The responsibilities of SENEF SOFT in the context of the protection of personal data

A. SENEF SOFTas a subcontractor

It is certainly in this capacity that your expectations towards SENEF SOFT are the most important. SENEF SOFT is qualified as a "processor" when it processes personal data on behalf of a controller.

This is typically the case when you use SENEF SOFT services and store personal data in SENEF SOFT solutions. Within the limits of its technical constraints, SENEF SOFT will only process the stored data according to your instructions and on your behalf.

The commitments of SENEF SOFT as a subcontractor

As a subcontractor, SENEF SOFT undertakes to implement the following actions:

  • process personal data for the sole purpose of providing the services, i.e. SENEF SOFT will never process your information for other purposes (marketing, etc.).

  • not transfer your data outside the EU or outside countries recognised by the European Commission as having an adequate level of protection: provided that you do not select a datacenter in a geographical area outside the EU.

  • inform you of any subcontractors that may process your personal data: to date, your data are stored at OVH .

  • to implement high security standards in order to provide a high level of security to our services.

  • notify you as soon as possible in the event of a data breach.

  • Assist you in meeting your regulatory obligations by providing you with adequate documentation of our services.

B. SENEF SOFTin its capacity as data controller

SENEF SOFT is qualified as a "data controller" when it determines the purposes and means of "its" processing of personal data.
This is typically the case when SENEF SOFT collects data for billing purposes, collection management, service quality and performance improvement, commercial canvassing, etc.

commercial management, etc. But also when SENEF SOFT processes the personal data of its own employees.
In this case, "your" data, those that you store on SENEF SOFT services, are not concerned. On the other hand, some information concerning you or your employees (identity and contact information of the SENEF SOFT contact person in the context of a technical assistance request, for example) may be. This is why SENEF SOFT would like to give you an understanding of the guarantees implemented to ensure the protection of this personal data.

  • limit the collection of data to those that are strictly useful: it is within the framework of this approach that when ordering a service, you only provide the data necessary for SENEF SOFT to provide billing and support services or to respect its own legal obligations in terms of data retention.

  • not to use the data collected for purposes other than those for which they were collected.

  • Keep personal data for a limited and proportionate period. For example, data processed for the purpose of managing the relationship between the customer and SENEF SOFT (name, first name, postal address, e-mail, etc.) are kept by the company for the duration of the contract and the following thirty-six (36) months. At the end of this period, they are deleted on all supports and backups.

  • not to transfer this data to third parties other than SENEF SOFT's affiliates that are involved in the execution of the contract. Within the framework of these intra-Group transfers, certain data may be transferred outside the European Union on the basis of binding corporate rules implemented by the SENEF SOFT Group.

  • implement appropriate technical and organizational measures to ensure a high level of security.