Skip to Content

Privacy Statement

Dernière mise à jour: 30/09/2025

Elephantis (“we”, “our”, “us”) is committed to protecting your personal data and respecting your privacy. 

This Privacy Notice explains how we collect, use, store, and protect your personal data in compliance with the EU General Data Protection Regulation (GDPR).


1. Data Controller

The Data Controller responsible for processing your personal data is: Elephantis SAS - 60 rue François Ier, 75008 Paris, France - Email : contact@elephantis.io


2. What data we collect

We may collect the following categories of personal data:

• Identification data: name, surname, job title, company.

• Contact data: email address, phone number (if provided).

• Professional data: organization, role, country.

• Technical data: login information, IP address, device/browser details (via Microsoft 365).

• Participation data: webinar attendance, Q&A questions, event feedback.


We do not collect sensitive categories of data (e.g. health, religion, political opinions).

3. How we collect your data​

We collect personal data when you:

  • Register for a webinar or event (via Microsoft Teams, Tally, or other forms).
  • Contact us (via email, website, or CRM forms).
  • Use our services (support tickets, extension subscriptions).
  • Interact with our website or marketing communications.


4. Purposes and legal bases

We process your personal data for the following purposes:

  • Webinar organization and follow-up → performance of a contract.
  • Responding to your enquiries → legitimate interest.
  • Sending relevant marketing communications (if you opted in) → consent.
  • Compliance with legal obligations → e.g. invoicing, accounting.
  • Improving our services → legitimate interest.


5. Sharing your data

We never sell your personal data.

We may share your data with trusted service providers who process it on our behalf:

  • Microsoft (Teams, Outlook, SharePoint)
  • Hostinger (VPS)
  • Odoo (hébergement site)
  • Twenty (CRM)
  • Qonto (facturation)
  • Tally (formulaires)

All providers are bound by Data Processing Agreements and GDPR safeguards.


6. International transfers

Some of our service providers (e.g. Microsoft, Tally) may transfer data outside the EU.

Such transfers are protected by Standard Contractual Clauses or participation in the EU–US Data Privacy Framework.


7. Data retention

We retain personal data only for as long as necessary for the purposes described:

• Webinar registration data: up to 6 months after the event, unless you consent to further communications.

• CRM contacts: until you unsubscribe or request deletion.

• Accounting records: up to 10 years, as required by French law.


8. Your rights

Under GDPR, you have the following rights:

• Access — request a copy of your personal data.

• Rectification — correct inaccurate or incomplete data.

• Erasure — request deletion of your data (except legal obligations).

• Restriction — request limitation of processing.

• Portability — request your data in a machine-readable format.

• Objection — withdraw consent or opt out of marketing.


To exercise your rights, contact us at contact@elephantis.fr, specifying your request. We will respond within 30 days.



9. Security

We apply technical and organizational measures to protect your data, including:

  • Secure hosting in Microsoft 365 (EU data centers where possible).
  • Multi-factor authentication for staff accounts.
  • Restricted access to CRM and file storage.
  • Encryption of devices and backups.


10. Webinar Q&A

When you ask a question during a webinar, your name may appear next to your message. If you prefer anonymity, please indicate it in your message or inform the organizer. We may anonymize Q&A exports before sharing. You may also request deletion of your name from Q&A records.


11. Complaints

If you believe your rights have not been respected, you can lodge a complaint with the CNIL (Commission Nationale de l’Informatique et des Libertés, France) or your local supervisory authority.