SCOPE OF THE NOTIFICATION
Your personal data will be under the responsibility of EverBe.
PERSONAL DATA PROCESSED
We collect the information you provide directly to us when:
- You contact us through the form on our website;
- You submit your application, either spontaneously or by responding to an offer in our dedicated space;
- Cookies are placed on your device;
In particular, we collect the following information: information relating to your identity, email address, telephone number, IP address, navigation data, your CV, cover letter and any other information you may share with us.
USE OF YOUR PERSONAL DATA
We process your personal data in compliance with the provisions of the General Data Protection Regulation (GDPR) and the amended “Data Protection Act” of 6 January 1978.
Your data will only be used by EverBe if there is an appropriate and relevant legal basis for doing so.
EverBe processes your personal data when:
– this processing is necessary to pursue its legitimate interest in allowing potential prospects to contact it via a form;
– such processing is necessary to pursue its legitimate interest in allowing candidates to apply for its offers or to apply spontaneously;
– a requirement to process your personal data to comply with a legal obligation under the applicable legislation in the Member States and the European Union, to which we are subject;
Therefore, EverBe is likely to use your data as prospects, candidates or users of its site for the following purposes:
- to manage information requests;
- to manage the applications received;
- to follow the navigation history of users;
DISCLOSURE OF YOUR PERSONAL DATA
Depending on your relationship with us, we may disclose to the following third parties some or all of the personal data we collect and obtain about you:
- any person authorized to process your personal data from our internal services, including in particular employees in marketing, human resources, assistance and IT departments;
- the other companies of the Mercer Group in the European Union, including the employees of these companies in various departments;
- IT service providers and service providers regarding our website;
- professional advisors, authorized persons working for EverBe and chartered accountants, regulatory authorities (e. g. law enforcement agencies and public bodies) and third parties involved in M&A or securitization transactions by the Group.
PERSONAL DATA TRANSFERS
We may transfer your personal data to our third-party service providers and other recipients outside the European Economic Area (“EEA“). Some recipients who process your personal data on our behalf may transfer such data outside the EEA to a country that does not provide an appropriate level of protection for your personal data. When such transfers occur and the country or third party does not benefit from an adequacy decision by the European Commission, appropriate safeguards are put in place to protect your personal data.
To date, your data may be punctually accessible to our service providers located in the United States and certified Privacy Shield to ensure the functioning of our site or our management tools in terms of communication and customer relations.
If you apply on our website, your data may be accessible to our HR tools provider, located in the United States. In order to ensure an adequate level of protection for your data, standard contractual clauses have been signed with our service provider.
The list of US entities covered by the Privacy Shield decision is available here; to obtain a copy of the contractual elements signed by EverBe, you can contact our Data Protection Officer by email [email protected] or by post EverBe, for the attention of the Data Protection Officer, Tour Ariane, 5 Place de la Pyramide – 92800 Puteaux.
DATA RETENTION PERIOD
In general, we will keep your personal data for a reasonable period of time as specified below. As soon as we believe that we no longer need to store your personal data, we delete it from our systems.
- Retention of data for marketing purposes: three years from the last contact with you;
- Retention of data for managing your application: 2 years from the last contact we have with you;
- Retention of data collected on the website: thirteen months from the date of deposit of the cookie.
Please note that in some cases, we may retain your data for a longer period of time, for example, if we are handling an ongoing claim or if we believe in good faith that the relevant legislation or regulatory authority can reasonably expect or require us to retain your personal data.
A “cookie”, also called “tracker device”, is a small text file containing data that is stored on a device (computer, tablet, smartphone…) when you visit a website or mobile application.
The registration of a cookie in a terminal is essentially subject to the user’s will, which he/she can express and modify at any time and free of charge through the choices offered to him/her by his browser software.
If you have accepted the storage of cookies in your browser’s device, the cookies embedded in the pages and content you have viewed may be temporarily stored in a dedicated area of your device. They will be readable only by their transmitter.
We use these cookies and other tracking devices to compile statistics, analyse activity, traffic volumes and use of the various elements of the site (content visited, route…) in order to improve ergonomics and interest.
