- Users' personal data
- Subcontracting agreement
Terms and conditions
GENERAL CONDITIONS FOR USE OF THE ARCHIREPORT PLATFORM
1 – OBJECT
The ArchiReport platform (hereinafter the ‘Platform’) allows architects and contractors (hereinafter the ‘Users’) to monitor works in progress.
It can be accessed via a mobile app (hereinafter the ‘Mobile App’) or a web app (hereinafter the ‘Web App’). A presentation of the app can be viewed online at https://www.archireport.com (hereinafter the ‘Site’).
The purpose of these general conditions is to establish the terms and conditions for use of the services offered by the Platform (hereinafter the ‘Services’), and to set forth the rights and responsibilities of the various parties involved.
These general conditions can be accessed at any time using the direct link at the bottom of the Site’s web page, via the options tab in the Mobile App and at the bottom of the Web App menu.
The general conditions may be complemented where applicable by conditions for use relating to specific services; any such specific conditions shall prevail over these general conditions in the event of contradictions.
2 – PLATFORM OPERATOR, CONTACT DETAILS
The Platform is operated by the company Archireport (hereinafter ‘Archireport’), a simplified joint stock company registered at the Rennes Commercial Registry Office under number 531 980 605. The company’s head office is located at Le Gacel – 35410 CHATEAUGIRON.
Archireport’s contact details (also applicable for complaints) are as follows:
Postal address: Le Gacel – 35410 CHATEAUGIRON
Telephone: +33 2 90 38 04 48
E-mail address: email@example.com
3 – ACCESS TO THE PLATFORM AND SERVICES
3.1. LEGAL CAPACITY
The Platform may be accessed by:
- Any natural person who has full legal capacity to commit to these general conditions.
- Any legal person acting through a natural person who has the legal capacity to enter into agreements in the name and on behalf of the legal person.
3.2. PLATFORM RESERVED FOR PROFESSIONALS
The Platform is intended for professional use only. Professionals are understood to be any natural or legal person carrying on a regular remunerated activity, specifically in all the construction sectors, including architects, site managers and contractors.
3.3. DOWNLOADING THE APP
The Mobile App is downloadable and can be used on mobile tablets with IOS operating systems. The Web App can be used online on MacOS and Windows operating systems using the main web browsers in their most recent update : Chrome, Firefox, Safari, Internet Explorer.
The Mobile App can be downloaded from the appropriate digital media store.
Downloading is subject to the specific conditions of use applicable to the digital media store in question.
4. ACCEPTANCE OF THE GENERAL CONDITIONS
You are deemed to have accepted these general conditions when you validate your registration on the Mobile or Web App’s registration page. You must accept the conditions fully and in their entirety. Conditional acceptance is considered null and void. If you do not agree to be bound by these general conditions you should not access the Platform or use the Services.
5. REGISTERING ON THE PLATFORM
5.1. To use the Platform, you must either:
- Fill in the registration form; or
- Be registered on one of the third party sites mentioned on the Platform, such as Facebook Connect and Google Connect, and use your login details for said third party site to register on the Platform. In such cases, you must provide Archireport with any additional information that it may require. You expressly authorise Archireport to access your account details on the third party site in question.
In all cases, you must provide Archireport with all the information indicated as being mandatory. Incomplete registrations will not be validated.
When you register, an account (hereinafter the ‘Account’) will automatically be opened in your name, giving you access to a personal space (hereinafter the ‘Personal Space’). This will let you manage your use of the Services in the manner and using the technical means that Archireport deems to be the most appropriate for the purpose of rendering said Services.
You warrant that all the information you provide on the registration form is accurate, up-to-date and true, and that it is not in any way misleading.
You undertake to update said information in your Personal Space in the event of any changes, so that it always complies with the above criteria.
You are informed and agree that the information provided to register or update your account shall be deemed as proof of your identity. You shall be bound by the information you provide as soon as said information is validated.
If you wish to do so, you may synchronise your contacts list with the Platform when you register.
5.2. You may access your Personal Space whenever you wish by using your user name and password.
You undertake to use the Platform personally and not to allow any third party to use it in your place or on your behalf, unless you agree to take full responsibility for such use.
You are similarly responsible for safeguarding the confidentiality of your user name and password. You must inform Archireport immediately using the contact details provided in Section 2 if you detect any improper use of your Account. You grant Archireport the right to take all appropriate measures in the event of such an occurrence.
6 – DESCRIPTION OF THE SERVICES
You will have access to the following Services, in the manner and in accordance with the functionalities and technical means deemed appropriate by Archireport.
6.1. CREATION OF PROJECTS BY WORKSITE
The Platform lets you create an unlimited number of projects (hereinafter the ‘Project’), facilitating worksite monitoring.
When a Project is created, the following details can be included:
- The name of the Project;
- The name of client associated with the Project;
- The start date of the works;
- And the contractors working on the worksite, who are understood to be all the relevant construction industry personnel (hereinafter the ‘Contractors’).
The Platform also lets you include a description of the Project (hereinafter the ‘Description’), including, but not limited to, the following:
- A breakdown by lot and/or sub-lot, understood as types of activity;
- Photos, plans and drawings;
- Any kind of document related to the Project.
