Privacy policy
Introduction
The purpose of this privacy policy is to provide you with clear and transparent information about how we collect, use, store, protect and share your personal data when you use our services.
We attach particular importance to the protection of your data, in accordance with the General Data Protection Regulation (GDPR) (EU 2016/679) and Law No. 78 of January 6, 1978 relating to information technology, files and freedoms.
Data controller : TX2 CONCEPT
Address: 491 boulevard Duhamel du Monceau 45160 Olivet – France
DPO or RGPD contact: dpo@tx2.fr
Â
Personal data
Personal data is any information relating to an identified or identifiable natural person, directly or indirectly.
This includes :
- First and last name
- E-mail or postal address
- Phone number
- IP address
- Login credentials
- Location data
- Browsing data or online behavior
Â
A person is considered identifiable when he or she can be identified, directly or indirectly, in particular by reference to an identifier (name, number, location data, etc.).
Â
Collected data
We collect the following personal data, in particular when you use our site or interact with our services:
- Last name, first name
- E-mail address
- Phone number
- Postal address
- Browsing data (cookies, IP address, browser type, etc.)
Â
Processing purposes
The data collected is used for the following purposes:
- Customer relationship management
- Order processing and payment
- Sending newsletters
- Enhanced user experience
- Site statistics
- Compliance with legal obligations
- Recruitment management (application via website)
Â
Legal basis for processing
We process your personal data on the following legal bases:
- Execution of a contract (order, registration, service)
- Explicit consent (contact form, newsletter)
- Legitimate interest (security, traffic analysis)
- Legal obligation (invoice retention)
Â
Shelf life
Your personal data will be kept only for as long as is necessary for the purposes for which they were collected:
- Customer data: 3 years after the end of the commercial relationship
- Billing data: 10 years (legal obligation)
- Browsing data: 13 months maximum (cookies)
Â
In any event, the personal data collected is kept for as long as is necessary for the purposes for which it is collected and processed, although it may not be kept for longer than the duration of the contractual relationship, plus any regulatory obligations.
Personal data collected for purposes other than processing (commercial contracts, recruitment, etc.) is kept for a maximum of 12 months.
Â
Data sharing – Subcontracting
As part of its business activities, TX2 CONCEPT may transmit certain personal data to service providers or subcontractors acting on its behalf and in accordance with its instructions. These subcontractors intervene in particular to provide technical, logistical, IT or data processing services. TX2 CONCEPT ensures that these partners provide sufficient guarantees as to the implementation of appropriate technical and organizational measures in order to guarantee the security and confidentiality of personal data. Under no circumstances are these subcontractors authorized to use data on their own behalf.
Your data may be transmitted to subcontractors for the following purposes:
- Service continuity and/or efficiency
- Technical or functional expertise (audits, cybersecurity, etc.)
- Legal and/or contractual obligations
Â
No data is transferred outside the European Union without adequate safeguards.
Â
Supervision of subcontracting :
Before using a subcontractor, TX2 Concept ensures during its supplier qualification process that the subcontractor is able to respect the same commitments as TX2 Concept regarding the processing of personal data.
TX2 Concept’s subcontractors may process personal data only on TX2 Concept’s instructions.
The sub-contractor may not use the services of another sub-contractor without first informing the data controller.
Â
Data security
We implement appropriate technical and organizational measures to protect your personal data against loss, unauthorized access or disclosure.
A Data Protection Officer (DPO) has been appointed with the following responsibilities:
- Controlling the processing of personal data in compliance with the recommendations of the RGPD regulation.
- Keeping and regularly updating processing registers
- To be the main point of contact for all questions relating to personal data
Â
The acquisition of ISO 27001 certification demonstrates TX2 Concept’s interest in and attention to information and personal data security, through the implementation of approved and audited security processes.
Our employees receive regular training and are made aware of confidentiality obligations.
A reminder of this commitment to confidentiality is also included in the various documents handed out and signed by employees, such as the IT Charter, internal regulations, employment contract, etc.
Â
Your rights
In accordance with the General Data Protection Regulation (GDPR), you have the following rights:
- Right of access
- Right of rectification
- Right to erasure (right to be forgotten)
- Right to object
- Right to restrict processing
- Right to portability
You can exercise your rights by contacting us at : dpo@tx2.fr
You also have the right to lodge a complaint with the CNIL.
Â
Modification of the privacy policy
This policy may be modified at any time. In the event of a major change, we will inform you by e-mail or notification on our site.
Â
Last update: 09/06/2025
Â
Questions?
If you have any questions about RGPD, contact us at dpo@tx2.fr or by phone on +33 (0) 2 38 69 65 43.