AT Internet has appointed a Data Protection Officer who can be contacted at the following address: email@example.com or by post.
France 🇫🇷 (EU) 🇪🇺
All analytics data is stored in the EU by cloud providers AWS and SFR.
AT Internet however doesn’t specify in which country data is hosted.
AT Internet doesn’t transfer analytics data outside the EU.
At Internet commits itself to verify that its subcontractors present sufficient guarantees regarding the implementation of technical and organizational measures.
AT Internet has made public its list of subprocessors: https://www.atinternet.com/en/processor-sub-processor-information-parent-company/
Prior to modifying the list of subprocessors, the controller will be notified and is able to object.
In case of a data breach, AT Internet will notify the controller without undue delay after becoming aware of the breach, and provide the necessary information to notify Data Protection Authorities.
Data request will be forwarded to the controller without delay and assistance will be provided to the controller to answer any request.
AT Internet will provide necessary assistance to the controller in case of Data Privacy Impact Assessment on an analytics processing activity.
Employees are trained on the confidentiality of personal data and subjects to a strict confidentiality obligation.
AT Internet mentions having a security policy and updating it regularly, but has not made it public.
Cloud security relying on Amazon and SFR.
data pseudonymisation (hash), data anonymisation on demand, disaster recovery plan, penetration testing.
AT Internet never mentions data encryption.
AT Internet limits access to data only to persons who need to know and does not share data with third parties without prior demand of the controller.
AT Internet doesn’t pursue its own purposes with this data processing. The controller stays the data owner.
YES, if controller masks the following personal data by default (visitor ID, postal code, internet service provider, converted visit) and anonymizes IP addresses.
YES, data hosted on Amazon servers doesn’t appear to be anonymized nor encrypted at rest, therefore can be accessed by an American intelligence agency on demand.