6.2. FOLLOW-UP ON WORKSITE MEETINGS THROUGH THE CREATION OF SUB-FOLDERS DOCUMENTING WORKSITE VISITS
When you create a Project, you can also create sub-folders relating to worksite visits (hereinafter the ‘Visit’).
The details you need to write up the progress report (hereinafter the ‘Report’) can be recorded directly on the Platform during the Visit. Such details may include, but are not limited to:
- The current phase of the Project and its progress;
- The date of the Visit;
- The management of Contractor attendances and absences.
- Any remarks made during the Visit, intended for the attention of the Contractors and relating to tasks to be carried out, any failings or defects detected, etc. (hereinafter the ‘Remarks’).
The Remarks may be formalised using the various tools provided on the Platform (drawings on all kinds of documents, image shooting, written comments, etc.) and can be addressed to a particular Contractor or simply included in the Project Description.
6.3. CREATION OF A PDF REPORT AFTER EACH VISIT
Using the information that you insert during the Visit, the Platform can automatically generate a Visit Report and manage the notifications to be sent to the Contractors convening subsequent Visits.
You can then send the Report to all of the Contractors whose contact details were inserted when the Project was created.
6.4. MONITORING THE PROGRESS OF THE PROJECT
During each Visit, you can consult the Remarks made on previous visits and confirm whether or not the issues have been addressed.
If they have not yet been addressed, they can be mentioned in the Report for the new Visit.
6.5. DATA STORAGE AND SHARING
The Platform lets you store your data on a secure server and also synchronises it.
Synchronisation is automatic but you can also instigate it yourself when using the Platform.
Thanks to this synchronisation, you can access all the data you input on the Platform regardless of the means used to access the Platform.
6.6. OTHER SERVICES
Archireport reserves the right to offer any other Service that it deems useful, in the manner and in accordance with the functionalities and technical means that it deems most suitable for the purpose of rendering said Services.
7 – DURATION OF THE SERVICES – UNSUBSCRIBING
The Services are provided in the form of a monthly subscription (hereinafter the ‘Subscription‘). The subscription can be either a monthly calendar subscription or a yearly calendar subscription.
The Subscription begins on the day that you take it out and lasts for one calendar month or one calendar year. It will be tacitly renewed on a monthly or yearly calendar basis unless it is cancelled by Archireport or by you no later than 24 (twenty-four) hours prior to the expiry date of the current month’s subscription or year’s subscription.
Informations about the monthly subscription with automatic renewal purchased on the Apple platform via the user iTunes account:
– The subscription concern the access to the Archireport services as the reports sending service and the datas storage on Archireport Cloud
– If the user choose to subscribe at a later stage, the amount of the subscription will charged directly after the subscription confirmation
– The subscription is automatically renewed each month unless this option is deactivated outside the 24 hours before the end of the current period
– The iTunes User account will be charged for renewal in the 24 hours before the end of the current subscription period, for an equal amount of the renewed subscription
– The subscription can be managed and the auto-renewal cancelled by the User in his App Store account preferences
– Every started month is owed.
– Any unused portion of a free trial period, if offered, will be forfeited when the User purchases a subscription to that publication, where applicable
– For every monthly subscription done on the Apple platform via the iTunes account, the subscription termination has to be done using his account preferences with his Apple Id
Regarding monthly or yearly subscriptions taken out on the ArchiReport Web App, you can cancel your monthly or yearly subscription through the Web App platform using your ArchiReport email and password in the « Manage subscription » menu.
In the event that Archireport cancels your subscription, you will be informed of the fact by e-mail.
Once a monthly subscription has begun, the cost is due in full.
8 – FINANCIAL CONDITIONS
The App can be downloaded from the Apple Store free of charge.
In order to use the Services, you must take out a monthly or yearly subscription as detailed in Article Seven of these conditions.
The cost of the subscription is advertised on the Site, on the App and on the Apple Store.
It does not apply until the month following the month during which you register. This means that the Services are provided free of charge for one month from the date of registering.
Unless stated otherwise, the cost of the subscription is shown in euros and includes all applicable French taxes.
Archireport reserves the right, at its discretion and subject to modalities that it alone deems appropriate, to make promotional offers or price reductions, particularly in the case of referrals of new Users.
8.2. PRICE REVIEWS
Subscription costs may be reviewed and changed by Archireport at any time and at its discretion.
Archireport will inform you of any such changes in writing (usually by e-mail) no later than one month before the new rates come into force.
Once the new rates have taken effect, they will apply to any subsequent renewals.
If you do not wish to continue your subscription at the new rates, you must cancel it using the methods described in Article Seven. Failure to cancel will be understood to mean that you have agreed to accept the new rates.
An invoice for the Services will be sent to you monthly or yearly using any appropriate means.
8.4. PAYMENT METHODS
You can pay for your subscription:
- Through your iTunes account; or
- By direct debit against your bank card.
