Privacy policy

Inatysco is a simplified joint stock company, registered at the Montpellier Trade and Companies Registry under number 879 952 323, having its registered office at 22, avenue Saint Maurice de Sauret, 34000 Montpellier (hereinafter “Inatysco” or “us”).

Inatysco takes personal data protection very seriously. The purpose of this privacy policy is to inform you, whether you are a customer, a prospect or just an Internet user (hereinafter referred to as “you”), of the way in which your data may be processed in the context of our relationship.

This privacy policy complies with all legal provisions applicable to the protection of personal Data and in particular those defined by Law No. 78-17 dated 6 January 1978, known as the Law relating to Information Technology and Liberties (Loi Informatique et Libertés) and by the General Data Protection Regulation No. 2016/679 (hereinafter the “GDPR”).

Inatysco reserves the right to modify this privacy policy at any time so as to ensure compliance with applicable regulations.



1. Who is the data controller?


The responsibility and status of Inatysco as regards the processing of personal data carried out for the purposes of Inatysco’s services vary depending on the situation at hand.


  • Inatysco is the data controller for the purposes described in article 2 of this privacy policy.
  • Inatysco is the data processor of its customers when they have subscribed to an account as a professional. In this respect, professional customers will be the data controllers as regards user data processed via the Inatysco platform.


2. Which processing operations are carried out by Inatysco acting in its capacity as data controller?


The table below sets out the operations carried out by inatysco in respect of your personal data. The latter is that which you provide to Inatysco when using the application (email address), when subscribing or in the more general context of interactions with Inatysco. Any data that you share with third parties through the Inatysco application is excluded from this definition of personal data : refer to the Privacy Policy PDF document.

3. Data collection & origin


We collect and process your personal data directly from you.

In all cases, you will be told why your data has been collected by us via the various online data collection forms, emails sent to you, notifications on the Inatysco Application.



4. Who are the recipients of your data?


Within the limits of their respective remits and for the purposes set out in article 2, the categories of recipients likely to have access to your data are :


  • The authorised personnel of the various departments of Inatysco (the authorised personnel of the commercial, accounting, IT, marketing and customer departments) ;
  • The service provider in charge of hosting the platform ;
  • Authorised personnel of our data processors ;
  • Where appropriate, the relevant jurisdictions, mediators, accountants, auditors, lawyers, bailiffs, debt collection agencies ;
  • Third parties who may place cookies on your terminals when you consent to them.



5. Is your data transferred outside the European Union?


Wherever possible, Inatysco prioritises operators which have access to personal data located in the geographical area declared by the user. In particular within the European Union for users from the European Union. Exceptionally, however, Inatysco may transfer the data of users located in the European Union outside the European Union.

These transfers are carried out in accordance with the provisions of the GDPR and Inatysco does everything to ensure that your personal data is secure, in particular through the application of the European Commission’s standard contractual clauses, completed as necessary, supplemented by the implementation of additional guarantees.

For more information on data transfers outside the EU, please contact us :


  • By post at the following address: INATYSCO SAS – Data Protection Officer – 22, avenue Saint Maurice de Sauret, 34000 Montpellier
  • By e-mail at the following address :



6. What are your rights as regards your personal data?


In accordance with applicable law, you have certain rights when your personal data is processed. Subject to the conditions applicable to the exercise of these rights, you have the following rights :


  • Right of access : you have the right to obtain confirmation as to whether or not your personal data is being processed, and if it is being processed, to receive a copy of all the data we hold relating to you.
  • Right to rectification: you have the right to request the rectification of personal data as soon as possible, to the extent that such data is incomplete or incorrect.
  • Right to object to the processing of your data on legitimate grounds.
  • Right to withdraw your consent at any time to the extent that the legal basis for the processing is consent.
  • Right to the portability of personal data: only to the extent where the legal grounds for processing the data are the performance of a contract or consent, you may receive your personal data in a commonly used and machine-readable structured format, in particular for the purpose of transmission to a third party. Where technically possible, you also have the right to have your personal data transmitted directly to that third party.
  • Right to restrict processing: you have the right to request the restriction of the processing of your personal data in certain situations defined by law.
  • Right to erasure: subject to certain conditions set out in Article 17 of the GDPR, you have the right to have your personal data erased.
  • Right not to be the subject of a decision based exclusively on automated processing, including profiling.
  • The right to determine what happens to your data after your death and to choose whether or not we disclose your data to a third party that you have appointed. In the event of your death and in the absence of any instructions from you, we shall destroy your data, unless its retention is required for evidentiary purposes or to meet a legal obligation. When you exercise your rights, you may be asked to prove your identity, in particular by sending an official identification document or any other document enabling your identity to be verified, in order to guard against fraud.


7. Who to contact if you have any questions about the processing of personal data or to exercise your rights?


If you have any questions about the processing of your data or wish to exercise any of your rights, you can contact our Data Protection Officer :


  • By post at the following address INATYSCO SAS – Data Protection Officer – 22, avenue Saint Maurice de Sauret, 34000 Montpellier
  • By e-mail at the following address :


Finally, you may also lodge a complaint with the supervisory authority in your country of residence, in France the CNIL :