GDPR Detail

INFORMATION LEAFLET ON THE FORM TO EXERCISE YOUR RIGHTS

Apsys is committed to protecting the rights of individuals in accordance with the General Regulation on Data Protection (EU Regulation 2016/679) of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (hereinafter “GDPR”) and all applicable national laws and regulations on the protection of personal data (collectively referred to as “data protection laws and regulations”).

Purpose of data processing and legal basis

The purpose of the processing is the management of requests addressed to the Apsys Data Protection Manager. This processing enables them to receive all requests in a structured format; to investigate and follow up the requests in liaison with the services concerned; to request additional information on the request or on the identity of the person concerned; to keep a history of requests; to elaborate activity data (statistics) and thus to make reports to the Director of Apsys and to the Data Protection Office.

The processing carried out in order to meet legal obligations in terms of personal data protection is therefore necessary to comply with a legal obligation to which any data controller is subject. For all other processing operations set up to draw up statistics and improve the request processing process, the legal basis is the legitimate interest of Apsys in order to meet the aforementioned objectives.

Personal data collected

The data that we process is only that which you provide at the time of sending the form.

Persons concerned

Data processing concerns all persons who wish to submit to the Apsys Data Protection Manager a request for information on the data processing implemented by Apsys or to exercise their rights on this processing. As well as all persons within Apsys in charge of helping the Data Protection Manager to answer the request.

Shelf life

Your personal data is kept for the calendar year of the request, plus five years.

Details of the recipients of personal data processed

Apsys undertakes to limit access to your personal data and to take all organizational and technical measures to ensure that such access is secure in order to protect your data.

 

Name of the recipient Reason for access
Data Protection Manager Instruction and demand management
Apsys processing manager Follow up on current requests
Apsys Service Realization of the request

Details of transfers of personal data to a country outside of the European Union

Apsys does not transfer data outside the European Union.

Security

We implement technical and organizational security measures to protect the data under our control. For this processing, the Data Protection Manager stores the data securely in an area accessible only to the Data Controller. The files are pseudonymized and no tracking files contain identifying information about individuals.

Your Rights

In application of the laws and regulations mentioned above, if you have any questions about the management of your personal data or to exercise your rights (CNIL website), please fill out the form below, or send it by mail to the following address: “Apsys, Data Protection Manager, 37 Avenue Escadrille Normandie Niemen, 31700 Blagnac, France”.

If you are not satisfied with the answers provided, you have the right to contact the data protection supervisory authority directly.