Data Privacy Team Signaling

Last update on 05/04/2024

In accordance with the General Data Protection Regulation that came into force on 25th March 2018 (hereinafter the “GDPR“), STREAMWIDE may collect and process personal data. This Data Privacy Policy informs you about the conditions under which STREAMWIDE may collect and process your personal data.

The purpose of this Privacy Policy is to inform:

  • Who is STREAMWIDE?
  • What does STREAMWIDE do?
  • What is the scope of the Privacy Policy?
  • What categories of personal data are processed (collected, used, shared)?
  • Why and how is personal data processed?
  • How to exercise the rights granted by the GDPR for data subjects?

  1. Who Is STREAMWIDE ?

    STREAMWIDE S.A., a French company whose registered office is located at 84 rue d’Hauteville 75010 Paris France, RCS Paris 434188660 – VAT: FR37434188660, e-mail: info@streamwide.com.

    The STREAMWIDE Group is a French group with an international activity that has offices in Romania, Tunisia, the United States, Singapore and China. STREAMWIDE is headquartered in France. For the sake of clarity, the STREAMWIDE Group will be referred to as “STREAMWIDE” for the purposes of this Privacy Policy.


  2. What Does STREAMWIDE Do ?

    STREAMWIDE is a communications software technology provider that develops and markets voicemail solutions, solutions for telecom operators, critical communication and response coordination platforms. The products offered include real-time voice and data solutions, geolocation services, digital transformation of business processes and workflows.


  3. What Is The Scope Of The Privacy Policy?

    This Privacy Policy applies to:

    • To the various STREAMWIDE websites,
    • Mobile and web applications subscribed to by STREAMWIDE,
    • To the support services provided by STREAMWIDE,
    • To the employees of STREAMWIDE.

    The provisions relating to the processing of personal data complement the information shared by STREAMWIDE as part of its contractual commitments. This Privacy Policy complements the dedicated provisions provided for in STREAMWIDE‘s contractual documentation (e.g. GCU, EULA, DPA, etc.). In the event of any conflict or inconsistency between the terms of this Privacy Policy and any other clause of the contractual terms, the terms of the specific documentation shall prevail.

    It is expressly recalled that the following distinction applies in the context of the collection and processing of personal data:

    • STREAMWIDE is responsible for the processing of personal data collected directly through the Websites.
    • STREAMWIDE is a subcontractor of the personal data collected from the users of the solutions (TOM, TOTR, etc.).
Responsability Type of data
Data Controller
Data of partners, suppliers, customers, Data collected through the STREAMWIDE Websites, Data of STREAMWIDE candidates and employees.
Subcontractors
Solution user data

With regard to the personal data processed in its capacity as data controller, STREAMWIDE ensures the implementation of reasonable and appropriate technical and organisational measures.


  1. What Information Is Collected And Processed?

    STREAMWIDE collects and processes personal data in accordance with the applicable laws and regulations within the EUropean Union. STREAMWIDE does not disclose information to third parties without informing data subjects in accordance with legal provisions and does not make exclusively automated decisions (without any human involvement that has a significant impact on data subjects).

    By visiting the Websites, purchasing/using licenses for solutions developed and/or marketed by STREAMWIDE, and interacting with STREAMWIDE by any means or through any communication channel (e-mail, telephone, social networks), data subjects agree to this Privacy Policy. If data subjects do not agree with the content described in the Privacy Policy, they may not use or continue to use STREAMWIDE‘s services and products.

