PRIVACY AND DATA PROTECTION POLICY

Version effective as of May 25, 2018

ESCO (hereinafter "we"), keen to develop a strong and lasting relationship based on trust with our clients (hereinafter "you"), informs you through this document of the privacy and personal data protection policy that we have put in place for the processing of your personal data in accordance with the European General Data Protection Regulation (GDPR).

1. What types of personal data do we collect?

We collect and process all or part of the following personal data:
– Last name, first name
– Address, telephone number, email address
– Name of the company that employs you
– Job title, position or role

2. What happens when you use our website or send us an email?

When you visit our website, we save certain technical data that is automatically transmitted to us by your web browser. This data includes the following information:
– browser type and version, operating system
– IP address of the computer accessing the site
– time of the server request and connection status

Furthermore, our website uses Google Analytics, a service provided by Google, Inc., which allows us to track and generate reports on website usage. To do this, Google Analytics places small text files called "cookies" on your computer or other device you use to browse. These cookies collect information about the number of visitors, the pages visited, and the time spent on our site. This information is aggregated and anonymized.

3. Who is responsible for processing your personal data?

The data officer is responsible for your personal data within the ESCO company.

4. On what legal basis do we collect your personal data?

The legal basis for collecting and processing your personal data depends on the purpose of the processing. This may include:
– pursuing our legitimate interests, provided that this does not disproportionately affect your interests, fundamental rights and freedoms;
– entering into or performing a contract;
– your consent given at the time your personal data was entered.

You can withdraw your consent to the processing of your personal data at any time without this withdrawal affecting the legality of the data processing already carried out and the legal retention periods.

5. How is your personal data used?

Your personal data is primarily processed for customer management purposes and in particular to respond to your requests.

6. Who has access to your personal data and how is it secured?

We have put in place appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful access.

We may transmit your personal data to third parties (subcontractors) when necessary for the performance of a contract (e.g. to companies responsible for delivering the goods or to the credit institution responsible for the payment procedure) or when we use technical or organizational services.

The third parties in question are legally obligated to process your personal data exclusively on our behalf and in accordance with our instructions, and to ensure the security of your data through appropriate technical and organizational measures.

Finally, we may also disclose your personal data when we are legally obligated to do so.

7. What are your rights regarding the processing of your personal data?

You have the right to access, request a copy, request the correction, erasure or limit the use of your personal data, and also to request that your data be transferred to another data controller other than ESCO.

More specifically, you have the right to:
– Receive a copy of your personal data on a commonly readable electronic medium;
– Rectify any personal data that you consider inaccurate or erroneous;
– Request the complete erasure of your data;
– Request the data controller, without the controller being able to object and, if technically possible, to transfer your personal data to another data controller.

Before proceeding with any request, your identity may be verified. This request is free of charge, and we are committed to responding as quickly as possible.

Finally, you also have the option to withdraw your consent without this affecting the legality of the processing of your data carried out before this withdrawal.

In all cases, if your data protection is breached, you have the right to lodge a complaint with the supervisory authority in the country where you live. For Switzerland, this is the Federal Data Protection and Information Commissioner.

8. How long do we keep your data and how is it stored?

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, but without exceeding the maximum period provided for by law, particularly in civil and commercial matters.

We delete them as soon as they are no longer needed or you have withdrawn your consent, but in any case, at the end of the retention period prescribed by law.

Your personal data is stored either in our databases or in the databases of our service providers (subcontractors).

Please note that this privacy policy may be modified by us, and any changes will be posted on this page. In certain circumstances, renewed consent to the processing of your personal data may be required.