Data protection is a key concern for us. This privacy statement is intended to help you understand how we may use the data you provide to us as a user of our site.
This privacy statement is based on the United States Federal Data Protection Act (FDA) and the European General Data Protection Regulation (GDPR).
Our Site URL
Any information relating to an identified or identifiable natural person (data subject). In particular by reference to an identifier such as their family name, first name, address, email, telephone number, etc.
A CMS is the system used to manage the content displayed on a website.
Consent means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
A cookie is a text file that the site you are visiting stores on the hard disk or in the browser memory of the computer that you use to access the internet. A cookie allows your computer to store various technical data that provide information regarding the use of a site (number of visits, duration of each visit, connections to other sites, etc.) or make it possible to customize the pages displayed during your future interactions with the same site (based on your account, the most visited pages, etc.)
A PIA is a detailed study to establish the impact that the processing of personal data could have on the privacy of the data subject should an incident occur.
The purpose of processing is the reason why the data is collected.
A plugin is a computer program designed to add functionality to other software (called host software). For example, the buttons of social networks. Equivalent terms: “add in”, “add on”.
Any natural person subject to processing of personal data.
The natural person or legal person on whose behalf data processing is carried out. The controller determines the purposes of the processing, alone or jointly.
Any natural or legal person, public authority, service, or other body that processes personal data on behalf of the controller. For example, a web host or an online service provider.
Tags (also known as HTML tags) are the basic elements of the HTML coding of a web page. They are invisible to the user (unless they choose to display the source code of a page). The user’s browser interpreted the tags in order to display the page. Tags make it possible to format and structure content. Search engines use certain tags as part of their algorithms for deciding which pages to list in response to a query, and where to place them in the list of pages found.
Any transaction or set of transactions involving personal data, whether or not performed using automated processes, including the collection, recording, organization, retention, adaptation, modification extraction, consultation, use, communication by transmission, dissemination or any other form of provision, reconciliation or interconnection, and limitation, erasure or destruction.
Processing your data
We only process data that you choose to transmit to us and for which you explicitly consent to processing.
You can fill in a contact form on our website. The form will request the following personal data:
- Family name
- First name
You can also write a message related to your contact request. We recommend that you remain concise in your message and do not provide us with any personal information.
You can sign up for our newsletter by ticking the appropriate box. You will then receive a request for consent (by email) that will clearly indicate the purposes of processing your personal data, which you can accept or refuse selectively.
If you have subscribed to our newsletter and no longer wish to receive it, you can unsubscribe by clicking the “Unsubscribe” link at the bottom of the newsletter. You will then receive an automatic confirmation of unsubscription and your data will be automatically deleted from the file used for this purpose.
Analytics & other services
Google Suite is a service provided by Google Inc. We use it to send and receive emails and manage our documents. Google Inc. may store some of the data collected on servers in the USA.
Hubspot is a service provided by Hubspot Inc. We use it to send and receive emails and manage communication with our customers. Hubspot Inc. may store some of the data collected on servers in the USA.
Typeform is a Barcelona-based online “software as a service” company that specializes in online form building and online surveys. We use it mainly for generating application forms and feedback surveys.
Zoom Video Communications Inc. is an American communications technology company headquartered in San Jose, California. It provides videotelephony and online chat services through a cloud-based peer-to-peer software platform and is used for teleconferencing, telecommuting, distance education and social relations. Zoom is our main platform for online and hybrid activities.
Miro is an online collaborative whiteboarding platform that enables distributed teams to work effectively together, from brainstorming with digital sticky notes to planning and managing agile workflows Miro is based on five global hubs: San Francisco, Amsterdam, Austin, Los Angeles and Perm. We mainly use it for online and hybrid workshops, sessions and retreats.
Mighty Networks is a cloud-based social networking platform based in Palo Alto, California, designed to help marketing teams create targeted landing pages, track leads and connect with clients on a centralized dashboard. It enables members to find out about upcoming products or new courses by joining relevant communities. Mighty Networks is the hosting platform for CCHN Connect, our community-powered forum on humanitarian negotiation.
Purpose of processing
We process your data only in order to best meet your expectations. In particular, we process your data for the following purposes:
- Responding to requests for contact or information
- Issuing offers
- Sending newsletters
- Sending commercial offers
Transfer of your data
The servers of our subcontractors and processors may be located in states whose legislation does not include data protection rules equivalent to those of the Swiss Federal Data Protection Act (LPD) or the GDPR.
If this is the case, we ensure that our subcontractors and processors apply data protection safeguards that are equivalent to the GDPR or compliant with it, regardless of the location(s) of their server(s).