Privacy

Dernière mise à jour le 11 December, 2025

1. Preamble

Aware of the importance of ensuring data confidentiality, GROUPE SDTECH makes strong commitments to the protection of personal data.

This data protection policy aims to inform you of the commitments and measures taken to ensure the protection of your personal data.

This privacy policy may evolve in accordance with the legal and regulatory context and the guidance of the French Data Protection Authority (CNIL).

Personal data refers to any information that can be linked to an identified or identifiable natural person. Personal data includes any type of information directly or indirectly attributable (i.e. when combined with other data) to the data subject, such as name, date of birth, address, email address, phone number, etc.

When GROUPE SDTECH collects your Personal Data, this collection is carried out in a fair and transparent manner through the presence of information notices or references to this Policy.

Personal Data means information about you that allows you to be identified, such as title, first name and surname, postal address, email address, phone number(s) and any other Personal Data useful for the purposes defined below.

Your Personal Data is collected via our forms when you browse our website. Regardless of the collection method, the mandatory nature of responses is indicated in the forms. If you do not wish to provide such information, you may not be able to access certain services or features of our websites and you will not be authorised to access services via our website. Other information is intended to help us know you better and is therefore optional. You are free not to provide it.

GROUPE SDTECH will take all appropriate measures to ensure that the Personal Data processed is accurate and kept up to date.

2. Data Collected

We ensure that Personal Data is collected only for specific, explicit and legitimate purposes and that it is not subsequently processed in a manner incompatible with those purposes.

We will only use your personal data if you have consented to it or if such use is based on one of the legal grounds provided by law:

  • The protection of our legitimate interests;
  • The performance of a contract or commitment to which you and/or we are bound;
  • Compliance with a legal or regulatory obligation;
  • The preservation of the public interest.

3. Purposes of Collection

The processing implemented meets explicit, legitimate and defined purposes.

Your Personal Data is collected and used to access the features and services offered on our websites and to maintain current, correct and relevant information about you, in particular to fulfil one or more of the following purposes:

  • Managing and optimising customer relations by responding to your requests for information and services and your contact requests, particularly when requesting a quote or brochure;
  • Your name, first name and contact details will allow us to contact you if you wish to apply for a job;
  • Your name, first name and contact details will allow us to process your quote request for the services that interest you;
  • Analysing and optimising site features by inviting you to respond to surveys that will allow us to improve and adapt our services.

Marketing:

Your personal data may be processed in order to promote GROUPE SDTECH products and services. If you consent, we may send you commercial messages (email, SMS, phone) containing information about our services.

You may withdraw your consent to the use of your data for prospecting purposes in the context of direct marketing activities without having to justify yourself, at any time and free of charge, upon simple request. To do so, simply click on the “unsubscribe” link in emails received from GROUPE SDTECH, or contact us at the following address: contact@sd-tech.com.

Once a customer has objected, their personal data will no longer be used for direct marketing purposes.

Sometimes, you may have expressed your wish not to have your data used, but we may still be obliged to use it for various reasons. In such cases, we will continue to use it if (i) the law requires us to do so and/or if we must fulfil a contractual obligation.

4. Consequences of Not Providing Data

Providing your personal data is optional; however, please note that fields marked with an asterisk are essential to us: without this information, the requested Service cannot be processed and you cannot be correctly identified. Fields not marked with an asterisk are not essential and failure to provide the corresponding data will not prevent you from benefiting from the requested Service.

5. User Information

In accordance with current regulations on the protection of personal data (namely the General Data Protection Regulation No. 2016/679 of 27 April 2016 and Law No. 78-17 of 6 January 1978 on Information Technology, Data Files and Civil Liberties, as amended), GROUPE SDTECH informs you about the personal data processing it implements:

  • The identity of the data controller;
  • The purpose of the processing for which the data is intended;
  • Whether responses are mandatory or optional;
  • The possible consequences of failure to respond;
  • The recipients of the data;
  • Your rights of access, enquiry, modification and rectification of information concerning you;
  • Your right to object on legitimate grounds, your right to object to your data being used for commercial prospecting purposes;
  • And your right to define instructions regarding the fate of your personal data after your death;
  • The retention period for categories of data processed.

6. Data Recipients

The recipients of your personal data are the relevant departments of GROUPE SDTECH.

GROUPE SDTECH may share your Personal Data with members of its commercial network.

GROUPE SDTECH may use subcontractors (any company required to process Personal Data following GROUPE SDTECH’s instructions) to process all or part of the Personal Data to the extent necessary for the performance of their services (for example: hosting a site, providing services related to site operation or sending commercial offers).

