What is the purpose of our Privacy Policy?
Descamps d'Haussy et cie (hereinafter referred to as "ADH Assurance"), which manages the ADH assurances-etudiants platform, attaches great importance to the protection and confidentiality of your personal data, which we consider to be a guarantee of reliability and trust.
As such, our Personal Data Privacy Policy precisely reflects our desire to ensure that Descamps d'Haussy et cie complies with the rules applicable to the protection of personal data and, more specifically, those of the General Data Protection Regulation ("GDPR").
In particular, our Privacy Policy aims to inform you about how and why we process your personal data in connection with the services we provide to you.
Who is our Privacy Policy for?
Our Privacy Policy applies to you, regardless of where you live, as long as you are at least 15 years old and are a user of our ADH assurances-etudiants platform.
If you are under the legal age detailed above, you are not authorized to use our services without the prior and explicit consent of one of your parents or the holder of parental authority, which must be sent to us by email at rgpd@adh-assurances.fr.
If you believe that we are holding personal data about your children without your consent, please contact us at the dedicated address detailed above.
Why do we process your personal data and on what basis?
We process your personal data mainly for the following purposes
- To use and benefit from our insurance underwriting service for students and all its functionalities on the basis of the execution of the contract.
- To manage user accounts (e.g. account creation, service access and account deletion) on a contractual basis.
- To pay online on the basis of contract performance.
- To benefit from our frequently asked questions based on the performance of the contract.
- Contact us via our contact form, based on our legitimate interest in providing visitors with a means of contact.
- Import and download documents, based on contract performance.
- To receive our technical emails (e.g. modification of passwords, etc.) essential to the proper functioning of our service on the basis of the execution of the contract.
- To guarantee and reinforce the security and quality of our day-to-day services (e.g. statistics, data security, etc.) on the basis of our legal obligations, our general terms of use and our legitimate interest in ensuring the proper functioning of our services.
Your data is collected directly from you when you use our ADH assurances-etudiants platform and we undertake to process your data only for the purposes described above.
However, we may also obtain your personal data indirectly from partners if you have given your prior consent to the latter.
What personal data do we process and for how long?
We have summarized the categories of personal data and their respective retention periods below:
- For private individuals, identification data (e.g. surname, first name) and contact details (e.g. e-mail address and telephone number, etc.) are kept for the entire duration of the service, plus the statutory limitation periods, which are generally 5 years.
- Email address to receive our technical messages kept until your account is deleted.
- Connection data (e.g. logs, IP address, etc.) stored for 1 year.
- Data relating to your family or financial situation, for example the composition of your household or the age of your children, your legal capacity, your assets or your income in the context of a loan offer. Depending on the purpose, the services or contracts subscribed to, or legal obligations, your personal data will be kept for a variable length of time to enable us to establish proof of a right or contract, particularly in the event of recourse or litigation.
- Data required for contracts and risk assessment, such as the characteristics of your home, details of your vehicle, information on previous claims, your driving license or, where applicable, more sensitive data such as that obtained from a health questionnaire. Depending on the purpose, the services or contracts subscribed to, or legal obligations, your personal data will be kept for a variable length of time to enable us to establish proof of a right or contract, particularly in the event of recourse or litigation.
- Data relating to claims, such as the nature of the claim and its circumstances, descriptions of damage to property, expert reports and investigations including information relating to offences, medical reports and the amount of benefits paid. Depending on the purpose, the services or contracts subscribed to, or legal obligations, your personal data will be kept for a variable length of time to enable us to establish proof of a right or contract, particularly in the event of recourse or litigation.
- Health-related data, such as descriptions of personal injuries, copies of medical certificates, supporting documents and medical questionnaires, where necessary. This data is processed with your consent. Depending on the purpose, the services or contracts subscribed to, or legal obligations, your personal data will be kept for a variable length of time to enable us to establish proof of a right or contract, particularly in the event of recourse or litigation.
