DataOne Privacy Policy

Version – February 2026

1. Purpose

This Privacy Policy (“Policy”) sets out how DataOne and its affiliates (the “Company,” “we,” “our” or “us”) collect, use, store, and protect personal data when individuals visit our website or interact with us through our online services. DataOne means [full legal name of French entity].

For the purposes of personal data collected through the website, DataOne acts as data controller.

2. Scope

This Policy applies to personal data collected through:

a. Contact forms available on the website;

b. Email communications initiated through the website;

c. Newsletter subscriptions (if applicable); and

d. Cookies and similar tracking technologies.

3. Principles of Data Protection

DataOne processes personal data in accordance with the following principles:

a. Lawfulness, Fairness, and Transparency: Personal data shall be collected and processed lawfully, fairly, and transparently.

b. Purpose Limitation: Data shall be used only for the specific and legitimate purpose for which it was collected.

c. Data Minimization: Only data that is necessary for the intended purpose shall be collected and processed.

d. Accuracy: Personal data shall be accurate and, where necessary, kept up to date.

e. Storage Limitation: Data shall not be retained for longer than is necessary for its intended purpose.

f. Integrity and Confidentiality: Appropriate security measures shall be implemented to protect personal data from unauthorized access, alteration, disclosure, or misuse.

4. Types of Data Collected

The Company may collect and process the following categories of personal data:

a. Identification information (name, company, job title);

b. Contact details (email address, phone number);

c. Information submitted via contact forms; and

d. Technical data (IP address, browser type, usage data through cookies).

5. Purposes of Processing

Personal data is processed for one or more of the following purposes:

a. Responding to inquiries;

b. Providing requested information;

c. Managing business communications;

d. Ensuring website security and performance; and

e. Complying with applicable legal obligations.

6. Data Storage and Security

Personal data is stored securely within the Company’s systems and protected through appropriate technical and organizational measures, including access controls, encryption where applicable, and restricted access to authorized personnel.

7. Legal Basis for Processing

Personal data is processed on the basis of:

a. Legitimate business interests;

b. Contractual necessity where applicable;

c. Compliance with legal obligations; and

d. Consent, where required.

8. Data Sharing

The Company does not share personal data with third parties except:

a. When required by law or a competent authority;

b. When necessary to provide requested services or respond to inquiries; or

c. With authorized third-party service providers who process data under appropriate confidentiality and data protection obligations.

9. Data Retention

Personal data is retained only for as long as necessary to fulfill the purpose for which it was collected or as required by applicable law.

10. Data Subject Rights

Individuals have the right to:

a. Access their personal data;

b. Request correction or deletion;

c. Withdraw consent;

d. Request processing details;

e. Raise complaints.

11. Policy Review and Updates

DataOne reserves the right to amend this Policy at any time.