1 – DEFINITIONS
For these legal notices, the following terms shall have the following definition:
“Content” means all information and data made available to the User on the Website.
“Website” means the online public communication service published by European Cargo Services hereinafter “ECS” and located at the following URL: http://www.cargotech.aero and/or any other address that may be added to it or replace it.
“Service(s)” means the provision of tools and, more generally, any other service offered by ECS on the Website.
“User” means the persons who access the Website to consult and use, under the conditions defined in these legal notices, the Services and the Content.
2 – LEGAL TERMS
This website http://www.cargotech.aero is the property of ECS SAS.
The website is published by ECS, a limited liability company (Société Anonyme under French law) with a capital of 2,738,190 euros registered in the Bobigny Trade Register under number 418 883 047.
Its head office is established at the following address: 1 rue du Pré Roissytech Zone de Frêt n°4 – Aéroport CDG Bâtiment 3317 – 95700 Roissy-en-France.
The individual VAT identification number is 88 418 883 047.
Director of publication
Mr. Adrien Thominet as CEO of ECS.
The website is hosted by DDO Organisation, Groupe COGESER, located in Toulouse, France (https://www.ddo.net/).
3 – SERVICE AVAILABILITY
ECS reserves the right to change the content of this site at any time.
ECS will use its best efforts to maintain access to the website and services 7 days a week and 24 hours a day.
ECS may interrupt access, for technical reasons. ECS is in no way responsible for such interruptions and the consequences that may result from them.
It is the responsibility of every User to take all appropriate measures to protect his or her data and software against any damage, including contamination by all viruses circulating on the Internet.
Cookies are files that are sent by web servers to web browsers, which may then be returned to the server each time the browser requests a page from the server.
Cookies can be used by web servers to identify users who return to the website.
Cookies can be either “persistent” or “session” cookies.
ECS may use the information obtained from the use of your cookies for the following purposes:
- Improve the user experience by recognizing the user’s login terminal,
- The analysis of data traffic on the site to measure website audience to improve user experience, functionality, and performance.
ECS uses the cookies of partners such as Google Analytics to carry out the above-mentioned measurements.
ECS ensures that when transmitting the information generated by the cookies, the cookie settings ensure that the IP/MAC address is made anonymous before geolocation and before storage.
Cookies are activated by default and can be stored on the user’s computer.
Positive consent is required for each cookie effect and can only be valid if the person concerned can exercise his or her choice and does not suffer major disadvantages in the event of the absence or withdrawal of consent. The user can delete them by the procedure of the technical process.
The user can set their browser at any time to control all cookies.
ECS Group is very concerned about the protection of users’ personal data and undertakes to collect and process users’ personal data following the amended Law No. 78-17 of 6 January 1978 and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR).
As part of your relationship with Quito or one of its subsidiaries, you provide us with a certain amount of personal data. This will be processed to carry out our various tasks. Under the European Regulation, personal data refers to any information that can identify a natural person. The implementation of the processing of personal data is governed in particular by the Regulation of the European Parliament and of the Council (EU) 2016/679 on the protection of individuals concerning the processing of data and on the free movement of such data, as “GDPR”.
The GDPR requires the controller (Quito or one of its subsidiaries) to meet certain security requirements, We ensure compliance to ensure that your personal data is processed securely. This includes any natural person privileged by Quito or one of its subsidiaries as a customer, legal representative or effective representative of a legal entity.
5-1 – Keys definitions
Personal data: Any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is a person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Processing: Any operation or set of operations which is performed upon personal data or sets of personal data, whether by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or making available, alignment or combination, restriction, erasure, or destruction.
Controller: The natural or legal person, public authority, agency, or any other body that, alone or jointly with others, determines the purposes and means of the processing of personal data. (Here: Quito or one of its subsidiaries.)
Processor: A natural or legal person, public authority, agency, or any other body that processes personal data on behalf of the Controller.
5-2 – Scope
The Controller is Quito – 92 Avenue de Wagram 75017 Paris, or, depending on the processing envisaged, one of the subsidiaries of the ECS Group whose contact details are available on the site in the section “ECS Worldwide”. Quito has appointed a data protection agent for the entire ECS Group whose contact details are as follows:
Data Protection Officer- Quito- 92 avenue de Wagram 75017 Paris.
