Legal notice

This website is operated by the company ERNEO, SAS, registered under number 511073181, whose contact details are as follows:

The Director of Publication of the website is Mr. Nicolas ZIEGLER.

The service provider responsible for hosting the website and storing information is Microsoft Azure ( https://azure.microsoft.com   ).
The graphic design of the website was carried out by the company INCOMM ( www.incomm.fr ).

  • Microsoft Azure – Microsoft France – SAS
  • Registered office: 39 Quai du Président Roosevelt – 92130 Issy-les-Moulineaux
  • Tel: 01 57 32 42 18

For the creation and maintenance of this website, ERNEO uses the following subcontractors, acting in accordance with Article 28 of the GDPR:

  • INCOMM ( www.incomm.fr ): creation, technical hosting and website maintenance – subcontracting agreement in force
  • Microsoft Azure: secure data hosting – Standard Contractual Clauses and HDS certification

These subcontractors undertake to process data only on the instructions of ERNEO and to implement appropriate security measures.

Website content

ERNEO guarantees the essential characteristics of its products.
ERNEO cannot be held liable for the use and interpretation of the information contained on this website.

ERNEO cannot be held responsible for any viruses that may infect the user’s computer or IT equipment following use, access or downloading from this website.

ERNEO reserves the right to modify the content of its commercial offers at any time, it being understood that any order placed before such modification will be honored.

Personal data privacy policy

ERNEO implements the processing of personal data.
ERNEO collects information about you when you register on the website, log into your account, or use a contact, quotation or booking form. You may choose not to provide your information, however this may prevent access to certain services and degrade your user experience.

ERNEO undertakes to collect only strictly necessary data.

The personal data collected and stored by ERNEO are:

  • Last name
  • Email
  • Address – postal code – city
  • Telephone number

In accordance with Article 6 of the General Data Protection Regulation (GDPR), each data processing operation carried out on this website is based on a specific legal basis:

  • Contact form: data is collected on the basis of the user’s explicit consent (Article 6.1.a GDPR).
  • Booking form and customer relationship management: processing is necessary for the performance of a contract (Article 6.1.b GDPR).
  • Analytical and personalization cookies: these cookies are only deposited after user consent via the cookie banner (Article 6.1.a GDPR).
  • Commercial prospecting: based on the legitimate interest of the company (Article 6.1.f GDPR).
  • Data retention for legal obligations: based on legal obligations (Article 6.1.c GDPR).

Consent is collected freely, specifically, knowingly and unambiguously. The user may withdraw consent at any time.

ERNEO is responsible for processing the personal data collected through this website.

The data collected via this website is hosted on Microsoft Azure servers located in France.

Microsoft Azure has implemented the Standard Contractual Clauses approved by the European Commission (Decision 2021/914).

More information on data protection by Microsoft Azure: https://azure.microsoft.com/fr-fr/explore/trusted-cloud/privacy/

Processing this data allows the management of the commercial relationship, personalization of user experience, provision of customized information, improvement of customer service, and contact by email.

The retention period of personal data depends on the subscribed service.

ERNEO undertakes not to retain personal data beyond the necessary period, extended by applicable legal limitation periods.

Retention periods:

  • Contact form data: 12 months from collection or last contact
  • Quotation form data: 3 years if not converted into a contract, 10 years if converted
  • Booking form data: 3 years after last service
  • Cookies: 6 months
  • Connection logs: 12 months
  • Prospect data: 3 years after last contact

After these periods, data is securely deleted or anonymized.

This website does not collect any health data within the meaning of Article 4.15 GDPR.

The information collected on this website is used only by ERNEO and INCOMM ( www.incomm.fr ).

Personal data will not be sold, exchanged, transferred or given to another company without consent, except as necessary to process a request.

Security and confidentiality of your data

The protection of personal data is a priority. Technical and organizational measures are implemented to ensure an appropriate level of security.

Technical security measures

1- Encryption and protection of communications:

  • HTTPS/TLS protocol
  • Up-to-date SSL certificate
  • Encryption of sensitive data

2 – Secure infrastructure :

  • Hosting on secure, redundant Microsoft Azure servers
  • Firewall and intrusion detection systems
  • Anti-DDoS and anti-malware protection
  • Regular system updates and security patches

3 – Access management :

  • Strong authentication and robust passwords
  • Access to data strictly limited to authorised persons
  • Access logging (logs kept for 12 months)
  • Control and revocation of access rights

4 – Backup and continuity :

  • Automatic daily backups
  • Encrypted backups stored at remote sites
  • Business continuity and disaster recovery plan

Organizational measures

    1 – Data governance:

    • Documented data protection policy
    • Designation of internal responsibilities
    • Awareness-raising and ongoing security training

    2 – Relations with subcontractors:

    • Subcontracting agreements in accordance with Article 28 of the GDPR
    • Strict confidentiality clauses
    • Regular audits of subcontractors

    3 – Incident management:

    • Procedure for detecting and handling data breaches
    • Notification to the CNIL within 72 hours in the event of an incident (if there is a risk)
    • Notification to data subjects (if high risk)
    • Documentation and analysis of each incident

    Despite all these measures, no IT system is completely foolproof. In the event of a data breach that could pose a risk to your rights and freedoms, we will inform you as soon as possible in accordance with the GDPR.

