Sign In Contact

Solutions

Why Visibrain

Clients

Resources

About

Pricing
Sign In Contact
Demo

Retour

Solutions

Reputation

Reputation Management

Effortlessly and accurately track the web and social network impact of your brand

Crisis Communication

Prepare, manage, and respond effectively to crises on social media and beyond

Leadership Advocacy

Amplify your leaders' voices to build trust and influence across key audiences

Influence

Trend Research

Uncover emerging trends to keep your brand ahead of the curve

Identifying Influencers

Find the voices that matter most to your audience and align with your brand goals

Campaign Tracking

Monitor, measure, and optimise your campaigns in real-time for maximum impact

Strategy

Competitive Intelligence

Gain actionable insights into your competitors’ strategies and performance

Industry Insights

Stay informed with real-time analysis of your industry’s landscape and shifts

Cyber Threat & OSINT

Detect and mitigate cyber threats with cutting-edge open-source intelligence

Retour

Why Visibrain

Why Visibrain

Our Coverage

The best coverage across the web and social networks

Our Technology

Our intuitive interface uses cutting-edge technology

Our Support

Our team is with you every step of the way

Featured

5 Easy Steps to choose the Right Social Listening Tool

pexels-rdne-7947999

Learn more

Retour

Clients

Our clients

Brands

Visibrain for brands

Institutions & Local Authorities

Visibrain for institutions and local authorities

Agencies

Visibrain for agencies

Success Stories

Discover how our clients use Visibrain

Client stories

How LVMH is using LinkedIn monitoring to boost its influence with Visibrain

Read the case study

Retour

Resources

Resources

Blog

Stay up to date

White Papers

Studies, industry analysis and advanced insights

Case studies

Our client stories

Help center

Guides and resources for users

Newsletter

Stay up to date with the latest Visibrain news!

Webinars

Our upcoming webinars.

Our Last Study

Visibrain Template: Brand Reputation Report

Download the full guide

Retour

About

About

About Us

Find out more about Visibrain

Join Us

Our latest job offers

Contact Us

Get in touch

Already a client?

Login

Connect to the platform

Help Center

Guides and resources for users

Data Protection Policy

Home page
When you use the www.visibrain.com website and the services offered by VISIBRAIN, personal data may be collected and processed. This processing is carried out only insofar as it is necessary for the proper functioning of the website and the services provided, and for the purposes described below.

The purpose of this Personal Data Protection Policy is to inform you about:


  • The personal data collected or processed when you use the Site
  • The personal data collected or processed when you are a VISIBRAIN customer
  • The personal data collected or processed when you use a third-party website
  • How your personal data is used and protected
  • The rights you have in relation to your personal data
  • How to contact us in order to exercise your rights

Definitions

"Independent supervisory authority" means an independent public authority responsible for monitoring the application of data protection, in France this is the CNIL.

 

"Customer" means the other party with whom VISIBRAIN has entered into a contract.

 

"Data subject rights" refers to the rights available to an identifiable natural person under the provisions of the RGPD and the French Data Protection Act.

 

"Loi Informatique et Liberté" refers to Law no. 78-17 of January 6, 1978 relating to information technology, files and freedoms.

 

"Data subject" means an identifiable natural person who can be identified, directly or indirectly, in particular by a name or identification number or connection data.

 

"Data controller" refers to the legal entity which, alone or jointly with other parties, determines the purposes and means of personal data processing in compliance with regulations and contractual commitments.

 

"GDPR" means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data.

 

"VISIBRAIN site and platform" refers to the www.visibrain.com site and the VISIBRAIN platform.

 

"Services" refers to the services provided by VISIBRAIN through tools developed to provide its customers with competitive intelligence, verify brand reputation, manage crisis communication and identify real influencers.

 

"Sub-processor" refers to the natural or legal person who processes personal data on behalf of the Data Controller.

 

"User of a third-party website" means a person who publishes information publicly and freely on a site from which VISIBRAIN may collect data.

 

"Data Breach" means a breach of security resulting in the destruction, loss, alteration, unauthorized disclosure or accidental or unlawful access to personal data transmitted, stored or otherwise processed.

