Privacy Policy

Privacy Policy

Updated version as of 09.04.2025

Download PDF

 

Personal Data Privacy

This page contains all the information regarding how SCRIPT & GO SAS (hereinafter referred to as « The Company » or « we ») collects and processes your personal data through the website https://www.batiscript.com (hereinafter referred to as « The Site ») and through the BatiScript Mobile Application (hereinafter referred to as « The Application ») while ensuring the respect of your rights and freedoms.

The Privacy Policy is part of the General Terms and Conditions of Sale (where applicable) and the General Terms and Conditions of Use of the Site, and each term defined in these documents has the same meaning in the Privacy Policy.

By accessing and using our Site and Application, you agree to familiarize yourself with this Privacy Policy, which may be modified or updated at any time without notice.

This version of our Privacy Policy is effective as of April 5, 2025. Any changes will be posted online on the Site and the Application, so we encourage you to consult it regularly.

 

 What is Personal Data?

According to Article 4 of Regulation (EU) 2016/679 of the European Parliament and Council of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter « GDPR »), personal data refers to « any information relating to an identified or identifiable natural person, directly or indirectly. »

What are Sensitive Personal Data?

The term « sensitive personal data » refers to the various categories of personal data identified by European laws and other data protection laws that require special processing, including for example the necessity of obtaining your consent.

Sensitive data includes information revealing racial or ethnic origin, political, philosophical or religious opinions, or union membership, as well as data concerning health or sexual life.
We do not collect sensitive personal data through our Site or Application. However, if you choose to provide us with unsolicited sensitive personal data, you authorize us to process the submitted data in compliance with the applicable laws.

Exceptionally, we collect information about whether you have a disability solely for the purpose of adapting the training to your needs in accordance with our obligations as a Qualiopi-certified organization. This processing is based on your explicit consent, which you can withdraw at any time. By providing us with this information, you authorize us to process the submitted data in compliance with applicable laws.

How Do We Protect Your Personal Data?

We protect your personal data through a strict management policy that ensures all appropriate measures are taken to protect the data, in compliance with the GDPR.

All affiliated entities, providers, and authorized subcontractors are committed to adhering to the same rules. This also means that your rights remain the same regardless of the service of the Company or its affiliates or authorized subcontractors who have access to your personal data.
It is important to emphasize that we only collect personal data that is strictly necessary for the performance of our contractual services or for the continuation of the commercial contact process you initiated through the contact form.

This privacy policy concerns:

• The showcase website https://www.batiscript.com ; and
• The BatiScript mobile application

Legal Contact Information for Script&Go

• Script & Go is part of the Aghadoe group, located at 43 Square de la Mettrie – 35700 RENNES
  Email: legal@scriptandgo.com
  • Phone number: +332.30.96.22.53

What Personal Data Do We Collect, On What Grounds, and for What Purposes?

In general, your personal data is processed to fulfill one or more of the following purposes. Each purpose is associated with a legal basis, which is listed below.

 

Processing Applicable to All Individuals (Visitors, Prospects and Customers):

Based on our legal and regulatory obligations, we carry out processing for the following purposes:

• To prevent, detect, and investigate any potentially illegal, unlawful, or improper activity and ensure compliance with our terms of use and our sending policy ; and
• To respond to your request to exercise your GDPR rights.

Based on our legitimate interest in providing you with a safe, optimal, effective, and personalized user experience, we carry out processing for the following purposes:

• To resolve issues and improve the use of our sites and applications ;
• To personalize, evaluate, and improve our services, content, and materials ;
• To analyze the volume and history of your use of our services ;
• To inform you about our services and news, updates ;
• To enroll you in our newsletters ; and
• To improve the efficiency of customer support.

1. Processing via the Site:

a- I am a visitor

If you browse the Site without taking any action, you are a visitor. In this case, we do not collect any personal data about you without your consent. Only cookies strictly necessary for the technical operation of the Site are set by default. Some personal data related to your equipment and activity on our Site and Application, such as your IP address, may be collected with your prior explicit consent.

b- I am a Prospect

If you contact us to request information about BatiScript, you are a prospect. In order to process this request and build a prospect file used by the Company to follow up on information requests, the personal data collected is:

• Your first and last name ;
• The company to which you are attached ;
• The type of structure (developer, lessor, etc.): required only for a demo request ;
• Your professional email address ;
• The subject and content of your request ;
• The history of messages sent ; and
• Your phone number: required only for a demo request.

In the case of a demo request, you have the option to invite others to participate by providing their email addresses. In this case, you are responsible for obtaining the necessary consents and authorizations from the individuals concerned before sharing their personal data.

Script & Go provides part of its service by phone and may collect personal data during these interactions to identify your needs or resolve a malfunction. If applicable, additional personal data may be requested.
By contacting us through the contact forms, you will, by default, receive commercial solicitations from us. You may choose to oppose this by checking the box at the bottom of the form. You may also unsubscribe at any time by clicking the unsubscribe link in each commercial email sent to you.

If the request is for general information or advice:

Legal basis for collection: Your consent.

