Data protection Policy

YesWeHack (hereafter “YesWeHack”) administers the following sites:

This Personal Data Protection Policy applies to the said sites (hereafter the “Sites”).

Regarding the use of the YESWEHACK platform, available at https://yeswehack.com/auth/login:

When you are browsing and using the services offered on the Sites, YesWeHack processes your Personal data in accordance with current regulations, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of Personal data (hereafter “the GDPR”), as well as (French) law no. 78-17 of 6 January 1978 amended.

For the interpretation of notions relating to the protection of Personal data in this Policy, please refer to the definitions in the Terms and Conditions of Use of the Sites and the definitions set out below.

Important definitions

  • Personal data is any information relating to an identified or identifiable person that identifies the person directly (e.g. the surname and the first name) or indirectly (e.g. connection data). (Article 4-1 of the GDPR)
  • Processing (of Personal data) is any operation or set of operations which is performed on Personal data or on sets of Personal data, whether or not by automated means, such as: collection, recording, organisation, storage, disclosure by transmission, etc. (Article 4-2 of the GDPR)
  • The Controller determines the purposes and means of Processing. (Article 4-7 of the GDPR)
  • The Processor processes Personal data on behalf of and on the instructions of the Controller. (Article 4-8 of the GDPR)

 

What is YesWeHack’s role?

YesWeHack is the Controller as defined by the GDPR, that is, it determines the implementation and purpose of the Processing of Personal data relating to the Sites’ visitors and users of the services offered on the said Sites.

What data Processing operations does YesWeHack carry out on its Sites (purpose) and on what legal basis?

Depending on your actions on the Sites (browsing, using their services), YesWeHack collects your Personal data needed for the purposes stated below:

On the site https://www.yeswehack.com/fr/
Purposes  Legal basis
Administration of the YESWEHACK site Article 6-1(f) of the GDPR: for the purposes of the legitimate interests [pursued by the Controller], in accordance with the fundamental rights and freedoms of the data subjects

[YesWeHack’s legitimate interest: site management]

Production of statistics/web analytics Article 6-1(f) of the GDPR: for the purposes of the legitimate interests [pursued by the Controller], in accordance with the fundamental rights and freedoms of the data subjects

[YesWeHack’s legitimate interest: measurement and development of the site’s activity based on aggregate indicators]

Management of the Contact form Article 6-1(f) of the GDPR – for the purposes of the legitimate interests [pursued by the Controller], in accordance with the fundamental rights and freedoms of the data subjects

[YesWeHack’s legitimate interest: responding to your request]

 

On the blog  https://blog.yeswehack.com/
Purposes Legal basis
Administration of the Blog Article 6-1(f) of the GDPR: for the purposes of the legitimate interests [pursued by the Controller], in accordance with the fundamental rights and freedoms of the data subjects

[YesWeHack’s legitimate interest: Blog management]

Production of statistics/web analytics Article 6-1(f) of the GDPR: for the purposes of the legitimate interests [pursued by the Controller], in accordance with the fundamental rights and freedoms of the data subjects

[YesWeHack’s legitimate interest: measurement and development of the blog’s activity based on aggregate indicators]

Managing the Blog’s form

 

Article 6-1(f) of the GDPR – for the purposes of the legitimate interests [pursued by the Controller], in accordance with the fundamental rights and freedoms of the data subjects

[YesWeHack’s legitimate interest: responding to the user’s request]

Sending the YesWeHack Newsletter Article 6-1(a) of the GDPR – consent to the Processing of |his or her] Personal data
Sending information about YesWeHack events Article 6-1(a) of the GDPR – consent to the Processing of |his or her] Personal data
Request to contact a sales representative Article 6-1(a) of the GDPR – consent to the Processing of |his or her] Personal data

 

If you apply for a job via the site:
your Personal data is managed by WELCOMETOTHEJUNGLE, which acts as Controller within the meaning of the GDPR. All the information concerning the Processing of your personal data can be accessed at the following address: https://www.welcometothejungle.com/fr/pages/privacy-policy

 

What categories of Personal data are collected and processed by YesWeHack?

