Politique de protection des données personnelles MG Tech

MG Tech corporate website privacy policy

Last update: December,1st 2025

This Privacy Policy (hereinafter the "Privacy Policy" or "Policy") aims to inform visitors and users (hereinafter "You") of the website www.mgtech-group.com (hereinafter collectively the "Website" or the "Site") about the processing of your personal data (hereinafter "Personal Data" or "Data") by MG Tech SAS (hereinafter "MG Tech" or "We").

MG Tech attaches the utmost importance and care to the protection of your privacy and your Personal Data.

This Policy describes the processing of your Personal Data implemented by MG Tech (hereinafter the "Processing") as well as your rights regarding the protection of your Personal Data.

This Policy may be amended, particularly if new processing of Personal Data is implemented. You are encouraged to consult this page regularly to ensure that you agree with any changes. Any significant changes will be communicated through a dedicated notice.

  • 1. WHAT IS “PERSONAL DATA”?

    Personal Data refers to any information or set of information that allows you to be identified:

    • directly (e.g., your surname, first name, email address, home address, etc.)
    • or indirectly (e.g., through pseudonymized data such as a unique identification number, etc.).

    Unique identifiers can also be considered Personal Data, such as your computer's IP address.

     

    2. DATA CONTROLLER AND DATA PROTECTION OFFICER

    2.1. Who is the data controller?

    The data controller is the entity that determines the purposes and means of processing your Personal Data and is responsible to you for compliance with applicable regulations and legislation regarding the protection of personal data (the “Data Controller”).

    Regarding the management of the Website and institutional communications, the management of your Data for recruitment purposes for job offers, for commercial purposes for quote requests and after-sales service, concerning the activities of MG Tech, the Data Controller is:

    MG Tech SAS
    3 Impasse de l’Océan
    La Chapelle Achard
    85150 Les Achards
    France

    RCS La Roche sur Yon
    SIRET 51002243700014

     

    2.2. Who is the Data Protection Officer?

    MG Tech has appointed a Data Protection Officer (hereinafter the “DPO”) who is your primary contact for any questions relating to the processing of your Personal Data.

    The DPO can be contacted:

  • 3. WHAT PROCESSES ARE IMPLEMENTED ON YOUR PERSONAL DATA?

     

    3.1. What Personal Data about you is processed by MG TECH?

    The list of Personal Data processed for each of the purposes described above is provided in the table attached in Appendix 1.

    Sensitive data, such as health or disability data, declared by an applicant, is collected and stored only if required by law, regulation, or court order, and is used and disclosed only to the extent necessary to fulfill these obligations.

     

    3.2. How is your Personal Data collected?

    We collect your Personal Data in the following ways:

    • directly from you when you use our Website and services: request for commercial information via the contact form, request for customer service information, subscription to our newsletter, submission of an application for a job (CV and cover letter);
    • automatically when you access or use the Website (technical data, IP address, browsing information, etc.).

     

    3.3. Are you required to provide your data?

    The data required by MG Tech to achieve the objectives described below is indicated by an asterisk on our forms. If you do not complete these mandatory fields, we will not be able to provide you with the requested services or process your request.

    Data not marked with an asterisk is optional: it allows us to improve the services we offer.

     

    3.4. What are the purposes and legal bases for processing your personal data?

    In accordance with applicable data protection regulations, we only collect personal data when we have a legal basis for doing so.

    The processing carried out is intended to enable:

    1. The management of your requests and other questions submitted via the contact form, based on MG Tech's legitimate interest;
    2. The management of your subscription to our newsletter, based on your consent;
    3. The management of your applications for MG Tech job offers, based on the performance of pre-contractual measures and the establishment of the contractual relationship between MG Tech and candidates for employment, apprenticeships, or internships;
    4. The management of the website's cybersecurity, in order to fulfill MG Tech's legitimate interest in ensuring the security of the website and its visitors;
    5. The prevention of fraudulent activity, in order to fulfill MG Tech's legitimate interest in ensuring the security of our assets and content;
    6. The management of MG Tech's defense of its interests in the event of a dispute or legal action.

     

    3.5. Who has access to your personal data?

     

    • Accessibility within MG Tech

    A detailed list of individuals with access to your Personal Data is provided in the table attached in Appendix 1.

    Generally, your Personal Data is accessible:

    • Within the MG Tech group:
      • Marketing & Communication Department for managing your sales inquiries and newsletter subscriptions;
      • Sales and Sales Administration Department for managing your sales inquiries;
      • Human Resources Department for managing your applications for job openings related to MG Tech's activities;
      • Customer Service Department for managing your after-sales service requests.
         
