Privacy Policy
Last updated: August 8, 2025
My DPO Partner, managing the website www.mydpopartner.fr, is committed to protecting your personal data and complying with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR).
Who is this Privacy Policy for?
This Privacy Policy applies to:
- Clients and prospects of My DPO Partner;
- Users of the website www.mydpopartner.fr, regardless of location.
Website access is restricted to individuals aged 15 and over. Minors under 15 must obtain explicit consent from a parent or legal guardian, sent to rgpd@mydpopartner.fr. If this consent is not provided, no personal data will be collected or processed for children under 15.
What data is collected, why, and for how long?
| Type of Personal Data | Purpose of Processing | Legal Basis | Retention Period |
|---|---|---|---|
| Connection data (IP address, browser type, logs) | To allow you to browse the website and view its content | Legitimate interest of ensuring proper website functioning | 1 year |
| Identification data (name, surname) & Contact data (email, phone) | To respond to your inquiries | Legitimate interest in providing good service | Duration of response + 3 years from last contact |
| To allow scheduling an appointment with My DPO Partner | Legitimate interest in providing good service | Duration needed for scheduling + 3 years from last contact | |
| To send newsletters and updates | Legitimate interest in providing information | For the duration of subscription + 3 years from last interaction | |
| To send marketing communications | Legitimate interest in conducting prospecting campaigns | 3 years from last contact or last email without objection | |
| Administrative records | Management of administrative files | Legal obligation | Duration of contractual relationship + 5 years |
| Accounting data | Accounting and financial management | Legal obligation | 10 years |
| Identification & Financial data (e.g. IBAN, credit card number) | Billing and payment management | Legitimate interest in managing client payments | IBAN: Duration of contract + 5 years Card: Duration of transaction only |
| Social media interactions (name, comments) | Responding to your questions and sharing updates | Legitimate interest in communication | Duration of interaction + 5 years in case of dispute |
How is your data collected?
Most of the data is collected directly when you use our services or navigate the website. Occasionally, data may be collected indirectly at professional events or via platforms like LinkedIn.
If you post content on My DPO Partner's social pages, you assume responsibility for the data you choose to share.
Who has access to your data?
Your data is handled only by internal teams and carefully selected technical providers. All providers are vetted for GDPR compliance and appropriate security standards.
Are your data transferred outside the EU?
Some technical tools used may involve data transfers outside the EU (e.g. analytics, hosting). My DPO Partner ensures that such transfers are governed by appropriate safeguards (e.g. standard contractual clauses or adequacy decisions) to maintain equivalent protection.
Security Measures
| Category | Examples |
|---|---|
| Technical Measures |
• Hosting in the EEA • HTTPS secured access • Regular backups • Firewalls & intrusion detection • Strong password & 2FA for admin access |
| Organisational Measures |
• Data access limited to authorized persons • Secure devices and software • Internal procedures for exercising data rights |
Does the site use cookies?
Yes, the website uses cookies. Please refer to the Cookie Policy for more information.
Your Rights
| Right | Description |
|---|---|
| Access | View your personal data, unless restricted by confidentiality laws |
| Rectification | Update or correct inaccurate or outdated information |
| Objection | Object to the processing of your data for direct marketing |
| Erasure | Request deletion of your data if no longer needed |
| Restriction | Temporarily limit processing in case of dispute |
| Portability | Receive a copy of your data in a usable format |
| Post-Mortem Instructions | Define how your data is handled after your death |
How to Exercise Your Rights
- Request: Email rgpd@mydpopartner.fr
- Identification: You may be asked for proof of identity
- Response time: Within 1 month (extendable to 3 months for complex requests)
- Recourse: If unsatisfied, you may contact the CNIL (www.cnil.fr)
Data Protection Officer
My DPO Partner has appointed a Data Protection Officer (DPO):
Name: Alina Tuktarova
Email: rgpd@mydpopartner.fr
Updates to this Privacy Policy
This Privacy Policy may be updated at any time, in particular to comply with changes in legislation or regulations, or to reflect changes in our practices.
The version published on the website at the time of your consultation applies.
Contact
If you have any questions or wish to exercise your rights, you can contact:
My DPO Partner
61 rue de Lyon, 75012 Paris
Email: rgpd@mydpopartner.fr