In the latter case, payment is processed by Stripe which alone will store your bank details for this purpose. Archireport does not store any bank details. Stripe’s conditions available here : https://stripe.com/fr/privacy
The subscription fee will be charged on the date corresponding to the date on which you registered, starting from the month following registration.
You guarantee to Archireport that you have the necessary authorisations to use the payment method chosen. You undertake to ensure that the necessary measures are in place to allow the automatic monthly debit to be made successfully.
8.5. ARREARS AND ISSUES WITH PAYMENT
You are informed and expressly agree that any delay in payment in whole or in part of a sum on its due date shall automatically result in, without prejudice to the provisions of Article Twelve and with no prior notice required:
1. Any outstanding sums owed by you becoming immediately repayable;
2. Ongoing Services being immediately suspended until such time as all sums owed by you have been paid in full;
3. Archireport being entitled to receive interest on arrears to the value of three (3) times the current legal interest rate, calculated on the total amount owed by you, and a one-off recovery fee to the value of 40 (forty) euros.
8.6. REFERRAL PROGRAMME
The ArchiReport App launched its new referral programme on 16 September 2016.
The programme is aimed at all ArchiReport App members who want to refer new users. The programme gives you the opportunity to receive gift vouchers to the value of €20 when you refer new users who take out a one-year subscription to ArchiReport, limited to 3 referral or 60€. Users referred by you will benefit from a 20% discount on their annual subscription, only the first year.
Description of the referral programme:
Every ArchiReport member can refer one or more new users, who may or may not have an ArchiReport account. All you need to do is insert the new users’ e-mail addresses on the referral page of the ArchiReport App on iOS. This page can be reached by clicking on the ‘Refer a Friend’ button on the projects page in the App.
In order for the referral to take effect, your new user(s) must click on the link sent to them by e-mail, finalise their registration and take out a one-year subscription to ArchiReport. When your new user(s) take(s) out their annual subscription, they will benefit from a 20% discount on the cost of their first year’s annual subscription to ArchiReport.
Once your new user(s) have validated their annual subscription(s) and ArchiReport has received payment, you will be sent an electronic gift voucher to the value of €20. It takes 48 hours for your gift voucher(s) to be processed and sent to you. Electronic vouchers are sent by e-mail and are valid for twelve months from the date of receipt.
In order for referrals to be rewarded, the following conditions must be met:
Your new user(s) must validate your invitation(s), which will take them to the site https://web.archireport.com/subscribe. They must create an ArchiReport account, open the ‘Manage My Account’ menu and choose the option one-year subscription with 20% reduction. They must then pay on line by bank card.
Using your reward(s)
Once you have received your electronic gift voucher(s), you can use them against a list of items available at the following site: https://www.wedoogift.com/liste-enseignes.html. Vouchers are valid for twelve months from the date of receipt.
9 – YOUR RESPONSIBILITIES
Notwithstanding any other responsibilities provided for in these conditions, you undertake to fulfil the following responsibilities:
- When using the Services, you undertake to abide by the laws and regulations in force and not to infringe third party rights or public order.
- You acknowledge that you have taken note on the Platform of the characteristics and constraints, particularly those of a technical nature, that apply to the Services.
- You are solely responsible for the use you make of the Services.
In particular, you are informed and agree that the Platform is merely a tool and that you are solely responsible for any data, descriptions, reports and remarks that you insert on the Platform, for the people they are addressed to and, more generally, for the ways in which you make use of the Platform.
You are therefore solely responsible for content of any nature that you disseminate when using the Services (hereinafter ‘Content’). You guarantee to Archireport that you are fully entitled and authorised to disseminate such Content. You undertake to ensure that said Content shall be legal and not infringe public order, morals or third party rights, any legislation or regulations and, more generally, cannot in any way lead to Archireport being held civilly or criminally liable.
- You undertake to use the Services only for your personal use. You may not, therefore, assign, grant or transfer your rights and responsibilities under these conditions to any third party, in whole or in part, or in any manner whatsoever.
You are also responsible for safeguarding the confidentiality of your user name(s) and password(s).
- You undertake to provide Archireport with all the information it needs to properly perform the Services. More generally, you undertake to actively cooperate with Archireport with a view to the proper performance of the Services.
You are informed and agree that for the Services to be properly performed, certain information is required when creating Projects and particularly when inserting Contractors’ details.
- You are solely responsible for the security of the supports on which you install the App or from which you access the Site. You are advised to protect said supports with a password or any other appropriate security measure. You are similarly advised to make use of any existing tools and/or apps that allow you to remotely delete data stored on a mobile phone or tablet.
- You are informed and agree that an internet connection is needed for the provision of certain Services and particularly the Services referred to in Article 6.5. Archireport shall not be held liable for any data lost due to lack of synchronisation.
10 – USER GUARANTEES
You undertake to release Archireport from any liability in respect of any claims, complaints, legal action and/or demands that may be made against it as a result of your breach of any of your responsibilities or guarantees under these general conditions.
You undertake to compensate Archireport for any loss or damage incurred and to pay any costs, charges and/or fines that it may become liable for as a result of such an occurrence.
