Cookie

  2. Cookie

Cookie Management and Privacy Policy

Cookie Management and Privacy Policy

What is a cookie ?

A cookie is a small computer file, a tracer, deposited and read, for example, when consulting a website, reading an e-mail, installing or using a software or a mobile application, regardless of the type of terminal used (computer, smartphone, digital reader, video game console connected to the Internet, etc.).

Thanks to these cookies, information is collected during and about the user’s visit of the website.

This information may include the date and time of visits, the pages consulted and the time spent on the site. This may facilitate the user's future visits to the site.

Cookies can be configured in the user's Internet browser settings.

These cookies can be deposited by different issuers, namely by the owner of the site or the application or by a third-party company. For example, Google Analytics cookies are third-party cookies, deposited by Google, which are used to produce visit statistics.

How do you block cookies from being stored on your computer ?

To block the storage of cookies on your computer, you can change the cookie management rules at any time in your browser settings, section "Cookies and site authorization". Depending on the browser you are using - e.g., Chrome or Firefox or Safari - the deletion of cookies may be different.

You can accept or reject cookies on a case-by-case basis or reject them systematically once and for all.

Note: the setting may change your access conditions to our services requiring the use of cookies. If your browser is set to refuse all cookies, your experience on our site may be affected.

More information on cookies

To find out how to manage the cookies stored in your browser, we invite you to consult the help menu of your browser, as well as the dedicated pages on the CNIL (“Commission Nationale de l'Informatique & des Libertés”, National Commission for Information Technology and Civil Liberties) website.

What cookies does Therenva use ?
  • The cookies which are strictly necessary

These cookies allow the website to function optimally.

If you object to these cookies, your user experience may be degraded.

Cookie Provider Data retention period Finality
grav-site-* Grav 30 minutes Preserves the visitor's session state across page requests.
cookieconsent_status Grav 1 year Store the status of the user's consent to cookies.
  • Third-party cookies

Third-party cookies are cookies placed by third-party companies and hosted by the website.

Cookie Provider Data retention period Finality
LS_CSRF_Token Zoho session This cookie is used for security purposes in order to avoid Cross-Site Request Forgery, (CSRF) for the AJAX calls made by the visitor.
matomo_sessid Matomo 14 days Do not track function.
_pk_id Matomo 13 months User ID generated by Matomo.
_pk_ses Matomo 30 minutes Used to temporarily store visit data.

Therenva uses the free Matomo audience analysis software (Cloud version) which protects your data and your customers' privacy (recommended by the CNIL - Commission nationale de l'informatique et des libertés, the French Data Protection Agency). Therenva has followed the recommendations published in the Configuration guide Matomo Analytics - Exemption - Guide de configuration (cnil.fr).

Matomo has been configured so as not to track any personal data.

CONFIDENTIALITY POLICY WWW.THERENVA.COM

Welcome to our website and thank you for your interest in our company.

We care about the protection of your personal data very seriously.

They are processed in full compliance with all legal provisions relating to the protection of personal data, including the General Data Protection Regulation No. 2016/679 (known as "the GDPR") and Law No. 78-17 of January 6, 1978 relating to computers, files and freedoms in its latest version in force (known as "the Data Protection Act").

This privacy policy allows us to inform you in detail about the processing of your personal data by Therenva and about your rights in this respect.

Personal data are defined as all data that allow the identification of a natural person. This includes in particular name, date of birth, address, telephone number, e-mail address and your IP address.

If no link can be established with a specific person, the data is said to be anonymous.

COMPETENT AUTHORITY AND RESPONSIBLE PERSON FOR DATA PROTECTION

Therenva SAS

74F rue de Paris, 35000 Rennes

Phone number: +33 (0) 9 72 52 29 21

To contact the persons in charge of data protection: dpo@therenva.com

YOUR RIGHTS AS DATA SUBJECT

In accordance with the Regulation on the protection of personal data, you have the rights defined in art. 15 - 22 of the GDPR:

  • The right of access (Art. 15 GDPR),
  • The right to erasure / right to be forgotten (Art. 17 GDPR),
  • The right to rectification (Art. 16 GDPR),
  • The right to data portability (Art. 20 GDPR),
  • The right to restriction of data processing (Art. 18 GDPR),
  • The right to object to data processing (Art. 21 GDPR).

To exercise these rights, please contact: dpo@therenva.com.

Also, you have the right to report any concerns about the way your personal data is processed to a competent supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place where you believe an alleged breach of your rights has occurred.

In France, the personal data protection authority is the Commission Nationale de l'Informatique et des Libertés, or "CNIL" - 3 place de Fontenoy - TSA 80715 - 75334 Paris Cedex 07. Tel : 01 53 73 22 22

RIGHT TO OBJECT

Objection is free of charge and is not subject to any formal requirements.

You can exercise your right to object by various means and without providing proof: electronically (form, e-mail address, online account, etc.), by mail.

To exercise these rights, please contact: dpo@therenva.com.

The right to object is not a right to simple and definitive erasure of all your data.

If your request to object does not concern prospecting, Therenva may justify its refusal on the basis that:

  • there are legitimate and compelling reasons for processing the data or the data are necessary for the establishment, exercise or defence of legal claims;
  • you have given your consent - you must withdraw this consent and not object;
  • you are bound by a contract with Therenva;
  • a legal obligation requires us to process your data;
  • the processing is necessary to protect the vital interests of the data subject or another natural person.

PURPOSES AND LEGAL BASIS OF DATA PROCESSING

We use your data for the purposes of the business relationship, the fulfilment of legal and contractual obligations, the offering of products and services and the consolidation of the customer relationship.

