πŸ‡ͺπŸ‡Ί

GDPR Compliance

Your data protection rights matter to us. Learn how we comply with the General Data Protection Regulation and how you can exercise your rights.

Your Data Rights Under GDPR

As a French company, we are fully committed to GDPR compliance and protecting your personal data.

πŸ‘οΈ

Right to Access

You can request a copy of all personal data we hold about you, including how it's used and who it's shared with.

✏️

Right to Rectification

You can ask us to correct any inaccurate or incomplete personal data we have about you.

πŸ—‘οΈ

Right to Erasure

You can request deletion of your personal data when it's no longer necessary or you withdraw consent.

⏸️

Right to Restrict Processing

You can ask us to limit how we use your data while disputes are resolved or data is verified.

πŸ“¦

Right to Data Portability

You can receive your data in a machine-readable format to transfer to another service provider.

🚫

Right to Object

You can object to certain types of processing, including direct marketing and profiling.

How We Ensure GDPR Compliance

We've implemented comprehensive measures to meet all GDPR requirements and protect your privacy.

Legal Basis for Processing

Contract Performance

Processing necessary to provide our cybersecurity training services to you.

Legitimate Interest

Improving our services, security monitoring, and fraud prevention.

Consent

Marketing communications and optional features (can be withdrawn anytime).

Legal Obligation

Compliance with tax, accounting, and security breach notification requirements.

Data Protection Measures

πŸ”’

Privacy by Design

Data protection is built into every system and process from the ground up.

πŸ›‘οΈ

Data Minimization

We only collect and process data that's necessary for our services.

πŸ•

Retention Limits

Data is automatically deleted when no longer needed or after legal requirements expire.

πŸ”

Encryption

All personal data is encrypted both in transit and at rest using industry standards.

πŸ‘₯

Access Controls

Strict role-based access controls limit who can view your data.

πŸ“‹

Regular Audits

Independent audits verify our compliance with GDPR requirements.

Data Processing Information

What Data We Collect

Account Information

Name, email address, company details, job title

Training Data

Course progress, quiz results, completion certificates

Usage Information

Login times, feature usage, click patterns (anonymized)

Communication Data

Support requests, feedback, survey responses

Data Retention Periods

Active Accounts

Data retained while account is active and for 30 days after deletion request

Training Records

Kept for 7 years for compliance reporting, then automatically deleted

Support Data

Retained for 3 years for quality assurance purposes

Marketing Data

Deleted immediately upon unsubscribe or objection

Exercise Your GDPR Rights

We make it easy to exercise your data protection rights. Here's how:

Submit a Data Request

Email Request

Send your request directly to our Data Protection Officer for fast processing.

dpo@engarde.cc

What to Include in Your Request

βœ“

Your full name and email address associated with your account

βœ“

Specific right you want to exercise (access, deletion, portability, etc.)

βœ“

Verification of your identity (we may request additional proof)

βœ“

Reason for your request (helps us process it faster)

Our Response Process

1

Request Received

We confirm receipt within 24 hours

2

Identity Verification

We verify your identity for security

3

Processing

We fulfill your request within legal timeframes

βœ“

Response

You receive a secure response within 30 days

Need Help?

If you're not satisfied with our response or need assistance with your rights, you can contact the French data protection authority (CNIL).

Data Protection Officer: dpo@engarde.cc

CNIL: www.cnil.fr