Privacy policy
www.rebrain.eu
Last update on March 30, 2022
PREAMBLE
The present Privacy Policy informs you about how RebrAIn uses and protects the information you provide to us, if any, when you use the present site accessible from the following URL: www.rebrain.eu (hereinafter the “Site”). Please note that this Privacy Policy may be amended or supplemented at any time by RebrAIn, in particular in order to comply with any legal and technological developments. In such a case, the date of its update will be clearly identified at the top of this policy. These changes engage the Internet user as soon as they are put online. The Internet user should thus regularly consult this Privacy Policy in order to be aware of any changes.
1. PARTIES
The present Privacy Policy is applicable between the publisher of the Site, namely RebrAIn, hereinafter “RebrAIn”, and any person connecting to the Site, hereinafter “the Internet user”.
2. DEFINITIONS
“Site Content”: any elements published on the Site, whether or not protected by intellectual property rights, such as texts, images, designs, presentations, videos, diagrams, structures, databases or software.
“Internet user”: any person connecting to the Site.
“Site”: website accessible at the URL www.rebrain.eu, as well as any sub-sites, mirror sites, portals and variations of URL related thereto.
3. SCOPE OF APPLICATION
This Privacy Policy is applicable to all Internet users. Your simple browsing on the Site implies your full acceptance of it. The Internet user acknowledges the value of proof of RebrAIn’s automatic registration systems and, unless he can prove otherwise, he waives to contest them in case of litigation. The acceptance of this Privacy Policy assumes that the Internet users have the necessary legal capacity for this or that they are at least 16 years old, or if not, have the authorization of a guardian or curator if they are unable, of their legal representative if they are under the age of 16, or hold a mandate if they act on behalf of a legal entity.
4. PERSONAL DATA
In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and the free movement of such data (hereinafter “GPDR”), RebrAIn provides you with the following information:
4.1. Identity of the controller :
The person responsible for the collection and processing of data is the company RebrAIn, a simplified joint-stock company with its headquarter at Avenue du Haut Levèque, 33600 Pessac, SIREN: 892511866.
4.2. Identity of the Data Protection Officer :
The Data Protection Officer is Deshoulière Avocats Associés, 121 boulevard de Sébastopol, 75002 Paris, tel.: +33.1.77.62.82.03, rgpd@deshoulieres-avocats.com , www.deshoulieres-avocats.com
4.3. Data collection by RebrAIn :
4.3.1. Data collected
4.3.1.1. Data collected during the browsing
When browsing the Site, you agree that RebrAIn collects information relating to:
- your use of the Site;
- your connection data (times, IP address…).
4.3.1.2. Data collected when using the contact form
The use of the contact form by the Internet user implies the collection by RebrAIn of the following personal data:
- Last name;
- First name;
- E-mail address;
- Profession (surgeon or investor);
- Pathology.
4.3.2. Purposes of collecting personal data
The data collected during the browsing are subject to automated processing with the purpose of:
- develop, operate, improve, supply and manage the Site;
- contextualize and improve the Internet user experience.
The data collected during the use of the contact form are subject to automated processing with the purpose of:
- provide a detailed response to the Internet user;
- send information and contact people, including by email, telephone and push
notification.
4.3.3. Legal basis for processing
The data collected during the browsing have as a legal basis the legitimate interest of RebrAIn to obtain improved security and operation of the Site. Regarding data from the implementation of certain cookies, the Internet user is invited to refer to the RebrAIn Cookies Policy. The data collected during the use of the contact form have as legal basis the consent of the persons concerned.
4.3.4. Internal recipients of data
The data collected are only available to the members of the management of RebrAIn, as well as the staff responsible for the management of the website, and are never made freely viewable by a third party individual.
4.3.5. Retention period of personal data
The personal data collected during the browsing are kept for a reasonable period of time necessary for the proper administration of the Site and for a maximum of 12 months, or until the withdrawal of the consent of the persons concerned. The personal data collected during the use of the contact form are kept for a reasonable period of time necessary for the proper management of the Internet user’s request, and for a maximum of 12 months. At the end of each of these periods, RebrAIn will archive this data and keep it for the time during which its responsibility can be challenged. After this retention period, RebrAIn undertakes to permanently delete the data of the persons concerned.
4.3.6. Security and confidentiality of personal data
The personal data are kept in secure conditions, according to current technical means, in compliance with the provisions of the General Data Protection Regulation (GDPR) and the national legislation force.
4.3.7. Minimization of personal data
RebrAIn may also collect and process any data voluntarily transmitted by an Internet user, in particular when sending an email to the contact address. RebrAIn guides Internet users as much as possible when they provide useless or superfluous personal data. RebrAIn undertakes to keep and process only the data strictly necessary for its activities, and will delete any data received that are not useful as soon as possible.
4.4. Respect for the rights :
You have the following rights regarding your personal data, which you can exercise by writing to us at our postal address or by sending an email to the following address: rgpd@rebrain.eu.
4.4.1. Rights of information, access and disclosure of data
You have the possibility to access your personal data. Due to RebrAIn’s obligation of security and confidentiality in the processing of personal data, your request will only be processed if you provide proof of your identity, in particular the production of a scan of your valid identity document (in case of request by email) or a signed photocopy of your valid identity document (in case of request by writing), both accompanied by the mention “I hereby certify that the copy of this identity document is in accordance with the original. Done at … the …”, followed by your signature. To help you in your process, you will find here a mail template developed by the CNIL.
