Privacy Policy

EPSA considers the protection of personal data to be essential.
This is why EPSA is committed, within the framework of its activities and in accordance with the legislation in force in France and Europe, to ensuring the protection, confidentiality and security of the personal data of individuals likely to be affected by the collection of personal data.

Directive 95/46/EC will be repealed with effect from 25 May 2018 with the entry into force of the General Data Protection Regulation (the “GDPR”) (Regulation (EU) 2016/679) which aims to strengthen your rights regarding the protection of personal data.
This Policy informs you about how EPSA, its subcontractors and any partners process your personal data.
This Policy applies to customers, prospects, candidates and visitors to the websites
www.epsa.com, www.7partners.fr; www.epsa-advisory.com; www.agriateconseil.fr; www.faretrade.fr; airrefund.com and www.montvallon.com.

The concept of personal data (« Personal Data ») means any information relating to an identified or identifiable natural person. A person is « identifiable » when they can be identified, directly or indirectly. (For example, the personal email address provided as part of an application for a position published via this website).

Our professions within EPSA are very diverse. Indeed, we may process various Personal Data depending on our expertise. Furthermore, we inform you that EPSA may collect « sensitive » Personal Data through its cost optimisation missions (social security contributions, AT/MP).
EPSA only processes Personal Data for specific, explicit, and legitimate purposes. We do not process this data in a manner incompatible with these purposes.
Indeed, we collect personal data strictly necessary to achieve the purpose concerned (for example: the processing purposes will differ within the framework of the execution of a contract or an application).

Depending on the case, EPSA may collect your Personal Data directly from you or may be the recipient of your Personal Data collected from you by a third party.

The Personal Data collected is intended for EPSA’s internal departments and its subcontractors.
Personal Data may also be processed by EPSA’s partners. These are situations where partners are involved in the provision of services, in particular. This may also involve processing to which you are asked to consent.
The processed data may finally be transmitted to the competent authorities, at their request, in the context of legal proceedings, in the context of judicial investigations and requests for information from the authorities, or in order to comply with other legal obligations.

Your personal data is kept for the period necessary to fulfill the purposes concerned. With regard to processing relating to the execution of the contract, Personal Data may be kept for a maximum period of three years from the end of the contractual relationship.

We aim to process your personal data in the safest and most secure manner. To this end, we take all appropriate physical, technical, and organisational measures to ensure its confidentiality and prevent, as far as possible, any alteration, loss, or unauthorised access to your data.
These measures are adapted according to the sensitivity of the Personal Data processed and the level of risk presented by the processing or its implementation.
Finally, we inform you that all persons having access to your Personal Data are bound by an obligation of confidentiality and are liable to disciplinary measures and/or other sanctions if they fail to comply with their obligations.

Each person concerned by the processing of Personal Data has the right to access, rectify, oppose, transfer, erase, and limit the processing of your personal data. You may exercise any of these rights at any time with EPSA, as the controller of your personal data. Any request relating to the use of these rights must be made by email and sent to dpo-epsa@epsa.com and will be processed within 30 business days of receipt of your request.

We may use cookies or similar technologies or processes to ensure the best possible user experience, analyse trends, and track your usage patterns. Cookies are small text files stored on a user’s device to track usage patterns and store preferences. Our cookies do not contain personally identifiable information. We collect certain information automatically through the use of cookies and tracking technologies, such as Internet Protocol (IP) address, browser type, Internet service provider, referring/exit pages, files viewed on our website (such as HTML pages, graphics), operating system, date and/or clickstream data to analyze aggregate trends and administer the website. Users of the website can control the use of cookies individually at the browser level. However, if users choose to disable cookies, this may limit their use of certain features or functionality within our services or on our website.

OTHER QUESTIONS? CONTACT OUR DPO

For any questions regarding this Policy, you can contact our Data Protection Officer (DPO) at the following address: dpo-epsa@epsa.com.

For any questions regarding this Policy, you can contact our Data Protection Officer (DPO) at the following address: dpo-epsa@epsa.com.