The IBOO solution (accessible at https://iboo.live ) is published by the company IBOO. Within the framework of its activities, the IBOO company processes the personal data of the users at the time of their navigation or their inscription on the solution.
The notion of "personal data" includes information that can directly identify you as a physical person such as your name, your first name, your address, your date of birth. Other information can also be used to identify you (a telephone number, an IP address, an order number, etc.).
The regulations of the European Union and in particular the General Regulation on the protection of personal data (called "RGPD"), frame the use of your personal data by third parties.
According to Article 4 §7 of the GDPR, the controller is the person who determines, alone or jointly, the purposes and means of each processing operation.
The processor is, within the meaning of Article 4 §8, the natural or legal person, public authority, department or other body which processes personal data on behalf of the controller.
As the publisher of the website, we act as the Data Controller.
As a provider of a videoconferencing service to professionals, we act as a data controller for the processing related to the management of our customers, to the communication on our offers and services, to the proper functioning of our solution as well as to the security of the latter. However, we intervene as a subcontractor of the treatments carried out by our customers since the IBOO solution.
In the course of our business, we may collect and store personal data about our customers and, on their behalf, about users of the solution.
When you register on the solution, we collect the data of the fields of the registration form (name, first name, email address, password, company concerned).
When you subscribe to our solution, we collect data related to your subscription (offer subscribed, duration of the subscription, billing address, ...).
When you subscribe to a subscription on our solution, the payment by credit card is done via the payment module " Monetico Paiement " (Banque CIC Ouest / Groupe Crédit Mutuel). Iboo does not keep your banking data, the banking transaction is managed by Monetico Paiement. When you subscribe to a subscription on our solution, the payment by credit card is done via the payment module "Monetico Paiement" (Banque CIC Ouest / Groupe Crédit Mutuel). Iboo does not keep your banking data, the banking transaction is managed by Monetico Paiement.when you subscribe to a subscription on our solution, the payment by credit card is made via the payment module "Monetico Paiement" (Banque CIC Ouest / Groupe Crédit Mutuel). Iboo does not keep your banking data, the banking transaction is managed by Monetico Paiement.when you subscribe to a subscription on our solution, the payment by credit card is made via the payment module "Monetico Paiement" (Banque CIC Ouest / Groupe Crédit Mutuel). Iboo does not keep your banking data, the banking transaction is managed by Monetico Paiement.
We also process the personal data (email address) of users invited to a meeting via the IBOO Solution by other IBOO users. When you are invited to a meeting on the IBOO Solution, we collect, on behalf of our customers, the data you provide during your first connection (name and first name).
When you use the IBOO solution, we process videoconference data (image, voice, written messages sent via the Solution, ...).
In addition to the personal data you provide us, we may also collect your browsing data through cookies.
Your personal data are used by the IBOO company for the following reasons:
• The performance of a contract between you and the IBOO Company; • Our legitimate interest in sending you newsletters when you are a customer or your consent to receive them when you are not yet a customer.
We do not sell, trade or rent your personal data to third parties.
The personal data collected about you is used only by our company. However, in the course of our business, we may use subcontractors who may receive your personal data. Where applicable, we ensure that all subcontractors comply with the requirements of the GDPR and case law.
Our company has put in place, where possible, personal data subcontracting agreements with all of its subcontractors in order to ensure that the personal data you entrust to us is processed to the same level of requirements as our services. If not, we have ensured that our subcontractors have a level of compliance that is substantially equivalent to the requirements established by the GDPR.In general, our company does not disclose your personal data to third parties, unless:
• You make the request or authorize the disclosure; • We are compelled to do so by a governmental authority or regulatory agency, in response to a court order, subpoena or other similar governmental or judicial request, or to establish or defend a legal claim; • The third party acts as an agent or partner of our institution in the performance of its activities.
To obtain the list of our subcontractors, please contact us at email@example.com.
Usage data (e.g., video recordings) is automatically deleted within 30 days of collection. Customer contact data is deleted within a maximum of 3 years, starting from your last use of the solution or from our last contact with you, if you have never subscribed to the solution. This retention period is valid for prospecting actions but any information necessary to establish proof of the contractual relationship with our customers is kept for a maximum of 5 years from the termination of the subscription.
The recipient of your personal data may be the meeting organizer, as the data controller, if the organizer chooses to save the discussion, notes or video/audio recording.
When you subscribe, payment is made by credit card. Unless you have expressly wished that your bank details be kept for a future payment, your bank details are immediately archived for a maximum period of 6 months, as from your purchase, for evidence purposes in case of dispute relating to the payment.
The cookies and tracers mentioned below are installed for a maximum period of 6 months.
For more information on our retention periods, please contact us at firstname.lastname@example.org.