Depending on which services are used, your Personal data processed by YesWeHack includes:

  • the contact form on the YESWEHACK site: form of address, full name, e-mail address, telephone number.
  • Forms on the BLOG (White paper, Newsletter or other forms): e-mail address, job, employer, and optionally your full name and telephone number.

Statistics are produced with the MATOMO tool on anonymized data (IP addresses).

Who are the recipients of your Personal data?

When you fill in forms: the recipient of your personal data are the authorized staff of YesWeHack.

The Processors who process data on behalf of YesWeHack are:

  • OVH, the data hosting company in France.
    OVH – 2 rue Kellermann – 59100 ROUBAIX
  • Sendinblue, the company that hosts and manages data in the forms.
    Sendinblue SAS – 55 rue d’Amsterdam – 75008 PARIS

For how long is your Personal data stored?

  • Data in forms: your Personal data is kept for 1 year from the time of YesWeHack’s last contact with you.
  • For the Newsletter or news about upcoming events: your Personal data is erased within one month of you exercising your opt-out option.
  • For the request to contact a sales representative: your Personal data is kept for 1 year from the time of YesWeHack’s last contact with you.

 

What are your rights?

Regarding the use of the Sites, you have the following rights:

  • the right of access, rectification and erasure of your data, as provided for by Articles 15 to 17 of the GDPR;
  • the right to withdraw your consent (opt out) at any time (for the Newsletter, news of events and contact with a sales representative);
  • the right to restriction of Processing of your data, as provided for by Article 18 of the GDPR;
  • the right to object the Processing of your data, as provided for by Article 21 of the GDPR;
  • the right to data portability, as provided for by Article 20 of the GDPR;
  • the right to file a complaint with the CNIL (the French data protection authority)
    (https://www.cnil.fr/fr/plaintes );
  • the right to issue instructions allowing access to your data in the event of death.

You can exercise these rights by e-mail at privacy@yeswehack.com, specifying the right you wish to exercise and attaching proof of your identity (if necessary) or a power of attorney if you are being represented.
Contact details of the DPO (Data Protection Officer): privacy@yeswehack.com

 

Are there cookies on YesWeHack?

The cookies used on the YESWEHACK site allow you to optimise the connection and to personalise the use of the site and services.

Cookies used to measure the site’s audience are exclusively placed and processed by YesWeHack and do not contain any personal information.

Refusing cookies may prevent access to certain features of the site. However, it is possible to configure the preferences of your browser software to refuse cookies. You can configure your browser software to accept the recording of cookies in your terminal or, on the contrary, not to authorise their placing, systematically or according to their issuer. You can also configure your browser software so that the acceptance or rejection of cookies is offered occasionally, prior to the deposit of a cookie on your device. The configuration of each browser is different. It is described in the help menu of your browser.

For Chrome

https://support.google.com/chrome/answer/95647?hl=fr&hlrm=en

For Internet Explorer

https://support.microsoft.com/en-en/help/17442/windows-internet-explorer-delete-manage-cookies

For EDGE

https://support.microsoft.com/en-en/help/4533959/microsoft-edge-learn-about-tracking-prevention?ocid=EdgePrivacySettings-TrackingPrevention

For Firefox

https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox

For Opera

http://help.opera.com/Windows/10.20/en/cookies.html

For Safari

https://support.apple.com/en-en/guide/safari/sfri11471/mac

Social media buttons

We may include on the site computer applications from third parties that allow you to share site content with others or to let others know that you have viewed content on our site.

This is the case of the Share button, from social networks such as LinkedIn and Twitter and others. These social networks are likely to identify you because of this button, even if you did not use it when viewing the site. This type of application button may allow the social network to track your browsing simply because your social network account was enabled on your device (a session open) while you were browsing our site.

It is important to alert you that we have no control over the process used by social networks to collect information relating to your browsing on the site and associated with the Personal Data they hold.

We invite you to consult the privacy protection policies of these social networks in order to be aware of the purposes of use, including advertising, of the browsing information they may collect through these application buttons. These protection policies must allow you to exercise your choices with these social networks, in particular by setting up your user accounts for each of these networks.

Twitter: https://twitter.com/en/privacy#update

LinkedIn: https://www.linkedin.com/legal/privacy-policy

COOKIE CHOICE

Close