Open-Capture Privacy Policy

1. Purpose of this policy

The purpose of this privacy policy is to inform you about how your personal data is collected and processed when you use the open-capture.com website.

Edissyum Consulting undertakes to process your personal data in compliance with the General Data Protection Regulation, or GDPR, and the French Data Protection Act.

This policy informs you in particular about:

the data collected;
the purposes of processing;
the legal bases relied upon;
the recipients of the data;
how long the data is retained;
any transfers of data outside the European Union;
the cookies and other trackers used on the site;
your rights and how to exercise them.

2. Data controller

The data controller for the processing carried out via the open-capture.com website is:

Edissyum Consulting

For more information about the company, you can consult the legal notice of Edissyum.

3. Data collected

When you use open-capture.com, Edissyum Consulting may collect the following categories of data:

a. Data submitted through the contact form

When you use the contact form, the following data may be collected:

first name;
last name;
company;
phone number;
email address;
subject;
message;
confirmation that you have read the information relating to data protection.

Fields marked as mandatory are necessary in order to process your request.

b. Data related to browsing and site security

When you browse the site, certain technical data may be collected, including:

IP address;
connection data;
technical logs;
information relating to the device and browser;
security events in the event of attempted fraudulent access or malicious use.

c. Data related to cookies and trackers

The site also uses cookies and other trackers described in Article 9 of this policy.

4. Purposes of processing

The data collected on open-capture.com is used for the following purposes:

a. Managing requests sent via the contact form

Your data is processed in order to:

receive your request;
reply to you;
contact you again at your initiative;
ensure follow-up of pre-contractual or commercial exchanges related to your request.

b. Securing the site and preventing malicious use

Certain technical data, including IP addresses in case of suspicious behavior, may be processed in order to:

protect the site against intrusion attempts;
detect and block automated or malicious behavior;
ensure the security of services, content and administrative access.

c. Audience measurement, site improvement and digital communication

Subject to your choice where required, certain data may be used to:

measure the site’s audience and traffic;
improve site performance and content;
deliver or measure advertising campaigns;
display embedded content, including videos;
protect forms against automated submissions.

5. Legal bases for processing

The processing carried out on open-capture.com is based on the following legal grounds:

a. Contact form

The processing of your data through the contact form is based:

on the performance of pre-contractual measures taken at your request, where your contact concerns a demonstration, a quote, a request for commercial information or a project;
and, depending on the nature of the request, on the legitimate interest of Edissyum Consulting in replying to incoming requests and following up on exchanges.

b. Site security

The processing of security-related data is based on the legitimate interest of Edissyum Consulting in ensuring the protection of its website, services, content and users.

c. Non-essential cookies and trackers

Non-essential trackers, including those related to audience measurement, advertising, embedded content and certain third-party services, are based on your consent, where required.

d. Exercise of your rights

The processing of requests relating to your rights is based on compliance with a legal obligation.

6. Recipients of the data

Your personal data is primarily intended for Edissyum Consulting, in its capacity as data controller.

It may also be disclosed, within the limits of their respective duties, to the following categories of recipients:

authorized staff of Edissyum Consulting;
technical service providers involved in hosting, maintenance, messaging or site security;
third-party service providers or publishers integrated into the site or used for its functionalities, in particular for audience measurement, advertising, form protection or video content delivery.

The data is not sold to third parties.

7. Transfers of data outside the European Union

The main hosting of the site is carried out in France and, more broadly, within the European Union.

However, the use of certain third-party services, especially services provided by Google or embedded video content, may result in transfers of data outside the European Union, including to the United States.

Where such transfers occur, Edissyum Consulting ensures that they are governed in accordance with the applicable regulations, for example on the basis of:

an adequacy decision;
or appropriate safeguards provided for by the GDPR, such as the European Commission’s standard contractual clauses, supplemented where necessary by suitable additional measures.

8. Data retention period

Personal data collected via the site is retained only for as long as necessary for the purposes pursued.

Unless there is a specific legal obligation or evidentiary need, the following retention periods apply:

a. Contact form

Data resulting from the contact form is retained for a maximum period of 3 years from the last contact initiated by the data subject or from the end of the pre-contractual or commercial relationship, where applicable.

b. Security data and technical logs

Data related to site security, including security events and IP addresses associated with suspicious or malicious behavior, is retained for a period strictly necessary for securing the site, and unless there is a particular need linked to an incident or evidence, for no longer than 6 months.

c. Data relating to the exercise of rights

The data necessary for handling your request is retained for the time needed to process it and provide a response.

