Speak with an expert

Privacy & Personal Data

OZEIA attaches particular importance to the protection of your personal data. This policy explains what data we collect, why we collect it, and what your rights are.

1) Data controller – Contact

The data controller is OZEIA.
GDPR contact: privacy@ozeia.fr.

2) Data we collect

Depending on how you interact with the website, we may collect:

  • Identification and contact data: last name, first name, email address, phone number, company, job title (where provided).
  • Your requests: message content, subject of the request, and related correspondence.
  • Job applications: CV/resume, cover letter/motivation letter, and information provided as part of the recruitment process.
  • Technical data: IP address, logs, browsing information, cookies/trackers.

Where certain fields are marked as mandatory, failing to provide them may prevent us from processing your request (e.g., an application).

3) Purposes and legal bases

We process your data only for specified purposes and on an appropriate legal basis:

  • Responding to your requests (contact, appointments, information): legitimate interest or pre-contractual steps, depending on the context.
  • Managing applications and recruitment: pre-contractual steps; inclusion in a talent pool only if you consent.
  • Newsletter: sent only if you have consented; you can unsubscribe at any time.
  • Website security and proper functioning (fraud/abuse prevention, technical security): legitimate interest.
  • Non-essential cookies/trackers (analytics, personalization, etc.): consent where required.

We do not sell or rent your data. We may, however, disclose it where required by law or to protect our rights (legal obligation, fraud/abuse, disputes/litigation, etc.).

4) Recipients

Your data is accessible only:

  • to authorized persons within OZEIA (e.g., HR for an application, the relevant team for a request);
  • to our service providers (hosting, maintenance, form/ATS tools, emailing, analytics), acting as data processors and subject to confidentiality and security obligations.

5) Transfers outside the EU

If certain service providers process data outside the European Economic Area (EEA), OZEIA implements appropriate safeguards (e.g., standard contractual clauses).

6) Retention periods

We retain data only for as long as necessary for the stated purposes:

  • Unsuccessful applications: 2 years after the last contact, unless you agree to longer retention (e.g., talent pool).
  • Requests / business development: generally, 3 years from the last contact.
  • Newsletter: until you unsubscribe (then deletion/limited archiving as required by law).

7) Cookies and trackers

A cookie is a small file stored on your device. We use:

  • strictly necessary cookies for the website to function (no consent required);
  • depending on configuration, analytics and/or personalization cookies (with consent where required).

You can accept, refuse, or configure cookies via the dedicated consent-management module. The CNIL recommends retaining your choice (accept/refuse) for a typical period of 6 months. For analytics trackers (depending on the case), CNIL guidance commonly refers to a typical cookie lifespan of 13 months and data retention of 25 months.

8) Your rights

In accordance with the GDPR, you have the following rights in particular: access, rectification, erasure, restriction, objection, and data portability (as applicable). You can exercise your rights by writing to the email address above. If we have reasonable doubts about the requester’s identity, we may request proof of identity (which will be deleted once the request has been processed). You may also lodge a complaint with the CNIL.

9) Security

OZEIA implements appropriate technical and organizational measures to protect your data (access controls, confidentiality measures, system security, etc.).

10) Updates

This policy may be updated (regulatory, technical, or service-related changes). The version published on the website shall prevail.