PRIVACY
POLICY
Last updated: July 2025
For the purposes of this Privacy Policy, the following terms mean:
' Data recipient
' means the natural or legal person, public authority, agency or other body
which receives communication of personal data, whether or not
it is a third party.
"Personal data"
means any information relating to an identified or identifiable natural person;
an "identifiable natural person" is one who can be identified,
directly or indirectly, in particular by reference to an identifier such as a
name, an identification number, location data, an online identifier or to one
or more factors specific to the physical identity of that natural person, physiological, genetic, psychological,
economic, cultural or social;
" DPO
" (data protection officer): data protection officer;
" Data subject
" means an identified or identifiable natural person.
" Controller
" means the natural or legal person, public authority, agency or other
body which, alone or jointly with others, determines the purposes and means of
the processing;
" GDPR
": General Data Protection Regulation;
" Processor
" means the natural or legal person, public authority, agency or other
body that processes personal data on behalf of the controller.
COMPLIANCE WITH DATA
PROTECTION LEGISLATION
The Legrand
Group collects and processes your data in compliance with the legislation on
the protection of personal data, namely, among others, EU Regulation 2016/679
of the European Parliament and of the Council (GDPR), the Data Protection Act
No. 78-17 as well as any other European or national regulations applicable in
this area, that may be added at a later
date (hereinafter referred to as "Data Protection Legislation").
SITE HOSTING
The "portal.buildingmanager.legrand.com"
Site ("the Site") is hosted on the cloud of Amazon Web Service (AWS)
France (67 Boulevard du Général Leclerc, 92110
Clichy, France) AWS in France (amazon.com)
The
"myconnectedaccount.legrand.com" Site ("the Site") is
hosted on the servers of the Legrand Group company, Netatmo SAS (93 rue nationale, 92100 Boulogne-Billancourt) hosted on the
Microsoft Azure cloud in Europe: https://azure.microsoft.com/fr-fr/overview/sales-number.
IDENTITY OF THE DATA
CONTROLLER
Any processing of personal data collected is carried out under the
responsibility of:
|
Name
and contact details of the Data Controller |
Legrand SNC 128, av. du Maréchal
de Lattre de Tassigny 87045 Limoges Cedex (France) Email :
webmaster.legrand@legrand.fr |
|
Legal
information about the Data Controller |
General
partnership with a capital of €7,765,345SIRET N° 389 290 586 000 12Code APE 4669 ARCS Limoges B 389 290 586VAT
identification number FR 15 389 290 586 |
DATA COLLECTED AND
PURPOSES OF PROCESSING
Data you provide to us:
|
Data collected |
Purposes of the processing |
Legal basis
for processing |
|
Email* |
Identity Verification
/ Site Login |
Legal obligation (Article 5, GDPR) |
|
Password* |
||
|
Last name, first name * |
Customer relations |
|
|
Tongue* |
User-language
interface |
|
|
City*, Country* |
Localization |
|
|
Phone Number |
Support client |
|
|
Client Site (Name, Mailing Address) * |
Use of the services provided by the app |
|
*Mandatory data
The data identified as mandatory, collected on the legal basis of the
contract when you create your Legrand account, is essential for the provision
of the service. Failure to respond to a mandatory field will result in
compromising access to the site.
We will store all this data for the duration of the contract and for a
period of 30 days after the deletion of your user account (following a
voluntary deletion request by you in accordance with the procedure described in
the article Exercising user rights).
DATA COLLECTED WHEN USING
OUR SERVICES
|
Data collected |
Purposes of the processing |
|
Area Manager IP Addresses Usage
metrics (non-exhaustive): Temperature/Humidity/Brightness Consumption Occupancy/People Counting Lighting status HVAC Status |
Use of the
services provided by the app |
|
Data collected when using the mobile application Crash and diagnostic data |
App
bug tracking App Enhancement |
We keep all this data for a period of 30 days after the deletion of your
user account (following a voluntary deletion request on your part according to
the procedure described in the article Exercising user rights).