4.4.2. Rights of rectification, deletion and right to be forgotten
You have the right to request the rectification, updating, blocking or deletion of your personal data, which may be inaccurate, erroneous, incomplete or obsolete. You can also define general and specific directives regarding the fate of personal data after your death. Where appropriate, the heirs of a deceased person may require that the death of their loved one be taken into account and/or that the necessary updates be made. To help you in your process, you will find here a mail template developed by the CNIL.
4.4.3. Right to object to data processing
You have the possibility to object to the processing of your personal data. To do so, you should send an email to the following address: rgpd@rebrain.eu. In this email, you will have to specify the data that you want to delete as well as the reasons justifying this request, except in the case of commercial prospecting.
4.4.4. Right to limit processing
You have the right to receive the personal data you have provided to us in a transferable, open and readable format.
4.4.5. Right to limit processing
You have the right to request that RebrAIn’s processing of your personal data be limited. This means that your data will only be stored and not used by RebrAIn.
4.4.6. Withdrawal of consent
Your consent is essential for RebrAIn to process your data. However, you can withdraw your data at any time. This withdrawal will lead to the deletion of your personal data. Services that require RebrAIn to process your data will no longer be accessible.
4.4.7. Response Times
RebrAIn undertakes to respond to your request for access, rectification or opposition or any other additional request for information within a reasonable period of time which cannot exceed 1 month from the receipt of your request.
4.4.8. Complaint to competent authority
If you consider that RebrAIn is not fulfilling its obligations regarding your personal information, you can make a complaint or request to the competent authority. In France the competent authority is the CNIL to which you can send a request here .
4.5. Transfer of collected data :
4.5.1. Transfer to partners
RebrAIn informs you that we use authorized service providers to facilitate the collection and processing of the data you have provided to us. These service providers may be located outside the European Union and receive data collected on the Site. RebrAIn has previously ensured that its service providers implement adequate guarantees and that strict conditions regarding confidentiality, use and data protection are respected. The Internet user agrees that the data collected will be transmitted by RebrAIn to its partners and will be processed by these partners as part of the third-party services, namely:
| Partner | Recipient country | Processing performed | Guarantees |
| OVH | France | Website hosting | Standard contract clause: https://ovhcloud.com/legal/privacy-policy |
| Outlook | USA | Email sending services. | Standard contract clause: https://privacy.microsoft.com/fr-fr/privacystatement |
| USA | Management of people’s opinions on products, services or contents. |
Standard contract clause: https://fr.linkedin.com/legal/privacy-policy |
|
| Supertek | France | IT service provider. | Standard contract clause: https://supertek.fr/politique-de-confidentialite/ |
4.5.2. Transfer upon requisition or judicial decision
The Internet user also consents to RebrAIn communicating the collected data to any person, upon requisition of a state authority or judicial decision.
4.5.3. Transfer as part of a merger or acquisition
If RebrAIn is involved in a merger, sale of assets, financing transaction, liquidation or bankruptcy or in the acquisition of all or parts of its business by another company, the Internet user agrees that the data collected will be transmitted by RebrAIn to this company and that this company will process the personal data referred to in this Privacy Policy in place of RebrAIn.
5. INTELLECTUAL PROPERTY
- Legal protection of the Site’s content :
The content of the Site may be protected by copyright and database law. Any representation, reproduction, translation, adaptation or transformation, integral or partial, carried out illegally and without the consent of RebrAIn or its successors constitutes a violation of Books I and III of the Intellectual Property Code and will lead to legal proceedings for counterfeiting.
- Contractual protection of the Site content :
The Internet user contractually undertakes to not use, reproduce or represent, in any way whatsoever, the content of the Site, whether or not protected by intellectual property rights, for any purpose other than their reading by a robot or a browser. This prohibition does not apply to indexing robots whose sole purpose is to scan the content of the Site for indexing purposes.
6. FINAL PROVISIONS
- Modifications :
This Privacy Policy may be modified at any time by RebrAIn. The conditions applicable to the Internet user are those in force when connecting to the Site, any new connection to the Site implying acceptance of the new conditions.
- Entirety :
The nullity of one clause of this contract will not lead to the nullity of the other clauses or of the contract as a whole, which will remain in full force and effect. In such a case, the parties must, as far as possible, replace the invalidated provision with a valid provision corresponding to the spirit and purpose of this agreement.
- Non-waiver :
RebrAIn’s failure to exercise its rights hereunder shall in no way be construed as a waiver of such rights.
- Language :
These terms and conditions are offered in English.
- Unfair terms :
The provisions of these conditions apply subject to compliance with the mandatory provisions of the Consumer Code concerning unfair terms in contracts concluded between a professional and a consumer.
7. LITIGATIONS
- Applicable law :
The Privacy Policy is subject to the application of French law and European regulations, in particular the European General Data Protection Regulation (GDPR).
- Litigations :
In accordance with the order n°2015-1033 of 20 th August 2015, all litigations that may arise in the context of the execution of these general conditions and whose solution could not be found beforehand amicably between the parties must be submitted to an approved mediator.
- Arbitration :
Any litigation related to this agreement must be settled by arbitration in accordance with the FastArbitre regulation of the Digital Institute of Arbitration and Mediation.