 

 

THE DATA CONTROLLER FOR PERSONAL DATA COLLECTED ON THE VISIBRAIN WEBSITE AND PLATFORM

The data controller is :
VISIBRAIN
Société Anonyme

registered with the Registre du Commerce et des Sociétés d'Evry under number B 533 569 604

Head office: 9, rue Charles Fourier - 91000 Evry - France

E-mail address: contact@visibrain.com

Telephone: +33 1 85 08 85 90

 

PERSONAL DATA COLLECTED ON THE VISIBRAIN WEBSITE AND PLATFORM

Certain personal data is necessary for the operation, use and improvement of the Site.

This is the case when :

  • you use our Site,
  • you request a demonstration,
  • you create an access (login),

This personal data includes your :

  • contact details, including name, e-mail address, telephone number ;
  • user and account information, if applicable, including your password and unique user ID;
  • IP address
  • personal cookie preferences.

When you interact with our Site, certain data is automatically collected from your web browser.

Information on this data is provided in our "Cookie Management Policy", which can be accessed via the following link https://www.visibrain.com/fr/cookies/. This data includes cookies, IP addresses, data identifying your Internet browser and its version, and web beacons.

 

HOW DO WE INFORM YOU ABOUT DATA COLLECTION?

When you use our Site, we provide you with the necessary information in good time, or obtain your consent in certain cases, before collecting your Data.

At the time of collection, you will be informed whether certain information is mandatory or optional.

Data marked with an asterisk is mandatory. Failure to do so may restrict access to the website Services.

 

FOR WHAT PURPOSES ARE PERSONAL DATA COLLECTED?

We use your personal data for the following purposes:

  • To enable you to use our Site and Services

When you use our Site, we will use your personal data to provide the services you have requested.

If you create an access on our Site, we use your data for the creation, use and authentication of your user access.

To use certain features of our Site, it may sometimes be necessary to provide us with additional data or additional consent for the use of data for certain purposes.

  • To enable you to receive information about our services

We may use your personal data to send you marketing communications and news about our services and events by e-mail or telephone.

When creating your access to the Site, you are expressly asked to give your consent to receive news from us. Consequently, you will not receive any commercial prospecting if you have not given your consent.

Please note that you can unsubscribe at any time by clicking on the unsubscribe link or by following the unsubscribe instructions included in our messages. You can also change your preferences regarding our communications.

  • To enable us to ensure and improve the operation of our Site and services

We may also use your personal data relating to the way you use our Site and our services to improve your "user experience" and to enable us to detect technical problems and administer our Site.

  • To help us better understand your behavior and preferences

We use data about how you use our Site to :

  • understand your behavior and preferences, such as data about how you search for and find our services;
  • understand how best to organize and present our service offerings on our Site.

Legal basis for processing your personal data

The basis on which we process your personal data depends on the conditions under which you provide us with your data.

  • When you purchase our services from our Site, we need your personal data to process your order, such as your contact data for order tracking. The data is necessary to execute the contract concluded with VISIBRAIN.
  • You may be asked to give your consent.
  • The processing of your data may also be based on our legitimate interest as a company or on compliance with a legal obligation.

 

WITH WHOM DO WE SHARE YOUR PERSONAL DATA?

For the purposes of providing the services and functionalities of the Site, VISIBRAIN shares your personal data with :

  • Third-party service providers processing personal data on behalf of VISIBRAIN, for example for payments, hosting, administration and management of your data, e-mail distribution, research and analysis, brand management and service promotions, as well as for the administration of certain services and features.

When we use the services of third-party service providers, we enter into contracts that require them to implement appropriate technical and organizational measures to protect your personal data.

  • Other third parties to the extent necessary to:

- comply with a judicial or administrative request or the application of a law;
- prevent unlawful use of our Site;
- defend us against third-party claims;
- provide assistance in the prevention of fraud.

 

NO TRANSFER OF PERSONAL DATA OUTSIDE THE EUROPEAN UNION

VISIBRAIN does not currently transfer data outside the European Economic Area (EEA) to third countries.

Should VISIBRAIN transfer data outside the European Economic Area (EEA) to third countries, you will be informed.