Data retention period: You can withdraw your consent at any time, leading to the deletion of your data. If you do not make a request, the data will be kept for 3 years from our last communication.

If the request is for a quote, demo, or training:

Legal basis for collection: Pre-contractual relationship management.

Data retention period: Your data will be retained for 3 years from our last communication.

 

In both cases, we reserve the right to keep the history of sent messages for a period of 5 years from the last exchange. They will be permanently deleted after 5 years.

Legal basis for retention: Legitimate interest of the Company in protecting against potential disputes.

Regarding the sending of commercial solicitations:

Legal basis for collection: Our legitimate interest

Data retention period: Until you object. You have the option to object at any time, either by checking the box in the contact form or by clicking the unsubscribe link in each commercial solicitation email. If you exercise your right to object, we will retain your email address in our opposition database for 3 years from the date of your request, solely to avoid contacting you again.

 

2. Processing via the Application

c- I am a Client

If you wish to subscribe to the BatiScript Application, you must create a client account. To manage the contractual relationship (support, accounting, account management, after-sales service, etc.), various personal data about you will be collected.

When creating your account:

• Your first and last name ;
• Your professional email address ; and
• Your password

Legal basis for collection: Execution of the contract.
Data retention period:

• By default, until you request the deletion of your account.
• Exceptionally, after 2 years of inactivity, we reserve the right to delete your account. In such a case, a notification will be sent to you 30 days before deletion to allow you to object.

During client support:

If you contact our support service after creating your client account to inquire about the use of our services, the data collected is:

• Via the contact form: your name, first name, email, company affiliation, position, the subject of your message, and message history. Optionally, you may also provide your phone number if you believe it necessary to allow us to respond to your request.
• Via the help center (ticketing system): At minimum, your name and email address. You may also provide any information you consider necessary for us to respond to your request. Additional information may be requested solely to address your request.

 

 

Legal basis for collection: Execution of the contract.
Data retention period: These data are retained for 3 years from the last communication.

Commercial and Contractual Relationship Management:

In the context of managing the commercial contractual relationship (order follow-up, billing), certain personal data may be requested (identification data, contact details).

Legal bases for collection and retention: Execution of the contract and legal obligation.
Data retention period: These data are retained for 10 years from the last communication in order to meet our fiscal and accounting obligations.

For Product Training:

In order to provide you with training on the BatiScript Application, certain personal data may be requested to fulfill our contractual obligations and to comply with the Qualiopi certification requirements. This data is collected based on the following legal bases and purposes:

• Identification and contact data: Name, first name, email address.
• Professional data: Job position within the company.
• Data relating to disability: Sensitive data, such as information about a disability, may be collected to tailor the training to specific needs (e.g., need for subtitles).

Legal bases for collection:

• Identification data: Necessary for delivering the training and certificates. The collection is based on contractual performance.
• Professional data: Used to adapt the training according to the participant’s profile. The collection is based on the explicit consent of the beneficiary.
• Disability-related data: Collected solely on the explicit consent of the beneficiary to adapt the training to particular needs, in line with Qualiopi requirements.

Data retention perdiod: The data will be retained for the duration of the training, plus an additional 3 years to meet Qualiopi requirements. The user can withdraw their consent at any time.

 

Who is Responsible for Processing Your Data?

For personal data collected for the purposes described above, Script & Go is the data controller under Article 4 of the GDPR as the Company determines the means and purposes of processing these data.
However, each client of the Application acts on its behalf for the deployment of the Application and is therefore responsible for the processing of personal data they or end-users upload to the Application (contacts, personal data of other users, textual data, photos, etc.). Script & Go acts as a data processor by enabling data hosting but does not control their content or destination.

More information about our roles and commitments as a data processor can be found in our Data Protection Agreement (DPA).

This DPA is annexed to our Terms and Conditions of Sale. If you wish to obtain a signed version of this DPA, please contact us at legal@scriptandgo.com.

Who has Access to Your Data?

1- Acces by Our Employees

Depending on the purposes outlined above, our customer service, support, administrative, accounting, legal, technical, marketing, and sales teams may have access to your personal data.

2- Data Transfer to Third Parties:

We do not sell, exchange, or rent your personal data to anyone, nor do we send personal data to anyone not affiliated with our company or working directly on our Application. We do not cooperate with advertising agencies that may collect your personal data. However, if the company or any of its products were to be sold or transferred to another company, personal and user information could be part of the sale or transfer. In such a case, all clients would be duly informed of these changes.
We notably use subcontractors for the following services:

• Hosting data uploaded to the Application
• Sending postal mail or digital emails
• Managing customer relationships
• Customer maintenance and support
• Technical developments

In accordance with Article 28 of the GDPR, access to your personal data by our subcontractors is regulated and governed by a contract compliant with applicable regulations. This contract with our subcontractors lists the various regulatory obligations they have in relation to personal data protection. In the event of data transfer by one of our subcontractors, we commit to implementing necessary and adequate safeguards.

