Privacy Policy


Last updated: February 2026

MODAL Group attaches particular importance to the protection of personal data in accordance with the amended French Data Protection Act (Loi Informatique et Libertés) and the General Data Protection Regulation (GDPR).

This document presents the data protection policy implemented within the organization regarding the collection, storage, processing of data, and the sharing of data with third parties.

MODAL Group undertakes to collect, process, and retain personal data for specific, legitimate, and relevant purposes, in accordance with the applicable legal bases.

MODAL Group maintains an up-to-date register of processing activities carried out under its responsibility, describing:

  • The name and contact details of the data controller
  • The purposes of the processing
  • A description of the categories of data subjects
  • The categories of recipients
  • The retention periods for the various categories of data
  • A general description of the technical and organizational security measures in place

 

MODAL Group complies with its obligations regarding the right to information and access to data in accordance with Articles 13 to 21 of the General Data Protection Regulation (GDPR).

Data subjects may exercise their rights by writing to:
MODAL Group, 345 rue Louis de Broglie, 13100 Aix-en-Provence, France,
or by sending an email to (general email) and providing proof of identity.

MODAL Group staff are regularly made aware of data protection principles as well as the risks relating to privacy and individual freedoms. Our company has an IT charter in place, and our staff—who are bound by professional confidentiality—have signed confidentiality agreements.

Each user is authenticated. Password complexity complies with the recommendations of the French Data Protection Authority (CNIL), as do the procedures and frequency for password changes.

Authorization profiles are implemented to restrict access only to the data necessary for each user.

The internal IT network, as well as servers and workstations, are protected by passwords and equipped with firewall and antivirus software that are regularly updated.

Data backups are regularly carried out on NAS systems and in the cloud, allowing data restoration as part of a formalized business continuity and recovery plan.

MODAL Group only works with subcontractors that provide sufficient guarantees regarding data protection.

Data exchanges with subcontractors are governed by contractual amendments specifying obligations compliant with the General Data Protection Regulation (GDPR).