Introduction
The company Welead SA, within the framework of its services and its contacts with customers is committed to a policy of protection of personal data. In addition, the European regulation RGDP which comes into force in 2018 will be the basis for the processing of personal data for the company Welead SA.
If you are an organization that processes personal data, there is a good chance that you will be subject to the provisions of the GDPR. In this regard, you are subject to obligations that must be complied with.
It is the same for Welead which, in view of its situation, will have two obligations: in its capacity as a subcontractor or as the person in charge of processing.
ABBREVIATIONS: GDPR: general data protection regulation EU: European Union
Exercise your rights
For any information or exercise of your rights and freedoms on the processing of personal data managed by Welead, you can contact its Data Protection Officer (DPO) :
by mail to
dpo-at-hosteur.pro
or by mail (with a copy of your ID in case you exercise your rights) to the following address:
Welead SA
To the attention of the Data Protection Officer (DPO)
Route du Lac Lussy 201,
1618 Châtel Saint Denis, Switzerland
Obligations as a subcontractor
The personal data that is stored and used is under its sole responsibility. Any intervention on these data on the part of Welead is made:
At the express and formal request of the customer within the framework of the support. On a maintenance intervention for which Welead undertakes to notify the customer as soon as possible. On request of a representative of the justice or public administration. Welead authorizes them only after having verified the validity and the merits of the request. Access to customer data remains regulated thanks to specific authorizations and specific control and security measures. In all cases The customer remains solely responsible for the integrity of its data and the legality of its own data processing.
Within this scope, Welead undertakes to:
to use the customer's personal data only for the proper performance of its services or at the customer's formal request. inform you and ask you for formal authorization for any use of subcontractors who could process your personal data. implement high security standards in order to provide a high level of security to our services. notify you as soon as possible in the event of a breach of your data. assist you in meeting your regulatory obligations by providing you with adequate documentation of our services.
Obligations as data controller
Welead is declared as data controller when it determines its purposes and means concerning the processing of its data. The data collected may be of a commercial, accounting, statistical or technical nature.
Within this perimeter Welead undertakes to :
Limit the collection of data to that which is strictly useful and necessary for commercial, technical and billing services. Not to use the data collected for purposes other than those for which it was collected. Keep personal data for a limited and proportionate period of time. Example: Commercial data can be kept for up to 5 years after the expiration of your contracts. Invoices will be kept 10 years after being issued. Not to transfer this data to third parties other than related companies or working on behalf of Welead within the framework provided for in sales or service contracts. Implement adequate security to best guarantee the protection of your personal data. Notify you as soon as possible in the event of a breach of your data within 48 hours maximum. Provide you with the means to control and delete your data.