11 – PROHIBITED BEHAVIOUR
- You are strictly prohibited from using the Services for the following purposes:
- Any activity that is illegal or fraudulent or which infringes third party rights or safety;
- Infringement of public order or violation of current legislation and regulations;
- Intrusion into a third party’s computer system or any other activity intended to harm, control, interfere with or intercept all or part of a third party’s computer system, and breach its integrity or security;
- Sending unsolicited and/or prospecting e-mails or any other commercial solicitation;
- Manipulation intended to improve the referencing of a third party site;
- Assisting or encouraging one or more of the acts and activities described above in any form or manner whatsoever;
- And, more generally, any act that leads to the Services being used for purposes other than those for which they were designed.
- You are strictly prohibited from copying and/or using the concept, technologies or any other aspect of the Archireport Platform for improper use by yourself or third parties.
- The following are also strictly prohibited: (i) any act that could interrupt, suspend, slow down or prevent the continuity of the Services, (ii) any intrusion or attempted intrusion into the Archireport systems, (iii) any improper use of the Platform’s system resources, (iv) any act that could overload the system infrastructure, (v) any infringement of security and authentication measures, (vi) any act that could be harmful to the financial, commercial or moral interests of Archireport or Users of its Platform, and lastly and more generally (vii) any breach of these general conditions.
- You are strictly prohibited from exchanging, selling or transferring all or part of your access to the Services or to the Platform, as well as to the information contained and/or shared therein.
12 – PENALTIES FOR DEFAULT
In the event that you default on any of the provisions of these general conditions or more generally infringe current legislation and regulations, Archireport reserves the right to take any appropriate measures and particularly to:
- Suspend your access to the Services if you are found to have committed or taken part in any default or infringement;
- Inform any relevant authority;
- Take any legal action.
In the event that you default on any of your responsibilities under these general conditions, Archireport similarly reserves the right to withdraw your access to the Services:
- Fifteen (15) days after your receipt of an unheeded formal notice sent to you by registered letter with proof of receipt, informing you of our intention to apply the provisions of this clause;
- or, in the event of repeated default previously signalled by registered letter with proof of receipt, withdrawal of access shall take effect automatically on the date of sending of the registered letter with proof of receipt informing you of the repeated default;
…without prejudice to any damages or interest that may be claimed from you.
Withdrawal of access to the Services automatically results in the closure of your Account, without prejudice to any other eventual consequences that may arise from the application of these general conditions.
13 – ARCHIREPORT’S LIABILITY AND WARRANTY
- Archireport undertakes to provide the Services diligently and in accordance with good professional practice but you must be aware and expressly agree that its responsibilities apply only to the means and never to any end result.
- Archireport has no knowledge of the Content that you insert on the Platform; it is responsible only as a provider of hosting services and shall not be held liable for said Content.
- Archireport undertakes to implement appropriate measures to safeguard the security and confidentiality of the Content that you insert in your Account.
However, Archireport shall not be held liable for the eventual loss of data inserted by you on the Platform if you have not implemented the synchronisation referred to in Article 6.5 of these conditions.
- Archireport undertakes to make regular inspections in order to ensure the proper functioning of and accessibility to the Platform. To this end,
- Archireport reserves the option to momentarily interrupt access to the Platform for maintenance purposes. Similarly,
- Archireport declines liability in the event of access to the Platform becoming momentarily difficult or impossible as a result of circumstances that may be caused by reasons over which it has no control, force majeure or disruptions on the telecommunications networks.
- Archireport does not warrant that: (i) the Services, which are continually being developed with a view to enhancing their performance and progress, shall be totally free from errors, imperfections and defects; (ii) the Services will respond specifically to the needs and expectations of any given User, since said Services are standardised and in no way specifically adapted to any User’s particular personal constraints.
- In any event, Archireport shall not be held liable to any User for the payment of damages or interest of any type, whether direct, material, commercial, financial or moral, arising from Users’ use of the Service, where the sum in question exceeds that invoiced by Archireport as remuneration for the Services that have rendered it liable, at the time when the incident giving rise to the claim occurred. Moreover, Archireport shall only consider claims submitted by the affected Users via registered letter with proof of receipt no later than one month after the incident giving rise to the claim.
14 – INTELLECTUAL PROPERTY
The systems, software, structures, infrastructure, databases and contents of any type (texts, images, videos, music, logos, brands, databases, etc.) operated by Archireport on the Platform are protected by all applicable copyright, intellectual property rights and database producers’ rights. Any disassembly, decompilation, decryption, extraction, reuse, copies and more generally any acts of reproduction, representation, distribution and use of any of these elements, in whole or in part, without Archireport’s consent, are strictly prohibited and may lead to legal action being taken.
15 – PERSONAL DATA
Archireport operates a personal data protection policy, details of which can be found in the document entitled ‘Personal Data Protection Charter’, which you are specifically invited to read.
16 – COMMERCIAL REFERENCES
You expressly consent to Archireport quoting you and, where applicable, reproducing your brand or logo as commercial references, particularly during exhibitions or events, on its commercial documents and on the Site or App, in any form.
17 – CHANGES
Archireport reserves the right to change these general conditions at any time.
