We are committed to protecting your personal data and ensuring that you have a positive experience on Compliance Labs’s Websites and when using our Services. This Privacy Policy explains how we collect, use, share your personal data, and your rights regarding our processing of your personal data.
In this Policy, references to “we”, “us” or “Compliance Labs” are references to SASU Compliance Labs.
For inquiries or concerns regarding this Policy, please contact us at Compliance Labs, 5 place de La Pyramide, Tour Ariane, 92088 Paris La Défense Cedex.
Email Address: contact-us@compliance-labs.com.
This Privacy Policy applies to personal data collected when you engage with the Compliance Labs Websites and Services. It covers various user interactions, such as:
We collect personal data when you:
This information includes:
We use this information for several activities, including:
We use this information in practice because:
Information we collect about you:
We use this information for the following purposes:
We use this information because:
A legitimate interest always applies to the extent that, in cases where we collect and use the information for our justified interests, you are of the opinion that your interests or fundamental rights demanding protection do not stand against our justified interests. Please contact us if you would like more information on how our legitimate interests apply to your personal data.
You must be at least 18 years old to visit our websites and use our online services. In addition, our online services are not for serving those below 18.
We may also process any personal data on reasonable request by a law enforcement or regulatory authority, body or agency in defense of legal claims or otherwise in order to prevent, investigate, or take other action regarding illegal activities, situations involving potential threats to the physical safety of any person, violations of any of Compliance Labs websites terms, or suspected fraud.
We may monitor or record calls for training, quality assurance, and research. All recordings will be treated as confidential. If you do not wish us to record your call, you will have an opportunity to opt out. Should you already have a call-in progress, let us know at the beginning of the call if you do not want the call to be recorded.
Apart from the disclosures reasonably necessary for the purposes identified elsewhere above, we reserve the right to disclose personal data to all third parties as follows:
Personal data may also be communicated to other third-party organizations for the following purposes:
Compliance Labs may also share anonymous or share information regarding you, which shall not include personal data, to develop content and services that provide and improve your Compliance Labs experience.
We take reasonable steps to ensure that any personal data we collect concerning you is accurate, complete and up to date. You may access, review, correct and update personal data or close your account by writing to us at contact-us@compliance-labs.com.
If you are an EU resident, then you also have rights which arise as below. If you are a California resident, please see section below, for more details on your rights under the California Consumer Privacy Act.
Rights for European Union Residents: In certain circumstances you have the right to any of the following in respect of personal data. We have summarized what each of these rights mean and how you can exercise any of the rights below. You may exercise any of these rights by contacting us. Any such request should include information that enables us to verify your identity (for example your name, address, email address or other information reasonably required).
Where we receive a request from you to exercise one of these rights, then we will respond without undue delay and within the time required by applicable law. That deadline may be extended in respect of certain conditions—for example, if requests are complex or numerous.
You will not be charged for the provision of information, unless the request is obviously unfounded or excessive, in particular because of its repetitive character. We might either charge a reasonable fee for the provision of information or refuse to take action on request. Any charges would be provided before any action is taken on a request.
More information will be needed from you for identity verification before any action is taken.
The California law requires us to provide the residents of the state of California with some additional information about how we collect, use, and share your personal data.
In this Policy, we present in detail the specific types of personal data that we may gather from or about you. Here are the categories of personal data that we have collected:
For operational purposes, we may disclose some of the categories of personal data identified above—if such use is appropriate and necessary concerning the circumstances and the operational purpose for which the information was collected or processed.
Compliance Labs have not engaged in sale of personal data activity according to the definition of “sell” under California law and under current regulatory guidance in the past 12 months including not selling the personal data of minors under 16 years of age.
Further, information identified in Sections “Information We Collect About You and When We Disclose Personal data” of this Policy may be shared with third parties to collect certain information about your activity—for example, with the help of using cookies, as described in the Compliance Labs Cookie Policy.
The law of the state of California may give you certain rights to you and may entitle you to request:
You have the right to be told of any financial incentives that we may give you, if any. You also have the right not to be discriminated against because you exercise any of the rights under this notice. Note that certain information may be exempt from such a request under applicable law. For example, we require some kinds of information to provide you with the Services and to comply with applicable law. If you ask us to delete certain information, you may not be able to continue to access or use the Services.
If you would like to exercise any of these rights, please contact us at contact-us@compliance-labs.com. You will need to confirm your identity before we can fulfil your request.
California Online Privacy Protection Act Notice Concerning Do Not Track Signals. “Do Not Track.” DNT is a feature offered by some browsers which, when enabled, sends a signal to websites to request that your browsing is not tracked, including by third parties like social networks, analytics companies, and ad networks. Due to the fact that there is no common understanding about how to interpret Do Not Track signals yet, we do not respond to those signals at the moment.
