Privacy Policy (GDPR and Data Protection Act)

The so-called “Data Protection Act” of January 6, 1978, amended by the law of October 7, 2016, as well as the GDPR of May 25, 2018, are applicable whenever there is an automated processing or a manual file (i.e., a computer file or a “paper” file) containing personal information related to individuals. These two documents define the principles to be respected when collecting, processing, and storing this data and guarantee certain rights for individuals. You are informed that the company VMPS Corporation carries out automated processing of your personal data. The privacy policy applies to the companion site mathia.education.

 

This privacy policy aims to explain:

 

  • What data we collect, considering personal data as “any information relating to an identified or identifiable natural person”;
  • The purposes for which this data is collected;
  • With whom we share this data;
  • How long and where we store this data;
  • Who is responsible for processing the collected and processed personal data;
  • The rights of Users concerning their data;
  • The site’s “cookie” policy;

 

This privacy policy complements the legal notices and the General Terms of Use defined by the data controller.

1. What data do we collect ?

* We collect the following data on the mathia.education companion site, which is processed by VMPS CORPORATION:The data collected when users create an account on Mathia.education is as follows:


– Children’s identification data: First name, Class,

– Parents’ identification details : First name, Last name, Mail, Country, Region, Address, Postcode, Town, Email,

 

In the case of the Holographic Kit option and for delivery reasons, we recommend that you enter your telephone number.

 

The following data is collected when children carry out activities on the application:


– Children’s voice data (anonymised: not linked to identifying data)

– Activity data, defined by learning traces:

– User nickname ;

– Verb; Result.success; Result.duration; Object ;

– Class code ;

– Activity name; Activity identifier; Exercise name; Exercise identifier;

– Binomial ; Team members ; Team identifier ;

– Answer; Answer mode; Display mode; Play mode;

– Assignment identifier; Hid ;

– Session dates; Exercise session; Course session;

– Type of course; The stage of a course; The course identifier;

– Exercise skills; Exercise prerequisites; Exercise standard errors;

– Automatic course end for assessment mode; Holo ;

– Percentage of correct answers; Percentage of incorrect answers;

– Activity duration; Remote control

 

The companies responsible for processing all the above data are VMPS CORPORATION and TRALALERE.

These data are likely to evolve for the necessities of the good functioning of the project and the product.

2. For what purposes are these data collected ?

Data processing concerning users, namely Students, their Parents, or Teachers, consists of collecting and storing information about their use of the Mathia service. This information is collected for the following purposes:

  • Manage site security to prevent SPAM and abuse.
  • Understand usage and improve the user experience.
  • Inform Parents or the Teacher of the student’s progress.
  • Inform user families about all Mathia-related news.

3. Limitation and Relevance

We commit to limiting our data collection to the data strictly necessary for the intended processing purpose, without which we could not provide the MATHIA service in a qualitative manner.

4. With whom do we share this data ?

To ensure the best possible quality of service, we are led to communicate the collected data to various authorized recipients, namely:

  • Our internal services: technical and functional administrators.
  • Our subcontractor :
    • OVH for server hosting.
    • The online payment platform Stripe.

 

The data controller guarantees that its subcontractor complies with the GDPR and that no transfer of personal data outside the European Union will be made.

5. How long do we keep your data ?

Your data is stored in our databases for the duration necessary for the intended processing and according to the conditions provided by the GDPR. Beyond this duration, the data is destroyed or archived according to current legislation. For more details on these durations, we provide a summary table below :


Type of data: Browser and connection data.


Retention period: 60 days after data generation.

6. Where is your data hosted ?

The mathia.education site is hosted by : OVH, with its head office located at : 2 rue Kellermann – 59100 ROUBAIX. The host can be contacted at the following phone number : +33 9 72 10 10 07. The data collected and processed by the site are exclusively hosted and processed in France.

7. Who is responsible for data processing?

The data controller for the companion site is VMPS CORPORATION. The data protection officer is Mr. Samuel Imbert. You can reach him by email at dpo@mathia.education. The data controller commits to protecting the collected personal data, not transmitting them to third parties without the user being informed, and respecting the purposes for which this data was collected. In the event that the integrity, confidentiality, or security of the user’s personal data is compromised, the data controller commits to inform the user by any means.

8. What are your rights regarding the data concerning you ?

You have a right of access, rectification, and erasure of your personal data, in accordance with the provisions of the law of January 6, 1978, and the GDPR. The user of the site can request access, rectification, or deletion of their personal data by contacting dpo@mathia.education.

9. Minors

In accordance with the revised version of the Data Protection Act, transposing the GDPR requirements into French law and setting the “digital majority” at 15 years, and in order to protect the personal data and privacy of minors, we request the consent of the person holding parental authority for any registration of a student under 15 years of age to the collection of all data concerning him, namely his use of the MATHIA application, in particular the actions carried out and their voice recordings.

10. Security

We implement all useful technical and organizational measures concerning the nature of the personal data you entrust to us, and the risks presented by their processing – to preserve the security of your data and prevent them from being distorted, destroyed, damaged, or accessed by unauthorized third parties. For this purpose, we implement technical measures such as firewalls; organizational measures with a unique username and password system for each of our internal or external collaborators; physical protection means, etc. The site has an SSL certificate to ensure that the information and data transfer through the site are secure. An SSL (“Secure Socket Layer”) certificate aims to secure data exchanged between the user and the site.

11. Cookies and Trackers

We may use cookies installed on your machine for the purpose of maintaining your connection to the MATHIA service and for statistics. The necessary cookies are as follows: pages viewed, site searches, downloads, geographical origins, devices, browsers, timestamps, user ID. They correspond to measures strictly necessary for proper site administration. You have the option to accept non-essential cookies from Youtube to view videos.

12. Conditions for modifying the privacy policy

This privacy policy can be consulted at any time at the following address: https://lms.mathia.education/page/politique-confidentialite. The data controller reserves the right to modify it to ensure its compliance with current law. Therefore, the user is invited to regularly consult this privacy policy to stay informed of the latest changes made to it. The user is informed that the last update of this privacy policy occurred on September 25, 2023.

13. Complaint to the CNIL

If you believe, after contacting us, that your rights to your data are not respected, you can file a complaint with the CNIL.