Personal data

Integration of Brevo (Formerly Sendinblue) into our personal data processing

As part of our business, we collect and process your personal data. To manage our electronic communications, including sending newsletters and messages related to our services (transactional emails), and implementing our digital marketing campaigns, we use the services of Brevo (formerly Sendinblue).

Legal status and purposes of processing

In accordance with the provisions of the General Data Protection Regulation (GDPR), Brevo acts as a data processor within the meaning of Article 28 of the GDPR. This means that Brevo processes your personal data exclusively on our behalf and on our documented instructions, and not for its own purposes.

The categories of personal data we transmit to Brevo include your email address, country, first and last name, and company. This data is processed in strict compliance with the following purposes:

Management of mailing lists and contact segmentation.

Sending commercial communications (newsletters, promotional offers) for which you have previously and explicitly given your consent (Article 6, paragraph 1, point a) of the GDPR).

Sending transactional emails related to the performance of our services or a contract (e.g., order confirmations, password resets), the legal basis being contractual performance (Article 6, paragraph 1, point b) of the GDPR) or our legitimate interest (Article 6, paragraph 1, point f) of the GDPR) where relevant.

Analysis of the performance of our email campaigns (open rates, click-through rates) to optimize our communications.

Security measures and data location

Brevo, as a company established within the European Union (France), is directly subject to the requirements of the GDPR. Brevo is committed to implementing appropriate technical and organizational measures to ensure a level of security appropriate to the risk, in accordance with Article 32 of the GDPR. These measures are designed to protect your data against destruction, loss, alteration, unauthorized disclosure, or unauthorized access. The data processed by Brevo on our behalf is hosted within the European Union.

Your data protection rights

As a data subject, you retain all of your rights regarding your personal data, as provided for by the GDPR. You may exercise your right of access, rectification, erasure (right to be forgotten), restriction of processing, objection to processing (including profiling and direct marketing), and data portability.

For any request relating to your personal data processed via Brevo, we invite you to contact us directly at the following address: vincent.mandrelier@nexson-group.com (DPO). Each email sent via Brevo also includes a direct unsubscribe link allowing you to withdraw your consent to marketing communications at any time.

For more detailed information on Brevo’s data protection practices, we encourage you to review their privacy policy, available on their official website.