In any event, we have ensured that your data will be protected and processed solely for the aforementioned purposes, with appropriate safeguards as required by law.

VISIBRAIN takes all necessary measures to respect your data, your privacy and the security of your Personal Data.

 

MEASURES TO PROTECT YOUR PERSONAL DATA

Our tools and methods have been designed to comply with the legal principles governing access to and processing of public data, without collecting excessive irrelevant or sensitive information.

We use various technical and organizational security measures to ensure the security and confidentiality of your personal data and prevent it from being distorted, damaged, accidentally or unlawfully destroyed, lost, altered or accessed by unauthorized third parties.

The main measures taken by VISIBRAIN ;

  • To ensure the protection of personal data and related processing in accordance with the RGPD;
  • where VISIBRAIN acts as a processor within the meaning of the laws and regulations relating to personal data, VISIBRAIN processes personal data exclusively on the documented instructions of its Customers;
  • take all necessary precautions to preserve the confidentiality and security of personal data, and in particular to prevent it from being distorted, damaged or communicated to unauthorized third parties;
  • implement appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, accidental loss, alteration, distribution and/or unauthorized access, as well as against any form of unlawful processing, such measures ensuring a level of security appropriate to the risks presented by the processing and the nature of the data protected;
  • taking into account the principles of data protection by design and data protection by default for its tools, applications and services;
  • VISIBRAIN undertakes to implement appropriate technical and organizational measures to ensure the integrity, security and confidentiality of personal data processed;
  • Storage of personal data in a secure environment;
  • VISIBRAIN limits access to data to persons who are strictly authorized and empowered to do so by virtue of their functions, within the strict limits of what is necessary for them to carry out their duties, and who have been trained, made aware of and have signed confidentiality agreements;
  • implementation of means to restore data availability and access within appropriate timeframes in the event of a physical or technical incident;
  • VISIBRAIN notifies the person concerned and the competent supervisory authority as soon as possible of any security incident resulting in the accidental or unlawful destruction, loss, alteration, disclosure or unauthorized access of personal data.


DATA RETENTION PERIOD

Your personal data is kept for no longer than is necessary for each of the purposes defined above and within the limits defined by law.

To ensure that data is not kept longer than necessary, VISIBRAIN implements personal data minimization.

 

Purpose of processing Legal basis Retention period on operational basis
Use of VISIBRAIN user access Contract 3 years from last activity
Customer knowledge and statistical analysis Contract 3 years
Personalization of our services (emails, service recommendations) Legitimate interest 3 years from last activity
Sending of e-mail messages (electronic commercial prospecting) by THIRD PARTIES Consent 3 years from last activity
Targeted advertising on behalf of VISIBRAIN Consent 3 years

 

 

WHAT ARE YOUR RIGHTS REGARDING YOUR PERSONAL DATA?

Pursuant to the provisions of the amended French Data Protection Act No. 78-17 of January 6, 1978 and Regulation (EU) No. 2016/679 of April 27, 2016 (RGPD), we inform you that you have the right, at any time, to request:

  • access to and portability of your data;
  • an electronic copy of your data;
  • update or rectification of your data if it is incomplete, inaccurate or requires updating;
  • deletion or restriction of your data.

Where you have given us your consent to process your data, you have the right to withdraw your consent at any time.

You may also, for legitimate reasons, object to the processing of your data.

You may exercise your rights:

  • by post addressed to : VISIBRAIN - service données personnelles - 9, rue Charles Fourier - 91000 Evry - France
  • or by e-mail to the following address: contact@visibrain.com

We may carry out identity checks in order to guarantee the confidentiality and security of your data. In certain cases, you may be asked to provide a copy of an identity document bearing your signature. A reply will be sent to you within one month of receipt of the request.

Finally, we remind you that you may at any time contact the Commission Nationale Informatiques & Libertés (CNIL). You will find information on this subject at the following link: https://www.cnil.fr/fr/agir.