You have a right of access to personal data that we hold about you and to be provided with a copy of such information. In most cases you will have an opportunity to correct information held about you which is inaccurate.
Right of restriction on processing your personal data: You have the right to request that we restrict the processing of your personal data in the following situations:
Right to delete your personal data: You have the right to request us to delete completely or partially your personal data. If you would like to object to the communication, the best option is to allow us to hold your information with a “do not contact” tag to reflect other options.
There also are exceptions under which, for example, we may decline a request for erasure due to information being necessary for compliance with a legal obligation or for the establishment, exercise, or defense of legal claims.
Right to object to the processing of your personal data: You can object to our processing of your information for communication-related purposes.
You may also object to processing your information if we use legitimate interests as the basis for processing. In those cases where we process personal data, we will stop processing personal data when we have determined that there are compelling legitimate grounds for processing, which may override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.
Right to Data Portability: Where technically feasible, in most cases you have the right to receive all personal data provided by us in a structured, commonly used, and machine-readable format and to transmit this data to another controller of your data.
Right to file a complaint with a supervisory authority: Where you have a concern about the way in which we have handled your personal data or a concern about our privacy practices, there is also the possibility of lodging a complaint with the competent data protection authority in the habitual country of residence, place of work, or occurrence of the alleged infringement of data protection law.
Compliance Labs may transfer your personal data to suppliers located outside your home jurisdiction. We will ensure that any such transfer is made with all efforts reasonably possible to protect personal data and in adherence with the law in effect at the time. Compliance Labs may also disclose and transfer personal data related to persons in jurisdictions other than those covered by this Policy, where information is held on servers or databases located outside of the European Economic Area. Some of these countries may not provide an equivalent level of protection to data protection laws in the EEA.
Compliance Labs will only retain your personal data for as long as we need it to fulfil the purposes for which we collected the data, depending on the legal basis for which that data was obtained, and/or whether additional legal or regulatory obligations require retention.
Simply speaking, this will mean that your personal data shall be kept for the period of our relationship and:
Compliance Labs may collect personal data according to this Policy. If we want to use the information pertaining to you for any other purpose not already mentioned herein, we shall firstly take your written permission.
Communication: You have the option to opt out from receiving messages through the settings, by contacting contact-us@compliance-labs.com. Your email communication preferences are processed with attention to your request regardless of the opt-out; we will still send you service-related communications. We will not sell or disclose your information to third parties for their promotional or marketing purposes without your permission and where not prohibited by the law.
Security: Compliance Labs has implemented technical, administrative, and physical security measures that are designed to help safeguard your information from unauthorized access. In all cases, no method of transmission over the Internet or method of electronic storage is 100% secure, so we cannot guarantee the security of your data. You are further advised, and you agree that you shall be liable for the security of your access credentials, and you must promptly notify us of any unauthorized activity.
Reasonable steps are taken to restrict access to information to only those employees, and suppliers who need such access in order to operate, develop, improve, or deliver our Websites and services.
A cookie is a small text file including a unique ID sent by a web server to the browser on your computer, mobile phone or any other internet device when you visit a website. Cookies and other related technologies are used in order to make websites or applications work, or work more efficiently, and in order to provide information to the owners of the website or application. We refer to all these technologies as “cookies”.
Part of our web pages may contain electronic images known as clear gif, tags or pixels such as web beacons. These enable us to count users who have visited these pages. Web beacons collect only limited information, for example a cookie number, time and date of a page view, and a description of the page on which the web beacon is in place.
We may also use web beacons in e-mail messages or newsletters to determine whether you open such messages. We use this information to facilitate our services in an efficient way and to enhance the overall effectiveness of our online content, and services we may provide through the websites.
Flash cookies work differently than browser cookies, web browser cookie management tools will not remove flash cookies. Visit Adobe and change the settings at the Global Privacy Settings Panel to learn more about how to manage flash cookies.
Find more information on the use of cookies and other web technologies in the Compliance Labs Cookie Policy.
Links: We may also include links to outside websites or resources that are not included in the websites, or services running through Compliance Labs. We do not control these other websites, therefore your information is subject to their respective privacy practices which are independent of and not covered by this Policy.
Changes in this Policy: Compliance Labs may update and or change all or any part of this Policy from time to time. In case, if this Policy changes in any way, we shall post an updated version on the Compliance Labs websites. Users are encouraged to check this page and the Compliance Labs Websites from time to time so that they always know what information we collect, how we use it, and under what circumstances, if any, we disclose it. All changes to this Policy are effective from the date they are posted on this page.
Last updated on 20 May 2024.