Privacy Policy

Updated on 2025-04-14

1. Preamble and Definitions

Terms beginning with a capital letter in this policy have the meaning assigned to them by the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

Eleo” (“we”, “us”, or “our”) is a solution developed by the NOOUS group, a simplified joint-stock company with a capital of 1,044,000 euros, headquartered at 93, Rue du lac 31670 Labège, registered with the Toulouse Trade and Companies Register under number 424 983 724.

Website ” refers to the website subject to this policy and accessible via an internet browser. Any links to other sites and applications are not subject to this policy.

The user acknowledges being fully informed of the characteristics and limitations of the Internet network, particularly concerning security, reliability, data transmission integrity, content access, and the risks of contamination by potential viruses or malicious software. It is their responsibility to take all appropriate measures to protect their own data, computer systems, and software.

Consequently, Eleo cannot be held liable for any direct or indirect damage suffered by the user in connection with the use of the Website, particularly in the event of data loss, intrusion, viruses, or any other technical issue.

Eleo makes every effort to ensure permanent and continuous access to the Website. However, Eleo reserves the right to suspend, interrupt, or limit access to all or part of the Website, at any time and without prior notice, for reasons including technical issues, maintenance, security, or force majeure, without this interruption entitling the user to any compensation or liability claim.

2. Why this policy?

Pursuant to the General Data Protection Regulation (EU) 2016/679 and Law No. 78-17 of January 6, 1978, relating to data processing, files, and freedoms, as amended (“Data Protection Act”), Eleo, which manages the website www.eleo.io, attaches great importance to the protection and confidentiality of personal data.

In particular, our Privacy Policy aims to inform you, with full transparency, about how and why we process your personal data in the context of the services we provide to you.

We will explain, in particular, the reasons why we collect your personal data, what categories of data are used, with whom they are shared, and how long they are retained.

This document also contains information regarding your rights and the means available to you to exercise them.

This Policy may be updated at any time to reflect legislative, regulatory, or jurisprudential developments, as well as any changes made to the personal data processing implemented by Eleo. Users are invited to regularly consult this page to stay informed of the current version.

3. What is personal data?

Personal data is any information relating to an identified or identifiable natural person.

A natural person can be identified either directly (e.g., name and surname) or indirectly (e.g., by a phone number, postal address, or email).

The identification of a natural person can be achieved from a single piece of data (e.g., name) or from the cross-referencing of a set of data (e.g., a woman living at a certain address, born on a certain day, and a member of a certain association).

4. Who processes your personal data?

Eleo may collect and use your personal data through its Website.

In the course of its activities, Eleo naturally acts as the Data Controller. In this regard, Eleo determines the primary purpose of using personal data and decides on the means used to achieve this purpose.

In the context of providing its services, Eleo may use suppliers or service providers who will act as data processors.

5. Purposes of Processing

What are the objectives of collecting and using your personal data?

When you browse our website, we may collect your personal data, particularly through cookies or “trackers,” through forms, when you subscribe to a newsletter, submit information requests, download sample templates or client case studies, or when you apply for our online job offers.

6. Cookies and other “trackers”

When you browse our website and subject to your prior consent, cookies may be placed and stored on your device to:

  • Ensure the functioning of our Website;
  • Measure the performance of our Website and improve your experience;
  • Display personalized advertising based on your browsing;
  • Allow you to share content on social networks or platforms present on our Website.

7. Contact Form

Through the contact form, you may be asked to provide us with personal data to:

  • Receive information about our service offerings;
  • Receive our newsletter, which informs you about all news concerning our services;
  • Be notified of an upcoming event or webinar;
  • Contact and interact with Eleo employees for commercial purposes;
  • Download documents such as studies, practical guides, press kits, reports, or presentation materials;
  • Provide testimonials or submit customer reviews, as part of satisfaction surveys
  • Or reviews posted on partner sites;
  • Report violations of laws, regulations, and Eleo policies.

