Four Data, through its Fuel it brand, processes personal data in compliance with the laws and regulations in force, and in particular with the General Data Protection Regulation (RGPD), the French Data Protection Act of January 6, 1978, as amended, and the guidelines issued by the CNIL.
Personal Data Governance Policies are implemented in companies and compliance with their provisions is monitored.

1. Specific, explicit and legitimate purpose of the processing

Personal data is collected for specific purposes (purposes), which are made known to the persons concerned. This data may not be used subsequently in a manner incompatible with these purposes. This data is collected fairly and users are informed; no collection is made without the knowledge of the individuals.

2. Relevance of the data collected

In accordance with the current RGPD regulations, Four Data may collect personal data directly from its individual customers or indirectly via business customers in accordance with the current legislation. In accordance with the principle of minimization, we collect only the data that is necessary for the purposes for which it is processed.

The different categories of data collected when you subscribe to Four Data services (SaaS web interfaces for professionals and for individual or business customers) as part of your use of our services or applications are the following:

Data collected through the use of the Professional Desk software & Smartphone Application (Android & iOS)

• Identification data (in particular name, first name, customer number, technical identifiers of the customer);
• Contact information (including mailing address, email address, telephone numbers);
• Technical data (including content type, format and dimensions, consumption data)
• Usage data (including web pages visited, quotes used, type of media, etc.);
• Connection data (including your computer’s IP address, connection and usage logs);
• Financial data in the case of the use of the plugin “Payment by FI” (means and payment history);
• Commercial data (list of products and services you benefit from, data of the deliverer & distributor)

Data collected in the context of the use of the Professional Desk software

Identification data (in particular name, first name, customer number, technical identifiers of the
client);

• Contact information (including mailing address, email address, telephone numbers);
• Technical customer data (data in the customer interface)
• Usage data (including web pages visited, quotes used, type of media, etc.);
• Connection data (including your computer’s IP address, connection logs and
  of use);
• Commercial data (list of products and services you benefit from & plugin used)

3. Limited retention of personal data

Personal data is kept for a limited period of time, which does not exceed the time required for the purposes of collection. Data retention periods are made known to individuals, and vary according to the nature of the data, the purpose of the processing, or legal or regulatory requirements.

4. Rights of individuals

All the necessary means to guarantee the effectiveness of the rights of the persons on their personal data are implemented via the professional software Desk & its plugin RGPD

• Clear and complete information on the data processing implemented, easily
  accessible and understandable by all.
• Easier access to data: Every person has rights to the data concerning him or her,
  that she can exercise at any time and free of charge by making the request in her space
  customer.

Thus, people can access all their personal data, and in some cases have them corrected (inaccurate, incomplete data), deleted, or ask to temporarily limit their use. Individuals also have a right to portability with respect to data that they have personally provided and where such data has been provided on the basis of the individual’s explicit consent or the performance of a contract.
These rights are facilitated online or possible by any other means according to the terms and conditions made known to the persons. These requests can also be addressed to the DPO.

5. A Data Protection Officer (DPO)

In order to preserve the privacy and protection of personal data of all, the company FOUR DATA has appointed since 2018 a Correspondent Informatique et Libertés (CIL). Today called “Data Protection Officer” (DPO), the DPO carries out his missions independently and for all the company’s brands. The DPO is a guarantee of trust. Specialized in the protection of personal data, responsible for ensuring the proper application of data protection rules, privileged interlocutor of the National Commission for Information Technology and Civil Liberties (CNIL) and of all persons concerned by the collection or processing of personal data.

6. Monitoring of the Personal Data Protection Policy

This policy, which is available to everyone on the Four Data brand websites, is updated regularly to take into account legislative and regulatory changes.