    • To third parties, including:
      • our subcontractors and service providers involved for technical and logistical reasons (website hosting, security, and maintenance providers; fraud management providers; technical providers responsible for sending emails and newsletters; anti-spam and anti-bot service providers; recruitment agencies that may advise us on managing our candidate databases and assist us in selecting profiles from these databases);
      • any authority, jurisdiction, or other third party when such disclosure is required by law, regulation, or court order, or if such disclosure is necessary to protect and defend our rights.

     

    3.6. How long is your Personal Data kept?

    Details of the retention periods for your Personal Data by MG Tech are provided in the table attached as Appendix 1.

    Your Data is retained for the entire duration necessary for the purpose for which it was collected and, in any event, will be destroyed at the end of this period.

     

    3.7. Transfers of Personal Data outside the European Economic Area

    Your Data is processed in France by MG Tech. However, we may use certain service providers located abroad or who themselves use subcontractors located abroad, including outside the European Economic Area (“EEA”) in countries whose data protection regulations differ from those applicable within the EEA.

    Any transfer of your personal data outside the European Economic Area (EEA) will be governed by appropriate technical and organizational measures, in accordance with applicable data protection legislation, in particular the General Data Protection Regulation (GDPR).

    When data, including application data, is likely to be transferred to entities located outside the EEA, MG Tech undertakes to implement appropriate safeguards, such as:

    • standard contractual clauses approved by the European Commission, or
    • Binding Corporate Rules (BCRs) where applicable.

    A copy of the applicable warranties can be provided upon request.

  • 4. WHAT ARE YOUR RIGHTS REGARDING YOUR PERSONAL DATA?

    4.1. Access, rectification, and portability

    In accordance with applicable regulations, you have the right to access your data. You also have the right to request the correction of any inaccurate personal data you hold about your data. Depending on the purpose of the processing, you also have the right to request that incomplete personal data be completed.

    To process your request, we may ask you to provide proof of identity. We may also ask you to provide additional information or supporting documents. We will strive to respond to your request as quickly as possible.

    Within the limits provided by law, you may exercise your right to data portability, allowing you to retrieve the personal data you have provided to us in an interoperable format.

     

    4.2. How to exercise your right to erasure and restriction of processing of your data?

    You can request the erasure of your Personal Data in the following cases:

    • You believe that the processing of your Personal Data that we carry out is no longer necessary for the purposes set out in this Data Protection Policy;
    • You consider the processing unlawful or contest the accuracy of the Data we process about you;
    • You have withdrawn your consent to the processing of your Data.

    You may also, within the limits provided by law, request the restriction of the processing of your Data.

    Please note that despite exercising your right to erasure or restriction of processing, we will retain some of your Personal Data when required by law or in order to exercise or defend our rights. 4.3 Right to Establish Instructions for the Management of Your Personal Data After Your Death

    Please note that, in accordance with Article 63 of Law No. 2016-1321 of October 7, 2016, for a Digital Republic, any person may define instructions regarding the retention, erasure, and communication of their personal data after their death.

    When the processing of your data is based on your consent (such as, for example, subscribing to the newsletter), you may withdraw it at any time, without providing a reason. This right can be exercised by modifying your newsletter subscription options by clicking on the link provided for this purpose in each email we send you.

     

    5. HOW IS THE SECURITY OF YOUR PERSONAL DATA ENSURED?

    MG TECH implements technical and organizational measures that comply with applicable French and European legal and regulatory requirements to ensure the security and confidentiality of your data.

    MG TECH ensures that its service providers and subcontractors who process personal data commit, by contract, to implementing appropriate security measures that are proportionate to the risks and compliant with applicable personal data protection requirements.

    Wherever possible, MG TECH selects partners who offer reasonable guarantees regarding the confidentiality, integrity, and security of data.

    However, MG TECH cannot control all risks associated with the operation of the internet and draws your attention to the inherent risks of using any website.

     

    6. COOKIES

    To learn more about cookies, including their nature and different purposes, please refer to Appendix 2.

    At any time while browsing the Site, you can manage your cookie settings by clicking on the cookie pop-up.

     

    7. THIRD-PARTY WEBSITES

    The Site may contain links to third-party websites that we do not control and that are governed by their own privacy and personal data protection policies.

    This Data Protection Policy does not apply to these third-party websites. We encourage you to review the privacy and personal data protection policies of these third-party websites that you visit to understand how they process your data. MG Tech disclaims all liability for the use of your data by these third parties.

     

    8. DO WE SELL YOUR PERSONAL DATA?

    We do not sell your personal data and have not done so in the last 12 months.

     

    9. HOW CAN YOU CONTACT US IF YOU HAVE QUESTIONS OR COMPLAINTS?

    For any questions regarding this Data Protection Policy or in the event of a request to exercise your rights or a complaint concerning your Personal Data, you can contact us as follows:

    In the event of a complaint about how we process your Data, you also have the right to contact the French Data Protection Authority (CNIL), 3 Place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07, Tel.: +33 1 53 73 22 22, www.cnil.fr.