Privacy Notice
Last updated:
This Privacy Notice explains how LabRise Consulting ("we", "our", "us") collects, uses and shares your personal data when you visit our website and use our services.
1. Who we are
Data controller: LabRise Consulting.
Contact: privacy@labrise-consulting.com
If we appoint a Data Protection Officer (DPO), their details will be provided here.
2. Scope and legal framework
This notice applies when you visit our website, contact us, download resources, or otherwise interact with our services.
We process your data in accordance with the EU General Data Protection Regulation (GDPR) and applicable national data protection laws, as well as the ePrivacy Directive regarding cookies.
3. Data we collect
- Identification and contact data (e.g., name, organization, email, phone) when you contact us or request a demo.
- Professional data (role, sector, project requirements) that you provide.
- Technical and usage data (IP address, cookie identifiers, browser type, pages visited, timestamps) collected with your consent.
- Communications (message content, form responses).
4. Purposes and legal bases
We use your data to:
- Respond to your requests (contact, quotes, demos) β performance of a contract or pre-contractual steps (Art. 6-1-b GDPR).
- Provide and improve our website, ensure availability and security β legitimate interest (Art. 6-1-f GDPR).
- Audience measurement (Google Analytics) β consent (Art. 6-1-a GDPR).
- Legal obligations (invoicing, compliance) β legal obligation (Art. 6-1-c GDPR).
- B2B prospecting related to our services β legitimate interest, with a right to object at any time.
7. Transfers outside the EU/EEA
Where data is transferred to countries outside the EU/EEA (e.g., via certain providers like Google Analytics to the United States), we implement appropriate safeguards including:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Supplementary technical and organizational measures
- Regular assessments of the protection level in third countries
These measures ensure compliance with Articles 44-49 of the GDPR.
8. Data retention
- Prospects and inquiries: up to 3 years after last contact.
- Clients and contract performance: for the duration of the contract, then archived as legally required.
- Google Analytics data: event data retained for 14 months on Google's servers when consent is given.
- Browser cookies: Analytics cookies remain stored in your browser for up to 2 years.
- Consent preferences: Your cookie consent choice is stored for 6 months, after which we'll request consent again.
9. Security
We apply reasonable technical and organizational measures (access controls, encryption in transit, logging, minimization) to protect your data. No system is completely secure, so we encourage you to notify us of any suspected unauthorized access.
10. Your rights (GDPR)
You have the following rights under the GDPR:
- Right of access, rectification, erasure, restriction, and objection.
- Right to data portability.
- Right to withdraw consent at any time (e.g., for analytics cookies).
- Right to lodge a complaint with a supervisory authority in any EU member state where you live, work, or where the alleged infringement occurred. In France: CNIL β cnil.fr/en/contact-cnil.
Exercising your rights
Contact us at privacy@labrise-consulting.com and include information to verify your identity. We will respond within one month (extendable depending on complexity).
11. Contact us
For any questions regarding this notice or data protection: privacy@labrise-consulting.com.
12. Changes to this notice
We may amend this notice to reflect legal or technical changes. The update date will appear at the top. In case of material changes, we may display a notice on the website or request your cookie consent again.