    To enhance the security of your data, we recommend that you:

    • Use a strong, unique password
    • Never share your login details
    • Log out after each session
    • Keep your antivirus software up to date
    • Be vigilant against phishing attempts (fraudulent emails)

    If you suspect fraudulent use of your data or a security incident, please contact us immediately:

    • Email: contact@erneo.fr

    ERNEO also protects your information offline.
    Only internal departments and the company INCOMM ( www.incomm.fr ), responsible for the creation and hosting of this website,
    have access to personally identifiable information necessary to perform their specific tasks
    (for example, billing or customer service).
    The computers and servers used to store personally identifiable information are kept in a secure environment.
    Click here for more information about the physical security of Azure data centers.

    In accordance with the General Data Protection Regulation (GDPR), you have the following rights:

    • Right of access: obtain confirmation that your data is being processed and receive a copy of it
    • Right to rectification: correct inaccurate or incomplete data
    • Right to erasure: obtain the deletion of your data in certain cases
    • Right to restriction of processing: request the restriction of processing in certain cases
    • Right to object: object to the processing of your data, in particular for commercial prospecting
    • Right to data portability: receive your data in a structured and commonly used format
    • Right to define instructions regarding the fate of your data after your death

    ERNEO undertakes to respond to any request to exercise your rights within one month from receipt.
    This period may be extended by two months depending on the complexity of the request, in which case you will be informed.

    To exercise your rights, you may:

    • Use the online contact form
    • Send a postal letter with a copy of your identity document to: ERNEO – 129 Rue Pythagore 34170 CASTELNAU-LE-LEZ

    For any objection to commercial prospecting, simply click on the unsubscribe link included in each email
    or contact us directly.

    Consumers are informed that if they do not wish to receive or no longer wish to receive commercial telephone calls,
    they may register free of charge on the telephone marketing opt-out list (https://www.bloctel.gouv.fr/).

    If you encounter difficulties in exercising your rights, you may contact the Data Protection Officer (DPO)
    of the French Data Protection Authority (CNIL) via their dedicated form.

    In the event of non-compliance relating to the processing of your data, you have the right to lodge a complaint
    with the supervisory authority: CNIL, 3, Place de Fontenoy TSA 80715 75334 PARIS Cedex 07.

    Considering the nature, scope and purposes of the processing carried out, and in accordance with Article 37 of the GDPR,
    ERNEO is not required to appoint a Data Protection Officer.

    Mr. Nicolas ZIEGLER personally performs the role of person responsible for the protection of personal data.

    For any questions relating to the protection of your data or to exercise your rights, you may contact him:

    • By email: contact@erneo.fr
    • By mail: ERNEO – 129 Rue Pythagore 34170 CASTELNAU-LE-LEZ

    Cookies management

    What is a cookie? A cookie is a small text file stored on your device (computer, smartphone, tablet) when you visit a website. It allows the website to recognize your browser and store certain information.

    This website uses different categories of cookies:

    1- Strictly necessary cookies (exempt from consent)

    • Session cookies for the technical operation of the website
    • Security cookies

    These cookies are essential and cannot be disabled.

    2 – Analytical cookies (subject to consent)

    • Google Analytics / Matomo: anonymized audience statistics
    • Performance measurement and website improvement

    Purpose: to understand how visitors use the website.

    3 – Personalization cookies (subject to consent)

    • Storage of your preferences (language, display, etc.)
    • Improvement of your user experience

    Purpose: to adapt the website to your needs.

    During your first visit, a banner allows you to choose:

    • “Accept all cookies”: all cookies are enabled
    • “Reject all cookies”: only strictly necessary cookies are stored
    • “Customize my choices”: you choose category by category

    You can change your preferences at any time:

    • By clicking on the “Manage my cookies” link at the bottom of the page
    • By setting your browser to refuse cookies

    Retention period

    • Cookies: maximum 6 months
    • Consent: 6 months (you will be asked again after this period)

    You can configure your browser to refuse cookies:

    • Chrome: Menu > Settings > Privacy and security > Cookies
    • Firefox: Menu > Options > Privacy & Security
    • Safari: Preferences > Privacy
    • Edge: Settings > Privacy, search and services

    Warning: refusing cookies may limit certain features of the website.

    To find out more about the cookies used, please consult our cookie policy: Cookie Policy.

    For more information, visit the CNIL website: https://www.cnil.fr/fr/cookies-et-autres-traceurs

    Copyright and intellectual property

    The editorial content of this website (texts, photographs by ERNEO) is the exclusive property of ERNEO.

    The technical structure, source code and graphic design of the website were created by the company INCOMM (www.incomm.fr ),
    which retains the intellectual property rights. Any reuse or reproduction of these elements without written authorization
    from INCOMM is prohibited.

    Failure to comply with these rules may result in the liability of the user under Articles L.713-2 and L.713-3
    of the French Intellectual Property Code.

    Hyperlinks to third-party websites

    This website contains hyperlinks to websites published by third parties.
    These links are provided in good faith and ERNEO cannot be held responsible for any changes made to these websites.
    Consequently, these hyperlinks shall not, under any circumstances, engage the liability of ERNEO:
    only the publishers of the websites referenced on ERNEO’s website may be held liable.

    Applicable law

    This website and these legal notices are governed by French law.