 

CONTACT DETAILS FOR PERSONAL DATA ISSUES

If you have any questions about the protection of your personal data, please contact :

E-mail address: contact@visibrain.com

 

PERSONAL DATA COLLECTED FROM VISIBRAIN CUSTOMERS

Certain personal data is necessary to provide you with our services. This information is necessary for the operation, use, follow-up and delivery of our services.

This is particularly the case when :

  • you place an order for services,
  • you use our services
  • To provide you with a follow-up of our services

This personal data includes your :

  • contact details, including name, e-mail, telephone number and billing address;
  • user and customer account information, including your password and unique user ID;
  • personal cookie preferences.

When you interact with our Site, certain data is automatically collected from your web browser.

Information on this data is provided in our "Cookie Management Charter", which can be accessed via the following link https://www.visibrain.com/fr/cookies/.

This data includes cookies, IP addresses, data identifying your Internet browser and its version, and web beacons.

 

HOW DO WE INFORM YOU ABOUT THE COLLECTION OF YOUR DATA?

When you use our services, we provide you with the necessary information in good time, or obtain your consent in certain cases, before collecting your data.

At the time of collection, you will be informed whether certain information is mandatory or optional.

 

FOR WHAT PURPOSES ARE PERSONAL DATA COLLECTED?

We use your personal data for the following purposes:

  • To enable you to use our Site, our services and to manage your order

When you use our Site, and our services, we will use your personal data to provide the services you have requested.

If you create an access on our Site, we use your data for the creation, use and authentication of your user access.

To use certain features of our Site, it may sometimes be necessary to provide us with additional data or additional consent for the use of data for certain purposes.

  • To enable you to receive information about our services

We may use your personal data to contact you by e-mail and/or telephone to send you marketing communications and news about our services and events.

When creating your user access on the Site, you are expressly asked to give your consent to receive news from us. Consequently, you will not receive any commercial prospecting if you have not given your consent.

Please note that you can unsubscribe at any time by clicking on the unsubscribe link or by following the unsubscribe instructions included in our messages. You can also change your preferences regarding our communications.

  • To enable us to ensure and improve the operation of our Site and services

We use your personal data for the operation of our Site, in particular, when you place an order for services, your data is used for accounting, auditing and other internal purposes.

We may also use your personal data relating to your use of our Site and services to improve your "user experience" and to enable us to detect technical problems and administer our Site.

Legal basis for processing your personal data

The basis on which we process your personal data depends on the conditions under which you provide us with your data.

  • When you purchase our services, we need your personal data to process your order, such as your payment details and contact details for order tracking. The data is necessary to execute the contract concluded with VISISBRAIN.
  • The processing of your data may also be based on our legitimate interest as a company or on compliance with a legal obligation.

 

WITH WHOM DO WE SHARE YOUR PERSONAL DATA?

For the purposes of providing the services and functionalities of the Site, VISIBRAIN shares your personal data with :

  • Third-party service providers processing personal data on behalf of VISIBRAIN, for example for payments, hosting, administration and management of your data, e-mail distribution, research and analysis, brand management and service promotions, as well as for the administration of certain services and features.

When we use the services of third-party service providers, we enter into contracts that require them to implement appropriate technical and organizational measures to protect your personal data.

  • Other third parties to the extent necessary to:

- comply with a judicial or administrative request or the application of a law;
- prevent unlawful use of our Site;
- defend us against third-party claims;
- assist us in preventing fraud.

 

NO TRANSFER OF PERSONAL DATA OUTSIDE THE EUROPEAN UNION

VISIBRAIN does not currently transfer data outside the European Economic Area (EEA) to third countries.

Should VISIBRAIN transfer data outside the European Economic Area (EEA) to third countries, you will be informed.

In any event, we have ensured that your data will be protected and processed solely for the purposes mentioned above, with appropriate safeguards as required by regulations.

VISIBRAIN takes all necessary measures to respect your data, your privacy and the security of your Personal Data.

 

MEASURES TO PROTECT YOUR PERSONAL DATA

Our tools and methods have been designed to comply with the legal principles governing access to and processing of public data, without collecting excessive irrelevant or sensitive information.

We use various technical and organizational security measures to ensure the security and confidentiality of your personal data and prevent it from being distorted, damaged, accidentally or unlawfully destroyed, lost, altered or accessed by unauthorized third parties.