You will be informed of any such changes by any appropriate means no later than one month before they take effect.
The amended general conditions shall apply to any subscription renewed subsequent to their taking effect.
If you do not agree with the amended conditions, you must cancel your subscription as detailed in Article Seven.
If you use the Services subsequent to amended general conditions taking effect, you will be deemed to have accepted the changes in question.
18 – LANGUAGE
In the event of these general conditions being translated into one or more languages, and of any contradictions or disputes arising in respect of the meaning of a term or provision, the French version shall prevail over all others.
19 – APPLICABLE LAW AND JURISDICTION
These general conditions shall be governed by French Law.
In the event of disputes relating to the validity, interpretation and/or performance of the general conditions, the parties agree that they shall be settled exclusively by the courts of Paris, unless other legal requirements dictate otherwise.
20 – ENTRY INTO FORCE
These general conditions came into force on 1 May 2015.
Users’ personal data
PERSONAL DATA PROTECTION CHARTER
1 – Purpose of the Charter
The purpose of this charter (hereinafter the “Charter”) is to inform you about how Archireport collects your personal data, in strict compliance with your rights.
Archireport declares that it collects and processes personal data concerning you, in accordance with the French Data Protection Act (Law No. 78-17) of 6 January 1978 and the General Regulation on the Protection of Personal Data (hereinafter the “GDPR”) which came into force on 25 May 2018.
2 – Identity of the data controller
The company responsible for collecting your personal data is Archireport (hereinafter “We/Us”), a simplified joint stock company registered with the Rennes Commercial Registry Office under number 531 980 605. Our head office is at 213 rue du Gacel – 35 410 Saint Aubin du Pavail. Archireport has declared a personal data protection officer (DPO) to the CNIL; this is Simon Bos, who can be contacted by email at firstname.lastname@example.org. Declaration No. DPO-1680.
3 – Definition and nature of the personal data processed
When you use the website https://www.archireport.com (hereinafter the “Site”), and/or the corresponding mobile application (hereinafter the “Application”), Archireport may ask you to provide certain personal data.
The term “personal data” as defined in Article 4 of the GDPR means “any information relating to an identified or identifiable natural person (‘data subject’). An ‘identifiable natural person’ is one who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier, or to one or more factors specific to his or her physical, physiological, genetic, mental, economic, cultural or social identity.”
4 – Information collected
4.1 Information you give to Archireport
When using the Site and the Application, you provide Archireport with some of your personal data. All these personal data are automatically processed.
The data entered are the following:
- First and last name
- Your company’s contact details
- Postal address and email address
- Telephone number
- Data about your transactions on the Site and/or the Application
- All the data concerning the projects you work on in the Archireport application (project name, location, identity of the people and companies involved in the project).
4.2 Information automatically collected by Archireport
When you log on to our Site or Application, Archireport may collect and process some of your personal data, including:
- Login data
- Browsing data
- Content and URLs visited
- Dates and times of when you connect to the Site or Application
- Type and manufacturer of the device used and the operating system
- Aggregate data about browsing, location, crashes, and error reports
5 – What happens to the personal data collected or processed by Archireport
Your personal data is collected for the following purposes:
(i) To manage your access to and use of certain services that are accessed from the Site and/or the Application.
(ii) To conduct customer management operations concerning contracts, orders, deliveries, invoices, loyalty programmes, and customer service monitoring.
(iii) To make up a file of registered members, users, and current and prospective customers.
(iv) To send newsletters, requests and promotional messages. You will be given the chance to opt out of these when your data is collected.
(v) To produce statistics on sales and how often our services are used.
(vi) To manage user reviews of our products, services or content.
(vii) To manage unpaid invoices and any disputes concerning the use of our products and services.
(viii) To fulfil our legal and regulatory obligations.
We guarantee that your personal data will not be processed for any purposes other than those listed above.
When we collect your personal data, we will tell you whether the data requested is required or optional. We will also explain what might happen if you do not provide the data.
6 – Who has access to the personal data collected
Archireport, its duly authorised staff, supervisory bodies (auditors in particular), and trusted subcontractors (hosting companies, providers of analytical solutions, payment services) may have access to your personal data. Those who have access to your personal data are informed about data protection and undertake to process your data strictly for the purposes determined. Your personal data may also be sent to public organisations, for the sole purpose of fulfilling our legal obligations, to court officers, ministry workers, or debt collection organisations.
7 – Transferring personal data
If Archireport were to be partially or fully taken over by a third party, your personal data may be transferred to the new owner. If this should happen, you will be informed of the operation and you will be able to exercise your right to have the data provided deleted.
8 – Your personal data rights
In accordance with legal and regulatory provisions, you have:
- A right of access to and information about your personal data. Upon request, you can receive a copy of the personal information we hold about you and check that we are processing this data lawfully.
- A right to the rectification of your personal data.
- A right to have your personal data deleted. You also have the right to ask us to delete or withdraw your personal information if you have exercised your right to object to the processing of your personal data (see below).