These subcontractors are contractually bound to respect the confidentiality and security of the Personal Data they may receive and to use it exclusively within the framework of the services entrusted to them by GROUPE SDTECH. Where Personal Data concerning you is transferred to subcontractors located outside the European Union, if necessary, a Personal Data transfer contract is signed by the subcontractor to maintain a level of protection of your Personal Data similar to that of GROUPE SDTECH and European legislation.

Except in the cases stated above, GROUPE SDTECH also undertakes not to sell, rent or transfer your Personal Data to third parties without your consent. GROUPE SDTECH may disclose your Personal Data without your prior consent in order to comply with a legal requirement. GROUPE SDTECH may disclose your Personal Data if it deems it necessary to do so in order to comply with a subpoena, warrant or other judgement or order that appears to be valid, or to an authority that has asserted its legitimate authority to obtain the information as part of a particular investigation or in the exercise of a legitimate interest, including the defence of its rights.

Is your personal data transferred outside the EU?

GROUPE SDTECH may transfer your personal data to recipients located in countries outside the European Economic Area (EEA). Transfer conditions are protected in accordance with current regulations on the protection of personal data.

7. Data Retention

GROUPE SDTECH will retain your Personal Data in a secure environment for the time necessary to fulfil the purposes for which it was collected and in compliance with applicable regulations (see appendix: data retention periods).

Thus, customer data is retained for the duration of the contractual relationship, plus 3 years for follow-up and prospecting purposes, without prejudice to retention obligations or limitation periods. Prospect data is retained for a period of 3 years from the last incoming contact with GROUPE SDTECH.

When we no longer need your data, we will securely destroy it in accordance with our internal policy or render it completely anonymous.

Certain data may be retained for an additional period to manage complaints and/or disputes, to meet our legal or regulatory obligations, or to respond to requests from authorised authorities.

8. Security

GROUPE SDTECH processes personal data securely and implements and maintains appropriate technical and organisational measures to protect personal data from accidental or unlawful destruction, accidental loss, alteration, unauthorised disclosure or access, particularly when processing involves transmitting data over a network, as well as from any other form of unlawful processing.

We require our staff and all third parties working for GROUPE SDTECH to comply with strict security and information protection standards, including contractual obligations under which they undertake to protect all data and apply strict measures regarding data transfer.

9. Your Rights

In accordance with current regulations on the protection of personal data, you have rights over your personal data:

  • The right to obtain information about the data we hold about you and the processing implemented;
  • In certain circumstances, the right to withdraw your consent to the processing of your personal data at any time (please note that we may continue to process your personal data if we have a legitimate reason to do so);
  • In certain circumstances, the right to receive data in electronic form and/or to ask us to transmit this information to a third party where technically feasible (please note that this right only applies to data you have provided to us – right to data portability);
  • The right to modify or correct your data.

You also have:

  • The right to define general and specific instructions defining how you wish these rights to be exercised after your death, by sending an email to: contact@sd-tech.com or by post to GROUPE SDTECH – 3 rue de la Bergerie, 30100 Alès, France, subject to providing proof of identity for verification purposes.
  • The right to obtain from the data controller the erasure, without undue delay, of personal data concerning you when one of the following grounds applies:
    • The personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
    • The data subject withdraws the consent on which the processing is based;
    • The data subject objects to the processing on legitimate grounds;
    • The personal data has been unlawfully processed;
    • The personal data must be erased to comply with a legal obligation provided for by Union law or by the law of the Member State to which the data controller is subject. (Article 17 of Regulation 2016/679).
  • A right to object to the processing of your personal data on legitimate grounds, as well as a right to object to your data being used for commercial prospecting purposes.

Finally, you have a right to object to the processing of your personal data on legitimate grounds, as well as a right to object to your data being used for commercial prospecting purposes, by sending an email to: contact@sd-tech.com or by post to GROUPE SDTECH – 3 rue de la Bergerie, 30100 Alès, France, subject to providing proof of identity for verification purposes.

Lastly, you have the option to register free of charge on the telephone marketing opt-out list called Bloctel, managed by the company Opposetel under a public service delegation.

10. Changes to this Privacy Policy

This privacy policy may be updated from time to time, particularly due to changes in regulations. We recommend that all our users regularly consult this page to keep informed of the latest information concerning our privacy practices.

11. Complaints

You have the right to lodge a complaint with the supervisory authority, the French Data Protection Authority (CNIL), by sending a letter to the following address: CNIL – 3 Place de Fontenoy – TSA 80715 – 75334 Paris – Cedex 07.