EXERCISING USERS' RIGHTS
In
accordance with the applicable Personal Data Regulations, you have the
following rights regarding the processing of your personal data:
Right of access: you may request to obtain a copy
of your personal data from us, as well as to receive any information regarding
the processing of your personal data (such as the categories of personal data
that are processed, the purposes of the processing, the categories of
recipients to whom the personal data is disclosed, the duration of storage of
the personal data);
Right to rectification: you can ask us to correct,
complete, update your personal data if it is inaccurate, incomplete, ambiguous
and/or outdated.
Right to erasure: you can ask us to delete your
personal data under certain conditions (for example, pursuant to Article 17 of
the GDPR, if your personal data is no longer necessary for the purposes for
which it was collected or is being processed; or if you have withdrawn your
consent for the processing of your personal data, since consent was the legal basis for the
collection and processing and there is no longer any other legal basis
justifying it);
Right to restriction of processing: you can ask us to restrict the
processing of your personal data under certain conditions (for example,
pursuant to Article 18 of the GDPR, when you contest the accuracy of your
personal data, for the period required to verify this point);
You can ask us, as opposed to the
special processing, pursuant to Article 22 of the GDPR, not to be subject to a decision
based solely on automated processing, including profiling, which produces legal
effects concerning you or similarly significantly affects you.
Right to object: You
may object to the processing of your personal data for a reason relating to
your particular situation (in accordance with, and
subject to, Article 21 of the GDPR). If personal data is processed for direct
marketing purposes, you may object to such processing at any time, including if
it includes profiling activities (provided that these
relate directly to such direct marketing);
Right to portability: you can request to receive your
personal data – when it is processed on the legal basis of your consent or for
the performance of a contract – in a structured, commonly used and
machine-readable format, and request that we transmit this data to another data
controller (e.g. another service provider);
Right to withdraw your consent: you may withdraw your consent at
any time, without providing any justification, for any processing activities
described in the Privacy Policy for which the legal basis for processing is
your consent.
Right in the event of death: In accordance with Article 85 of
the French Data Protection Act, you can define guidelines regarding the
preservation, erasure and communication of your personal data by LEGRAND after
your death. These guidelines can be general or specific. The guidelines relate
to all your personal data and may be registered with a trusted digital third
party certified by the Commission Nationale de l'Informatique
et des Libertés. The specific guidelines relate to
the processing of your personal data described in this Privacy Policy, and may be stored with us.
To exercise
any of these rights, you may submit your request at any time, using the contact
information provided in the "Contact Us and Contact Our DPO" section
of this Privacy Policy. Applications will be processed provided
that you are able to prove your identity, and that your application is
clearly identified. Applications will be processed as soon as possible, and in
any event within a maximum period of one (1) month from receipt of your
application. If necessary, this period may be extended by two (2) months,
depending on the complexity of the request and the number of requests. In this
situation, we will inform you of the reasons for this extension. No payment is
required for the exercise of your rights, except in the case of a clearly
unfounded or excessive request. If necessary, we also reserve the right not to
act on your request.
In addition
to the rights described above, you have the right to lodge a complaint, at any
time, with competent supervisory authority. For example, under the GDPR, you
may file such a complaint in the country in which you reside or work (if
applicable) or where the alleged violation occurred, if you have reason to
believe that the processing of your personal data violates the applicable
Personal Data Regulation. In France, the supervisory authority is the
Commission Nationale de l'Informatique et des Libertés (the "CNIL").
The Website allows you to modify the data provided
when you create your Legrand account:
Name
Forename
Email
Contact
language
Password
Tongue
Country
From the Site, you can consult the General Terms and
Conditions of Use and the Privacy Policies that you have accepted in order to use the Legrand Group's connected applications.
If these documents are updated, you will also be able to read the changes we
have made to them and to renew your consent to the new terms of use and/or
processing of your personal data in order to be able
to continue to use the Legrand Group's connected applications if you wish.
