Drag

Security & GDPR

Data protection and security are integral to our operations. Our activities fully comply with GDPR standards to ensure transparent and responsible data handling.

...
/
About us
/
Security & GDPR

Partners & Certifications

Alliance Digitale logo with dma France, MMAF, and iab France logos on a black and blue background.
White emblem on black background featuring a shield with a padlock above a handshake, encircled by the text 'Privacy Protection Pact 2025'.
Monogram logo featuring stylized letters 'L' and 'P' intertwined in black.
Logo featuring stylized lowercase letters 'cpa' in green and blue with the words 'marketing digital' below in matching colors.
Alliance Digitale logo with dma France, MMAF, and iab France logos on a black and blue background.
White emblem on black background featuring a shield with a padlock above a handshake, encircled by the text 'Privacy Protection Pact 2025'.
Monogram logo featuring stylized letters 'L' and 'P' intertwined in black.
Logo featuring stylized lowercase letters 'cpa' in green and blue with the words 'marketing digital' below in matching colors.
Alliance Digitale logo with dma France, MMAF, and iab France logos on a black and blue background.
White emblem on black background featuring a shield with a padlock above a handshake, encircled by the text 'Privacy Protection Pact 2025'.
Monogram logo featuring stylized letters 'L' and 'P' intertwined in black.
Logo featuring stylized lowercase letters 'cpa' in green and blue with the words 'marketing digital' below in matching colors.

A foundation of trust based on personal data protection

The trust our clients place in us comes with a strong responsibility: ensuring the highest level of protection for all personal data processed within our operations. Our approach is rooted in regulatory rigor, transparency, and technical excellence. We apply best-in-class security practices, continuously monitor data integrity, and rely on clear governance designed to anticipate regulatory evolutions. This commitment ensures that every piece of data is handled ethically, responsibly, and in full compliance with GDPR.

Integrity & Confidentiality

Data must be processed in a way that ensures appropriate security.
We maintain continuous vigilance over data security and integrity, supported by our teams and trusted partners.

Lawfulness, Fairness & Transparency

Data processing must be legal, fair, and transparent to the individuals concerned.
Our practices are documented and aligned with European requirements and CNIL recommendations.

Purpose Limitation

Data must be collected for specific, explicit, and legitimate purposes.

Data Minimization

Only the data necessary for the purposes for which it is processed should be collected.
We apply an ethical approach to data processing, integrated at every stage of our projects.

Storage Limitation

Data must not be kept longer than necessary.
This is supported by internal compliance processes reinforced through procedures, regular audits, and dedicated training.

Accuracy

Data must be accurate and kept up to date.
This is ensured through close collaboration with our partners, creating a trust chain aligned with GDPR standards.

Clear and accessible GDPR documentation

To ensure transparency in our practices, we provide comprehensive documentation on our GDPR compliance. This allows our clients to better understand the legal, technical, and organizational principles governing our data management.

01
00
Tablet on a blue chair displaying a GDPR compliance guide with a laptop, phone, and pen in the background.

GDPR Guide

This guide details all our personal data processing activities, specifying the roles and responsibilities of each actor according to the purposes pursued.

Closed book titled Information Security Plan with purple checkered design and a pink bookmark ribbon.

Information Security Plan (PSSI)

The Information Systems Security Plan formalizes the policies, procedures, and protection measures implemented to ensure the confidentiality, integrity, and availability of data processed as part of our services.

Tablet on an orange round table displaying a Partner Publishers List with columns for Publishers, Country, and Compliance Status.

Partner Publishers Reference List

We provide a transparent and structured list of the publishers we collaborate with, including the compliance guarantees offered by each.

White spiral notebook titled 'ANALYSIS MEMO' with purple pixelated design, listing activity analyses, CNIL recommandations, and digital practices.

Analysis Memo

As part of ongoing compliance, our DPO regularly conducts activity analyses, incorporating the latest CNIL recommendations on digital marketing practices.

Commitment to compliance culture

Supporting our teams

GDPR Training from day one

From the moment they join, our employees receive dedicated training on key GDPR principles, complemented by a module tailored to their job scope. To support this effort, we provide internally designed practical guides, as well as materials from the Collectif for Digital Marketing Actors, to encourage the daily adoption of best practices.

Legal monitoring

Anticipating changes to adapt proactively

Our DPO and teams regularly monitor laws, CNIL recommendations, and European decisions. This information is shared with relevant departments to ensure ongoing alignment with current regulations.

Industry commitment

Contributing to responsible standards

Dataventure actively participates in leading organizations such as the CPA (where our co-founder Boris Bronkhorst sits on the Board) and the Digital Alliance. Alongside our partner law firm, Perspectives, we contribute to evolving industry standards in ethics, transparency, and GDPR compliance.

The privacy Protection Pact Label

A label attesting to our rigor and seriousness

The Privacy Protection Pact Label certifies our commitment to applying rigorous personal data protection standards. It highlights the robustness of our internal practices and confirms our dedication to maintaining a high level of compliance for our partners.

GDPR compliance process

Tablet displaying text about a legal governance framework on a dark textured surface.
Tablet on perforated black surface displaying text about GDPR compliance and data retention control on a purple background.
Legal processes
Regulatory processes

Subcontracting management

We strictly manage our agreements to guarantee quality and security. All contracts signed with our subcontractors specify the responsibilities of each party and include an annex dedicated to personal data, with mandatory GDPR compliance.

Dedicated GDPR compliance team

Our GDPR compliance is ensured by an internal and external legal team. They support us in actions related to data protection, regulatory documentation, training, and internal controls. Since 2018, we have collaborated with Perspectives, a key partner in our compliance strategy across all markets.

Publisher data licensing

The data we use is provided under license by partner publishers, enabling compliant use with rich profiling. This data is separate from our proprietary data, which remains exclusive to Dataventure.

Publisher audits

We conduct regular, strict audits to ensure that our partners comply with GDPR requirements, both technically and legally. These checks guarantee ongoing high-level compliance.

Data retention management

We have implemented an automatic data deletion system once the retention period expires.

Data subject rights

Data subject rights
We facilitate the exercise of user rights via the dedicated email: dpo@dataventure.com. An internal procedure allows us to respond quickly and efficiently to each request.

Tablet displaying text about a legal governance framework on a dark textured surface.
Tablet on perforated black surface displaying text about GDPR compliance and data retention control on a purple background.

Meet our team

GDPR compliance, legal security, and daily support: our dedicated team ensures a controlled framework

Boris Bronkhorst

Co-founder, Product & Tech

Linkedin

Gregory Margoline

Lawyer and DPO Dataventure Group

Linkedin

Justine Dannay

Associate Lawyer

Linkedin

Coralie Estanol

Legal Advisor

Linkedin

Boris Bronkhorst

Co-founder, Product & Tech

Gregory Margoline

Lawyer and DPO Dataventure Group

Justine Dannay

Associate Lawyer

Coralie Estanol

Legal Advisor