Groupe RAGNI

For a bright and sustainable future  

Personal Data Protection Policy

Purpose and Scope of the Policy

Ragni attaches the utmost importance to the protection of privacy and personal data, and to compliance with applicable legislation.

Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter the “GDPR”) provides that personal data must be processed lawfully, fairly and transparently. Accordingly, this Personal Data Protection Policy (hereinafter the “Policy”) aims to provide you with clear and transparent information regarding the processing of your personal data, particularly in the context of your browsing activity and operations carried out on our website.

Data Controller

The data controller of your personal data, within the meaning of applicable data protection regulations and in particular the GDPR, is Ragni, a simplified joint-stock company (Société par Actions Simplifiée) with a share capital of EUR 610,000, whose registered office is located at Lieudit Le Guerard, Chemin du Vallon des Vaux, 06610 La Gaude, France.

All information relating to Ragni is available on our Legal Notice page.

Why Do We Collect Your Personal Data?

This Policy applies to the collection and processing of your personal data for specified purposes and on different legal bases.

Based on your consent:

  • Management of cookies requiring your consent (audience measurement cookies).

Based on Ragni’s legitimate interest:

  • Management of information requests received via the contact form, with possible forwarding to the relevant Group company in order to respond to your request.
    If your request directly concerns one of the Group companies and leads to a contractual relationship, your data will then be processed in accordance with that company’s privacy policy.
  • Management of communications;
  • Ensuring proper operation and continuous improvement of the website (via technical cookies);
  • Management of pre-litigation and litigation matters.

Based on legal obligations:

  • Management of your data protection rights.

Personal Data We Collect

Personal data are processed in compliance with the data minimisation principle set out in the GDPR.

  • Identification data: Information enabling us to identify you, such as your surname, first name, telephone number and email address.
  • Browsing information: When browsing our website, certain information relating to your navigation is collected

Recipients of Your Personal Data

Your data may be transmitted to relevant entities of the Ragni Group, to our technical service providers and partners, and to competent authorities where required by law.

In all cases, only strictly necessary data are communicated. We implement appropriate measures to ensure secure transmission.

We do not sell your data.

Transfers Outside the European Economic Area

Ragni endeavours to store personal data in France or within the European Economic Area (EEA).

However, some data may be transferred to other countries, for example where certain service providers are located outside the EEA.

In such cases, transfers are carried out:

  • To countries recognised as providing an adequate level of protection;
  • Under Standard Contractual Clauses;
  • Under Binding Corporate Rules.

You may request further information by contacting us at the address indicated in the “Your Contacts” section.

Technical and Organisational Security Measures

Ragni implements appropriate technical and organisational measures to protect personal data against loss, destruction, alteration, unauthorised access or disclosure.

Such measures may include restricted access, pseudonymisation, encryption, secure authentication procedures and regular review of security policies.

Data Retention Periods

Personal data are retained for a maximum period of three (3) years from the last contact with the prospect, unless you request erasure.

Where you exercise your rights, the Data Protection Officer processes your data (identity details, copy of ID if required, nature of request, response provided). These data are retained for five (5) years, except for copies of identity documents, which are retained only for the time strictly necessary for verification or legal compliance.

More detailed retention rules may be obtained upon request under your right of access.

Your Rights

You may exercise your rights at any time by contacting Ragni. You have the following rights:

  • Right to object;
  • Right to withdraw consent;
  • Right of access;
  • Right to rectification;
  • Right to erasure;
  • Right to restriction of processing;
  • Right to data portability;
  • Right to define directives regarding the post-mortem fate of your data.

If you are not satisfied with the response provided, you may lodge a complaint with the competent supervisory authority (CNIL).

Contact

For any request, please contact the Data Protection Officer at: dpo@ragni.com.

Proof of identity may be requested where necessary. The exercise of rights is strictly personal.

Amendments

Ragni may amend this Policy as necessary. You will be informed of any substantial changes.

Last update: October 2025