MyTower, editor and integrator of TMS & GTM solutions in SaaS mode, attaches particular importance to the protection of personal data and to transparency with regard to the users of its www.mytower.co website.

MyTower is a publisher and integrator of TMS & GTM solutions adapted to the management, optimization and compliance of shippers' transport, customs and trade compliance operations. MyTower offers highly configurable, scalable solutions tailored to each organization, all in SaaS mode.

As such, it collects and processes a great deal of personal data on behalf of itself, its customers and its business partners. It is strongly committed to ensuring that its systems and practices comply with the provisions of the European Data Protection Regulation.

The MyTower Company (hereinafter referred to as: "Organization", "we", "us") acts as data controller within the meaning of European Regulation No. 2016-679 of April 27, 2016 and the amended French Data Protection Act of January 6, 1978 (hereinafter, together, the "Regulations") on the processing of personal data occasioned by its website.

We are committed to complying with applicable regulations and to protecting the personal data of our partners, suppliers, users, site visitors and any other data subjects (hereinafter referred to as "you" or "your") to the best of our ability.

1. Scope of application

The purpose of this policy is to explain how we process your personal data via our website www.mytower.co.

It applies only to operations carried out on information concerning you, where you are likely to be identified directly or indirectly (hereinafter referred to as "personal data").

When we provide our services, we act on behalf of Customers or their subcontractors (hereinafter our "Partners") as data processors. As such, it is the responsibility of our Partners who act as data controllers to provide information to data subjects via their websites.

2. What personal data do we process and why?

2.1 Data origin and type

By visiting our site

When you contact us via our contact form :

• Last name, first name
• Mail
• Telephone (optional)
• Company*
• Function
• Country
• Selected solution (drop-down menu)
• Comment (optional)

When you download our brochure :

• First name, last name
• Mail
• Telephone (optional)
• Company*
• Function
• Country
• Selected brochure

When you subscribe to our newsletter :

• Mail

We process this data on the basis of your consent in order to respond to your request. It will be stored in our database. You may withdraw your consent at any time without giving reasons.

We inform you that your e-mail address may be used for commercial prospecting purposes.

You may object to this prospecting at any time and unsubscribe from our communications without having to justify your decision.

When you connect to the site via cookies and tracers :

• Cookies required for site operation: CMS Rubberduck
• Audience measurement and analysis: Google Analytics, Facebook, LinkedIn, Matomo
• Social networks: LinkedIn, Facebook
• Advertising: LinkedIn, Facebook

We process this data on the basis of your consent and our legitimate interest in processing it.

For complete information on cookies and tracers on the site, you can refer to the dedicated policy by clicking here : Legal information | MyTower

If you wish to reconsider your choices regarding cookies, you can change your preferences at any time by clicking on "Manage my preferences" at the bottom of each page of the site.

Via our Sales Partners

We may collect your data via commercial partners such as those listed below:

2.2 Objectives of our Collection

Notify you of service updates and products and services offered by us that may be of interest to you, including information about publications and events;

Personalize your site experience with relevant information;

To help us understand the profile of Site users, identify their areas of interest and ensure that the Site is designed to work with the computer settings of most of our visitors;

Measure and improve the effectiveness of our marketing programs on different channels;

To improve the content of our site and navigation;

Or to comply with a legal obligation in the context of measures to combat fraud and money laundering, as well as requests for information relating to social security and taxation.

3. Who can access your personal data?

In the course of our activities, we may transmit your personal data to service providers duly authorized by us for the following purposes:

• Our third-party service providers who process data on our behalf in order to carry out some of our internal operations, such as e-mail distribution, IT services and marketing or event services;
• Our commercial partners for publications and events organized jointly by MyTower and themselves;
• See commercial communication (newsletter, invitation mail, information mail...).

These third parties, who act on behalf of our organization, are subcontractors within the meaning of the regulations. In particular, MyTower uses Salesforce to manage its customer relations (CRM). Salesforce privacy policy: https: //www.salesforce.com/fr/company/privacy/full_privacy/ | Contact: privacy@salesforce.com.

