Privacy Policy

The company OAKLEN CONSULTING (a simplified joint stock company) registered with the Paris Trade and Companies Register under number 439 455 890, whose intra-community VAT number is FR39439455890 and whose registered office is at 20, rue Euler - 75008 PARIS represented by Patrick WAJSBROT, President of the company OAKLEN CONSULTING (hereinafter Oaklen Consulting), publishes the website (hereinafter referred to as "the Site"), offers and carries out consulting and engineering services in the field of electronic money and payment methods, including professional training (hereinafter referred to as "Services").

It undertakes, as data controller, to ensure that the processing of personal data ("Personal Data" or "Data") carried out in the context of its activity complies with European Regulation No. 2016/679, known as the General Regulation on the Protection of Personal Data (the "GDPR"), as well as with the French Data Protection Act nᵒ 78-17 of 6 January 1978 relating to data processing, files and freedoms.In this privacy policy (the "Policy"), we explain how and why we use your data, what your rights are and how to exercise them.

What is Personal Data?
Personal Data is any information relating to an identified or identifiable natural person, either directly (e.g. name, surname, email address) or indirectly (e.g. IP address, geolocation).

To whom is this Privacy Policy addressed?
This Policy applies to anyone who visits the Site ("User") and/or purchases Oaklen Consulting Services ("Customer").

Who collects your Data?
The data controller under the European Data Protection Regulation is Oaklen Consulting and Oaklen Consulting may use subcontractors within the meaning of Article 28 of the GDPR.

How do we collect your Data?
The Personal Data that the User or Client agrees to provide to us is collected online, or by email or telephone and is subject to the provisions of this Policy.

Why do we collect your Data?
Some of your Personal Information is necessary for the processing and provision of our Services, namely accessing the Site and purchasing Services. Failure to provide this information may, in some cases, prevent the proper functioning of these Services. Please note that when you give your consent to the processing of your Personal Data, you have the right to withdraw this consent at any time via the dedicated address: For your information, you will find below a non-exhaustive list of categories of data collected corresponding to the purposes pursued by our collection.

To respond to your request made via our contact form:
  • Categories of Data collected: identity data (surname, first name), contact data (e-mail address), purpose of the request.
  • Category of data subjects: Users.
  • Legal basis: Legitimate interest in providing our Services to you.
To offer you a subscription to our newsletter:
You can subscribe to our newsletter by email.
  • Categories of Data collected: identity data (name, first name) and contact data (email address).
  • Category of data subjects: Users.
  • Legal basis: your consent obtained through your subscription to the newsletter.
You may, at any time, decide to unsubscribe from this newsletter by clicking on the link provided for this purpose in each newsletter.

When publishing content on our Site, in particular an opinion on the Services offered for sale or their description on the dedicated pages:

  • Categories of Data collected: name, first name, nickname, contact address, comment content.
  • Category of data subjects: Users.
  • Legal basis: your consent when you publish your content.
To carry out statistical operations on the number of visitors to the Site:
  • Categories of Data collected: browsing data (IP address, browser type).
  • Category of data subjects: Users.
  • Legal basis: Oaklen Consulting's legitimate interest in the operation of the Site and/or your consent when you accept the deposit of statistical cookies.
How long do we keep your Data?
We only keep your Data for as long as is necessary to carry out the purposes for which it was collected, except where the law provides for a different retention period:

  • To manage contractual relations, Personal Data is kept for a maximum of 5 years following the end of the contract.
  • In order to carry out statistical and traffic operations, personal data is kept for a maximum period of 13 months, after which it is destroyed.
  • In order to identify Clients and to develop its activity in the context of commercial prospecting, the data are kept for 2 years following the last contact; 
  • In order to recruit, adequate, relevant and strictly necessary data for the selection of the candidate for a given position and for the conduct of the job interview may be collected, and are kept for a period of 2 years after the last contact.
You acknowledge that the Data you provide to us and which is stored in our information systems is accurate and serves as proof of your identity.

With whom do we share your Data?
The Data collected is shared, according to their respective needs and in accordance with the purposes mentioned above, with

  • Oaklen Consulting staff ;
  • External services staff ;
  • The staff of the external hosting services of our Site;
  • Staff of the external maintenance services of the Site;
  • External services staff in the context of newsletter management;
  • Staff of external services in the context of commercial prospecting.
Is your Data sent outside the European Union?
We may share some of your Data outside the European Union with service providers located outside the European Union. However, each transfer is governed by a mechanism that provides protection equivalent to that guaranteed by European Union law. As the Site is accessible on the Internet, its content and therefore your publications, are likely to be accessible outside the European Union.

What security measures have we taken to protect you?
We are committed to implementing all the technical and organisational measures necessary to respect the protection of your Personal Data. In particular, we carry out audits of our service providers in order to ensure the proper implementation of security measures to guarantee the integrity, confidentiality and availability of your Data. Our contracts with our service providers include a section dedicated to the protection of Data, in compliance with the applicable laws.

What are your rights?
In accordance with the French Data Protection Act and the RGPD, and subject to compliance with the legal obligations imposed on Oaklen Consulting in the course of its business, you may exercise the following rights:

  • Requesting a copy of the User Account Content Data - Right of Access
  • Correcting inaccurate data about you - Right of rectification
  • Request the deletion of certain Data concerning you; however, this request is incompatible with the processing of an order - Right of deletion
  • To object to our processing of your Data; this request is incompatible with the processing of your order for services - Right to object
  • Decide at any time to withdraw your consent - Right of withdrawal
  • Limit the use of your Data while your request is being processed - Right to limit processing - Oppose profiling of your Data - Right to object to profiling
  • Exercise your right to portability.
When a Data breach likely to result in a high risk to your rights and freedoms is detected, you will be informed of this breach as soon as possible.

You may formulate directives relating to the conservation, deletion and communication of your Personal Data after your death, in accordance with Article 85 of the French Data Protection Act No. 78-17 of 6 January 1978.

How to exercise your rights?
These rights as well as these directives can be exercised and sent to us by writing to

To enable us to identify you quickly and respond to your request, please attach to your request any elements that will allow us to establish your identity (in particular your customer number or a request made directly via your account). A reply will then be sent to you within 1 month of receipt of the request. In some cases, due to the complexity of the request or the number of requests, this period may be extended by 2 months.

You may also contact the Commission Nationale de l'Informatique et des Libertés (CNIL), the regulatory authority responsible for ensuring compliance with regulations on the protection of personal data in France, by internet or by post at the following address Commission Nationale de l'Informatique et des Libertés, 3 Place de Fontenoy - TSA 80715, 75334 PARIS CEDEX.