GDPR

Last updated: January 2025

Privacy Policy Terms of Use Terms of Sale Legal Notice GDPR

What is the GDPR?

The General Data Protection Regulation (Regulation EU 2016/679, "GDPR") is the European Union's framework for the protection of personal data. It grants specific rights to individuals resident in the EU regarding how their personal data is collected, stored, and used. Cloud-PVE, operated by LenoIT SARL (France), is fully committed to compliance with the GDPR.

Our Commitments

We apply the following data protection principles in all our processing activities:

  • Data minimisation: we collect only the personal data that is strictly necessary for the stated purpose.
  • Purpose limitation: data is collected for specified, explicit, and legitimate purposes and is not processed in a manner incompatible with those purposes.
  • Storage limitation: personal data is retained only for as long as necessary, in accordance with our retention schedules.
  • Security by design: data protection considerations are built into our platform architecture from the outset.
  • Transparency: we are clear about how and why we process your data, as set out in our Privacy Policy.

Your Rights under the GDPR

As a data subject, you have the following rights with respect to your personal data held by Cloud-PVE:

  • Right of access (Art. 15), you may request a copy of the personal data we hold about you, along with information on how it is processed.
  • Right to rectification (Art. 16), you may request the correction of inaccurate or incomplete personal data.
  • Right to erasure (Art. 17), also known as the "right to be forgotten", you may request the deletion of your personal data where there is no legitimate basis for its continued retention.
  • Right to restriction of processing (Art. 18), you may request that we limit the way in which we use your data in certain circumstances, for example while a dispute is being resolved.
  • Right to data portability (Art. 20), you may request that we provide your personal data in a structured, commonly used, and machine-readable format, and transmit it to another controller where technically feasible.
  • Right to object (Art. 21), you may object to processing of your personal data carried out on the basis of legitimate interest. We will cease such processing unless we demonstrate compelling legitimate grounds that override your interests.

How to Exercise Your Rights

To exercise any of the rights listed above, please send an email to contact@cloud-pve.com with the subject line "GDPR Request" and a clear description of your request.

We will respond within 30 days of receiving your request. In complex cases, this period may be extended by a further two months, in which case we will notify you. Identity verification may be required before we can process certain requests, in order to protect the security of your data.

Data Transfers

Personal data relating to your account and the Cloud-PVE platform is stored and processed within the European Union. Some data is, however, processed outside the EU:

  • data you submit through our website contact form is processed by Formspree, Inc. in the United States, a transfer governed by the European Commission's Standard Contractual Clauses;
  • navigation data collected by the SiteBehaviour analytics tool may be processed outside the EU, including in the United States, by its provider.

Where a transfer outside the EEA takes place, we seek to ensure it is covered by appropriate safeguards, as required by Chapter V of the GDPR.

Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, LenoIT will notify the CNIL within 72 hours of becoming aware of the breach, as required by Article 33 of the GDPR. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay, as required by Article 34.

Data Protection Contact

For any questions or concerns regarding GDPR compliance and the processing of your personal data, please contact us at contact@cloud-pve.com.

Right to Lodge a Complaint

If you believe that your personal data has been processed in violation of the GDPR, you have the right to lodge a complaint with the competent supervisory authority. In France, this is the:

CNIL, Commission Nationale de l'Informatique et des Libertés
Website: cnil.fr

You may also contact the supervisory authority in your country of residence or place of work within the EU.

Privacy Policy → Terms of Use → Terms of Sale → Legal Notice →