Where proof of identity is required, it is requested only in the event of a reasonable doubt as to the identity of the requester and is retained only for the time necessary to verify identity and process the request.

d. Cookies and consent choices

The retention periods applicable to cookies and trackers are specified in Article 9 below.

9. Cookies and other trackers

When you browse open-capture.com, cookies and other trackers may be placed on your device.

a. Strictly necessary cookies

Some cookies are necessary for the operation or security of the site. In particular, they enable:

technical operation of the site;
the storage of certain essential choices;
protection against fraudulent access and malicious use;
the proper functioning of certain internal services.

Where these cookies are strictly necessary, your prior consent is not required.

b. Cookies and services subject to your choice

Subject to your consent where required, the site may use cookies or services related to:

audience measurement;
advertising and advertising performance measurement;
embedded video playback, especially YouTube;
protection of forms against automated submissions, in particular through anti-spam tools such as reCAPTCHA, depending on their configuration.

c. Tools that may be used

The site may in particular rely on the following services:

Google Analytics;
Google Ads;
YouTube;
Google reCAPTCHA;
Wordfence, for site security and protection.

d. Managing your choices

You can accept, refuse or configure cookies and trackers via the cookie banner or the cookie management tool available on the site.

Where consent is required, you may withdraw it at any time under conditions as simple as those under which it was given.

e. Cookie retention period

Unless a shorter period is imposed by the nature of the tracker or its configuration, cookies and trackers subject to consent are not retained for more than 13 months.

Choices expressed regarding cookies, whether consent or refusal, are retained for a maximum period of 6 months, unless you make a new choice before then.

10. Data security

Edissyum Consulting implements appropriate technical and organizational measures in order to ensure a level of security appropriate to the risk, including:

the use of HTTPS;
access control to systems and data;
logging and incident detection measures;
mechanisms to protect against fraudulent access attempts;
backup and continuity measures;
restricting access to authorized persons only.

11. Automated decision-making

No decision producing legal effects concerning you or similarly significantly affecting you is made solely on the basis of automated processing of the data collected via the open-capture.com website.

12. Your rights

In accordance with the applicable regulations, you have, depending on the case, the following rights:

right of access;
right to rectification;
right to erasure;
right to restriction of processing;
right to object;
right to data portability;
right to withdraw your consent at any time where processing is based on consent;
right to define instructions regarding the fate of your data after your death.

You also have the right to lodge a complaint with the CNIL if you believe that the processing of your data is not compliant with the applicable regulations.

13. Exercising your rights

You may exercise your rights by sending your request:

by email to: dpo@edissyum.com;
or by post to the address of Edissyum Consulting indicated in the legal notice.

In order to process your request, you may be asked to prove your identity. A copy of an identity document is not required systematically. Proof of identity may only be requested in the event of a reasonable doubt as to your identity.

A response will be provided within the time limits laid down by the applicable regulations.

14. Updates to this policy

This privacy policy may be amended at any time to reflect legal, regulatory, technical or functional developments relating to the site.

The version published online is the one applicable on the date of your consultation.

15. Contact

For any question relating to this policy or to the protection of your personal data, you may write to:

dpo@edissyum.com

Privacy Policy and Personal Data Protection Policy

1. Purpose of this policy

2. Data controller

3. Data collected

a. Data submitted through the contact form

b. Data related to browsing and site security

c. Data related to cookies and trackers

4. Purposes of processing

a. Managing requests sent via the contact form

b. Securing the site and preventing malicious use

c. Audience measurement, site improvement and digital communication

5. Legal bases for processing

a. Contact form

b. Site security

c. Non-essential cookies and trackers

d. Exercise of your rights

6. Recipients of the data

7. Transfers of data outside the European Union

8. Data retention period

a. Contact form

b. Security data and technical logs

c. Data relating to the exercise of rights

d. Cookies and consent choices

9. Cookies and other trackers

a. Strictly necessary cookies

b. Cookies and services subject to your choice

c. Tools that may be used

d. Managing your choices

e. Cookie retention period

10. Data security

11. Automated decision-making

12. Your rights

13. Exercising your rights

14. Updates to this policy

15. Contact

Open-Capture by Edissyum.

Publisher of open source solutions for ECM, document capture and mail management.

Privacy Policy and Personal Data Protection Policy

Open-Capture by Edissyum. Publisher of open source solutions for ECM, document capture and mail management.

Open-Capture by Edissyum.

Publisher of open source solutions for ECM, document capture and mail management.