We contractually ensure that they act only under our instructions and implement appropriate technical and organizational measures, so that the personal data processing they carry out meets the requirements of the GDPR, guarantees the protection of your rights and that they will not use your data for purposes other than those for which you have tenants.

The conditions relating to the processing of personal data carried out by these service providers and the rights you have in this respect are, unless expressly stated otherwise, the same as those described in this Policy.

We will not sell, share, rent or otherwise make available any of your personal data to third parties, except to those who provide services on our behalf and who require access to information in connection with such services. Such third parties will only process such information within the scope and limits allocated to MyTower itself for the processing of such data. In addition, MyTower may disclose your contact information in response to requests from bona fide holders of intellectual property rights in the event of allegations of infringement or violation of any intellectual property right arising from information you have posted on the Site or otherwise provided to MyTower.

Furthermore, in accordance with current legislation, your personal data may be communicated to any administrative or judicial authority authorized by law who may request it.

4. How long will your personal data be stored?

We ensure that your personal data is not retained beyond the period strictly necessary for the purposes set out in the policy, in accordance with applicable laws and regulations. In this respect, personal data used to respond to your requests for information and contact are stored in accordance with our legal obligations.

Data relating to prospects used for commercial canvassing purposes may be kept for a period of three years from the date of collection or last contact with the prospect.

The data of contacts who remain inactive - following our collection - is deleted after a period of 3 years.

In the event of legal or administrative proceedings, your data will be kept for as long as is necessary to resolve them.

5. Transfer of personal data outside the European Union

Personal data may be transferred to service providers in a third country whose regulations are not sufficient to provide adequate data protection measures. With these service providers, we ensure that appropriate safeguards are implemented to guarantee an equivalent level of protection, in particular by signing standard contractual clauses.  

6. How do we protect your personal data?

We ensure that your data is processed in such a way as to guarantee an appropriate level of security by implementing technical and organizational measures.

Our organization is committed to a "Privacy by Design" approach to the processing of personal data. We take into account the protection of data through technical and organizational measures adapted to the processing in question.

These measures include :
- encryption of personal data in transit and at rest;
- management of access through strong authentication (SSO and MFA);
- logging of actions on information systems;
- regular backup and tested restoration of data;
- continuous monitoring of systems by intrusion detection tools (IDS);
- regular staff awareness-raising on security and data protection;
- limiting access on a need-to-know basis;
- periodic review of authorizations and application of security updates.

7. What are your rights regarding your personal data?

You have the right to rectify, modify or delete your personal data:

• Right of access,
• Right of rectification,
• Right to object (except for processing based on contract, legal obligation or vital interests),
• Right to erasure (except for processing based on a legal obligation or public interest),
• Right to portability (except for processing based on legitimate interest, legal obligation, public interest or vital interests),
• Right to restrict processing,
• The right to set up instructions for the storage, deletion and communication of personal data after your death,
• The right to lodge a complaint with a supervisory authority (in France, the CNIL) in the event that we fail to respond adequately to requests.

These rights may be exercised at any time, subject to certain conditions. We will do our utmost to comply with your request as soon as possible and within one month at the latest, unless otherwise provided by law.

8. How to exercise your rights

You can exercise your rights by sending an email to dpo@mytower.co

or by post to :
MyTower - Service DPO, 183 rue de la Pompe, 75016 Paris.

In order to ensure prompt and correct processing of your requests to exercise your rights, the following information is required: surname, first name, e-mail address, postal address, telephone number. In certain cases (right of access, right to portability and rights for heirs), in particular to protect yourself against identity theft, you will need to enclose a copy of a proof of identity and provide any useful document in support of your request.

9. Updates to the Privacy Policy

Our personal data protection policy may be modified and updated at any time. In the event of a modification or update, the revised policy will be posted on the website, along with the last update date.