Your cart
  • Total excl. tax
  • 0,00 
Order
Fermer
  • Mon devis
  • Mon devis
  • Produits
Fermer
Rechercher

2025 – Privacy Policy

What is the purpose of our Privacy Policy?

Lattice Medical, which manages the Lattice Services platform, attaches great importance to the protection and confidentiality of your personal data, which represents, for us, a guarantee of seriousness and trust.

As such, our Personal Data Privacy Policy specifically reflects our desire to ensure that Lattice Medical complies with the applicable rules on the protection of personal data and, more specifically, those of the General Data Protection Regulation (“GDPR”).

In particular, our Privacy Policy aims to inform you about how and why we process your personal data in connection with the services we provide to you.

Who is our Privacy Policy for?

Our Privacy Policy is intended for you, regardless of your place of residence, as long as you are at least 15 years old and you are a user of our Lattice Services platform.

If you are under the legal age detailed above, you are not allowed to use our services without the prior and explicit consent of one of your parents or the holder of parental authority, which must be sent to us by email at rgpd@lattice-medical.com.

If you believe that we are holding personal data about your children without consent, please contact us at the dedicated address detailed above.

Why do we process your personal data and on what basis?

We process your personal data primarily for the following reasons:

  • To use and benefit from our service and all its features based on our Terms and Conditions of Use.
  • To ensure the management of user accounts (e.g. account creation, access to the service and deletion of accounts) based on our terms and conditions of use.
  • To communicate with our support service via our chat/chatbot based on our terms and conditions of use.
  • To pay online based on our terms and conditions.
  • To have your purchases delivered to you based on our general terms and conditions of sale.
  • To receive our technical emails (e.g. password changes, etc.) essential for the proper functioning of our service based on our terms and conditions of use.
  • To be able to upload and import documents to our platform based on our terms and conditions of use.
  • To guarantee and strengthen the security and quality of our services on a daily basis (e.g. statistics, data security, etc.) on the basis of the legal obligations incumbent on us, our general terms and conditions of use and our legitimate interest in ensuring the proper functioning of our services.
  • To receive our newsletter on the basis of our legitimate interest in building customer loyalty and on the basis of your consent in the event that you are not yet a customer of our services.

Your data is collected directly from you as soon as you are a user of our Lattice Services platform and we undertake to process your data only for the reasons described above.

What personal data do we process and for how long?

We have summarised the categories of personal data and their respective retention periods below  :

  • Personal identification data (e.g. surname, first name, etc.) and contact details (e.g. email address) kept for the duration of the provision of the service, in addition to the legal limitation periods, which are generally 5 years.
  • Email address to receive our technical messages kept until your account is deleted.
  • Email address to receive our newsletter kept until the end of your newsletter subscription.
  • Connection data (e.g. logs, IP address, etc.) kept for a period of 1 year.

At the end of the applicable retention periods, the deletion of your personal data is irreversible and we will no longer be able to communicate it to you after this period. At most, we may only store anonymous data for statistical purposes.

Please also note that in the event of a dispute, we are obliged to keep all the data concerning you for the entire duration of the processing of the file, even after the expiry of the retention periods described above.

What rights do you have to control the use of your personal data?

The applicable data protection regulations give you specific rights that you can exercise, at any time and free of charge, in order to control the use we make of your data.

  • Right to access and copy your personal data as long as this request is not in contradiction with business secrecy, confidentiality, or the secrecy of correspondence.
  • Right to rectification of personal data that is incorrect, obsolete or incomplete.
  • The right to object to processing of your personal data where it is based on our legitimate interest, unless there are compelling legitimate grounds for such processing which override your interests, rights and freedoms.
  • Right to request erasure (“right to be forgotten”) of your personal data that is not essential to the proper functioning of our services.
  • The right to the limitation of your personal data, which allows you to photograph the use of your data in the event of a dispute about the legitimacy of a processing.
  • Right to the portability of your data, which allows you to retrieve part of your personal data in order to store or transmit it easily from one information system to another.
  • The right to give instructions on the fate of your data in the event of your death, either through you or through a trusted third party or a beneficiary.

In order for a request to be considered, it is imperative that it be made directly by you, or your representative at the rgpd@lattice-medical.com address.

Requests cannot come from anyone other than you or your representative. We may therefore ask you to provide proof of identity if there is any doubt about the identity of the applicant, as well as justification for representation.

We will respond to your request as soon as possible with a maximum delay of one month from its receipt, unless the request is technically complex or we receive many requests at the same time. In this case, the response time may be a maximum of three months.

Please note that we can always refuse to respond to any excessive or unfounded request,  particularly in view of its repetitive nature.

Who can have access to your personal data?

Your personal data is processed by our teams and by our technical service providers for the sole purpose of operating our service.

We specify that we check all our technical service providers before recruiting them to ensure that they scrupulously comply with the applicable rules on the protection of personal data.

IN ADDITION, WE GUARANTEE THAT WE WILL NEVER TRANSFER OR SELL YOUR DATA TO THIRD PARTIES OR BUSINESS PARTNERS.

Can your personal data be transferred outside the European Union?

The personal data processed by our Lattice Services platform is exclusively hosted on servers located within the European Union.

In addition, we do our best to use only technical tools whose servers are also located within the European Union. However, if this is not the case, we scrupulously ensure that they implement the appropriate safeguards required to ensure the confidentiality and protection of your personal data.

How do we protect your personal data?

We implement the  following technical and organisational means  to guarantee the security of your personal data on a daily basis and, in particular, to combat any risk of destruction, loss, alteration, or disclosure.

Technical security measuresOrganizational security measures
User password encryption (Front side), User password encryption (Back side), HTTPS protocol, Anti-spam for Lattice Medical team endpoints, Antivirus and firewall on Lattice Medical team endpoints, VPN for Lattice Medical team teamsAlarm, Access badge, Locked offices, Information systems charter, Authorisation and password management policy, Data breach management procedure, Personal rights management procedure, Rules of good conduct, Awareness and training of teams 2 times a year

Do we use cookies when you browse our platform?

We inform you that we use cookies when you browse our platform. For more information, please consult our Cookie Policy.

Who can you contact for more information about how your personal data is used?

To ensure the best possible protection and integrity of your data, we have officially appointed an independent Data Protection Officer (“DPO“)  to our supervisory authority.

You can contact our DPO at any time and free of charge at rgpd@lattice-medical.com to obtain more information or details on how we process your data.

How can you contact the CNIL?

You can contact the “Commission nationale de l’informatique et des libertés” or “CNIL” at any time  at the following contact details: CNIL Complaints Department, 3 place de Fontenoy – TSA 80751, 75334 Paris Cedex 07 or by telephone at 01.53.73.22.22.

Can the Privacy Policy be changed?

We may modify our Privacy Policy at any time to adapt it to new legal requirements as well as new processing that we may implement in the future.

Certified by Dipeeo ®

Resources
Need to know more?
White paper and brochures FAQ