This may also include analyses for marketing purposes and direct advertising.

Your consent also constitutes legal authorization to process your data. Here we inform you about the purposes of the processing of your data and about your right of withdrawal.

If your consent also relates to the processing of special categories of personal data, we will expressly state this in the consent agreement, Art. 88 para. 1 GDPR.

The processing of special categories of personal data in the sense of Art. 9 para. 1 of the GDPR only takes place if this is required by legal regulations and if it is not established that your legitimate interest in the exclusion of such processing prevails, Art. 88 para. 1 of the GDPR.

TRANSMISSION TO THIRD PARTIES

We will only pass on your data to third parties within the framework of the legal provisions or subject to the relevant consent. Your data will not be passed on to third parties in any other way, unless we are obliged to do so by mandatory legal provisions (e.g. to external bodies such as supervisory or judicial authorities).

RECIPIENTS OF DATA / CATEGORIES OF RECIPIENTS

Within our company, we ensure that only those persons who require access to your data for the purpose of fulfilling legal and contractual obligations have access to it.

If we use third-party suppliers or service providers, we ensure that confidentiality agreements and terms of compliance with applicable regulations have been concluded and implemented.

TRANSFER / INTENTION TO TRANSFER TO THIRD COUNTRIES

No data is transferred to third countries (outside the European Union or the European Economic Area).

DURATION OF DATA RETENTION

We store your data for as long as it is necessary for the purpose of processing.

Please note that many retention periods require data to be (compulsorily) stored. This applies in particular to mandatory retention periods under commercial or tax law (e.g. commercial code, tax code, etc.). Insofar as there is no mandatory retention period, the data will always be deleted after the purpose of processing has been fulfilled.

In addition, we may retain data if you have consented to it or, in the event of a legal dispute, if we use it as evidence within the legal limitation periods of up to thirty years, the usual limitation period being three years.

The processed Personal Data will be deleted without delay in the following cases:

  • If the Data Subject has withdrawn the consent on which the processing is based and there are no other legal grounds to legitimize such processing ;
  • If the Data Subject has validly objected to the processing and there are no compelling legitimate grounds for the processing;
  • If the Data Subject has been subject to unlawful processing;
  • The Personal Data will be erased in order to comply with a legal obligation under the law of the European Union or of a Member State applicable to Therenva;
  • The Personal Data is obsolete and no longer up to date.
SECURED TRANSMISSION OF YOUR DATA

In order to protect the data stored with us, from accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we implement appropriate security measures, both in technical and organizational terms. The security level is constantly monitored and adapted to the latest security standards.

The exchange of data to and from our website takes place only in encrypted form. We use the HTTPS transmission protocol for our website. We guarantee our users encryption of the content in the contact forms or when using the chat. Only we can decrypt this data. There is also the possibility of using alternative means of communication (e.g. by mail).

CATEGORIES, SOURCES AND ORIGIN OF DATA

The nature of the data processed is determined by the context: it depends, for example, on a request via a contact form.

WHEN YOU VISIT OUR SITE, WE COLLECT AND PROCESS THE FOLLOWING DATA
  • Browser and operating system used
  • IP address provided by your Internet service provider
  • Information about the web pages you visit with us, including date and time
  • This data is stored for technical security reasons (e.g. to prevent attempts to access our server) in accordance with Art. 6 para. 1 point F of the GDPR.

In the context of a contact request, we collect and process the following data:

  • Title
  • First name
  • Last name
  • E-mail
  • Subject
  • Message
CONTACT FORM / CONTACT BY E-MAIL (ART. 6 AL. 1 POINTS A, B OF THE GDPR)

Our website provides a contact form. If you write to us using this form, we process the data you provide in this way to contact you and to answer your questions and requests. We apply the principle of data minimization, allowing you to provide only the data necessary to make contact, namely your e-mail address and the message field.

In the "Message" field, by application of the GDPR, only relevant, objective, non-excessive and non-insulting comments are allowed. Sensitive data (racial or ethnic origin, political, philosophical or religious opinions, trade union membership, data relating to the health of an individual in particular or to sexual life, offences, convictions, security measures) are prohibited. The contents written in these areas are regularly monitored in order to remove any prohibited data.

Your IP address is also processed for technical necessity and legal protection.

If you contact us by e-mail, the personal data contained in your e-mail will only be processed in order to respond to your request.

If you do not use the contact form provided, no further data is collected.

USER PROFILES / WEBTRACKING

On this website, data is collected and stored for marketing and technical purposes (analysis of website usage).

A user profile is created on the basis of the content consulted and the navigation data.

Personalized data is collected and entered by the user. Reconciliations may also be made with data collected offline and stored in customer management tools or those of commercial partners.

The information about your use of the site (including the IP address) generated by the cookie remains on the server under Therenva's control (and hosted by the company OVHcloud - see legal notice) and is in no way transmitted to third parties, except for a legal obligation. No link of any kind is established between additional information and your IP address. This information is deleted after 30 days.

LINKS TO OTHER PROVIDERS

Our website also contains links - clearly identifiable - to the websites of other companies. We have no influence on the content of other providers' websites linked to our own pages. We therefore accept no responsibility for the content of such sites. Only the provider or operator of these sites can be held responsible for their content.

The linked pages were checked at the time of linking for any identifiable breaches of law. At the time of linking, no illegal content was identifiable. A permanent control of the contents of the linked pages is not possible excepting when reporting legal violations. If we become aware of any violations of the law, such a link will be removed immediately.