precautions to preserve the confidentiality and securitý of personal data and in particular to protect them against any accidental or illicit destruction, accidental loss, alteration, distribution or access by unauthorised third parties.

DIGITALEO undertakes to respect the following obligations and to have them respected by its personnel:
– not to take any copy of the personal data entrusted to it, with the exception of those necessary for the execution of the present service provided for in the contract and in particular for the backup of personal data or to ensure the proper functioning of the services offered by DIGITALEO;
– not to use personal data for purposes other than those specified in the present contract;
– not to divulge this personal data to other persons, whether private or public, physical or moral;

Article 6. Transfer of data outside the European Union

1. DIGITALEO can call upon service providers established outside the European Union, in particular as regards the supply of software or data hosting.

2. DIGITALEO undertakes however to contract with such service providers only if they present sufficient guarantees in terms of security and confidentiality of data.

In the same way, DIGITALEO commits itself to verify that these providers maintain their requirements as regards security and confidentiality of the data throughout the contractual relation.

3. If these providers are located in a country that does not ensure an adequate level of protection in the sense of the Regulation of Personal Data, DIGITALEO undertakes to conclude with the provider Standard Contractual Clauses, in accordance with the decision 2010/87/EU of the European Commission.

Article 7. Access and Control Your Personal Data

In accordance with the French Data Protection Act and the Data Protection Regulation, the User has the following rights with respect to his/her data:

  • Where the processing of his data is based on his consent, the right to withdraw his consent at any time.
  • The right to request access to the processed data.
  • The right to request the rectification or erasure of the processed data.
  • The right to limit the processing of his/her data.
  • The right to object to the processing of your data.
  • The right to the portability of his data.
  • The right to file a complaint with the CNIL.

The User may exercise his rights by contacting the DPO (see Article 2 of this document for the DPO’s contact details).

With regard to the processing of prospects and the management of the newsletter, the User may exercise his right to object by clicking on the unsubscribe link included in each email sent in this respect.

Article 8. Use of Cookies

8.1 What is a cookie?

Cookies are used to store browsing information, such as your browsing preferences or profile information.


8.2 What cookies are used on our site?

Cookies can be created by our site, in which case they are called internal cookies, or they can come from third-party sites. Some internal cookies are necessary for the functioning of the site, they allow it to function in an optimal way.

Other internal cookies are not necessary for the functioning of the site. Third-party cookies come from third-party sites and are not necessary for the functioning of the site. When you first visit the site, a banner informs you of the presence of these cookies and invites you to indicate your choice. They are deposited only if you continue to browse the site. You can oppose all or part of the cookies and delete them at any time by using your browser settings. However, if you object to the cookies necessary for the operation of the site, your user experience may be degraded.
If you do not delete a cookie, it will be stored on your computer for a maximum of 13 months.

Among the cookies, some have the purpose of audience measurement. These are :

  • Analytical and performance cookies. They help us to estimate the number of our visitors and to evaluate their habits of use of the site. They are also used to track conversions.
  • Targeting or advertising cookies. These help us recognize you when you return to our site and allow us to personalize our site or provide you with targeted offers based on your interests.


8.2.1 Internal cookies necessary of the website

Cookie Name Goal Shelf-life
XSRF-TOKEN Unique key to identify a user (online chat) 3 days


8.2.2 Internal cookies not necessary for the website

Cookies Names Goal Shelf-life
__hs_opt_out Cookie of consent to the use of our cookies. Cookie whose purpose is to inform the user. 2 years from the date of acceptance by the User.
_ga, _gu, _gs Google Analytics cookies / performance analysis**. 14 months
_gid Analytical cookies to distinguish visitors 24h


8.2.3 Cookies tiers

Cookies Names Goal Shelf-life
__hssc Hubspot, targeting cookie* to personalize the site. 30 minutes
hubspotutk Hubspot, Contact de-duplication cookies 10 years
__hssrc Hubspot, Targeting or advertising cookies*** None. Session cookie
__hstc Hubspot, Targeting or advertising cookies*** 2 years
_hs_opt_out This cookie is used by the Privacy Policy to remember to stop asking the user to accept cookies. It is saved when you give users the option to decline cookies. 2 years
_hs_testcookie This cookie is used to test the activation of cookie support in the user’s browser. 10 years
hsfirstvisit This cookie is used to track a user’s first visit. None. Session cookie
MUIDB Bing, Targeting or advertising cookies*** 13 months from the continuation of the User’s navigation on the site
MUID Bing, Targeting or advertising cookies*** 13 months from the continuation of the User’s navigation on the site
fr Facebook, Targeting or advertising cookies*** 13 months from the continuation of the User’s navigation on the site

* Targeting cookies help us recognize you when you return to our site and allow us to personalize our site or provide you with targeted offers based on your interests.

** Analytical and performance cookies help us estimate the number of our visitors and assess their usage patterns on the site. They are also used to track conversions.

*** Targeting or advertising cookies help us recognize you when you return to our site and allow us to personalize our site or provide you with offers targeted to your interests. Cookies whose purpose is audience measurement and advertising.


8.3 How to set your cookies ?

8.3.1 Through your browser

Your choices regarding cookies can be expressed directly with your terminal. In this case, you can authorize or refuse the recording of cookies in your terminal by using the appropriate settings in your Internet browser. The cookie settings may vary from one browser to another :


8.3.2 Through inter-professional platforms

Your choices regarding cookies can also be expressed online through inter-professional platforms. In this case, connect to the Youronlinechoices site, proposed by the digital advertising professionals grouped together within the European Digital Advertising Alliance (EDAA) and managed in France by the Interactive Advertising Bureau (IAB) France.

This European platform lists hundreds of Internet advertising professionals and constitutes a centralized interface that allows you to express your choices regarding the cookies that may be used to adapt the advertisements displayed on your terminal to your browsing habits. Note that this procedure will not prevent the display of advertisements on the websites you visit. It will only block the technologies that allow us to adapt advertisements to the navigation of your terminal and to your centers of interest.


8.3.3 Through selected sites

Some sites offer their users the ability to manage their privacy settings directly. The user can then learn more about the cookies set by the site and decide whether to disable these cookies:

Article 9. Modification de la présente politique

We often adapt and update this data protection information. In the event of significant changes that could affect the rights of Digitaleo users, we will communicate these changes in advance and inform you of the existing possibilities of objection. This information is provided in written form (e.g. by e-mail).

If you have any further questions about this data protection declaration, please contact us via the contact form or by post.