The main measures taken by VISIBRAIN ;

  • To ensure the protection of personal data and related processing in accordance with the RGPD;
  • where VISIBRAIN acts as a processor within the meaning of the laws and regulations relating to personal data, VISIBRAIN processes personal data exclusively on the documented instructions of its Customers;
  • take all necessary precautions to preserve the confidentiality and security of personal data, and in particular to prevent it from being distorted, damaged or communicated to unauthorized third parties;
  • implement appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, accidental loss, alteration, distribution and/or unauthorized access, as well as against any form of unlawful processing, such measures ensuring a level of security appropriate to the risks presented by the processing and the nature of the data protected;
  • taking into account the principles of data protection by design and data protection by default for its tools, applications and services;
  • VISIBRAIN undertakes to implement appropriate technical and organizational measures to ensure the integrity, security and confidentiality of personal data processed;
  • Storage of personal data in a secure environment;
  • VISIBRAIN limits access to data to persons who are strictly authorized and empowered to do so by virtue of their functions, within the strict limits of what is necessary for them to carry out their duties, and who have been trained, made aware of and have signed confidentiality agreements;
  • Implementation of means to restore data availability and access within appropriate timeframes in the event of a physical or technical incident;
  • VISIBRAIN notifies the person concerned and the competent supervisory authority as soon as possible of any security incident resulting in the accidental or unlawful destruction, loss, alteration, disclosure or unauthorized access of personal data.

 

DATA RETENTION PERIOD

Your personal data is kept for no longer than is necessary for each of the purposes defined above and within the limits defined by law.

To ensure that data is not kept longer than necessary, VISIBRAIN implements personal data minimization.

 

Purpose of processing Legal basis Retention period on operational basis
Management of service orders Contract 3 years from last activity
Use of VISIBRAIN customer area Contract 3 years from last activity
Customer knowledge and statistical analysis Contract 3 years
Personalization of our services (emails, recommendation of services on our site or on third-party sites, etc.) Legitimate interest 3 years from last activity
Sending emails (commercial prospecting) to VISIBRAIN or third parties Legitimate interest 3 years from last activity
Sending of messages by e-mail or telephone (electronic commercial prospecting by THIRD PARTIES) Consent 3 years from last activity
Targeted advertising on behalf of VISIBRAIN Consent 3 years

 

WHAT ARE YOUR RIGHTS REGARDING YOUR PERSONAL DATA?

Pursuant to the provisions of the amended French Data Protection Act No. 78-17 of January 6, 1978 and Regulation (EU) No. 2016/679 of April 27, 2016 (RGPD), we inform you that you have the right, at any time, to request:

  • access to and portability of your data;
  • an electronic copy of your data;
  • update or rectification of your data if it is incomplete, inaccurate or requires updating ;
  • deletion or restriction of your data.

Where you have given us your consent to process your data, you have the right to withdraw your consent at any time.

You may also, for legitimate reasons, object to the processing of your data.

You may exercise your rights:

  • by post addressed to : VISIBRAIN - service données personnelles - 9, rue Charles Fourier - 91000 Evry - France
  • or by e-mail to the following address: contact@visibrain.com

We may carry out identity checks in order to guarantee the confidentiality and security of your data. In certain cases, you may be asked to provide a copy of an identity document bearing your signature. A reply will be sent to you within one month of receipt of the request.

Lastly, we remind you that you may at any time contact the Commission Nationale Informatiques & Libertés (CNIL). You will find information on this subject at the following link: https://www.cnil.fr/fr/agir.

 

CONTACT DETAILS FOR PERSONAL DATA ISSUES

If you have any questions about the protection of your personal data, please contact :

E-mail address: contact@visibrain.com

 

PERSONAL DATA COLLECTED FOR VISIBRAIN CUSTOMERS ON THIRD-PARTY WEBSITES

In the context of contractual relations, VISIBRAIN may collect data on behalf of its Customers:

  • user name, your name, pseudonym or other identifier ;
  • profile information: photo, data relating to your birth, interests, description, any other information you make available;
  • website interactions (e.g. publications, posts);

The data analyzed by VISIBRAIN comes from public and accessible sources, without any intrusion into private and/or protected areas.

