Privacy Policy

Purpose of this Policy

The purpose of this policy is to inform you about how your personal data is used on the website www.scalinx.com

Definitions

“Personal data” means any information relating to an identified or identifiable natural person (“data subject”) ; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction

The entity responsible for processing is SCALINX (the data controller).

Cookie: A "cookie" is a file, generally small and identified by name, which can be transmitted to your browser by a website on which you connect. Your web browser will keep it for a certain period of time, and return it to the web server each time you connect to it again. Cookies have multiple uses : they can be used to memorize your customer identifier on a commercial site, the current content of your shopping cart, an identifier allowing to trace your navigation for statistical or advertising purposes, etc.

Data Processor:

The data processor is the natural or legal person (company or public organization) who processes data on behalf of another organization ("the controller"), as part of a service or benefit.

Subcontractors have obligations regarding personal data, which must be present in the contract:

• an obligation of transparency and traceability;
• taking into account the principles of data protection by design and by default;
• an obligation to guarantee the security of the processed data;
• an obligation of assistance, alert and advice (for example, a procedure for the notification of personal data breaches must be notified).

When do we collect your personal data?

You can choose to share your personal data with us, for example:

• by sending a message via the contact form
• by communicating directly with a member of our team
• by applying to a job on [email protected]
• by sending an email to [email protected] or [email protected]
• by using our website

Your data is collected only when you choose to provide it.

Why do we collect your personal data?

In accordance with European regulations, we process your data for the following purposes:

• The processing of users is necessary for the execution of a contract to which the data subject is a party or for the execution of pre-contractual measures taken at his request (for example within the framework of contracts with our customers)
• The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless the interests or fundamental rights and freedoms of the data subject prevail (for example to respond to requests from website visitors)
• The processing is based on the consent of the data subject (for example when a site visitor agrees, via the contact form, to be contacted for prospection)

This means that your personal data will be:

• used legally, fairly and transparently,
• collected only for legitimate purposes that we can clearly expose to you and without being used in a way incompatible with these objectives,
• appropriate to the objectives set out and limited exclusively to this end,
• exact and current,
• kept safely and only for the time necessary for the stated objectives.

What do we collect?

We collect only the minimum quantity of information.

Customers: identity, business contact, content of the messages

Suppliers / subcontractors: identity, business contact, content of the messages

Visitors of the website: In case of message via the contact form or email address : identity, contact information, content of the message

We do not collect any sensitive personal data (such as health, biometric, or political information).

Who can access your personal data?

The recipients of your personal data can be the following:

• Our establishment as data controller
• Our authorized sales network and sales management staff
• Our partners
• Providers and subcontractors providing services on our behalf
• The duly empowered judicial and / or administrative authorities
• Regulated professions (examples: notaries, lawyers, bailiffs).

How long time do we keep your personal data?

Your personal data is kept for the necessary time to accomplish the purposes described above.

• Data related to the contracts: The data will be removed after the end of the contractual relationship + 5 years
• Data related to the customers: The data will be removed after the end of the contractual relationship + 3 years
• Data related to the prospects: The data will be removed after 3 years with no response to solicitations.
• Data related to the visitors of the website: After visitor’s consent, the data will be kept for 12 months.
• Data collected by the GDPR pilot (in case of customer/visitor… request): The data will be removed 2 years after the last contact from the requester.

Transfer of personal data outside Europe

Your personal data may be transferred in limited cases and for strictly supervised purposes, to a country outside the European Union. We will make sure they are protected:

• By the existence of an adequacy decision issued by the European Commission which recognizes that the recipient country has an adequate level of protection
• If the level of protection has not been recognized as equivalent by the European Commission, we rely on the implementation of appropriate guarantees such as standard contractual clauses approved by the European Commission.

You can request more information about these guarantees by contacting us at [email protected].

Which cookies are being used on the website?

We only use strictly necessary cookies that are essential for the proper functioning of the website. These cookies do not store any personal data and cannot be disabled in our systems. They are typically activated in response to actions you take, such as filling out forms or adjusting your privacy settings.

You can configure your browser to block or alert you about these cookies. However, if you choose to block them, some parts of the website may not function correctly.

We do not use cookies for analytics, tracking, or advertising purposes.

How to exercise your rights?

In accordance with applicable data protection regulations, you have the right to access, rectify, erase, and object to the processing of your personal data, as well as the right to restrict processing and data portability where applicable.

To exercise your rights, please contact us by email at [email protected] or by post at:

SCALINX – GDPR Officer
73 Rue du Faubourg Saint-Antoine
75011 Paris, France

If your personal data is processed based on your consent, you may withdraw that consent at any time. Processing carried out before your withdrawal will remain lawful.

SCALINX takes the protection of your personal data very seriously. If you believe that the processing of your data infringes your rights, or if your request has not been satisfactorily addressed, you may lodge a complaint with:

French National Commission for Data Protection (CNIL):
3 Place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07

Update of the personal data protection policy

Our personal data protection policy will be regularly updated to take into account the legislative and regulatory developments.

We invite you to read the latest version available here.

This policy was last updated on 08/11/2025.