    STREAMWIDE collects and processes your personal data for several purposes, including:

    • To enable the operation of the solutions published and marketed by STREAMWIDE (e.g. license management and monitoring, etc.),
    • Respond to user requests and provide them with assistance,
    • Develop new features,
    • Diagnose or remedy technical problems found on the solutions developed and marketed by STREAMWIDE,
    • Ensure the security of solutions and sites belonging to STREAMWIDE (protection/defense against cyber-attacks),
    • Ensure compliance with applicable legal and regulatory provisions,
    • Manage interviews and recruitments of candidates following job offers published by STREAMWIDE,
    • Allow solicitations for marketing purposes subject to STREAMWIDE obtaining the prior consent of the persons concerned or when there is a legal exception to obtain consent (e.g. subscription to the newsletter, participation in events organized by STREAMWIDE, contact request, demonstration, etc.).
Data collection News Role Data Controller / Data Processor
Data provided by the Admin
Information is provided when registering as an Admin, namely: company name, email address, billing information.
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor.
Data provided for the user
Information provided during registration as a user (customer organization, administrator, and end users) and throughout the use of the Application, such as (but not limited to) mobile phone number, email address, usernames, various identifiers (rank or position within the organization, information mentioned on the cover letter and resume) and passwords.
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor.
Contact data
Related Information: to the mobile device's address books or contact list in order to locate the phone numbers of any other user of the Application (the "Application Users") and other phone numbers stored in the address books or contact lists ("Personal Users"), all of which are collected and processed. The Application can automatically synchronize contacts with their associated phone numbers in the address book. STREAMWIDE does not consult this information on the servers.
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor.
Data related to the administration of the application
For the administration of the Application and Services, STREAMWIDE will collect information about mobile devices or any computer used with the Application, including, where applicable, unique identifiers, mobile device or computer, operating system, browser type and mobile network information used, and the device's phone number.
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor
Geolocation data
Users can share their location with other users through the App. If the account holder uses the geolocation feature, it is possible that the location will be tracked (if the option is enabled on the device).
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor.
Login data
Information is provided in server logs, including Internet Protocol (IP) addresses, Internet Service Provider (ISP), clickstream data, browser type and language, and pageview and timestamp information.
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor.
Identification data
Information is provided as part of the referencing of partners, service providers, suppliers and/or subcontractors. The information includes administrative contact information and financial data.
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor.
Identification data
Information is collected as part of STREAMWIDE's prospecting activities.
Data provided by STREAMWIDE's co-contractor. The data controller is STREAMWIDE's co-contractor.
STREAMWIDE employee data
Information is collected from STREAMWIDE employees.
Data provided by STREAMWIDE employees. The data controller is STREAMWIDE.

STREAMWIDE also collects and stores the content of messages delivered by the Application in the following cases:

  • In the event of a failed send, the entered messages may be kept on the servers for a period of up to 30 days (or 7 days if they have a multimedia attachment) for the User to resend them. After the 30-day or 7-day period (as applicable), or if the undelivered message has been successfully delivered, the information is deleted,
  • In case the Webchat function is used and the solution is hosted by STREAMWIDE,
  • In accordance with the measure(s) required by applicable laws, regulations or court orders.

  1. What Are Streamwide’s Obligations In The Context Of The Collection And Processing Of Personal Data?

    The protection of the personal information of the data subject is very important to STREAMWIDE. Therefore, STREAMWIDE undertakes and complies with the legislation in force on the protection of personal data:

    • Lawfulness, fairness and transparency: STREAMWIDE collects and processes personal data correctly and in compliance with legal requirements. STREAMWIDE is transparent about the information it uses and the data subjects are properly informed.
    • Respect for the rights of data subjects: Within the limits set by the applicable legal provisions, STREAMWIDE offers data subjects the opportunity to review, modify and delete the personal data they have shared with STREAMWIDE and to exercise their other rights.
    • Data Integrity and Purpose Limitation: STREAMWIDE uses personal data for the purposes described in this Privacy Policy or shared with its co-contractors. STREAMWIDE ensures that personal data is accurate, complete and up-to-date.
    • Security: STREAMWIDE has implemented reasonable security measures for the processing of all personal data collected and processed.

