Data protection
ORVION attaches fundamental importance to the protection of the personal data of its clients and contacts. This policy describes the conditions under which we collect, use, and protect the information entrusted to us.
The controller of data collected through this site and during commercial engagements is:
This website does not automatically collect any personal data. No tracking cookies, no behavioral analytics tools, and no marketing devices are deployed.
When you contact us by email, you may transmit personal data (name, position, professional contact details, context of your request). This information is collected solely to respond to your request, organize an initial conversation, and, where appropriate, formalize an engagement proposal.
During an engagement, additional data may be processed: information on the client organization, operational or financial data, information about identified project stakeholders. The processing of such data is the subject of specific commitments formalized contractually.
The personal data we collect is used exclusively for the following purposes:
No data is used for unsolicited commercial prospecting. No data is sold, transferred, or rented to third parties.
The data collected is only accessible to ORVION's consultants and collaborators strictly involved in the relationship or engagement concerned. It may be communicated to technical sub-processors (hosting, professional messaging) only to the strict extent necessary for service delivery, and under contractual confidentiality commitments.
Data collected in the context of contact requests not followed by a contractual relationship is retained for a maximum period of three years from the last exchange. Data relating to executed engagements is retained in compliance with applicable legal and tax obligations, and at minimum for the duration required to follow up on the contractual relationship.
Beyond these periods, the data is either deleted or irreversibly anonymized.
We implement technical and organizational security measures designed to protect data against unauthorized access, loss, alteration, or disclosure. Storage media used are subject to appropriate encryption, authentication, and logging protocols.
Our consultants are trained in cybersecurity best practices. Access to data is strictly limited to authorized personnel, on a least-privilege basis.
Subject to applicable personal data protection regulations, you have the following rights regarding data concerning you:
To exercise these rights, simply write to us at contact@orvion-consulting.com, specifying the subject of your request. We commit to responding as quickly as possible and at the latest within one month.
Data collected may be processed in several jurisdictions, in particular in the United States and the European Union, depending on the location of our consultants and technical providers. Any international transfer is subject to appropriate contractual safeguards, ensuring a level of protection equivalent to that of the originating jurisdiction.
This privacy policy may be updated at any time, in particular to reflect legal, regulatory, or technical developments. The applicable version is the one online at the time of consultation. We invite you to consult this page regularly.
For any question relating to this privacy policy or to the processing of your personal data, you may write to us at: contact@orvion-consulting.com.
Last update: 2026.