Data Protection

The MOUSSET GROUP is at your disposal for any comments or suggestions.

PROTECTION OF PERSONAL DATA

1 – PREAMBLE

1-1

The protection of individuals with regard to the processing of personal data is a fundamental right. To this end, the General Data Protection Regulations (GDPR) aim to contribute to the creation of an area of freedom, security and justice.

Having already committed itself to complying with the “Information Technology and Liberties” Law, the MOUSSET Group has taken the measure of its new responsibilities under the European regulation and is engaged in a compliance process. This commitment is a major concern of the Group, which has appointed a Data Protection Officer.

Whether with regard to its customers, suppliers or employees, the MOUSSET Group respects the general principles governing the implementation of data processing.

1-2

To this end, the Group’s Data Protection Officer, assisted by a Compliance Committee, ensures compliance with the legislation and proposes the necessary technical and organisational measures to strengthen the data protection policy.

The MOUSSET Group maintains the regulatory documentation (records of processing activities) and a system for collecting and organising supporting documents that it keeps at the disposal of the supervisory authorities.

2 – MANAGEMENT OF SIMPLE CONTACTS

2-1 – Purpose of the processing – Relevance of the data

Data management for subsequent contact: answer to various questions related to the activity, history, locations of the MOUSSET Group.

2-2 – Recipients

The data are processed by the relevant department for answering questions put to the MOUSSET Group, and are used by the Group’s business line managers. Under no circumstances are they transmitted to partners or third parties.

2-3 – Retention period

The time to ensure subsequent contact and, if necessary, the reclassification of the request.

2-4 – Security – Integrity – Availability

The MOUSSET Group implements a general security policy as well as technical and organisational measures to protect personal data and ensure their integrity and availability.

2-5 – Informing people / rights management

See chapters 1-6 and 1-7.

3 – RECRUITMENT MANAGEMENT

3-1 – Purpose of the processing – Relevance of the data

Manage requests related to applications, questions related to positions to be filled, our business lines, institutions, requirements.

The purpose of collecting data is to contact the issuer of the request.

3-2 – Recipients

The data are processed by the MOUSSET Group “Recruitment” department, and are used by the Group’s business line managers. Under no circumstances are they transmitted to partners or third parties.

Note: for the management of its advertisements and applications, the MOUSSET Group uses the TALEEZ application:

www.taleez.com

Boxmyjob – 425 rue Jean Rostand 31670 Labège – France

support@taleez.com

05 31 60 03 05

3-3 – Retention period

Limit of 2 years from last contact.

3-4 – Security – Integrity – Availability

The MOUSSET Group implements a general security policy as well as technical and organisational measures to protect personal data and ensure their integrity and availability.

3-5 – Informing people / rights management

See chapters 1-6 and 1-7.

4– MANAGEMENT OF COMMERCIAL RELATIONS

4-1 – Purpose of the processing – Relevance of the data

Manage requests related to transportation services – Respond to requests for quotes.

4-2 – Recipients

The data are processed by the MOUSSET Group “Sales” department, and are used by the Group’s business line managers. Under no circumstances are they transmitted to partners or third parties.

4-3 – Retention period

The time to ensure management of the requests and, if necessary, the reclassification of the request.

4-4 – Security – Integrity – Availability

The MOUSSET Group implements a general security policy as well as technical and organisational measures to protect personal data and ensure their integrity and availability.

4-5 – Informing people / rights management

See chapters 1-6 and 1-7.