8. Applications for NOOUS offers

From the website https://noous.taleez.com/, you can view our offers and apply for them.

In this context, you may be asked to provide us with personal data to:

  • Receive, where applicable, newsletters and new offers matching your preferences proposed by Eleo;
  • Submit your online application and manage your personal space.

9. Legal Bases for Processing Your Personal Data

What authorizes us to collect your personal data when you browse our Websites?

In order to collect and use your personal data for the purposes described above and pursuant to Article 6 of the GDPR, Eleo relies on:

  • Your consent when you browse our Website, fill out a contact form, subscribe to the newsletter, or provide a testimonial;
  • The performance of pre-contractual measures taken at your request when you apply for our online offers;
  • Our legitimate interest in providing information about our service offerings, the events we organize, and the training we provide, as well as in building and maintaining our CV database when you apply for our online offers;
  • Our legal obligation to implement an ethical alert system, particularly pursuant to Law No. 2016-1691 of December 9, 2016, relating to transparency, the fight against corruption, and the modernization of economic life.

10. Categories of Personal Data

What information do we process when you browse our Website?

When you browse our Website, Eleo processes, in particular :

  • Personal data stored by cookies and other trackers;
  • Data relating to your identity (name, surname) ;
  • Contact data (professional email address, postal address, phone number) ;
  • Data relating to your professional activity (company/entity, position) ;
  • Data enabling the processing of your request (the type of request and details).

What information do we process when you apply on our Website?

When you apply for our online offers, Eleo processes, in particular:

  • Data relating to your academic and professional background and experience (CV, cover letter, training, institution, type of diploma, date of diploma acquisition) ;
  • Data available from your LinkedIn account;
  • Financial data (salary expectations) ;
  • Data relating to your preferences (availability date, interest in job opportunities in another region).

Each of these personal data items is strictly necessary for achieving the stated objectives.

No sensitive data under Article 9 of the GDPR is collected.

11. Categories of Data Recipients

Who accesses the data we collect when you browse our Website?

When you browse our Website, authorized individuals who may access the information include:

  • Authorized personnel from our Marketing, Communication, and Sales departments for sending communications (service offers, newsletters, events) ;
  • Authorized personnel from Eleo involved in the recruitment process (including the recruitment department, future manager) ;
  • Eleo employees whom you contact via online forms;
  • Our suppliers, partners, and service providers as needed.

12. Data Retention Periods

How long do we retain the data we collect when you browse our Websites?

  • Personal data stored by cookies and other trackers are retained for a period not exceeding what is necessary for the purposes for which they are processed, up to a maximum of 13 months. For more information, you can consult our cookie policy.
  • Regarding recruitment data, you can request the deletion of your data at any time. In all cases, personal data is retained for two years after the last contact with the candidate if the candidate has not requested the deletion of their data.
  • Personal data collected for sending communications (service offers, newsletters, events) are retained until you withdraw your consent or for three years from your last contact with Eleo. If you object to receiving our communications, we keep a record of your choice to respect it.

Eleo retains users’ personal data only for the period strictly necessary for the purposes for which it was collected, in accordance with applicable legal and regulatory requirements.

However, certain data may be retained for a longer period when required by law or when such retention is necessary for the establishment, exercise, or defense of legal rights.

At the end of the applicable retention periods, personal data is permanently and securely deleted, in accordance with Eleo’s internal policies and current information security standards.

It is expressly stated that once these deadlines have expired and the data has been deleted, its recovery is technically impossible. Eleo will therefore no longer be able to favorably respond to a request for communication or restitution concerning this data.

13. Data Transfers Outside the EEA

Is your personal data transferred outside the European Economic Area (EEA)?

Personal data processed by our website is exclusively hosted on servers located within the European Union.

In cases where certain service providers are located outside the EEA, we ensure that appropriate safeguards are in place in accordance with Article 46 of the GDPR.

14. Processing of Minors’ Data

Is minors’ data collected from our Website?

