aginion.com - Privacy Statement

General

Effective May 25, 2018

This notice discloses the data privacy practices of Aginion SA, Aginion Luxembourg SA and Aginion SL. This Data Privacy Notice applies solely to information collected by Aginion SA, Aginion Luxembourg SA and Aginion SL.

It will notify you of the following:

• What personally identifiable information is collected from you, how it is used and with whom it may be shared.
• What choices are available to you regarding the use of your data.
• The security procedures in place to protect the misuse of your information.
• How you can correct any inaccuracies in the information.

Identity of the Data Processor:

Aginion Luxembourg SA

142, Boulevard de la Petrusse

L-2330 Luxembourg

Information Collection, Use, and Sharing

Data which is not generated, cannot be misused. We therefore minimize the generation and recording of personally identifiable information whereever and whenever possible.

We are the sole owners of the information collected from you. We only have access to, or collect, information that you voluntarily give us via email, electronic forms, in writing, and/or other direct contact from you. We will not re-distribute, sell or rent this information to anyone (third party). We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request. No automatic decision-making or profiling is performed on the basis of personally identifiable information.

Types of Data Processing

E-Mail Communication

Scope of processing

Any data provided by you when contacting us via e-mail or replying to an e-mail sent to you by us.

Legal Basis and Purpose

We only collect and process this data to enable contact at the request of the communication partner.

The legal basis for the processing of the data transmitted in the course of sending an e-mail is GDPR ART 6 §1 (f) and if necessary also GDPR ART 6 §1 (a). If the e-mail contact aims to conclude a contract, the additional legal basis for the processing is GDPR ART 6 §1 (b), (c). The legitimate interest within the meaning of GDPR ART 6 §1 (f) lies in answering a customer inquiry or answering a contact request on other topics.

Retention

The data will be stored for as long as necessary to complete the request. Insofar as these are commercial letters subject to commercial and tax law, these are also stored in accordance with the statutory retention periods. You have the option at any time to revoke your consent to the processing of personal data with effect for the future or to object to further use. The contradiction can be explained by email to dp@aginion.com. Regulatory or legal obligations may prevent Aginion from deleting or anonymizing your personal data.

Helpdesk/Customer Support

Our service includes access to our customer support department. When you open a support ticket, speak to one of our representatives directly, or otherwise engage with our support team, you will be asked to provide contact information, a summary of your request for support, and other relevant information.

Scope of processing

Any data provided by you when submitting a request for support.

Basis and Purpose

We only collect and process this data to enable contact at the request of the communication partner.

The legal basis for the processing of the data submitted as part of a support request is GDPR ART 6 §1 (f) and if necessary also GDPR ART 6 §1 (a). If the request aims to conclude a contract, the additional legal basis for the processing is GDPR ART 6 §1 (b), (c). The legitimate interest within the meaning of GDPR ART 6 §1 (f) lies in providing customer support and processing requests for support and other topics.

Retention

The data will be stored for as long as necessary to complete the request. Insofar as these are commercial letters subject to commercial and tax law, these are also stored in accordance with the statutory retention periods. You have the option at any time to revoke your consent to the processing of personal data with effect for the future or to object to further use. The contradiction can be explained by email to dp@aginion.com. Regulatory or legal obligations may prevent Aginion from deleting or anonymizing your personal data.

Aginion Website

The Aginion corporate website (aginion.com):

• Does not track its visitors and does not use external tracking services
• Does not use cookies
• Does not generate any visitor logs
• Does not collect any personal information

Your Access to and Control Over Information

You may opt out of any future contacts from us at any time.

You can do the following at any time by contacting our data protection officer (Contact information listed at the bottom of this page):

• See what data we have about you, if any.
• Change/correct any data we have about you.
• Have us anonymize or delete any data we have about you.
• Express any concern you have about our use of your data.
• Object to certain types of processing of your personal data.
• Withdraw previously granted permissions for processing your personal data.
• Transfer the data we hold about you to another organisation.

Lastly, you have the right to file a complaint with the responsible Data Protection Authority, when you are of the opinion that our processing of your personal data is not in compliance with applicable legislation. The complaint form of the Luxembourgish Data Protection Authority is accessible at: cnpd.public.lu

Security

Your personal data is stored both electronically and manually in our data centres in Luxembourg and can be accessed from our offices via dedicated network connections or from anywhere through a secured VPN connection.

We use a combination of technical, administrative, and physical controls to maintain the security of your data. Most importantly we are making use of specific technologies to encrypt all our services.

When you submit sensitive information, your information is protected both online and offline. Wherever we collect sensitive information (such as contact information, resume/cv data), that information is encrypted and transmitted to us in a secure way. While we use encryption to protect sensitive information transmitted online, we also protect your information offline.

Only employees who need the information to perform a specific task are granted access to personally identifiable information. Anyone with this access is subject to strict contractual confidentiality obligations and may be disciplined or terminated if they fail to meet these obligations. The computers, servers and printed documentation used to store personally identifiable information are kept in a secure environment. We regularly review our information collection, storage, and processing practices, including physical security measures, to prevent unauthorized access to our systems.

Data Protection Officer

Aginion Luxembourg SA

DP Officer

142, Boulevard de la Petrusse

L-2330 Luxembourg

dp@aginion.com

Changes to this Privacy Policy

We may change this privacy policy from time to time. We will post any modifications on this page and, if they are significant, we will provide a more prominent notice via email. We will also keep prior versions of this privacy policy in an archive for your review. We encourage you to review our privacy policy whenever you use our services to stay informed about our information practices and what you can do to help protect your security.