  2. Why Is Your Data Collected ?

    In the context of browsing STREAMWIDE’s internal sites, responding to online forms or submitting an application, STREAMWIDE will collect and process the following information from the typologies of the persons concerned:

    • User Solution,
    • Site User,
    • Supplier / Service Provider / Partner / Subcontractor,
    • Candidate
Data subject Typology of data Legal basis Purposes Retention period
Solution
Website User
Surname, first name, IP address
Legitimate interest
How the website works Fraud Prevention
6 months
Solution
User Solutions
Administrative contact details, surname, first name, telephone number, password
Legal basis selected by the data controller
Execution of the license agreement with the customer
Data stored by the data controller
Corporate
Partner / Client
Surname, first name, administrative details, information necessary for the execution of the contract
Legal basis selected by the data controller
Business Relationship Management
5 years from the end of the contract
Sales
Prospect
Administrative contact details (surname, first name, position, etc.)
Legitimate interest
Sending marketing information
3 years from last contact
HR
Candidate
Surname, first name, administrative details,
Consent
Recruitment management
2 years

Unless the law imposes a different retention period, STREAMWIDE retains the personal data of data subjects only for the time necessary to achieve the purposes pursued. At the end of the retention period, the personal data will be destroyed or erased from computer systems and any other evidence.

Within the framework of this Privacy Policy, STREAMWIDE has identified all the personal data processed and the purposes of the processing. This Privacy Policy may be updated in the event of changes in STREAMWIDE’s solutions and activities.

 

 

  1. What Are The Data Security Measures?

    STREAMWIDE ensures the security of personal data and undertakes to take the necessary measures to protect the data of data subjects against unauthorized access to personal data, as well as against unauthorized modification, disclosure or destruction of data processed in connection with data collection and processing.

    STREAMWIDE has implemented the following technical and organizational measures for the security of personal data:

    1. Dedicated policies: STREAMWIDE regularly adopts and revises its internal practices and policies regarding the processing of personal data (including physical and technical security measures), in order to protect systems from unauthorized access or other possible threats to their security. These policies are subject to constant monitoring to ensure compliance with legal requirements and to ensure that the systems are functioning properly.
    2. Data minimization: STREAMWIDE ensures that the personal data it processes is limited to what is necessary, appropriate and relevant.
    3. Limiting access to data: STREAMWIDE seeks to limit access to the personal data it processes through employees, collaborators and others who need access to the data to process it and provide a service. STREAMWIDE staff, partners and collaborators are subject to strict confidentiality obligations, either by contract or by law.
    4. Specific technical measures: STREAMWIDE uses technologies that ensure the security of customers, always trying to implement the best solutions for data protection. STREAMWIDE also performs regular backups to recover data in the event of an incident, secures passwords, and has implemented periodic audit procedures regarding the security of the equipment used. However, no website, no app, and no internet connection is completely secure.
    5. Ensuring the accuracy of data: STREAMWIDE may sometimes ask data subjects to confirm the accuracy of personal data or to update it to ensure that it reflects reality.
    6. Raising awareness among staff: STREAMWIDE raises awareness among its employees and collaborators of the GDPR and best practices.
    7. Pseudonymization of data: Pseudonymization of personal data processed by STREAMWIDE is one of the possible protection measures;
    8. Encryption: STREAMWIDE protects the confidentiality of communications (voices, messages) as well as that of stored data (files, videos). The database relies on a native encryption mechanism to hide user credentials on the server side;
    9. Mobile Device Security: STREAMWIDE has implemented the following controls:
      • Secure mobile device monitoring,
      • Mobile application integrity checks,
      • Security of user credentials,
      • Containment of user data by the mobile application,
      • Revoke user credentials,
      • Deletion of data by the administrator if necessary,
      • Deletion of data by the administrator if necessary,
      • Application registration via a one-time password.

      However, some features of the solutions developed and/or marketed by STREAMWIDE may imply making the user’s information public. When using these features, users must ensure in the settings the rights granted for data sharing in the application.

     

  2. Data Transfers Outside The European Union?

    In general, the personal data of European users is stored at our premises in France and Romania.
    In the event that STREAMWIDE transfers your personal data to a country outside the European Union, STREAMWIDE will ensure that your data is properly protected.
    We will ensure that there is an appropriate agreement on the transfer of data, following the Standard Contractual Clauses approved by the European Commission (https://bit.ly/3yzaYqn).
    In the absence of equivalent measures, STREAMWIDE will require the third party to enter into an agreement that will reflect the equivalent measures.

