When you use the Mateerz platform, we may collect personal data about you.
The purpose of this policy is to inform you about how we process this data.
1. Data controller
Mateerz, simplified joint-stock company (Société par actions simplifiée)
(hereinafter: “We”)
2. What is the collected data used for?
Your data is processed to fulfil one or several purposes. Each purpose is associated with a legal basis, a list of which can be found below.
Based on the performance of pre-contractual measures taken at your request and/or the performance of the service contract you have entered into, we carry out processing operations for the following purposes:
To allow you to create and access your account;
To allow you to carry out assignments for your clients as a member of a collective, or to submit a project and track the execution of your assignments as a client.
Based on our legitimate interest in developing and promoting our business, we carry out processing operations for the following purposes:
Responding to your requests for information;
Building a database of members and clients; Managing any disputes relating to our services.
Based on compliance with our legal and regulatory obligations, we carry out processing operations for the following purposes:
Compliance with the regulations applicable to our business;
Handling requests to exercise rights.
3. What personal data do we collect?
Personal data is data that allows an individual to be identified. We collect data that falls within the following categories:
– Identification data (e.g.: surname, first name, email address, postal address, ID card);
– Data relating to your professional life (e.g.: profession); – Data relating to your personal situation;
– Connection data (e.g.: IP address, logs);
– Economic and financial data (e.g.: bank details).
Mandatory data is indicated at the time you provide your data to us. It is necessary to provide you with our services.
4. Who are the recipients of the data?
– Our company’s personnel
– Our subcontractors: hosting provider, audience measurement and analysis provider, billing manager, accounting software
– Where applicable: supervisory services (in particular statutory auditors), public bodies, solely to comply with our legal obligations, officers of the court, ministerial officers and debt-collection organisations.
5. How long is the data retained?
Data collected to provide our services and allow you to carry out assignments for clients, data required for evidentiary purposes: legal limitation period (generally 5 years) – invoices 10 years
Data retained while handling a request for information is deleted once the request has been processed. Data collected for the purpose of sending newsletters, solicitations and promotional messages: 3 years from the date of data collection.
6. May your data be transferred outside the European Union?
Your data is stored on AWS servers.
Such data may be transferred outside the European Union as part of the tools we use and our relationships with our subcontractors (see the section “Who are the recipients of the data?”).
This transfer is secured using the following tools:
– Either the data is transferred to a country deemed by a European Commission decision to provide an adequate level of protection;
– Or we have entered into a specific contract with our subcontractors governing transfers of your data outside the European Union, based on the standard contractual clauses between a data controller and a data processor approved by the European Commission.
7. What are your rights over your data?
You have the following rights regarding your personal data:
– Right to information: This is precisely why we have drafted this policy.
– Right of access: You have the right to access all your personal data at any time.
– Right to rectification: You have the right to rectify at any time any personal data about you that is inaccurate, incomplete or obsolete.
– Right to restriction of processing: You have the right to obtain restriction of the processing of your personal data in certain cases defined in Article 18 of the GDPR.
– Right to erasure: You have the right to require that your personal data be erased, and to prohibit any future collection.
– Right to data portability: You have the right to receive the personal data you have provided to us in a standard machine-readable format, and to require its transfer to the recipient of your choice.
– Right to object: You have the right to object to the processing of your personal data. Please note, however, that we may continue to process your data despite such an objection, for legitimate reasons or the defence of rights in court.
– Right to lodge a complaint with a competent supervisory authority (in France, the CNIL), if you consider that the processing of your personal data constitutes a breach of applicable regulations.
– Right to define directives regarding the retention, erasure and communication of your personal data after your death. You may exercise these rights by writing to us at the details below.
We may ask you on this occasion to provide further information or documents to prove your identity.
8. Data protection contact point
Contact email: [email protected]
Contact address: Mateerz SAS
9. Amendments
We may amend this policy at any time.
Such amendments will apply from the effective date of the amended version. You are therefore invited to consult the latest version of this policy regularly.
Effective date: 11/11/2022