<aside> 💡

Information on this trust center is generally about ISMS Copilot v1, the ancestor of current ISMS Copilot built, on another technology. If you’re using the latest ISMS Copilot 2.0, access the dedicated trust page, where we detailed how we’re taking security even further. In case you have any specific question or doubt, you can always reach out.

➡️ Find everything you need to know about ISMS Copilot 2.0

</aside>

Data Subject Rights Information

At ISMS Copilot, we prioritize your privacy and are dedicated to ensuring that you can exercise your rights under the General Data Protection Regulation (GDPR). This page outlines your rights and how you can exercise them, specifically tailored to the data we handle.

Your Rights Under GDPR

1. Right of Access:

   • You have the right to request access to the personal data we hold about you, such as your account information (e.g., email address). This right does not extend to anonymous data, such as conversation data in our chatbots.

2. Right to Rectification:

   • If any personal account data we hold about you is inaccurate or incomplete, you have the right to request its correction or completion.

3. Right to Erasure (Right to be Forgotten):

   • You can request the deletion of your personal account data when it is no longer necessary for the purposes for which it was collected, or if you withdraw consent. This does not apply to anonymous conversation data, which cannot be linked to an individual.

4. Right to Object:

   • You have the right to object to the processing of your personal data in certain circumstances, such as direct marketing.

5. Right to Data Portability:

   • You can request to receive your personal account data, such as your email address, in a structured, commonly used, and machine-readable format. This right does not apply to non-personal data or anonymous conversation data generated through our chatbots.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the details below. We will respond to your request promptly and in accordance with legal requirements.

• Contact Form: Contact ISMS Copilot Support

Verification Process

To protect your privacy and ensure the security of your personal data, we may need to verify your identity before processing your request. This may involve requesting additional information or documentation.

Response Times

We aim to respond to all requests within one month. If your request is complex or involves a large volume of data, we may extend this period by an additional two months, in which case we will inform you of the delay and the reasons for it.

Supervisory Authority

If you are not satisfied with our response, you have the right to lodge a complaint with a supervisory authority, such as the CNIL in France.