To achieve these purposes, we place, after your consent, the following cookies in your device:
- identification and authentication cookies that allow certain information to be stored, such as the language chosen for the site;
- audience and load-balancing cookies, which are designed to improve your browsing experience by helping us understand your interactions with our sites (most visited pages, applications used, etc.). These cookies can be used to create statistics, or to test different displays in order to improve the interest and ergonomics of our services;
- Analyse the activity of our website. We use Googles Analytics cookies to collect information about traffic and the number of visitors to the website. These tools allow us to measure the navigation performance of our website and [to be completed if necessary].
To disable Google Analytics, you can go to the following link:
As there are many different browsers, it is impossible for us to provide explanations for each of them, but you can visit the “All About Cookies” website for more information:
For Internet Explorer 8.0 and beyond:
- Choose the “Tools” menu, then “Internet Options”.
- Click on the “Confidentiality” tab.
- Select the desired level using the cursor.
For Mozilla Firefox:
- Choose the “Tools” menu and then “Options”.
- Click on the “Privacy” icon.
- Locate the “cookies” menu and select the options that suit you
- Choose the “Settings” menu
- Click on “Display advanced settings” and go to the “Privacy” section
- Click on “Content Settings”.
- Choose the “File” menu then “Preferences”.
- Click on the “Privacy” icon.
- Define your settings
- Press the key at the top right of the screen
- Go to “Settings” then “Privacy and Security”
- Define your settings
For Dolphin on Android:
- In the menu go to “More” then “Settings”.
- Choose the Confidentiality menu then “Security”
- Define your settings in the “Cookies” menu
For Safari on iOS:
- In the “Settings” application, select “Safari”.
- Go to “accept cookies” in the “Privacy” section
- Define your settings
YOUR RIGHTS AND THEIR EXERCICE
You have a number of rights with regard to your personal data, which are set out in this chapter. These rights include in particular the right to object to the processing of your personal data, when such processing is carried out for the purpose of prospecting or on the basis of our legitimate interests. These rights may not be absolute.
What does it mean?
Right of opposition
you have the right to object at any time to the processing of your personal data, when such processing is linked to a prospecting activity or when we process them on the legal basis of the legitimate interests we pursue.
Right of access
You have the right to obtain a copy of your personal data and to access the information we hold about you.
Right of rectification (and erasure)
You have the right to have your personal data rectified if they are inaccurate or incomplete.
Right to be forgotten
You have the right to have your personal data deleted. However, the right to erase (or the “right to forget”) is not absolute and is subject to special conditions. We may retain your personal data to the extent permitted by applicable law, and in particular when their processing remains necessary for the fulfilment of a legal obligation to which EverBe is subject or for the establishment, exercise or defence of a legal claim.
Right to restriction of processing
You have the right to obtain the limitation of processing in certain circumstances (for example when EverBe no longer needs your personal data but they are still necessary for the establishment, exercise or defence of a legal claim).
Right to data portability
You have the right, in certain circumstances, to receive the personal data concerning you that you have provided to EverBe in a structured, commonly used and machine-readable format and to transmit them to another controller.
Right to withdraw consent
If you have given your consent to EverBe processing your personal data, you have the right to withdraw it at any time.
Right to define guidelines on the fate of your personal data after your death
You can define guidelines for the storage, erasure and communication of your personal data after your death. These guidelines are general or specific. General guidelines are registered with a trusted third party. The specific directives are addressed to the controller.
You can exercise one of these rights by sending a written request to the following address:
- By mail: EverBe, for the attention of the Data Protection Officer, Tour Ariane, 5 Place de la Pyramide – 92800 Puteaux
- By e-mail: [email protected]
We will inform you without delay of any action taken at your request in relation to any of these rights, and at the latest within one month of receipt of your request.
We are authorized to extend this period to two months if the situation so requires and will inform you if this case arises. Please note that we may need to verify your identity when you seek to exercise one of your data protection rights.
You also have the right to submit a complaint to the competent supervisory authority. For more information, please visit the CNIL website.