Privacy policy
Data controller
Personal data collected on opsec-it.fr is processed by Sylvestre MIGNOT, site publisher, acting as data controller within the meaning of the General Data Protection Regulation (GDPR).
Contact: contact@opsec-it.fr
Data collected
Only data strictly necessary to process your request is collected via the contact form:
- Name
- Organization / company
- Email address
- Subject and content of the message
No sensitive data within the meaning of article 9 of the GDPR is collected. No tracking cookies, no third-party analytics tools are deployed on the site.
Purposes and legal basis
Data is collected and processed to:
- respond to your contact request;
- establish, where applicable, a commercial proposal;
- ensure follow-up of the contractual relationship if it materializes.
The legal basis is your consent (article 6.1.a of the GDPR), given by voluntarily submitting the form, as well as the performance of pre-contractual measures at your request (article 6.1.b).
Recipients
Data is intended exclusively for Sylvestre MIGNOT. It is neither sold, rented nor transferred to third parties.
Contact emails are sent via the Resend service (resend.com) acting as a sub-processor within the meaning of the GDPR.
Retention period
- Requests without commercial follow-up: 12 months maximum
- Requests resulting in a commercial relationship: duration of the relationship + 3 years (prospecting), 10 years (accounting obligations)
Your rights
In accordance with articles 15 to 22 of the GDPR, you have the following rights:
- right of access to your data;
- right of rectification;
- right to erasure;
- right to restriction of processing;
- right to portability;
- right to object;
- right to withdraw your consent at any time.
To exercise these rights, contact: contact@opsec-it.fr.
You also have the right to lodge a complaint with the CNIL.
Cookies
This site uses no tracking or audience measurement cookies. Only strictly necessary technical cookies may be deposited (if applicable, none to date).
Security
Collected data is transmitted via HTTPS and stored securely. Given the nature of the activity, proportionate technical and organizational measures are implemented to protect your data against unauthorized access.