GDPR Policy

Updated on 16 October 2020


Why this policy?

At MAGMA, personal data protection comes first!

This policy tells you how we process your personal data. Rest assured, we comply with the 1978 FrenchData Protection Act and the EU regulation dated 27 April 2016 (hereinafter“GDPR”) when collecting and processing your data.

What is personal data?

When using the Magma solution (hereinafter the “Solution”) and/or the website at the address (hereinafter the “Site”), we might ask you to send us your personal data to be able to use our services. The term“personal data” refers to all data used to identify you as an individual.

What personal data is collected by Magma?

Through our services, we are required to collect a certain amount of information about you, specifically: your full name, company name, data aboutyour professional activity, city, telephone number, email address and login details.

This data might be collected when you use the Solution and/or our Site or when you use our Services.

Who is the data controller?

We are the data controller. We have appointed a data protection officer for this purpose.
You can contact them at the following email address: [email protected]


1. Use of your personal data

On what legal basis is your personal data collected and used?


Your data needs to be collected to fulfil the contract established when you use theServices through our Solution/Site.

Legitimate interest

When you voluntarily provide personal data, we collect it to offer a better response to your requests for information on our Solution/Site.


Regarding the collection and storage of your personal data through cookies (GoogleAnalytics) used on the Solution/Site

Why is your personal data collected and used?

To create a user file, both for registered and prospective users.

To manage your access to certain services accessible via the Solution/Site and their use.

To calculate commercial and visit statistics for our Solution/Site. To customize responses to your requests for information.

To manage user reviews on the Solution/Site’s content or services. Sending information or marketing

To measure the number of visits to the Solution or Site, the number of pages viewed and User activity.

You can always refuse to provide us with your data, we will then inform you of the possible consequences of this refusal where such data is mandatory.

2. Recipients of collected data

The following will have access to your personal data:

(i) Our team,
(ii) Services responsible for verification (specifically the statutory auditor),
(iii) Our subcontractors,

Plus public organizations, court officers (bailiffs, notaries, etc.), judicial officers and organizations responsible for debt recovery.

Your personal data will never be transferred, lent or exchanged to third parties.

3. How long your personal data is retained

Data is retained for as long as you subscribe to our services to use the Solution, and for a period of:

  • Three (3) years after you cancel your subscription regarding the use of data for marketing purposes. After this three(3)-year period, we can contact you again to find out if you want to continue to receive marketing materials.
  • Three (3) years minimum from exercising the right to object regarding information to acknowledge your rights.
  • Five (5) years after you cancel your subscription regarding compliance with legal and regulatory obligations, as well as to establish evidence of a right or contract.
  • Thirteen (13) months for the cookies set out in article 6.
4. Security

No worries! We (and our subcontractors) have taken all the necessary precautions, as well as appropriate organizational and technical measures to protect the security, integrity and confidentiality of your personal data.

5. Hosting

Your data is retained and stored whilst it is being processed on the servers of the companies like Sendgrid which is located inthe United States.

Regarding the tools we use, your personal data could be transfered outside the European Union. The transfer of your data within this framework is secured by the following safeguards:

- Either these data are transferred to a country which has been deemed to offer an adequate level of protection by the European Commission;
- Or we have concudede with our processors a specific contract governing the transfor of your data outside the European Union, based on the standard contractual clauses approved by the European Commission between a data controller and a processor.

6. Cookies

Cookies are text files stored on your browser, which are often encrypted. They are created when your browser loads a specific website: the site sends information to your browser, which then creates a text file. Whenever you return to the same site,your browser retrieves this file and then sends it.

There are different types of cookies, which do not have the same purposes:

We use technical cookies

Technical cookies are used as you browse, to facilitate and run certain functions. As an example, a technical cookie can be used to remember the answers you gave in a form or your language or site layout preferences, if these options are available.

We do not use social media cookies.

We encourage you to read the privacy policies of the social media platforms which create these cookies, to find out more about how they use browsing information which they might collect when using these cookies, and how to exercise your rights vis-à-vis these platforms.

We do not use advertising cookies.

However, we do use Google Analytics, which is a statistical audience analysis tool which generates a cookie to measure the number of visits to the Site, the number of pages viewed and User activity. YourIP address is also collected to determine where you are located. This cookie is only stored if you give your approval. You can accept or reject them.

Please note that you can object to cookies by changing your browser settings. How ever rejecting cookies can prevent the Site from operating properly.

7. Your rights

What are your rights to your data?

Right to information

This is why we have established this policy.

Right to access

You have the right to access all your personal data at any time.

Right to rectification

You havethe right to rectify any inaccurate, incomplete or obsolete personal data.

Right to restrict processing

You have the right to restrict the processing of your personal data in the cases set forth in art. 18 of the GDPR.

Right to transfer data

You have the right to receive your personal data in a readable format and to request its transfer to the recipient of your choice.

Right to be forgotten

You have the right to demand that your personal data is deleted and to prevent any future collection.

Right to file a complain

You can file a complaint with a competent supervisory authority (in France, the CNIL), if you believe that the processing of your personal data constitutes a violation of the applicable laws.

Right to object

You have the right to object to the processing of your personal data. However please note that even if you object, we can keep processing your personal data for legitimate reasons or for advocacy in court.

Regarding marketing, you can object at any time using the unsubscribe link located at the bottom of all marketing emails.

Right to define what happens to your data after your death

You can give instructions relating to the retention, deletion and communication of your personal data, and appoint a person responsible for following these instructions, where applicable.

You can send them to a trusted digital third party certified by CNIL if general instructions, or to the address below for specific instructions.

You can modify or revoke your instructions at any time.

You can exercise the rights above by writing to us at [email protected] or the following address, for snail mail enthusiasts: MAGMA SAS, 5 résidence des Sondres 76710 Montville. 

Please provide a copy of a signed identity document with your request.

8. Entry of this policy into effect

This policy enters into effect on 20/01/2020.

9. Amendments

We reserve the right, at our sole discretion, to amend this policy at any time, in full orin part. 

You will be informed of this amendment through a message which will be displayed when you next use the Solution or open the Site.  

These amendments will enter into force on publication of this new policy. Your use of the Solution or the Site after the entry into force of these amendments will constitute recognition and acceptance of this new policy. If not, and if you are not satisfied with the new policy, you should no longer access the Solution or Site.

10. Credits

Icons credit:
‍- Contract by Kieu Thi Kim Cuong from the Noun Project
- Forest by fauzan akbar from the Noun Project
- Agree by Alice Design from the Noun Project
- Information by priyanka from the Noun Project
- Computer by Andrei Yushchenko from the Noun Project
- Rubber by yurr from the Noun Project
- Ruler by Flatart from the Noun Project
- Constellation by Andrei Yushchenko from the Noun Project
- People search by Andrei Yushchenko from the Noun Project
- Support support by Andreas Vögele from the Noun Project
- Astronaut by Andrei Yushchenko from the Noun Project
- Date death by Andrei Yushchenko from the Noun Project