- A right to object to the processing of your personal data. You have the right to object at any time, for reasons relating to your particular situation, to the processing of your personal data for direct marketing purposes or to processing carried out on the basis of Archireport’s legitimate interests.
- A right to request the restriction and withdrawal of the processing of your personal information. This allows you to ask Archireport to suspend the processing of your personal information, for example, if you wish to establish the accuracy of or reason for processing the data. If you consented to the collection, processing and transfer of your personal information for a particular purpose, you have the right to withdraw your consent for that data processing at any time. Once we receive notification of your withdrawal of consent, we will no longer process your information for the purpose(s) for which you gave consent, unless we have a legitimate reason to do so.
- A right to the portability of your personal data to you or to another data controller in a structured, electronic format.
You can exercise these rights by simply informing us by email at:
email@example.com or by post: Archireport, 213 rue du Gacel, 35410 CHATEAUGIRON, France.
Before responding to a request, we may ask you for additional information and proof of your identity.
Archireport will make every effort to respond to your request as quickly as possible and will certainly do so within the legal time limit.
As a user of the Site and/or the Application, you can modify and/or delete all of your personal information directly or by sending an email request to firstname.lastname@example.org.
In accordance with the provisions of Article 13 of the GDPR, you have the right to lodge a complaint with the competent supervisory authority if you consider that Archireport is unlawfully processing your personal data.
9 – How long we keep your personal data for
(i) Regarding data used for current and prospective customer management:
Your personal data will be kept only for the period of time strictly necessary to manage our business relationship with you. However, data that may be used as proof of a right or a contract, and which are required by law to be retained for a certain period of time, will be kept for the relevant period as stipulated by the applicable law.
(ii) Regarding potential client prospecting operations:
Data about the client may be kept for a period of three (3) years from the date on which our business relationship ends. Personal data relating to a prospective but not actual client may be kept for a period of three (3) years starting from the date of collection or the last date of contact with the prospective client. We may contact you again before this three-year period runs out to find out if you wish to continue receiving our offers.
(iii) Regarding proof of identity:
If you exercise your right to access or amend your data, the data concerning your proof of identity may be kept for the period of time provided for under Article 9 of the French Criminal Procedure Code, i.e. one (1) year. If you exercise your right to object, these data may be kept for the period of time provided for under Article 8 of the French Criminal Procedure Code, i.e. six (6) years.
(iv) Regarding bank card data:
Financial transactions relating to the payment of the subscription that allows you to use the Site and/or the Application, are entrusted to a payment services provider who is responsible for the smooth functioning of the process and for security.
To carry out these services, the service provider may be given personal data relating to your bank card numbers, which they will collect and store in our name and on our behalf. Archireport does not have access to these data. Data relating to your bank cards will be retained for the duration of your subscription period on the Site and/or the Application. By ticking the box provided specifically for this purpose on the Site and/or the Application, you expressly consent to the retention of these data. Data relating to bank cards may be kept in intermediate archives to be used as proof in the event of any dispute over transactions, for the length of time provided for under Article L 133-24 of the French Monetary and Financial Code, which is 13 months from the date of debit. This period may be extended to 15 months to allow for the possibility of cards being used for deferred payments.
(v) Regarding the management of lists of people who have objected to prospecting campaigns:
Data allowing your right to object to be taken into account are kept for at least three (3) years from the date on which you exercised your right to object.
(vi) Regarding audience measurement statistics:
Data stored in users’ terminals or any other element that may be used to identify users and monitor traceability and frequency of use will kept for no longer than six (6) months.
10 – Security
We take all due precautions and organisational measures, and use appropriate technology to safeguard the security, integrity and confidentiality of your personal data and, particularly, to prevent them from becoming distorted or damaged, or being accessed by unauthorised third parties.
11 – Where we store the personal data collected
When you use Archireport, the personal data collected is stored, depending on your place of residence and/or choice:
- Within the European Union, for the personal data of European residents.
- On the American continent, for the personal data of residents of the American continent.
- In Australia, for the personal data of residents of that continent.
In all cases, Archireport undertakes to ensure that the measures taken by its subcontractor(s) comply with the European regulations concerning the processing of personal data.
The annex concerning the data protection of the subcontractor chosen by Archireport is available by clicking on the following link: https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf
12 – Cookies
Cookies are text files, often encrypted, that are stored in your browser. They are created when you visit a particular website; the site sends information to your browser, which then creates a text file. Each time you revisit the same site, the browser recovers the file and sends it to the site’s server.
There are two types of cookies: technical cookies and advertising cookies, and they serve different purposes.
Technical cookies are used throughout your visit to the site to facilitate and perform certain functions. For example, a technical cookie may be used to save your answers when filling in a form, or your language or page layout preferences, when such options are available.
Advertising cookies can be created not only by the site you actually visit but also by other sites which use that same site to publish advertisements, information, widgets or other elements. These cookies can be used for targeted advertising, meaning specific advertisements will be shown depending on the websites that you visit.
Archireport only uses technical cookies. They are stored in your browser for six (6) months.
We do not use advertising cookies. However, if we were to use advertising cookies at some time in the future, we would inform you in advance, allowing you to deactivate them if you so wish.