     

  3. What Are Your Rights?

    In accordance with the provisions of the GDPR, data subjects have the right to exercise their rights. The rights granted to data subjects are as follows:

    • Right to information, this is the right to be informed about the processing of data;
    • Right of access, this is the right to obtain from STREAMWIDE confirmation as to whether or not personal data concerning them is being processed and, if so, to access the respective data and information provided by Article 15 (1) of the GDPR;
    • Right to rectification, this is the right to rectify inaccurate or incomplete data. Data subjects have the right to obtain from STREAMWIDE, without undue delay, the rectification of inaccurate personal data concerning them;
    • Right to erasure, this is the right to request deletion in accordance with the provisions of Article 17 of the GDPR;
    • Right to restriction, this is the right to restrict the collection and/or processing of personal data in accordance with the provisions of Article 18 of the GDPR;
    • Right of communication, this is the right to transmit the data that STREAMWIDE possesses, concerning the data subjects, to another data controller (“the right to portability”);
    • Right to object, this is the right to object to the processing of data in accordance with the provisions of Article 21 of the GDPR
    • The right not to be subject to a decision based solely on automated processing, including the creation of profiles with legal effects or similar significant effects on data subjects;
    • The right to take legal action for the protection of the rights and interests of data subjects;
    • The right to lodge a complaint with a supervisory authority.

    The rights listed above are not absolute. There are exceptions, each request will be analyzed by STREAMWIDE to decide if it is justified or not. To the extent that the request is justified, STREAMWIDE will facilitate the exercise of the rights of the data subject.

    To the extent that the request is not justified, it will be rejected, but the data subject will be informed of the reasons for the refusal and of his or her rights to lodge a complaint with the competent supervisory authority and to take legal action.

    STREAMWIDE endeavors to respond to the request within one (1) month. However, the time limit may be extended depending on various aspects, such as the complexity of the request, the volume of requests received or the impossibility of identifying the person concerned.

    It should be noted that in the event that STREAMWIDE does not have the information that can identify the data subject and the data subject does not provide additional information to be identified, STREAMWIDE will not be able to respond to the request to exercise the rights.

     

  4. Use Of Data For Marketing Purposes

    STREAMWIDE may proceed to send commercial electronic messages (marketing email) to users of the STREAMWIDE database, as a result of interactions with customers, potential customers, partners, users, or in any other context for which a person has shared their data with STREAMWIDE and/or its partners, or by filling in the online contact form on our website.

    How do I unsubscribe from marketing campaigns?
    Data subjects may object to direct marketing and/or may withdraw their consent at any time by following the unsubscribe instructions on the website.

     

  5. The Use Of Cookies

    STREAMWIDE uses cookies on its websites and solutions. It should be noted that cookies are small pieces of information and data that may include unique identifiers addressed to your device (computer, phone, tablet).

    A “cookie” is a small data file (text file) that a website and/or solution, when viewed by a user, instructs your browser to store on your device in order to remember information about you, such as your language preferences or login information. We set first-party cookies and we also use third-party cookies, which are cookies from a different domain than the website you are visiting, for our advertising and marketing efforts.

    More specifically, we use cookies and other tracking technologies for the following purposes:

    • Strictly necessary cookies: These cookies are essential for the website to function properly and cannot be disabled from our systems. They are usually only activated in response to actions you take that correspond to a request for services, such as setting your privacy preferences, logging in, or filling out forms. You can set your browser to block or be alerted about the use of these cookies. However, if this category of cookies – which does not store any personal data – is blocked, some parts of the site will not be able to function.
    • Performance cookies / third-party cookies: These cookies are used to determine the number of visits and the sources of traffic to our site/solutions in order to measure and improve their performance. All information collected by these cookies is aggregated and therefore anonymized.
    • Functionality cookies: These cookies are used to improve the functionality and personalization of our sites/solutions. If you do not accept this category of cookies, some or all of these features may not function properly.

