Privacy policy

While browsing the ICONOSQUARE website and application accessible from the domain name www.iconosquare.com or app.iconosquare.com, users are prompted to provide personal data. Therefore, this privacy policy (hereinafter referred to as the "Privacy Policy") aims to inform users of the conditions for collecting, processing, using their data, and their rights.

The personal data collected during visits to our website and/or when using our application is processed by us according to the legal provisions in force in the countries where the websites are maintained, particularly in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).

However, the ICONOSQUARE website may include links to other websites that are not covered by this privacy statement.

In this regard, ICONOSQUARE commits to:
• Respect your privacy and personal data;
• Ensure the legality of data processing;
• Collect adequate, relevant, and limited personal data to what is necessary concerning the purposes for which it is processed;
• Process data lawfully, fairly, and transparently concerning the data subject;
• Retain data in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed.

Compliance with laws: We may disclose your data (including your personal data) to a third party if (a) we believe that disclosure is reasonably necessary to comply with any applicable law, regulation, legal process, or governmental request, (b) to enforce our agreements, policies, and terms of service, (c) to protect the security or integrity of ICONOSQUARE's products and services, (d) to protect ICONOSQUARE, our customers, or the public from harm or illegal activities, or (e) to respond to an emergency that we believe in good faith requires us to disclose data to assist in preventing death or serious bodily injury to any person.

Business transfers: We may share or transfer your data (including your personal data) in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company. You will be notified via email and/or a prominent notice on Wedia services of any change in ownership or use of your personal data, as well as any choices you may have regarding your personal data.

1. Scope of the Privacy Policy

This Privacy Policy applies to the data we obtain through your use of "ICONOSQUARE services" via a device or when you otherwise interact with ICONOSQUARE.

"ICONOSQUARE services" include our:
• Websites (controller)
• SaaS applications (processor)

But it does not include third-party products. These are third-party products or services that you may choose to integrate with ICONOSQUARE products or services, such as third-party products or websites integrated into the ICONOSQUARE application. You should always review the policies of third-party products and services to ensure that you are comfortable with how they collect and use your data.

By signing up for or using ICONOSQUARE services, you consent to the collection, transfer, processing, storage, disclosure, and other uses described in this Privacy Policy.

2. Definitions

Content: any data that you upload, submit, publish, create, transmit, store or display in a ICONOSQUARE Service.

Controller: the natural or legal person, public authority, department or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Data: all the different forms of data, content and information collected by us, as described in this Privacy Policy.

Personal data: any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Personal data does not include data that has been rendered anonymous in such a way that it cannot be easily used to identify specific individuals.

Processor: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

SaaS Application: ICONOSQUARE solutions.

Websites: ICONOSQUARE’s websites.

Terms not defined above shall have the meaning given to them in the GDPR.

3. Data that you provide to us

We collect data about you and your business when you sign up for an account, create or modify your profile, use, access, or interact with ICONOSQUARE Services (including, but not limited to, when you upload, download, collaborate on, or share content).

We primarily collect data related to your profile. This includes data about you and your business. The data we collect includes:
• Contact information such as name, email address, and phone number
• Profile information such as username, profile picture, and job title
• Preference information such as notification preferences

Additionally, you have the option to apply for a job through our website using the "Apply" button. This button redirects to an email address allowing you to send us your CV and cover letter, which are also considered personal data.

We strongly advise you not to include in these documents any data related to (i) your racial or ethnic origin, (ii) your political beliefs, (iii) your philosophical or religious beliefs, (iv) your union or political party membership, (v) your physical or mental health, (vi) your sexual life, or (vii) the commission of criminal offenses or criminal proceedings.

Regarding our Application, in some cases, another user (such as a system administrator from your organization) may create an account on your behalf and provide your data, including personal data (most often when your company requires you to use our products).

Additionally, we also collect other data that you submit when you participate in interactive features of ICONOSQUARE services, request customer support, or communicate with us through the application's ticketing tool.

Finally, in the case of our SaaS Application, the URLs you have accessed (and which are therefore included in our log files) contain usernames as well as content elements (such as project names, asset names, status names, and filters) necessary for the SaaS Application to perform the requested operations. Occasionally, we link personal data to data collected in our log files to improve Wedia services for individual customers. In such cases, we will treat the combined data in accordance with this Privacy Policy.