 

You can consult the privacy policy of the third-party websites you use. For example:

 

FOR WHAT PURPOSES ARE PERSONAL DATA COLLECTED?

The basis for processing your personal data is our legitimate interest in providing our services to our Customers.

 

WITH WHOM DO WE SHARE YOUR PERSONAL DATA?

For the purposes of providing services, VISIBRAIN shares your personal data with :

  • Third-party service providers processing personal data on behalf of VISIBRAIN, for example for payments, hosting, administration and management of your data, e-mail distribution, research and analysis, brand management and service promotions, as well as for the administration of certain services and features.

When we use the services of third-party service providers, we enter into contracts that require them to implement appropriate technical and organizational measures to protect your personal data.

  • Other third parties to the extent necessary to:
- comply with a judicial or administrative request or the application of a law;
- prevent unlawful use of our Site;
- defend us against third-party claims;
- assist us in preventing fraud.

 

NO TRANSFER OF PERSONAL DATA OUTSIDE THE EUROPEAN UNION

VISIBRAIN does not currently transfer data outside the European Economic Area (EEA) to third countries.

Should VISIBRAIN transfer data outside the European Economic Area (EEA) to third countries, you will be informed.

In any event, we have ensured that your data will be protected and processed solely for the purposes mentioned above, with appropriate safeguards as required by regulations.

VISIBRAIN takes all necessary measures to respect your data, your privacy and the security of your Personal Data.

 

MEASURES TO PROTECT YOUR PERSONAL DATA

Our tools and methods have been designed to comply with the legal principles governing access to and processing of public data, without collecting excessive irrelevant or sensitive information.

We use various technical and organizational security measures to ensure the security and confidentiality of your personal data and prevent it from being distorted, damaged, accidentally or unlawfully destroyed, lost, altered or accessed by unauthorized third parties.

The main measures taken by VISIBRAIN ;

  • To ensure the protection of personal data and related processing in accordance with the RGPD;
  • where VISIBRAIN acts as a processor within the meaning of the laws and regulations relating to personal data, VISIBRAIN processes personal data exclusively on the documented instructions of its Customers;
  • take all necessary precautions to preserve the confidentiality and security of personal data, and in particular to prevent it from being distorted, damaged or communicated to unauthorized third parties;
  • implement appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, accidental loss, alteration, distribution and/or unauthorized access, as well as against any form of unlawful processing, such measures ensuring a level of security appropriate to the risks presented by the processing and the nature of the data protected;
  • taking into account the principles of data protection by design and data protection by default for its tools, applications and services;
  • VISIBRAIN undertakes to implement appropriate technical and organizational measures to ensure the integrity, security and confidentiality of personal data processed;
  • Storage of personal data in a secure environment;
  • VISIBRAIN limits access to data to those persons who are strictly authorized to do so by virtue of their functions, within the strict limits of what is necessary for them to carry out their tasks, and who have been trained, made aware of the issues and signed confidentiality agreements;
  • Implementation of means to restore data availability and access within appropriate timeframes in the event of a physical or technical incident;
  • VISIBRAIN notifies the person concerned and the competent supervisory authority as soon as possible of any security incident resulting in the accidental or unlawful destruction, loss, alteration, disclosure or unauthorized access of personal data.

 

DATA RETENTION PERIOD

Your personal data is kept no longer than is necessary for the purposes defined above and within the limits defined by law. Data is deleted at the end of a customer's contract.

To ensure that data is not kept longer than necessary, VISIBRAIN implements personal data minimization.

 

WHAT ARE YOUR RIGHTS REGARDING YOUR PERSONAL DATA?

Pursuant to the provisions of the amended French Data Protection Act No. 78-17 of January 6, 1978 and Regulation (EU) No. 2016/679 of April 27, 2016 (RGPD), we inform you that you have the right, at any time, to request:

  • access to and portability of your data;
  • an electronic copy of your data;
  • update or rectification of your data if it is incomplete, inaccurate or requires updating;
  • deletion or restriction of your data.

