ZESTINFO S.A.S - Privacy Notice
1.About this Notice
1.1. This Privacy Notice (“Notice”) explains how we (as defined below) collect, share, and use any information that, alone or combined with other information, relates to you (“Personal Data”) when you (“you” and “your”) use our website https://zestinfo.com (the “Website”), or when you engage with us as a customer or supplier.
1.2. This Notice also outlines your rights regarding the Personal Data we process about you and how you can exercise those rights.
1.3. Zestinfo is committed to complying with its privacy obligations. This Notice describes the standards Zestinfo applies to protect Personal Data.
1.4. For the purposes of this Notice, Zestinfo S.A.S acts as the data controller for Personal Data collected via the Website. As a data controller, Zestinfo is responsible for ensuring that the processing of Personal Data complies with applicable data protection laws, specifically the General Data Protection Regulation.
1.5. Please read this Notice carefully. If you have any questions or comments, please contact us at privacy@ Zestinfo.com.
2. What Personal Data does Zestinfo collect and why?
2.1. The types of Personal Data we collect about you and the reasons for processing it are as follows:
|
Personal Data we collect |
Why we collect it |
Legal grounds for processing |
|---|---|---|
|
Email address, electronic identification data (incl. when you sign up through Google or Outlook) and LinkedIn account usage data |
Providing our services to our clients (including free-trial users), including managing the access to our services and enabling the pooling feature |
Contractual necessity |
|
Identification data, electronic identification data and Internet connexion utilisation data |
To draw up commercial and frequentation statistics related to the use of our Services |
Our legitimate interest in knowing the popularity of our services in order to take action to optimise its visibility or its interface |
|
Identification data, electronic identification data and Internet connexion utilisation data |
To provide tailored responses to your requests for information through the chatbot or when you contact us |
Our legitimate interest in responding to requests |
|
Email address, identification data |
Managing our relationship with customers and suppliers (incl. invoices and payments |
Contractual necessity |
|
Name and surname Email address |
Sending you marketing updates and messages regarding our services |
Consent (unless a legal exception applies, in which case we would rely on our legitimate interest in promoting our services) |
|
Any information relevant or potentially relevant to a dispute or legal proceeding affecting us. |
Disputes and legal proceedings |
Our legitimate interest in defending our rights and interests in court |
2.2. We also automatically collect certain information from your device. This may include your IP address, device type, unique device identification numbers, browser type, broad geographic location (e.g., country or city-level), and other technical information. We may also collect information about how your device interacts with our Website, such as pages accessed and links clicked.
Collecting this information helps us better understand our Website visitors, where they come from, and what content interests them. We use this information for internal analytics and to improve the quality and relevance of our Website.
Some of this information may be collected using cookies and similar tracking technologies, as explained in our Cookie Notice available at https://Zestinfo.com/cookie-policy.
3. Who does Zestinfo share your Personal Data with?
3.1. We share your Personal Data with the following categories of recipients:
(a) Third-party vendors and service providers: These entities provide data processing services to us or process Personal Data for purposes described in this Notice or notified to you when we collect your Personal Data. This includes vendors and service providers supporting us with invoicing and payment services, customer and lead support (e.g., website chat), website hosting, marketing and newsletter distribution, and data analytics.
(b) Law enforcement and regulatory bodies: We may disclose your Personal Data to any competent law enforcement body, regulatory agency, government authority, court, or other third party where we believe disclosure is necessary (i) under applicable law or regulation, (ii) to exercise, establish, or defend our legal rights, or (iii) to protect your vital interests or those of another person.
c) Auditors, advisors, and legal representatives: These professionals provide advisory services to us for legitimate business purposes and are contractually prohibited from using the Personal Data for any other purpose.
(d) Potential buyers: In the event of a proposed purchase, merger, or acquisition of any part of our business, we may share your Personal Data with the potential buyer (and its agents and advisors), provided that we inform the buyer that it must use your Personal Data only for the purposes disclosed in this Notice.
(e) Other parties: We may share your Personal Data with any other person if you have given your prior consent to the disclosure.
