Privacy Policy STRADAWORLD

I.Introduction 

Our mission is to deliver simple and useful business applications to the greatest number of people, to bring openness, connectivity, and fluidity to the massification of flows, and to manage complexity within our software factory and our "Cloud Native | Data Driven | Mobile" platform to allow you to focus on your business, all in a secure manner.

1.Purpose of the policy

The purpose of this policy is to define the role that Strada has in ensuring the protection of your data , the types of data processing used and to present to you your rights as well as all relevant information regarding your data privacy.

II. Scope of application

1.Personal data covered by the policy
This policy covers data that falls under the personal data definition in the article 4 of the GDPR .

To access the comprehensive list of processed data, please contact us.

2.Legal basis for processing personal data

We only process your data if:
     - You have given consent to the processing of your personal data for one or more specific purposes.
     - The processing is necessary for the performance of a contract.
     - The processing is necessary for compliance with a legal obligation to which the controller is subject.

III. Policy

1.Data protection principles

a.Fair and lawful processing
All personal data processing is legitimate and in accordance with contractual obligations to ensure the delivery of our services.

b.Transparency
You will be informed of the nature of the collected personal data, its use, and processing purposes as referred to in articles 13 and 14 of the GDPR see III.1.c .

Strada is committed to sharing the following information:
     - Contact details of Strada see IV
     - The purposes of the processing for which the personal data are intended see III.1.c
     - The legal basis for the processing see III.1.a

c.Purpose limitation
Only necessary data is collected.
Processing is limited to legitimate purposes.
To access the comprehensive list of processed data and processing purposes, please contact us.

d.Data minimization
Only necessary data is collected from each service.
New types of data shall not be collected unless a legitimate purpose is defined, and DPIA (Data Protection Impact Assessment) is conducted, in which case you will be informed and the following policy will be updated.

e.Accuracy
Strada shall insure the accuracy of data.
Data processing shall not compromise the accuracy of data.

f.Storage limitation
Retention period is defined based on legal obligations.
Retention duration shall be respected.
Any retention of information beyond the said specified duration shall occur only after a data anonymization process.

g.Integrity and confidentiality
Strada ensures an appropriate level of security to ensure the integrity and confidentiality of data.
Data access is limited to authenticated and authorized users.

2.Your  rights

a.Right of access
You have the right of access to your personal data.
Access to personal data is granted securely, using authentication and authorization validation.

b.Right to rectification
You have the right to rectify inaccurate personal data.

c.Right to erasure
You have the right to the erasure of your personal data without undue delay, the following exceptions apply:

     - Data related to legal documents shall be erased after the proper duration referenced here ref .

     - Other contractual obligations.

d.Right to data portability
Clients have the right to receive the personal data of their employees.
You have the right to receive your personal data.

e.Right to object
Strada shall ensure that objection requests will be processed as defined in the article 21 of the GDPR .

f.Right not to be subject to automated decision-making
You will be informed of new data processing.

3.Data protection

a.Data Protection Officer (DPO)
To communicate with our DPO, please send an email to the following address zoe@strada.fr, please add to the object of the email the following tag [DPO].

b.Chief Information Security Officer (CISO)
To communicate with our CISO, please send an email to the following address zoe@strada.fr, please add to the object of the email the following tag [CISO].

c.Users responsibilities
     - You are prompted to protect your credentials.
     - You  accept accountability for your individual user accounts.
     - You shall report any suspected security violations to Strada.
     - You shall not under any circumstances disclose suspected security vulnerabilities publicly.  
     - You shall restrict use of our services to authorized purposes.

4.Security and confidentiality

Security is one of our priorities, multiple security measures are in place to protect your information to prevent loss, misuse and unauthorized access or disclosure, and to protect the integrity and confidentiality of your data. These measures take into account the sensitivity of the collected information. We also stay UpToDate with new privacy-enhancing technologies in order to continually enhance the security of your data.

IV. Contact us

1.Email
zoe@strada.fr

2.Address
STRADA
Zone de la Ferrière Sud
10 rue Jean Mermoz - CS 10226
79308 BRESSUIRE CEDEX
FRANCE

V. Changes to the policy

We reserve the right to modify this Privacy Policy at any time in accordance with applicable law. If applicable, we will publish the revised version of the Privacy Policy and update the "Last updated" date at the beginning of it.