List of Our Subcontractors:

ZOHODESK

Ticketing tool – customer support

105 AVENUE RAYMOND POINCARE 75016 PARIS

Privacy Policy

 

KELOIS

Software development and maintenance

CENTRE MBE 170, 2 B Avenue Durante, 06000 NICE

 

OVH

Data Hosting

2 rue Kellermann 59100 ROUBAIX

Privacy Policy

 

SELLSY

CRM – Newsletters

50 avenue du Lazaret – 17000 LA ROCHELLE

Privacy Policy

 

MICROSOFT France – AZURE

Data hosting

37/45, 37 QUAI DU PRESIDENT ROOSEVELT, 92130 ISSY-LES-MOULINEAUX

Privacy Policy

 

HU-MANITY COOKIE COMPLIANCE

Cookie consent management

Sparta, New Jersey.

Privacy Policy

 

DIGIFORMA

Management and organization of training

106 boulevard Haussmann, 75008 Paris, France

Privacy Policy

 

AMA 2C

Training

260 Le Perret, 14500 Vire Normandie

Privacy Policy

 

CALENDLY

Appoinment scheduling

Privacy Policy

 

MAILGUN

Technical Emailing

43 RUE DE DUNKERQUE, 75010 PARIS 10

Privacy Policy

 

We also reserve the right to disclose your personal data to individuals or entities in the following cases:

• Compliance with a law, rule, judicial procedure, or government enforcement mandate;
• Enforcement of an agreement involving an investigation of potential violations of the law;
• Detection, prevention, or resolution of fraud, security issues, or technical problems;
• Protection of the Company’s rights, property, and security, as well as those of its subscribers and users.

Data Protection

Data transfer

All personal data collected by Script & Go is hosted on its servers located in Europe and is processed in France by the Script & Go teams. If any data were to be transferred outside the EU, Script & Go would implement the appropriate safeguards in compliance with applicable regulations.

How are Your Data Protected?

We implement various physical, logical, and organizational measures to ensure the security and confidentiality of your data in compliance with applicable regulations.

The Sites may occasionally contain links to partner sites or be accessible from websites of our partners, advertisers, and affiliates. If you follow a link to one of these sites, please note that these sites have their own privacy policies, and we cannot be held responsible for them. Please review their content before submitting personal data.

Regarding the Application, when a hosting service (e.g., « cloud ») is used, we ensure data security by working with providers offering the highest security guarantees.
As the data controller for the data described above, we have chosen a host that provides the highest level of security and ensures data availability, integrity, and confidentiality in line with the best standards:
Host:
OVH
SAS with a capital of €10,069,020

RCS Lille Métropole 424 761 419 00045

APE Code 2620Z

VAT No.: FR 22 424 761 419

Headquarters: 2 Rue Kellermann – 59100 Roubaix – France

https://www.ovh.com/fr/

What Are Your Rights Regarding the Processing of Your Data?

In accordance with the French Data Protection Law of January 6, 1978, amended by the Law of August 6, 2004, and the GDPR, you have various rights regarding the processing of your personal data:

• The right to know what data we hold on you: right of access
• The right to request corrections and updates to your data: right of rectification

You also have additional rights when the legal basis for processing is your consent or our legitimate interest, or if you believe you have a legitimate reason:

• The right to request the cessation of processing of your personal data: right of opposition
• The right to have your personal data deleted: right to erasure

Additionally, when exercising your right to rectification or opposition on certain data, you can request the temporary limitation of processing of that data until the initial request is resolved.

Finally, you may exercise all the rights outlined in this section when the purposes for which the data was collected have expired.

To learn more, you can consult the practical guides of the CNIL on this subject: https://www.cnil.fr/fr/les-droits-pour-maitriser-vos-donnees-personnelles

 

How to Exercise Your Rights?

You can exercise your rights at any time by sending your request to legal@scriptandgo.com or by mail at the following address : 43 Square de la Mettrie – 35700 Rennes, France.

Proof of identity may be requested if there is a real and serious doubt regarding your identity. In such a case, once your identity is verified by our DPO, the submitted documents will be destroyed, and no data will be retained.

Legal basis: Legitimate interest to protect against potential disputes.

Retention Period: Data collected in relation to your rights request will be retained for the calendar year of the request, plus five years.

If you disagree with this policy, you have the option to file a complaint with the CNIL:

• Online via the form available on the following page: https://www.cnil.fr/fr/plaintes
• By post to the following address: CNIL, 3 Place de Fontenoy, TSA 80715, 75334 PARIS CEDEX 07.

Changes to the Privacy Policy

We may modify our policy over time. Please make sure to review it regularly. We commit to publishing any changes to our policy on our Sites and Applications. If changes materially affect our practices regarding the personal information we have already collected from you, we will notify you in advance of these changes by highlighting the modifications on our Sites and Application.

 

Do you Have a Question? Can’t Find the Information You are Looking for?

If you cannot find the information you are looking for or have any questions regarding this policy, you can contact us by email at: legal@scriptandgo.com

The official language of this policy is French. Any translation of this policy into other languages is solely for public convenience. In the event of a dispute, the French version shall prevail.