Tél. 0473931212
Go back

 

 

PERSONAL DATA PROTECTION POLICY

The purpose of this policy is to describe the rules for implementing the processing of personal data carried out by ORIGIN STEEL in order to guarantee respect for the rights of the persons concerned. It also informs you about our practices regarding the collection, use and disclosure of personal data that you may provide when you visit this Site.

By accessing it, you acknowledge having understood and accepted the terms and conditions of this policy.

We inform you that the reference texts of this policy are the RGPD (General Regulations for Data Protection) and the law “Informatique et Libertés” of January 6, 1978 as amended relating to the protection of personal data.

The concepts used in this policy are defined in the GDPR and in particular the concepts of processing, personal data or personal data, data subjects and data controllers.

 

 

The recipients of the data

The data collected on our site are exclusively reserved for the use of ORIGIN STEEL and its subsidiaries and are not the subject of any session to third parties. Your personal data is therefore only accessible to authorised persons within ORIGIN STEEL.

The purposes of the processing

In our contact forms, we ask you to provide us with certain personal data.

The personal data are collected as part of several processing operations whose purpose is to follow the processing of a request from you.

The legal bases for processing are mainly: the legitimate interest of ORIGIN STEEL or your consent.

Relevance and data categories

We collect and process personal data transmitted via our contact forms in a fair and legal manner.

We limit the collection of personal data to the following categories of data:

Your identity: civility, surname, first name, e-mail address and country;
Your professional life: information present in the message you left us or in the attachments sent (example: data on your CV).

This is essential data to manage your requests.

Please note that if the mandatory fields are not completed, ORIGIN STEEL will not be able to respond to your request.

Data retention period

In accordance with the laws and regulations in force, personal data are only kept for a period not exceeding the period necessary for the purposes for which they are collected and processed.

Thus, for the “ORIGIN STEEL Recruits” section, your personal data will be kept for the time necessary to manage your application and for a maximum period of twenty-four (24) months from the last contact of ORIGIN STEEL with you.

You have the following rights: access, rectification, deletion, limitation of processing, opposition.

You can exercise these rights:

By email at datap@originsteel.fr;
Or by mail to: ORIGIN STEEL, 1 rue Pierre BOULANGER, 63430 PONT-DU-CHATEAU.

A response will be provided to you within the legislated and regulatory timelines. In case of doubt about your identity, we will ask you to prove your identity by photocopying a piece of identification.

When you exercise your rights, we will process your personal data for the purpose of managing your request (title, surname, first name, nature of the request, answer provided, possibly copy of the identity document).

This data is kept for a period of three (3) years, with the exception of the copy of your ID, which is deleted after verification.

Security

In its capacity as Data Controller, ORIGIN STEEL determines and implements the appropriate technical and organisational measures necessary for the security and confidentiality of personal data in order to avoid in particular any unauthorised third party access and prevent any loss, unauthorized alteration or disclosure of data.

In accordance with Article 32 of the GDPR, ORIGIN STEEL and its partners undertake to respect the security and confidentiality of your data.

In this context, ORIGIN STEEL has defined a strict policy of security of personal data which allows in particular to:

Secure the workstations of its employees with unique identifiers and complex and robust passwords in accordance with CNIL recommendations;
Limit the number of employees who have access to files containing your personal data (management of access rights and authorisations);
Regularly test and audit the information system to verify its high level of security.