Illizeo Privacy Policy

  Data RecoveryDefinitions and interpretations:

1. In this Privacy Policy, the following definitions are used:

Data	Any information submitted to Illizeo via the Website. This definition incorporates, where applicable, definitions provided in data protection laws.
Cookies	A small text file placed on your computer by this website when you visit certain parts of it and/or while using certain features. Details of the cookies used by this website are set out in the clause below (Cookies).
Data Protection Laws	Any applicable law relating to the processing of personal data, including Directive 96/46/EC (Data Protection Directive) or the General Data Protection Regulation as well as any national laws, regulations and secondary legislation as long as the general rules are effective.
Illizeo, our identity	A Swiss company offering a global human resources management solution since 2020 headquartered in Chemin des Saules, CH-1260, Nyon Switzerland, VD. Law on cookies in Switzerland.
Cookie law in Switzerland	The Privacy and Electronic Communications (EC Directive) Regulations 2003 as amended by the Privacy and Electronic Communications (EC Directive) Regulations 2011.
User	Any third party is accessing the Website and is not (1) employed by Illizeo and acting while employed, or (2) engaged as a consultant or otherwise providing services to Illizeo and accessing the Website within the framework of the provision of such services.
Site Internet	The website you are currently using; www.illizeo.com and all subdomains of this site except as expressly excluded by their own terms and conditions.

2. Scope of this Privacy Policy:

This privacy policy applies only to the actions of Illizeo and the user with respect to this site. It does not extend to any websites accessible from it including any links we may provide to social media sites. For the purposes of applicable data protection laws, Illizeo is the “controller”. This means that Illizeo determines the purposes and processing of your data.

3. Data collected:

We may collect the following data including your personal data:

1. First name;

2.Sex;

3.Profession;

4. Contact information such as email addresses and telephone numbers;

4. IP addresses (automatically collected);

5.Web browser type and version (automatically collected);

6. Operating system (automatically collected);

In each case, in accordance with this Privacy Policy.

4. How we collect data: We collect data in the following ways:

1.You provide us with your contact details when you register to use or access Websites;

2.Through apps or services we make available or when you update these details;

3.When you interact with us through social media;

4.When you place an order using our websites, apps or services;

5.When you register to use our websites, applications or services (including free trials);

6.When you contact us offline, for example by telephone, fax, SMS, email or post;

7.Data is collected automatically.

8.When you complete online forms (including callback requests), participate in surveys, post on our forums, post to blogs, enter contests or sweepstakes, download information such as books blanks or other postings or participate in any other interactive areas that appear on our website or in our application or service;

9.When you choose to receive marketing communication from Illizeo.

Each case is in accordance with the privacy policy.

5. Data collected automatically:

To the extent that you access the website, we will collect your data automatically, for example:

• We automatically collect information from your visit to the site. This information helps us improve website content and navigations and includes your IP address, the date, time and how often you access the website, and how you use and interact with its content.
• We will collect your data automatically via cookies in accordance with your browser settings. For more information about cookies and their use on the website, see the section below entitled “Cookies”.

6. Our use of data:

We may from time to time request one or more of the aforementioned data in order to provide you with the best possible service and experience when using our website. Specifically, we may use data for the following reasons:

• Maintaining internal records;
• Improving our products/services;
• The transmission by e-mail of marketing materials that may be of interest to you;

Each case is in accordance with the privacy policy. We may use your data for the above purposes if we deem it necessary for our legitimate interests. If you are not satisfied with this, you have the right to object in certain circumstances (see the section entitled “Your rights” below). In order for direct marketing to be sent to you by email, we require your consent, i.e. you must take positive and affirmative action where you consent such as by ticking a checkbox which we will provide to you . If you are unhappy with our approach to marketing, you have the right to withdraw your consent at any time. For information on how to withdraw your consent, see the section entitled “Your rights” below).

7. Provide us with information about others:

If you provide us with personal information about another individual, you must ensure that you comply with any consent requirements under applicable data protection laws in connection with such disclosure. To the extent required by applicable data protection laws, you must ensure that you have provided the required notices and obtained the individual’s express consent to provide the information to us and that you explain to them how we collect, use , disclose and retain its information. personal information or ask them to read our privacy notice.

8. Who do we share data with? We may share your data with the following groups of people for the following reasons:

• To our employees, agents and/or professional advisers in order to better understand the questions posed by the user or to provide him with the best possible service;
• To our credit reference and fraud prevention agencies;
• To moderators who must comply with Illizeo’s legal and regulatory obligations;
• To law enforcement agencies so that they can detect or prevent crime or prosecute offenders;
• To government departments where reporting is mandatory under applicable law;

Each case is in accordance with the privacy policy.

9. Protect data:

Illizeo operates in the cloud like any modern SaaS application. As such, we understand that Illizeo hosts your company’s most sensitive data. Therefore, our team has developed and implemented a cloud security standard, along with a suite of controls in our infrastructure, to ensure that these standards are consistently applied, and your data is protected at all times.