Where you have given us your consent to process your data, you have the right to withdraw your consent at any time.

You may also, for legitimate reasons, object to the processing of your data.

You may exercise your rights:

  • by post addressed to : VISIBRAIN - Service données personnelles - 9, rue Charles Fourier - 91000 Evry - France
  • or by e-mail to the following address: contact@visibrain.com

 

We may verify your identity in order to guarantee the confidentiality and security of your data. In certain cases, you may be asked to provide a copy of an identity document bearing your signature. A reply will be sent to you within one month of receipt of the request.

 

Lastly, we remind you that you may at any time contact the Commission Nationale Informatiques & Libertés (CNIL). You will find information on this subject at the following link: https://www.cnil.fr/fr/agir.

 

CONTACT DETAILS FOR PERSONAL DATA ISSUES

If you have any questions about the protection of your personal data, please contact :

E-mail address: contact@visibrain.com

 

CHANGES TO OUR PRIVACY POLICY

If we update our privacy policy, we will post information about these changes on our Site.

If we change the way we process your personal data, we will notify you in advance or, where applicable, ask for your prior consent.

Please check our privacy policy regularly for any changes.

This privacy policy was last updated on January 7, 2025.

 

VISIBRAIN SECURITY APPENDIX

This document describes the technical and organizational measures implemented by VISIBRAIN.

The technical and organizational measures are implemented to guarantee a level of security appropriate to the nature and scope of the purposes of the processing, as well as the risks to the rights and freedoms of individuals.

 

Categories of measures

Description of measures

Pseudonymization measures

Pseudonymization

Wherever possible, a unique identifier is used as an identifier rather than full personal data fields such as the account user's first and last name; and their business e-mail address).

 

Encryption of personal data

Stored data encrypted

Data in transit encrypted

Privacy awareness

RGPD awareness, monitoring and training for stakeholders

Confidentiality commitment for stakeholders with administrative rights

Identification and authentication

Identification of accesses by means of nominative identifiers

Authentication of access by complex password

Obligation to change password

Limit the number of attempts to access an account

 

Authorization management

Limit access by clearance profile

Periodic review of authorizations (at least annually)

Access traceability and incident management

Logging of accesses, actions carried out and modifications made to data

Logging of personal data consultations over a given period, with reference to the data consulted

Protection of logged information (against unauthorized access/modification by users or admins whose activity is logged)

Personal data leak management procedure

Workstation security

Automatic session locking in the event of inactivity

Up-to-date virus protection: malware/spyware

Firewall protection

Securing mobile computing equipment

Encryption of mobile equipment (laptops/smartphones)

Regular data backup/synchronization

Smartphone unlocking protected by secret code

Network protection

Restriction of network flows by firewall

VPN remote access security

WPA2 or WPA2-PSK protocol for securing WI-FI flows

Secure servers

Restricted access to administration tools and interfaces

Periodic vulnerability scans against software threats

Immediate installation of critical security updates

Server hosting

VISIBRAIN servers are hosted in OVHcloud datacenters in France.

Hosting on dedicated servers in Roubaix, Gravelines and Strasbourg

Website security

Encryption of data flows using the TLS protocol

Periodic website vulnerability scans

Backup and business continuity

Regular backups

Secure storage of backup media

Periodic testing of business continuity plan

Archiving

Restriction of third-party maintenance

Secure destruction of obsolete archives

Maintenance control

Logging of third-party maintenance operations

Third-party maintenance operations supervised by an organization manager

Subcontracting management

Subcontracting regulated by a specific RGPD contractual clause

Contractualization of data return and destruction conditions

Periodic checks on the effectiveness of the subcontractor's security measures

Securing exchanges with other organizations

Encryption of e-mails containing personal data

 

Physical security of data centers

Restriction, control and logging of physical access to data centers

Environmental risk management (fire, water damage)

Supervision of IT developments

Integration of Privacy by Design requirements into project management procedures

Data anonymization in non-production environments

Data portability and deletion

Customers may request the return or deletion of all personal data and copies thereof in their custody or control. Processes are in place for deletion requests from data subjects.

For data portability, customers can request the content of their data in CSV format.