Solution

 

Name

Purpose/Use

TOTR

Webchat

SwSmartMS_WebChatDefault_Lang

Functional. Determines the language of the website.

SwSmartMS_WebChatDefault_LastUsed

Functional

SwSmartMS_WebChatFrontend_NJ_xxxxxxxxx

Functional. Used to check the expiration of the user token

SwSmartMS_WebChatFrontend

Functional. Used to check the expiration of the user token

-ENID, __Secure-3PSIDCC/xxxx, SSID, SIDCC, SID, SEARCH_SAMESITE, SAPISID, OTZ, NID, HSID, APISID, AEC, 1P_JAR, rc::a/x

Cookies associated with Google services. These include cookies used for user preferences, collecting statistics, linking activities between devices, security and authentication, personalized advertising, and reCAPTCHA to distinguish between humans and robots.

Admin

SwSmartMS_WebOrganization

Functional. This is an authentication cookie with a unique identifier for the user session

SwSmartMS_WebOrganization_workingMode_x

Functional.

SwSmartMS_WebOrganization_Lang_x

Functional. Determines the language of the website.

-ENID, __Secure-3PSIDCC/xxxx, SSID, SIDCC, SID, SEARCH_SAMESITE, SAPISID, OTZ, NID, HSID, APISID, AEC, 1P_JAR, rc::a/x

Cookies associated with Google services. These include cookies used for user preferences, collecting statistics, linking activities between devices, security and authentication, personalized advertising, and reCAPTCHA to distinguish between humans and robots.

API

PHPSESSID

Functional. This is an authentication cookie with a unique identifier for the user session

TOM

Webchat

SwSmartMS_WebChatDefault_Lang

Functional. Determines the language of the website.

SwSmartMS_WebChatDefault_LastUsed

Functional.

SwSmartMS_WebChatFrontend_NJ_xxxxxxxxx

Functional. Used to check the expiration of the user token

SwSmartMS_WebChatFrontend

Functional. Used to check the expiration of the user token

Multiple cookies/tokens:-ENID, __Secure-3PSIDCC/xxxx, SSID, SIDCC, SID, SEARCH_SAMESITE, SAPISID, OTZ, NID, HSID, APISID, AEC, 1P_JAR, rc::a/x

Cookies associated with Google services. These include cookies used for user preferences, collecting statistics, linking activities between devices, security and authentication, personalized advertising, and reCAPTCHA to distinguish between humans and robots.

Admin

SwSmartMS_WebOrganization

Functional. Used to check the expiration of the user token

SwSmartMS_WebOrganization_workingMode_x

Functional

SwSmartMS_WebOrganization_Lang_x

Functional. Determines the language of the website.

Multiple cookies/tokens:-ENID, __Secure-3PSIDCC/xxxx, SSID, SIDCC, SID, SEARCH_SAMESITE, SAPISID, OTZ, NID, HSID, APISID, AEC, 1P_JAR, rc::a/x

Cookies associated with Google services. These include cookies used for user preferences, collecting statistics, linking activities between devices, security and authentication, personalized advertising, and reCAPTCHA to distinguish between humans and robots.

API

PHPSESSID

Functional. Used to check the expiration of the user token

streamwide.com

Web site

moove_gdpr_popup

Cookie that allows us to know if the user has accepted/declined the cookie banner. Allows you to disable Matomo’s analytical cookies.

pll_language

Functional. Determines the language of the website.

_pk_ses.1.e6e2

Cookie Matomo Analysis. Used to track sessions. The numbers and characters that follow the period in the cookie name may represent specific identifiers or session settings.

_pk_id.1.e6e2

Cookie Matomo Analysis. Used to store user information, such as a unique visitor ID.


  1. Changes

    STREAMWIDE may change this Privacy Policy at any time. All updates and changes to this Privacy Policy will be available on STREAMWIDE‘s websites.

    If you have any questions or concerns about privacy, the processing of personal data and the exercise of legal rights, you can contact us at the following email address: dpo@streamwide.com