• We store your data on secure servers.

Data Encryption

• Encryption in Transit
  Illizeo ensures that all data transferred through insecure networks are encrypted during the transfer using Transport Layer Security (TLS) with robust cipher suites. To maintain the integrity of encrypted channels, Illizeo also utilizes additional methods such as HTTP Strict Transport Security (HSTS). To verify the TLS ciphers and algorithms used by Illizeo sites and services, users can utilize freely available tools like Qualys’ SSL Labs and Security Headers.

• Encryption at Rest
  Your data is encrypted and replicated on our servers at Infomaniak, which systematically encrypts your data. These are replicated on at least two or three different physical media depending on our services.

• Tenant Isolation
  Illizeo guarantees the distinct processing and storage of data from various clients using a multi-tenancy architecture with logical client separation. Data is assigned and identified through a unique identifier allocated to each client, such as a customer number or « Company ID ».
   

• Data Recovery

Disaster recovery is a key feature that we offer to our Illizeo clients. We provide our clients with the ability to perform their own backups and restorations. Additionally, to ensure availability of your data in the event of major outages, we have implemented backups on multiple geographically separate servers. This ensures that your data is always accessible, even after serious events such as outages or natural disasters.

Technical and organizational measures include measures to deal with any suspected data breach. If you suspect misuse, loss or unauthorized access to your data, please notify us immediately by contacting us at this email address: dpo@Illizeo.com 

9.1 Data protection:

Illizeo adheres to the essential requirements of EU’s GDPR, CCPA, PIPEDA, Australian Data Privacy Law, Japanese Data Protection Law and Swiss Federal Data Protection Act. This ensures data protection is built into our application, infrastructure, and organization, and is always active. If you do not meet the required criteria, it is not recommended to register on Illizeo. 

10. Your rights:

If you are located in the EEA or another jurisdiction with similar data protection laws, in certain cases you have the following rights:

• The right to know how we use your information and obtain access to your information;
• The right to rectify or erase your information or to impose restrictions on the processing of your information;
• The right to object to the processing of your information for example for direct marketing purposes or where the processing is based on our legitimate interests; –
• The right to receive the information you have provided to us in an automated way, in a structured commonly used and machine-readable format, or directly to another company when technically feasible (“data portability”);
• Where the processing of your information is based on your consent, the right to withdraw it subject to legal or contractual restrictions;
• The right to object to any decision based on the automated processing of your personal data including profiling;
• The right to complain to the supervisory authority responsible for data protection matters (eg in the UK, the Information Commissioner’s Office).

If you request a copy of your information outside of what is automated, you may have to pay a statutory fee.

If we hold any information about you that is incorrect or if your personal data has changed, please let us know so that we can keep our records up to date and accurate.

If you withdraw your consent to the use of your personal information for the purposes set out in our Privacy Notice, we may not be able to provide you with access to all or parts of our website, applications and services.

We will retain your personal information for the duration of our business relationship and thereafter for as long as necessary and relevant for our legitimate business purposes, in accordance with Illizeo’s data retention, marking and destruction policy or as permitted by the applicable laws and regulations. When we no longer need your personal information, we dispose of it securely (without further notice to you).

11. Links to other sites:

This website may, from time to time, provide links to other websites. We have no control over these websites and are not responsible for the content of these sites. This Privacy Policy does not extend to your use of such websites. We advise you to read the privacy policy or statement of other websites before using them.

12. Changes to this Privacy Notice:

We may change this Privacy Notice from time to time. However, we will not reduce your rights under this Privacy Notice. We will always update this privacy statement on our website. Please therefore try to read it when you visit the Website (the “last updated” reference tells you when this privacy statement was last updated).

Cookies :

This site uses cookies – small text files placed on your computer to help the site provide a better user experience. Typically, cookies are used to retain user preferences, store information for things like shopping carts, and provide anonymized tracking data to third-party applications like Google Analytics. In general, cookies improve your browsing experience. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We advise you to consult the Help section of your browser or consult the “About Cookies” website which offers advice for all modern browsers.

13. GPDR:

The General Data Protection Regulations (GDPR) apply to the use of your data if you find yourself in one of the cases defined in articles 2 and 3 of the CNIL GDPR, which concern the material scope and territory of the GDPR.

If you are subject to the GDPR, you must comply with European data protection regulations when using the data you collect. It is your responsibility to ensure compliance of this use, so it is essential to think about the use you want to make of this data before any collection. You can consult the CNIL guide, the CNIL Repository – personnel data management, to help you in this process.

The processing of sensitive data within the meaning of the GDPR, such as racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, as well as data concerning health, sex life or sexual orientation of a natural person, is generally prohibited, except in the cases specified in article 9 of the GDPR and mentioned in the corresponding article of the CNIL, Definition of sensitive data.

14. Contact :

If you have any questions regarding our privacy policy, please contact us at contact@illizeo.com or call + 41 78 669 05 65 (Nyon headquarters).