4. How We Protect Your Privacy ?
We process Personal Data in accordance with this Notice, adhering to the following principles:
(a) Fairness: We ensure that Personal Data is processed fairly, meaning we are transparent about our processing activities and comply with applicable laws.
(b) Lawfulness: We process Personal Data only on lawful grounds.
(c) Purpose Limitation: We process Personal Data for specific and legitimate purposes and do not process it in ways that are incompatible with those purposes, unless allowed by applicable data protection laws.
(d) Data Minimization: We process only the Personal Data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
(e) Data Accuracy: We take appropriate measures to ensure that the Personal Data we hold is accurate, complete, and up-to-date. However, it is also your responsibility to keep your Personal Data accurate, complete, and current by promptly informing us of any changes or errors. Please notify us of any changes to your Personal Data (e.g., a change of email address).
(f) Data Security: We use appropriate technical and organizational measures to protect the Personal Data we collect and process. These measures are designed to provide a level of security appropriate to the risk of processing your Personal Data.
(g) Limited Retention: We retain your Personal Data in a form that allows us to identify you only as long as necessary to fulfill the purposes for which it is processed. We do not store your data longer than required, unless we must comply with applicable laws.
5. Data Storage, Retention, and Deletion
5.1. We keep the Personal Data we collect from you as long as we have a legitimate business need (e.g., to provide a service you requested or to comply with legal, tax, or accounting obligations). Customer data is retained for no more than 2 years after our contractual relationship ends. However, personal data related to accounting is kept for up to 10 years.
5.2. When we no longer need to process your Personal Data for business purposes, we will delete or anonymize it. If deletion or anonymization is not possible (e.g., because your Personal Data is stored in backup archives), we will securely store your Personal Data and isolate it from further processing until deletion is feasible.
6. International Transfers of Data
6.1. Your Personal Data may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws, which may not be as protective as those in your country.
6.2. Specifically, our servers are located in the United States, and our third-party service providers operate in the EU and the United States. This means that when we collect your Personal Data, it may be processed in any of these countries.
6.3. However, we have implemented appropriate safeguards to ensure that your Personal Data remains protected in accordance with this Notice. These safeguards include the European Commission’s Standard Contractual Clauses for data transfers with our third-party service providers and partners. Further details are available upon request.
7. Your Data Protection Rights
7.1. You have the following rights regarding your Personal Data:
(a) If you wish to access, correct, update, or request the deletion of your Personal Data, you can do so at any time by contacting us at privacy@Zestinfo.com.
(b) In certain circumstances, as specified by applicable data protection laws, you can object to the processing of your Personal Data, request that we restrict processing, or request the portability of your Personal Data. You can exercise these rights by contacting us at privacy@ Zestinfo.com.
(c) If we have collected and processed your Personal Data with your consent, you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing conducted prior to your withdrawal, nor will it affect processing based on lawful grounds other than consent.
(d) You have the right to opt out of marketing communications we send you at any time. You can exercise this right by clicking the “unsubscribe” or “opt-out” link in the marketing emails we send you.
(e) If you have any complaints or concerns about how we are processing your Personal Data, we will do our best to address them. If you feel we have not adequately addressed your complaint or concern, you have the right to lodge a complaint with a data protection authority. For more information, please contact your local data protection authority. (Contact details for data protection authorities in the European Economic Area are available here.)
7.2. We respond to all requests from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.
8. Linking to Other Websites
8.1. Our Website may include links to websites owned and operated by third parties. These websites have their own privacy policies, which we encourage you to review. These policies will govern how your Personal Data is used when you visit these websites.
We do not assume any responsibility or liability for the privacy practices of these third-party websites. Your use of such websites is at your own risk.
9. Updates to this Notice
9.1. We may revise this Notice periodically to reflect legal, technical, or business changes. When we make updates, we will take appropriate steps to inform you, based on the significance of the changes. If required by applicable data protection laws, we will seek your consent for any substantial changes to this Notice.
9.2. You can determine when this Notice was last updated by referring to the “last updated” date at the top of this Notice.