13 – Analytics tools, metrics, support
We use analytics tools on our Site and our Application:
- Sentry and Firebase are used for analysis and crash reporting.
- Crisp is used for user support.
- coreBOS is used as a customer relationship management tool.
14 – Subcontracting personal data processing
In order to comply with the provisions of Article 28 of the GDPR, which requires a contract to be drawn up if personal data is processed by a subcontractor on behalf of a data controller, we have added an annex to our Personal Data Protection Charter: SUBCONTRACTING AGREEMENT FOR PROCESSING PERSONAL DATA, which is applicable from 25 May 2018, the date on which the GDPR came into effect.
In compliance with the GDPR, this document details the conditions under which Archireport, in its capacity as a subcontractor, undertakes to process any personal data you host or store as part of the services used. We invite you to read the annex containing the SUBCONTRACTING AGREEMENT FOR PROCESSING PERSONAL DATA, and to agree to it directly from your Archireport account.
15 – Amendments
Archireport reserves the right, at its sole discretion, to amend some or all of this Charter, at any time. Amendments will be effective once the new version of the Charter is published. Use of the Site and/or the Application once these amendments have come into effect constitutes your recognition and acceptance of the new Charter. If you do not agree with the new Charter, you should no longer access the Site and/or the Application.
16 – Date of effect
This Charter came into effect on 1 October 2021.
SUBCONTRACTING AGREEMENT FOR PROCESSING PERSONAL DATA
BETWEEN THE UNDERSIGNED:
Simplified joint stock company with a capital of €49,210
Whose head office is located at Le Gacel – 35 410 Saint Aubin du Pavail, France Registered with the Rennes Commercial Registry Office (RCS) under number 531 980 605
Hereinafter referred to as “Archireport”
The User of the Archireport program
Hereinafter referred to as the “Client”
The undersigned are hereinafter referred to individually as the “Party” or collectively as the “Parties”.
1 – Purpose
This agreement (hereinafter the “Agreement”) sets out the terms and conditions under which Archireport undertakes to carry out the personal data processing operations defined below, on behalf of and in accordance with the instructions of the Client.
The Parties undertake to comply with the regulations applicable to the processing of personal data and in particular the French Data Protection Act of 6 January 1978 and the European Data Protection Regulation (hereinafter referred to as the “GDPR”).
2 – Description of the processing
The Client, as the data controller, authorises Archireport to process on its behalf the personal data required to provide the following service(s): keep track of construction site works using the Archireport application and, more generally, any use of the Application or the Site.
The personal data processed are the following:
- Client project information (name, address), client and service provider contact information (first name, last name, email, phone number and address).
The operations performed on personal data are:
- Storage/inclusion in a database, analysis, anonymisation.
The purpose of processing this personal data is to:
- Enable the progression of construction site monitoring and the management of the project via the Application or the Site;
- Manage client data and projects;
Restore client projects;
- Manage access to and use of certain services available on the Site and/or the Application;
- Carry out operations relating to client management concerning contracts, orders, deliveries, invoices, loyalty programmes, and customer relationship management;
- Establish a file of registered members, users, and clients;
- Comply with our legal and regulatory obligations.
- The persons concerned by the processing of their personal data (the data subjects) are the following: clients and contractors of the Client’s projects.
3 – Duration of the subcontracting
The subcontracting undertaken up will take effect from the time the client account is set up on the Site or in the Application and will last for the entire duration of use of the Site and the Application.
4 – Archireport’s obligations
4.1. Obligations regarding the processing of personal data
Archireport undertakes to carry out the subcontracting services provided for in this Agreement, in accordance with the obligations set out below, and in particular:
- To process the data exclusively for the purposes mentioned in Article 2 of this Agreement;
- To process personal data in accordance with the documented instructions from the Client as provided in Article 8 of this Agreement. In addition, Archireport undertakes to inform the Client immediately if it considers that any of its instructions constitute a breach of the legislation relating to the protection of personal data and in particular of the GDPR. In the event that Archireport is required to transfer data to a third country or an international organisation, by virtue of the law of the European Union or the law of the Member State to which it is subject, it must inform the Client of this prior to any processing, unless the law concerned prohibits such information for reasons of public interest;
- To put in place all measures required to guarantee the confidentiality of the personal data processed. This obligation of confidentiality is extended to all persons authorised to process the personal data covered by this Agreement. To this end, the designation of persons authorised to process personal data must be strictly limited to the requirements linked to the execution of this Agreement and they must receive training on the protection of personal data;
- Take into account the principles of data protection by design and data protection by default for its tools, products, applications and/or services.
Archireport undertakes to put in place the following security measures:
(i) Organisational safety measures
- 2 administrators within Archireport are able to provide access to the platform by inputting the authorised IPs.
(ii) Technical security measures
- Pseudonymisation and encryption of personal data. We only have access to the hash of our clients’ passwords.
- Means to ensure the continued confidentiality, integrity, availability and resilience of processing systems and services.
- Confidentiality: access to our database administration interface is restricted to a list of IPs.
- Integrity: automatic backups of our databases are performed frequently and automatically.
