Personal Data Protection Charter
Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (hereinafter “GDPR”) aims to strengthen the security and protection of such data on the occasion of processing carried out by companies in the European Union.
This charter informs Addactis Group employees, in a concise, comprehensible and easily accessible format, of the processing of their personal data carried out in connection with the provision of internal training courses via the www.learning.addactis.com website.
ADDACTIS Group, registered with the Banque-Carrefour des Entreprises under company number 0537.718.411 and whose registered office is located at Avenue Louise, 120 – 1050 Brussels – Belgium, is responsible for processing personal data for the Addactis e-learning site.
Our commitments
As a Data Controller, we undertake to comply with the main principles of the GPDR and in particular:
- Principle of minimization: only the data necessary with regard to the purposes pursued are collected and processed.
- Determined, explicit and legitimate purpose: the data collected is used only within the strict framework of the purposes expressly set out in this Charter;
- Limiting access to data: this is ensured by limiting the number of people who have access to said data, and by a systematic obligation of confidentiality.
- Privacy by design and Privacy by default: our Group applies these principles to all its products and services.
Data collected
In the course of providing in-house training via the Addactis e-learning site, we collect and process various categories of personal data:
- Identification data: Last name, first name, professional e-mail address and password for your Microsoft account, as well as a username.
- Data relating to the Addactis e-learning site: Registration date, role, number of courses created, last connection, session, number of lessons-courses-chapters completed, number of quiz attempts, number of quizzes passed, percentage of course completion, percentage of quiz success, last activity.
- Data relating to website browsing, cookies and similar technologies: last connection, number of sessions, time stamps, IP addresses of users, technical data relating to the equipment and browser used by users, website audience and service usage statistics.
For further information on the use of cookies, please consult our cookie policy.
The www.learning.addactis.com website uses an SSO (Single Sign-on) system. This is a session and user authentication service, enabling a user to use one set of credentials to access one or more applications.
The provision of your personal data is mandatory for processing.
ADDACTIS Group ensures that no personal data is collected without your knowledge.
Processing of personal data
As part of our services and the use of this website, we process the following personal data:
| Purpose | Legal basis | Retention period |
|---|---|---|
| Allow access to and use of the Addactis e-learning site | This processing is based on our legitimate interest, namely to enable you to access internal training content, including but not limited to topics required by regulations and/or our commitments to customers. | Until the employee leaves the Addactis Group |
| To monitor course attendance by employees | This processing is based on our legitimate interest, i.e. to carry out statistical analyses of course attendance and to ensure compliance with our regulatory obligations. | Until the employee leaves the Addactis Group |
| To analyze browsing data on our website | This processing is based on our legitimate interest in improving our services and managing relations with site users. | Cookies policy |
No personal data is used for purposes not expressly provided for in this Privacy Policy.
Destination of your data
The personal data collected within the framework of our services and the use of this website are processed by the Addactis Group’s Communication and Marketing Department, as well as by the persons responsible for the training courses followed within the various Addactis Group entities.
No personal data is passed on to third parties.
If we use subcontractors, we enter into contracts with them defining the terms and conditions of processing and the guarantees to be implemented in terms of personal data protection, in accordance with the regulations in force.
Personal data security
An Information Systems Security Policy (ISSP) has been implemented, adapted to the nature of the data processed and the activities of the Addactis Group. Appropriate physical, logical and organizational security measures are in place to guarantee the security and confidentiality of data, and in particular to prevent unauthorized access.
Exercising your rights
In accordance with current legislation, you have:
- the right to access your personal data processed by us;
- the right to rectification of your data if it proves to be incomplete or inaccurate;
- the right to erasure of your personal data;
- the right to limit the processing of your personal data;
- the right to object to the processing of your data, unless there is a compelling reason, without limit;
- the right to withdraw your consent at any time.
If you wish to exercise your rights or have any questions regarding the protection of your personal data, please contact our Data Protection Officer by e-mail at dpo@addactis.com.
If we do not respond to your request to exercise the above rights within one month of receiving your request, you have the right to lodge a complaint with the supervisory authority.
Revision of the charter
We may revise this charter, in particular in the event of changes in processing or in the regulations applicable to the protection of personal data.