1. IN Groupe
  2. /
  3. IN Groupe PSIRT
  4. /
  5. Privacy policy

IN Groupe Privacy Policy

IN Groupe is committed to protecting your privacy. The purpose of this Privacy Policy (hereinafter referred to as the “Policy”) is to define the categories of personal data we collect, how we collect and process such data, the parties with whom we share it in connection with the services we provide, and certain rights you have in this regard.

Who are we?

Personal data are processed by:
Imprimerie Nationale S.A., represented by its President and CEO Agnès DIALLO, who is Data Controller.
Headquarters: 38, avenue de New York – 75016 PARIS.

Why do we collect your personal data?

Your personal data are collected as part of email exchanges relating to the reporting of vulnerabilities that may affect IN Groupe’s products.

These data are processed for the purposes of receiving, analyzing, and following up on vulnerability reports, as well as enabling direct interaction with the reporting party in connection with handling the vulnerability.

What is the legal basis for the processing?

The processing of personal data is based on IN Groupe’s legitimate interest in ensuring the security of its products, preventing and correcting vulnerabilities that may affect them, and analyzing and handling the corresponding reports.

What data do we collect?

The data that may be collected, depending on the information provided as part of the report, include in particular:

  • Identification data and contact details of the reporter or any person designated as a point of contact (first name, last name, email address, and, where applicable, phone number);
  • Professional data (company name, position);
  • Technical information contained in the vulnerability report (evidence, logs);
  • Data necessary for monitoring and managing communications (communication history, associated metadata).

Reporters must only provide information that is strictly necessary for processing the report and should refrain from communicating any sensitive or irrelevant data with regard to the reported vulnerability.

How long do we keep your data?

The data are retained for the period necessary to process the vulnerability report (for a maximum period of 12 months).

Who are the recipients of your data?

The recipients of the personal data are authorized personnel within IN Groupe involved in handling vulnerability reports affecting the products, in particular:

  • Members of the PSIRT;
  • Product teams (technical teams, R&D).

What are your rights?

You have the right to request access to your personal data. You also have the right to request the rectification of your personal data if they are inaccurate, by email at: dpo@ingroupe.com.

In any event, if you are not satisfied with the answer we provide, you have the right to lodge a complaint with the CNIL: https://cnil.fr/fr/plaintes.

Changes to this Policy
We regularly update this Policy to reflect changes in our practices or applicable regulations. When we modify this Policy, we also update the “Last Updated” date accordingly.

This website uses cookies

Cookies ("cookies") consist of small text files. The text files contain data which is stored on your device. To be able to place some type of cookies we need your consent. We at IN Groupe use these types of cookies. To read more about which cookies we use and storage duration, click here to get to our cookiepolicy.

Manage your cookie-settings

Necessary cookies

Necessary cookies are cookies that need to be placed for fundamental functions on the website to work. Fundamental functions are for instance cookies that are needed for you to use menus and navigate the website.

Functional cookies

Functional cookies need to be placed for the website to perform in the way that you expect. For instance to remember which language you prefer, to know if you are logged in, to keep the website secure, remember login credentials or to enable sorting of products on the website in the way that you prefer.

Statistical cookies

To know how you interact with the website we place cookies to collect statistics. These cookies anonymize personal data.

Ad measurement cookies

To be able to provide a better service and experience we place cookies to tailor marketing for you. Another purpose for this placement is to market products or services to you, give tailored offers or market and give recommendations on new concepts based on what you have bought from us previously.