Personal Data Privacy Policy

Transdev intends to protect the privacy of its stakeholders (employees, customers, prospects and business partners and other identifiable natural persons), particularly when processing personal data. Transdev's policies, directives and actions are part of this commitment to protecting personal data.

These Special Conditions supplement the Terms and Conditions of Use (“TCU”) of the Site, accessible here.

 

The Publisher is responsible for the processing of personal data carried out by the Site, you will find the Publisher’s contact details here.

 

These Special Conditions are intended to inform you of the purposes and conditions under which we are required to process data concerning you as well as to identify and allow you to exercise the rights that you hold over this data.

 

When you access the Site, as part of our interactions with you or when you access our premises, we may collect and process personal information about you to meet the objectives indicated in the following table:

Purposes for which data may be processed

Categories of data processed *

Main legal basis for processing

Management of requests for information

  • identification data (surname, first name, civilities, telephone number, email)
  • data (nature of the request, details of the request, response provided, date of exchanges, resolution indicators)

Your consent

Management of quote requests and service orders

  • identification data (surname, first name, civilities, telephone, email)
  • data (entity, function, nature of the request, details of the request, location, desired dates, response provided, date of exchanges, resolution indicators)

Your consent

Audience management and traffic or usage measurement; improvements to our tools and services

  • data (IP addresses, technical identifiers, geolocation)
  • navigation data (pages visited, services used)

Your consent

Newsletter management, participation in promotional actions, measurement of user satisfaction

  • identification data and preferences
  • data (nature of the communication, date of the event, monitoring indicators)

Your consent

Recruitment management

  • identification data
  • CV (contact details, training, professional experience, etc.)

Your consent

Measuring and improving the quality of our services and those of suppliers

  • identification and contact data?
  • connection or usage data for the services concerned,
  • evaluations

Legitimate interest of the data controller

Ensuring the security of information systems

  • identification data
  • technical and usage data

Legitimate interest of the data controller

Access management to our premises

  • identification data
  • professional data

Legitimate interest of the data controller

Security of premises by video protection

  • video recordings

Legitimate interest of the data controller

Management of the duty of vigilance and fight against corruption; KYC (Know Your Customer )

  • identification data
  • data (potentially including sensitive data)
  • professional data

Compliance with legal obligations

Management of compliance reports

  • identification data
  • data relating to reporting and its processing

Compliance with legal obligations

(*) the types of data indicated in parentheses allow you to identify examples of data processed during the processing considered, these examples are not exhaustive.

 

When you access or use certain services, we may provide you with additional or specific information relating to the data processing implemented for these services.

 

Unless we have obtained your specific consent, we will not communicate or make available to third parties outside Transdev Group any data relating to you for commercial prospecting or promotional purposes for third-party products or services.

 

Where a processing is based on your consent, you are reminded that your consent may be withdrawn at any time.

 

No decision having legal effects against you is taken by exclusively automated processing.

 

Some data collected are required to access our Services and those of our partners. In this case, the required fields or information are indicated to you for this purpose. If you choose not to provide certain required personal data, we may not be able to provide you with the services you have requested or fulfill the purposes for which we process personal data.

 

Furthermore, we may publish, disclose, and use aggregated information (information relating to all users or specific groups or categories of users combined in such a way that an individual user can no longer be identified or mentioned) or non-personal information for industry and market analysis, demographic profiling, promotional and advertising purposes, and other business purposes.

Data retention periods

The data relating to you is only kept for the duration necessary to achieve the purposes for which it was collected.

 

You are informed that the general principles of data retention are:

  • data relating to the management of your requests may be kept until the end of two calendar years following their collection;
  • data relating to the management of cookies may be kept until the end of a period of 6 months from their collection;
  • data relating to recruitment management may be kept until the end of two calendar years following their collection;
  • the data collected as part of video protection may be kept for a maximum period of one month from their capture;
  • the data collected as part of compliance with our legal obligations are kept in accordance with the requirements determined by law.

 

Some specific data processing that we carry out may have different retention periods if their retention is made necessary due to a legal requirement or to enable us to ensure the defense of our interests.

 

If you wish to obtain more details on the retention rules specific to a given processing operation, you may contact our Data Protection Department and/or the Data Protection Officer (contact details below).

Security and data transfers

In accordance with current regulations, we take the necessary measures to ensure that personal information is protected in terms of its security, integrity and confidentiality.

 

Any transfers of data outside the European Economic Area are carried out in accordance with regulations, and governed in particular by the standard contractual clauses established by the European Commission.

 

We may communicate, for the purposes of the objectives specified above, information about you to other companies in the Transdev Group and to our subcontractors and service providers; some of these companies may be located outside the European Union and outside countries recognized by the European Union as having laws ensuring adequate protection of personal data.

 

Information concerning you may be communicated to any person or any public or private entity, in particular administrations or professional orders, when this communication is provided for by law or regulation.

 

We may also process information about you for the purposes of managing and monitoring compliance with our internal policies and procedures, auditing or to administer, manage or defend against claims or legal actions.

 

In the event that we are involved in a merger, acquisition, transfer of assets or receivership procedure, we may be required to transfer or share all or part of our assets, including personal data.

 

Exercise of rights

In accordance with the regulations, you may exercise your rights of consultation, rectification, opposition, deletion, limitation of processing and portability, under the conditions of the applicable regulations, on your personal data that we may hold, by sending a request with your name, first name, address and attaching a copy of proof of identity, by the means of your choice:

 

 

By post to:

Transdev Group , Data Protection Department

Crystal building, 3 Allée de Grenelle,

92130 Issy-les-Moulineaux, France

 

Or by email to the following address:

[email protected]

 

The Transdev Group Data Protection Officer (Group DPO) can be reached at the following address: [email protected] .

 

When you contact our services, please state the country and the affiliate concerned.

 

You may also send to the Data Protection Department your instructions relating to the fate of your personal data in the event of death, and in particular the way you wish these rights to be exercised.

 

In general, the Data Protection Officer and the Data Protection Department remain at your disposal for any additional information or complaints relating to the processing of personal data that we carry out. We undertake to respond to you promptly, in accordance with the deadlines imposed by applicable regulations.

 

You are informed that the supervisory authority in France regarding data processing is the “National Commission on Informatics and Liberty” or the “French Data Protection Authority”, www.cnil.fr , to which you may request any information or submit a potential claim.

Updates and modifications to the Special Conditions

We reserve the right to modify these Special Conditions on our processing of personal data at any time. Their date of entry into force is mentioned at the beginning of the text. Please refer to it periodically and particularly each time you provide us with personal information.