IBOO does not transfer personal data to countries outside the European Union. The data are indeed hosted in France by a French provider.
We will respond to your request if we are acting as a controller. If your request concerns a processing operation for which we are a subcontractor, we will not be able to respond directly to your request and will forward it to the relevant data controller.
You have the right to request certain information which our establishment undertakes to provide to you in a transparent, clear and precise manner upon request.→ Right of access and communication of all data concerning you
You may request access to and a copy of your data when it is being processed. Our institution is entitled to ask you for identification when we have reasonable doubt about your actual identity or when the request concerns sensitive data within the meaning of Article 9 of the GDPR.→ Right of rectification
You can obtain rectification of your data when it is incorrect or inaccurate. Our institution is entitled to ask you for identification when we have reasonable doubt about your real identity or when the request concerns sensitive data within the meaning of Article 9 of the GDPR.→ Right to be forgotten
You may request the deletion of any data we hold about you, to the extent that it is necessary for us to fulfil our contractual or legal obligations. Our institution is entitled to ask you for identification where we have reasonable doubt about your actual identity or where the request relates to sensitive data within the meaning of Article 9 of the GDPR.→ Right to object
You may object to processing at any time if you are in a particular situation. Proof of identity is required. Our institution is entitled to ask you for identification when we have reasonable doubt about your real identity or when the request concerns sensitive data within the meaning of Article 9 of the GDPR.→ Right to data portability
You may ask us to return all data about you in a machine-readable and understandable format or ask us to transfer it to another training organization. Our institution is entitled to ask you for identification when we have reasonable doubt about your actual identity or when the request concerns sensitive data within the meaning of Article 9 of the GDPR.→ Right to limit processing
You can ask our institution to keep your data without using them. Your data will be frozen for a temporary period if you exercise another right in parallel (e.g. contesting the accuracy of the data, objecting to the processing of your data, illegality of the processing). Our institution is entitled to ask you for identification when we have reasonable doubt about your real identity or when the request concerns sensitive data within the meaning of Article 9 of the GDPR.→ Right to withdraw consent
When the processing of your data is subject to the collection of your consent, you have the possibility at any time, on our website or with our services, to withdraw this consent.→ Right to humanization (automated individual decisions)
Insofar as our institution is called upon to make fully automated decisions concerning you, you have the possibility of asking us to call upon human intervention in the making of said decision. This right is granted to you outside of any contractual requirements or when you have not waived it in an informed, explicit and unambiguous manner.
To exercise your rights, please contact the data protection department at the following address email@example.com.→ Right to determine the fate of your information in the event of death
You may, in advance, communicate general or specific directives allowing you to decide how your information will be handled in the event of your death. In the absence of such instructions, your heirs will be able to exercise the above rights on your behalf.→ Right to file a complaint with the CNIL
If you consider that our data protection policy does not comply with European regulations or that your rights are not respected, you can, at any time, lodge a complaint with the CNIL on the site www.cnil.fr or by mail (3 Place de la Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07).
Cookies are data stored on a user's terminal equipment and used by the solution to send information to the user's browser, allowing the browser to send information back to the originating solution (e.g., a session ID, language choice or date).
Cookies are used to store, for the duration of the cookie's validity, status information when a browser accesses the various pages of a solution or when the browser subsequently returns to that solution.
Only the sender of a cookie can read or modify the information contained in it.
You are informed that, during your visits to the solution, cookies may be installed on your terminal equipment.
You have several options to configure the installation of cookies. In particular, you can manage your consent for each purpose on the solution from the cookie banner but also from your customer area.
The hosting servers on which our establishment processes and stores your data are exclusively located in France and meet a level of security consistent with the typology of the latter.
The security and integrity of the personal data of our customers and their users is of the utmost importance to our company.
Thus, and in accordance with the RGPD, we undertake to take all necessary precautions to preserve the security of your data and in particular to protect them against any accidental or illicit destruction, accidental loss, alteration, distribution or unauthorized access, as well as against any other form of illicit processing or communication to unauthorized persons.
Furthermore, in order to prevent unauthorized access, and to ensure the accuracy and proper use of your data, IBOO has put in place appropriate digital, physical, and managerial procedures to safeguard and preserve the data collected through its services.
However, no one can consider themselves completely safe from malicious intent.
This is why, in the event that a security breach presents a high risk to the integrity or confidentiality of your data, our establishment undertakes to inform you within a reasonable period of time and to take all possible measures to neutralize the intrusion and minimize its impact.
In the event that you suffer damage due to the exploitation of a security breach by a third party, we undertake to provide you with all the necessary assistance so that you can assert your rights.
Please keep in mind that anyone exploiting a security breach is subject to criminal penalties and that we will take all measures, including filing a complaint and/or taking legal action, to preserve the data, our rights and those of the persons concerned and to minimize the impact.