4. Purpose of processing

We process data for specified, explicit and legitimate purposes, and such data will not be further processed in a manner incompatible with these purposes. The envisaged processing operations, their purposes and the basis for processing are as follows:

• Contact form :
• Purpose: To send transactional messages, including answering your questions and requests.
• Legal basis: consent

• Newsletters :
• Purpose: To send promotional communications, such as data on services, features, surveys, newsletters, offers, promotions, competitions, events and sending updates on your team and chat rooms; and to provide other news or data about us and our selected partners
• Legal basis: consent

• Recruitment:
• Purpose: to enable site visitors to apply directly using the button on the site
• Legal basis: pre-contractual measure

• Access to testimonials/customer cases:
• Purpose: to enable site visitors to access customer testimonials
• Legal basis: consent

• Creating and using a user account :
• Purpose: to enable the correct use of the Application
• Legal Basis: contract

• Ensuring the maintenance and safety of the platform
• Purpose: send technical notices, updates, security alerts, support and administration messages
• Legal Basis: contract

5. Data sharing and divulgation

We work with third-party service providers to provide our website:

• Storage: AWS
• Website hosting: WordPress
• Recruitment email: Gmail
• Cookie providers: Axeptio

We do not share your personal data with third parties for marketing purposes (including direct marketing) without your authorization.

Regarding the SaaS Application, some features allow you or your administrator to make a part of your content public, in which case it will become easily accessible to everyone. We strongly advise you to consider the sensitivity of the data you enter.

Furthermore, the services allow you to create content and grant permission to other users on your platform to access it for collaboration purposes. Some collaboration features display your profile data, including personal data included in your profile, to users with whom you have shared your content. When this data is sensitive, we strongly advise you to use the various security and privacy features to limit the people who can access this data.

You should be aware that the administrator of your ICONOSQUARE Application may be able to:
• Access your account data and related data;
• Access your account's communication history, including attachments;
• Disclose, restrict, or access the data you have provided or that is made available to you when using your account, including your content; and
• Control how your account can be accessed or deleted.

Finally, we work with third-party service providers to provide us with application development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, and analytics services.

• Hosting, storage, infrastructure: AWS
• Payment processing: Paddle
• Analytics: Pendo

These service providers may have access to or process your data in order to provide these services to us.

6. Data storage limitation

The servers on which personal data is stored are maintained in a controlled environment at a hosting service provider (AWS) in multiple countries.

7. Your rights regarding Data processing

You can access, rectify, erase, delete, or transfer your personal data to another entity by submitting your request through the following portal: https://agencergpd.fragmos.app/org/tripnity/public/right-requests or to the following email address: dpo@wedia-group.com. We will respond to your access request within 30 days.

You can withdraw your consent (e.g., opt-out of receiving promotional communications from ICONOSQUARE) by using the unsubscribe link included in each email.

To deactivate an organization’s account, please contact support services.

8. Retention period

For data collected on the Website, we will retain the data as follows:
• Contact form: 3 years from the last contact
• Newsletter: for the duration of consent validity (3 years, renewable)
• Recruitment: 2 years from the last correspondence

For data collected on the Application, we delete the data from your account 180 days after the end of your subscription or as long as reasonably necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
If your account is managed by an administrator, they may exercise control over how your account data is retained and deleted.
Thus, your data will be retained for the shorter of the following periods: the duration of the contract binding our entities plus 180 days, and the duration of your employment contract if your account is managed by an administrator.

9. Cookies

Cookies or other means of recording browsing data are used by ICONOSQUARE Services or by third-party service providers to identify users, record their preferences, and analyze their behavior solely for the purpose of providing the service requested by the user.

ICONOSQUARE uses three (3) types of cookies:

• Functional cookies to ensure the operation of ICONOSQUARE Services;
• Statistical cookies to measure the audience of ICONOSQUARE Services;
• Marketing (advertising) cookies for targeted marketing support, provided by third parties.

Marketing (advertising) cookies require the explicit consent of the user.

Regardless of the type of cookies, they are not retained for more than thirteen (13) months after their initial placement on the user's terminal device. After this period, they are deleted, and the user's consent will be collected again if necessary.

10. APIs

APIs are used by the site, or by the site’s third-party service providers, to interact with other social media platforms.

11. Children

ICONOSQUARE does not knowingly collect personal data from children without insisting on prior parental consent if required by applicable law. We will only use or disclose a child's personal data to the extent permitted by law, to seek parental consent in accordance with local laws and regulations, or to protect a child. The definition of "child" or "children" must take into account applicable laws as well as national and regional cultural customs.

12. Security

ICONOSQUARE is committed to protecting the data under its control against accidental or intentional manipulation, loss, destruction and against access by unauthorized persons. Security procedures are continually improved as new technologies become available.

ICONOSQUARE implements appropriate technical and organizational measures to guarantee a level of security appropriate to the risk, including, among others, where applicable:

• Pseudonymization and encryption of personal data ;
• The ability to ensure the confidentiality, integrity, availability and resilience of processing systems and services at all times;

• The ability to restore availability and access to personal data in a timely manner in the event of a physical or technical incident;

• A process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures designed to guarantee the security of processing.

• When data is transferred over the Internet as part of the website, it is encrypted using the industry standard SSL (HTTPS).

13. Contact

If you have any questions concerning the processing of your personal data, or if you have any requests, suggestions or complaints, please contact ICONOSQUARE’s Data Protection Officer at the following addresses:

DPO
Tripnity
12 rue Armand Barbès
87000 Limoges
France

E-Mail : dpo@wedia-group.com