- Availability: client data can be exported in json format upon request.
- Resilience: data can be restored within an hour.
- Means to restore the availability of and access to personal data in a timely manner in the event of a physical or technical incident.
- In the event of a minor incident, a backup of our server can be restored on the fly within 15 minutes. In the event of a more incapacitating event, a database backup exists at a different service provider to ensure the resilience of client data.
- A procedure to regularly test, analyse and evaluate the effectiveness of technical and organisational measures to ensure the security of processing.
- We organise an annual security audit by SEKOIA (a company in the process of obtaining PASSI certification, see the ANSSI website) which guarantees a high level of security for our users and their data.
Once the service relating to the processing of personal data has been completed, Archireport undertakes to:
- Delete all personal data processed on behalf of the Client within the time limits defined in the CHARTER GOVERNING THE PROTECTION OF USERS’ PERSONAL DATA
4.2. Obligations regarding data subjects’ rights
- Information to be given to the data subjects:
The persons whose personal data is processed must be informed at the time of collection. It is the Client’s responsibility as the data controller to provide all the information to be sent to the data subjects, in accordance with the provisions of Article 13 of the GDPR.
- Exercise of data subjects’ rights:
In accordance with the provisions of the GDPR, the Client is obliged to comply with requests to exercise the rights of the data subjects, namely the right of access, to rectification, erasure and to object, the right to restriction of processing, the right to data portability, the right not to be subject to an automated individual decision.
To ensure the exercise of these rights, Archireport is required to implement all possible measures to help the Client fulfil its obligations.
If a data subject submits a request to Archireport exercise their rights, Archireport must address the request to the Client upon receipt. This must be done by sending an e-mail to the following address email@example.com.
4.3. Obligations towards the Client
- Notification of personal data breaches
The GDPR requires that personal data breaches be notified to the competent authority as soon as possible and no later than 72 hours after becoming aware of them.
In order to comply with this obligation, Archireport will notify the Client of any personal data breach within a maximum of 72 hours after becoming aware of it. This notification will be accompanied by any useful documentation in order to determine the nature, extent and impact of the breach on the data subjects, and to enable the Client to notify the competent authority of the breach. The notification may be made by Archireport subject to the prior agreement of the Client.
The notification will contain, at the very least:
(i) A description of the nature of the personal data breach including, if possible, the categories and approximate number of individuals affected and the categories and approximate number of personal data records;
(ii) The name and contact details of the Data Protection Officer or other contact;
(iii) A description of the likely consequences of the personal data breach;
(iv) A description of the measures taken or that the Client wishes to take to remedy the personal data breach, including, if applicable, measures to mitigate any negative consequences.
The GDPR also requires that data subjects be informed of a data breach, if the breach is likely to result in a high risk to the rights and freedoms of an individual.
This notification must be written in clear and simple terms, and must contain all the information mentioned above. Archireport may give such notice with the consent of the Client and acting on behalf of the Client.
- Client support
If necessary, Archireport will help the Client to conduct an impact assessment and with the prior consultation of the supervisory authority.
Archireport will provide the Client with any documentation required to demonstrate compliance with its obligations and to enable audits and/or inspections to be carried out.
- Data Protection Officer
If Archireport appoints a Data Protection Officer, it will inform the Client of the DPO’s name and contact details.
5 – The Client’s obligations
The Client undertakes to:
- Provide Archireport with all the data referred to in Article 2 of this Agreement;
- Document in writing any instructions regarding the processing of personal data by Archireport;
- Ensure that Archireport complies with all GDPR requirements and to supervise the processing, including carrying out the necessary audits and inspections of Archireport.
6 – Subcontracting
Archireport may call upon a subcontractor (hereinafter referred to as the “Subsequent Subcontractor”) exclusively for the following processing: storage/integration in a database.
Any Subsequent Subcontractor will be bound by the obligations set out in this Agreement. The processing for which it is responsible will be carried out on behalf of and in accordance with the instructions of the Client.
Archireport guarantees that the specific Subcontractor implements the necessary technical and organisational measures to ensure the security of the personal data processed and compliance with the legislation on the protection of personal data.
7 – Records of processing activities
In accordance with the provisions of Article 30 of the GDPR, Archireport must keep records of the processing carried out on behalf of the Client, including in particular:
- The name and contact details of the Client on whose behalf it is acting, of any subcontractors and, if applicable, of the Data Protection Officer;
- The categories of processing carried out on behalf of the Client;
- Where applicable, transfers of personal data to a third country or to an international organisation, including the identification of that third country or international organisation and, in the case of transfers referred to in the second subparagraph of Article 49(1) of the GDPR, documents attesting to the existence of suitable safeguards;
- As far as possible, a general description of the technical and organisational security measures, including, as appropriate:
– Pseudonymisation and encryption of personal data;
– Means to ensure the continued confidentiality, integrity, availability and resilience of processing systems and services;
– Means to restore the availability of and access to personal data in a timely manner in the event of a physical or technical incident;
– A procedure to regularly test, analyse and evaluate the effectiveness of technical and organisational measures to ensure the security of processing.