ACCESS TO DATA
Only the following have access to your personal data, within the limits of
their respective attributions:
LEGRAND's internal departments, established in France: Research and
Development department as well as the teams in charge of managing the Site;
The AWS France service provider , which is responsible for hosting the data collected via
the website;
Legrand's subcontractors in charge of
environmental architecture;
The mobile app performance monitoring and crash
provider, SmartBear
We inform you that the aforementioned recipients
are subject to an obligation of confidentiality and may only process your data
in accordance with our contractual provisions and applicable legislation.
We also inform you that we may be required to share your personal data if
this is necessary to safeguard your vital interests or those of another natural
person, if this is necessary for compliance with a legal obligation to which we
are subject as well as for the establishment, exercise or defence
of legal claims.
DATA SECURITY
The LEGRAND Group has put in place adequate physical, electronic and
administrative protection measures in accordance with regulations to protect
your personal data. However, the LEGRAND Group wishes to draw the attention of
users to the possible risks in terms of data confidentiality related to the
operation of the Internet. In particular, it is the
responsibility of users to set up or ensure the existence of secure means for
their personal computer network, as well as to ensure the correct configuration
of the connection box connected to the Internet service provider, and other
radio access (e.g. WIFI, 4G, etc.).
COOKIES AND SIMILAR
TECHNOLOGIES
When you browse, cookies are placed on your device (computer, mobile phone,
tablet), subject to the choices you have expressed and which you can modify at
any time by adjusting your settings (see the section below Accepting or refusing cookies). Placed on your
device when you visit a site, a cookie is a small text file on the said site,
which records information relating to browsing (pages viewed, date and time of
consultation, etc.) and whose main objective is to improve your consultation and
to allow you to be sent personalized services. The term "cookie" refers
to cookies
TYPE DE COOKIES
First-party cookies necessary for the operation of the Site:
|
Host-next-auth.csrf-token Secure-next-auth.callback-url Secure-next-auth.session-token |
(Session cookie to store the user's identity during
the use of the Site. Expiration: Session) (Session cookie to store the user's identity during
the use of the Site. Expiration: Session) (Session cookie to store the user's identity during
the use of the Site. Expiry: 24h) |
These cookies are strictly necessary for the
operation of the Site.
ACCEPTING OR REFUSING
COOKIES
You can configure your browser so that cookies are saved on your device or
rejected, either systematically or according to their issuer, or to be informed
when a cookie is stored on your device, in order to
allow you to accept or reject it.
However, deleting all cookies used may lead to the alteration or loss of
certain settings or information and to making browsing difficult or impossible.
The configuration of each browser is different. It is described in the help
menu of your browser, which will allow you to know how to change your cookie
wishes. Here's how to control or prevent cookies from being stored:
1.
Internet Explorer: http://windows.microsoft.com/en-gb/windows-vista/Block-or-allow-cookies
3.
Safari: https://support.apple.com/guide/safari/manage-cookies-and-website-data-sfri11471/mac
4.
Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
5.
Chrome: https://support.google.com/chrome/answer/95647
6.
Opera: https://blogs.opera.com/news/2015/08/how-to-manage-cookies-in-opera/
UNDER FIFTEEN YEARS OF
AGE
In offering its information society services, the Legrand Group does not
target minors under the age of 15 as a group of users. However, access to the
Site is not reserved for adults as it does not contain content prohibited to
minors.
The Site does not knowingly collect or use personal information from minors
under the age of 15. If information is collected about a minor by the Site, the
minor's legal representative has the option of contacting the Group's Data
Protection Officer to rectify, modify or delete this information (see article Exercising users' rights).
MODIFICATION OF THIS
DOCUMENT
This document is subject to change at any time without notice. We invite
you to consult it regularly.
CONTACT US AND OUR DPO
By email:
Via the
online form https://www.legrandgroup.com "Contact us" section
By mail
Legrand Consumer Service
128 avenue du Maréchal de Lattre de Tassigny
87045 LIMOGES cedex France
DPO Legrand :
128 avenue du Maréchal de Lattre de Tassigny
87045 LIMOGES cedex France
fr-sm-data-protection-officer@legrand.com