Request a demo

Data privacy policy

What is the use of this policy?

We attach great importance to the protection and confidentiality of your personal data, which represents for us a guarantee of seriousness and trust.

The data privacy policy clearly demonstrates our commitment to ensuring compliance with applicable data protection regulations, including those of the General Data Protection Regulation (“GDPR”).

In particular, the Privacy Policy aims to inform you about how and why we process your data in connection with the services we provide.

Who is this policy for?

The policy applies to you, regardless of your place of residence, as long as you are a user of the Newboot platform.

The policy only applies to the processing we carry out ourselves to provide you with the Newboot service and not to the processing you carry out using our platform, for which you are solely responsible.

Why do we process your data?

As part of the services offered, we are necessarily required to process your personal data for the following reasons and on the following bases:

  • To benefit from the services and features offered by our platform (e.g. ticketing, team management, etc.) based on our general conditions of use.
  • To ensure the management of user accounts (e.g.: account creation, access to the platform and deletion of accounts) based on our general conditions of use.
  • To guarantee and strengthen the security and quality of our daily services (e.g. statistics, data security, etc.) based on the legal obligations incumbent on us, our general conditions of sale and our legitimate interest in ensuring the proper functioning of our services.
  • To communicate with our support service via our internal messaging system based on our general conditions of use.
  • To receive our technical emails (e.g. password changes, etc.) essential to the proper functioning of our service based on our general conditions of use.
  • Finally, we may also install “Cookies” on your device. For more information on the use of “Cookies”, we invite you to consult our “Cookies Policy”.

Your data is collected directly from you when you use our platform and we undertake to only process your data for the reasons described above.

What data do we process and for how long?

We have summarized the categories of personal data we collect and their respective retention periods.

  • Professional identification data (e.g.: surname, first name, position, company, etc.) and contact details (e.g.: personal or professional email address, Linkedin, etc.) kept for the entire duration of the provision of the service to which are added the legal limitation periods which are generally 5 years.
  • Connection data (e.g. logs, IP address, etc.) kept for a period of 1 year.
  • Cookies are generally stored for a maximum period of 13 months. For more details on how we use your cookies, you can consult our cookie policy, which is accessible at any time on our website.

If you would like more details on the retention periods applicable to your data, you can contact us at: contact[at]newboot.io. In all cases, all your data will be deleted when you request the deletion of your account, with a maximum period of 30 days.

The deletion of your personal data is irreversible, and we will no longer be able to share it with you after this period. At most, we may only retain anonymous data for statistical purposes.

Please also note that in the event of litigation, we are required to retain all data concerning you for the entire duration of the processing of the file, even after the expiry of the retention periods described above.

What rights do you have to control the use of your data?

Applicable data protection regulations grant you specific rights that you can exercise, at any time and free of charge, in order to control the use we make of your data.

  • Right to access and copy your personal data provided that this request does not conflict with business secrecy, confidentiality, or the secrecy of correspondence.
  • Right to rectify personal data that is erroneous, obsolete or incomplete.
  • Right to request the erasure (“right to be forgotten”) of your personal data which is not essential to the proper functioning of our services.
  • Right to limit your personal data which allows you to photograph the use of your data in the event of a dispute over the legitimacy of processing.
  • Right to the portability of your data which allows you to recover part of your personal data in order to store it or transmit it easily from one information system to another.
  • Right to give instructions on the fate of your data in the event of death, either through you or through a trusted third party or beneficiary.

For a request to be considered, it must be made directly by you to contact[at]newboot.io. Any request not made in this manner cannot be processed.

Requests cannot come from anyone other than you. We may therefore ask you for proof of identity if there is any doubt about the identity of the requester.

We will respond to your request as soon as possible, but within three months of receipt, if the request is technically complex or if we receive numerous requests at the same time.

Please note that we may always refuse to respond to any excessive or unfounded request, particularly in view of its repetitive nature.

Who can access your data?

WE NEVER TRANSFER OR SELL YOUR DATA TO THIRD PARTIES OR BUSINESS PARTNERS. ALL OF YOUR PERSONAL DATA IS USED EXCLUSIVELY BY OUR TEAMS OR OUR IT SERVICE PROVIDERS.

More specifically, we only share your data with people who are duly authorized to use it to provide you with our service, such as our IT department or our customer relations department.

Your personal data is also transferred to our IT service providers who are used only to operate our service such as our data host or our technical email sending tool.

We would like to point out that we monitor all our IT service providers before hiring them to ensure that they scrupulously comply with the applicable rules regarding the protection of personal data.

How do we protect your data?

We implement all the technical and organizational means required to guarantee the security of your data on a daily basis and, in particular, to combat any risk of destruction, loss, alteration, or disclosure of your data that would not be authorized (e.g.: secure passwords, data encryption, secure servers, training, access control, antivirus, etc.).

Can your data be transferred outside the European Union?

Unless strictly necessary and exceptionally, we never transfer your data outside the European Union, and your data is always hosted on European soil. Furthermore, we do our utmost to only hire service providers who host your data within the European Union.

In the event that our service providers are nevertheless required to transfer personal data concerning you outside the European Union, we scrupulously ensure that they implement the appropriate guarantees to ensure the confidentiality and protection of your data.

Who can you contact for more information?

Our Data Protection Officer (“DPO”) is always available to explain in more detail how we process your data and to answer your questions on the subject at the following address: contact[at]newboot.io

How can you contact the CNIL?

You can contact the French data protection supervisory authority (the “Commission nationale de l’informatique et des libertés” or “CNIL”) at any time using the following contact details: CNIL Complaints Department, 3 place de Fontenoy – TSA 80751, 75334 Paris Cedex 07 or by telephone at 01.53.73.22.22.

Can the policy be changed?

We may modify our privacy policy at any time to adapt it to new legal requirements as well as to new processing operations that we may implement in the future. You will of course be informed of any changes to this policy.