- Banking data such as cheque numbers, credit card numbers, bank references (RIB, IBAN, BIC, postal statement, SEPA mandate). Depending on the purpose, the services or contracts subscribed to, or legal obligations, your personal data will be kept for a variable length of time to enable us to establish proof of a right or contract, particularly in the event of recourse or litigation.
- Cookies are generally stored for a maximum of 13 months. For more details on how we use your cookies, please consult our cookies policy, which is available at all times on our website.
Once the applicable retention periods have expired, the deletion of your personal data is irreversible and we will no longer be able to communicate it to you. At most, we can only keep anonymous data for statistical purposes.
Please also note that in the event of litigation, we are obliged to retain all data concerning you for the duration of the case, even after the expiry of the retention periods described above.
What rights do you have to control the use of your personal data?
The applicable data protection regulations grant you specific rights which you can exercise, at any time and free of charge, to control the use we make of your data.
- Right to access and copy your personal data, provided this request does not conflict with business secrecy, confidentiality or the secrecy of correspondence.
- Right to rectify personal data that is incorrect, outdated or incomplete.
- The right to request the deletion ("right to be forgotten") of personal data that is not essential to the proper functioning of our services.
- The right to limit the use of your personal data, which allows you to photograph the use of your data in the event of a dispute over the legitimacy of processing.
- The right to data portability, which enables you to recover part of your personal data so that it can be easily stored or transmitted from one information system to another.
- The right to give instructions on what to do with your data in the event of your death, either through you, a trusted third party or a beneficiary.
For a request to be taken into account, it must be sent directly by you to rgpd@adh-assurances.fr. Any request not made in this way cannot be processed.
Requests cannot come from anyone other than you. We may therefore ask you to provide proof of identity if there is any doubt about the identity of the person making the request.
We will respond to your request as quickly as possible, subject to a maximum of three months from receipt if the request is technically complex or if we receive many requests at the same time.
Please note that we can always refuse to respond to any excessive or unfounded request, particularly if it is repetitive.
Who can access your personal data?
Your personal data is processed by our teams and by our technical service providers for the sole purpose of operating our service.
We check all our technical service providers before recruiting them, to ensure that they comply scrupulously with the rules applicable to the protection of personal data.
WE GUARANTEE THAT WE WILL NEVER TRANSFER OR SELL YOUR DATA TO THIRD PARTIES OR BUSINESS PARTNERS.
Can your personal data be transferred outside the European Union?
Personal data processed by our ADH assurances-etudiants platform is exclusively hosted on servers located within the European Union.
Furthermore, we do our utmost to use only technical tools whose servers are also located within the European Union. However, if this is not the case, we scrupulously ensure that they implement the appropriate guarantees required to ensure the confidentiality and protection of your personal data.
How do we protect your personal data?
We implement the following technical and organizational means to guarantee the security of your personal data on a day-to-day basis and, in particular, to combat any risk of destruction, loss, alteration or disclosure.
Technical safety measures : Organizational safety measures Antivirus on Descamps d'Haussy et cie terminals, Password on Descamps d'Haussy et cie terminals frequently changed, Complex password for Descamps d'Haussy et cie team terminals, HTTPS protocol, PCA / PRA for Descamps d'Haussy et cie teams, VPN for Descamps d'Haussy et cie teams,
Organizational safety measures : Access badges, Information systems charter, Rules of good conduct, Team awareness and training twice a year, Video protection on premises
Do we use cookies when you browse our platform?
Please note that we use cookies when you browse our platform. For more information, please consult our Cookie Policy.
Who can you contact to obtain more information about the use of your personal data?
To best guarantee the protection and integrity of your data, we have officially appointed an independent Data Protection Officer ("DPO") to our supervisory authority.
How can you contact the CNIL?
You may at any time contact the "Commission nationale de l'informatique et des libertés" or "CNIL" at the following address: CNIL Complaints Department, 3 place de Fontenoy - TSA 80751, 75334 Paris Cedex 07 or by telephone at 01.53.73.22.22.
Can the Privacy Policy be modified?
We may modify our Privacy Policy at any time to adapt it to new legal requirements and to new processing operations that we may implement in the future.
Certified by Dipeeo ®.