The services and offers provided by Eleo are not intended for minors under fifteen (15) years of age. Consequently, the Website is not intended for use by this age group, and no personal data should be collected from minors under fifteen (15) years of age without the prior and verifiable consent of their legal representatives.

If you are under fifteen (15) years of age, you are requested not to provide personal data on the Website. In the event that such data has been inadvertently transmitted, parents or legal guardians are asked to contact Eleo at the following address: dpo@noous.co, so that the said data may be deleted as soon as possible, in accordance with applicable regulations.

15. Security Measures

What measures do we implement to protect your personal data?

We implement all required technical and organizational measures to ensure the daily security of your personal data and, in particular, to combat any risk of destruction, loss, alteration, or disclosure.

16. Your Rights

What rights do you have to control the use of your personal data?

In accordance with current regulations, Eleo allows you to exercise your rights :

  • Right of access (Art. 15 of the GDPR)

You can ask us if we hold data concerning you and request us to communicate it to you to verify its content and accuracy, provided that this request does not contradict business secrecy, confidentiality, or the secrecy of correspondence.

  • Right to rectification (Art. 16 of the GDPR)

You can ask us to rectify inaccurate or incomplete information concerning you.

  • Right to erasure or “right to be forgotten” (Art. 17 of the GDPR)

You can request the erasure of your personal data.

  • Right to restriction of processing (Art. 18 of the GDPR)

You can ask us to temporarily restrict the use of some of your personal data.

  • Right to data portability (Art. 20 of the GDPR)

You have the option to retrieve some of your data in an open, interoperable format, allowing you to easily transmit it to a third party of your choice for reuse for other purposes.

  • Right to object (Art. 21 of the GDPR)

You can object at any time to Eleo using some of your data.

  • Right to withdraw consent (Art. 7 of the GDPR)

In cases where Eleo uses your personal data based on your consent, you can withdraw your consent at any time.

  • Right relating to “digital death” (Art. 85 of the French Data Protection Act)

You can set guidelines for the fate of your data in the event of death, either directly or through a trusted third party or legal successor.

  • Right to lodge a complaint with the CNIL (Art. 12 of the GDPR)

Should you notice any failure related to the processing of your personal data, we invite you to contact us at dpo@noous.co so that Eleo can process your request as quickly as possible. If we do not respond within one month, you may lodge a complaint with the National Commission for Information Technology and Civil Liberties (CNIL) via its dedicated form, by clicking here.

You can also contact the CNIL at any time at the following address: CNIL Complaints Department, 3 place de Fontenoy – TSA 80751, 75334 Paris Cedex 07 or by phone at 01.53.73.22.22.

17. Exercising Your Rights

How to exercise your rights?

You can exercise your rights and send us a complaint by email to dpo@noous.co.

For a request to be considered, it is imperative that it be made directly by you to dpo@noous.co. Any request not made in this manner cannot be processed.

This address will also be useful if you have any questions or comments regarding this privacy policy.

From the date of receipt of your request to exercise your right, Eleo has a one-month response period. This period may be extended by two months, given the complexity and number of requests received. In any event, we will inform you of this extension and the reasons for the delay within one month of receiving the request. When you make your request, proof of identity will be required to ensure the security and confidentiality of your data.

Eleo may reject your request to exercise your right in the cases provided for by the regulation (right not applicable, respect for third-party rights, compliance with a confidentiality obligation, etc.) or in the absence of proof of identity. In this case, we will inform you of the reason for our refusal.

Finally, Eleo reserves the right not to respond to requests that are manifestly abusive, particularly due to their number, repetitive, or systematic nature.

18. Amendments and Updates

This Privacy Policy may be amended at any time to reflect changes in Eleo ‘s personal data processing practices, or to comply with current legal and regulatory obligations.

In the event of an amendment, the update date in the header of this document will be revised. Users are responsible for regularly consulting this Policy to stay informed of the current version.

In any event, only the latest published version of the Privacy Policy is authoritative and enforceable against Eleo and the users of the Site.