The natural persons affected by the processing of personal data carried out by the Controller (Quito or one of its subsidiaries) are:
- Persons whose data is necessary to use company software
- Persons in contact with the Controller as part of a recruitment process or for any contact in general
- Customers and suppliers of the Controller
Following Article 82 of the GDPR, Quito or, depending on the processing of personal data envisaged by one of the subsidiaries of the ECS Group, is liable for any damage caused by the processing of personal data in which it participates and which constitutes a violation of the GDPR. A processor is only liable for damage caused by the processing of personal data if it has not complied with the obligations of the GDPR, which the responsibility of the processors are specifically or if it has acted outside the legal instructions of (Quito or one of the subsidiaries of the ECS Group) or contrary to them.
5-4 – Collection of personal data
The personal data of the data subjects is collected directly from them. However, in some cases, personal data may be collected indirectly from third party organizations. In all cases, the information required under Articles 13 and 14 of the GDPR will be provided to the affected individuals.
5-5 – Purpose of treatment
As part of your relationship with Quito or one of the subsidiaries of the ECS Group, we may need to process your personal data for the purposes described below:
- To allow GSSA’s contractual activities to be carried out through the use of company-specific software
- To exchange business information through communication channels (e.g. e-mail)
- Increase recruitment and contact requests
5-6 – Legal basis for the processing operation
Every processing of your personal data by Quito or one of the subsidiaries of the ECS Group has a legal basis:
As regards the 3 processing operations mentioned, they are all necessary for the performance of a contract to which the data subject is a party or to act at the request of the data subject before the conclusion of a contract.
5-7 – Disclosure of personal data to third parties
Quito or one of its subsidiaries may be required, to carry out its tasks, to communicate the personal data of the persons concerned to third parties. When processing is to be carried out on behalf of Quito or one of its subsidiaries by a third party, it shall only use processors who have sufficient guarantees that appropriate technical and organizational measures have been implemented to ensure that the processing meets the requirements of the GDPR and ensures the protection of the human rights concerned.
This requirement is reflected in the establishment of contractual repositories imposing obligations on Quito’s processors as to how they process personal data on its behalf, following Article 28 of the GDPR.
The personal data processors (the processor) of Quito or its subsidiaries include:
- IT processors;
- Specialized external consultants;
5-8 – Transfer of personal data outside the EU
Personal data may, in the course of operations carried out by Quito or one of its subsidiaries, be disclosed to subsidiaries and subcontractors based in a country outside the European Union. This transfer is subject to appropriate security and control measures. In certain cases, subcontractors and subsidiaries may be located in countries that are not subject to a suitability decision issued by the European Commission. Transfers of personal data to these subcontractors are then governed by standard contracts that comply with the model developed by the European Commission. Transfers of personal data to these subsidiaries are governed by Binding Corporate Rules (BCR).
Details of these rules and transfer information are available upon request to the ECS Group’s Data Protection Officer, as indicated above.
5-9 Retention of personal data
Following Article 5 of the GDPR, personal data of data subjects may not be kept for longer than is necessary for the purposes for which they are processed. To this end, a reference system has been developed by Quito to identify the most appropriate retention periods and recommended by the various supervisory authorities.
5-10 – User rights and how the user can exercise them
The user has the right to access, correct and delete data concerning the User, the right to limit the processing carried out on his/her data, the right to the transferability of the User’s data and the right to define general and specific guidelines defining how the User wishes his/her rights to be exercised after death. The User is expressly informed that he/she also has the right to oppose and limit the processing of his/her personal data for legitimate reasons, and the right to oppose the use of such data for commercial prospecting purposes. Rights chart
To exercise your rights as a User, please send an e-mail to the following e-mail address: email@example.com.
The user has the right to lodge a complaint with a supervisory authority. In France, for example, the competent supervisory authority is the CNIL.
CNIL, 3 place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07.
5-11 – User rights and how the user can exercise them
ECS ensures the security of users’ personal data by implementing enhanced data protection using physical and logistical security means under applicable regulations.
Under no circumstances shall ECS and/or its service providers be held liable for any direct or indirect material and/or immaterial damage of any nature whatsoever resulting from the use or unavailability of the Website and the Services.
7 – COPYRIGHT PROTECTION
The Website, including all text, illustrations, videos, images, sounds, data, databases and programs, and more generally all original works on the Website, are protected by intellectual property rights which ECS owns or is licensed to use.
Any reproduction of the website and its contents, any extraction of data, including copying, downloading, disaggregation, recording and general piracy of the Content made available on the website is prohibited and constitutes an act of counterfeiting and could be the basis of legal proceedings, as provided for in the French intellectual property and civil code.