Privacy Policy

Privacy policy and management of personal data for SCANELIS customers

As part of the use of its services, SCANELIS, in its capacity as data controller, is likely to collect and process personal data concerning you.

Scanelis is committed to respecting the rules of the protection of privacy. All processing of personal data carried out within the framework of our services complies with the applicable local regulations on the protection of personal data and in particular the provisions of the French Data Protection Act of 6 January 1978, as amended, and the General Data Protection Regulation (EU Regulation 2016/679 of 27 April 2016) or the "GDPR".

Our goal in terms of the protection of personal data is to:

  • provide clear and transparent information on how your personal data is collected and processed;
  • put in place all necessary technical and organisational measures to protect your personal data against disclosure, loss, alteration or access by an unauthorised third party;
  • retain your personal data only for as long as necessary for the purposes of the processing or service determined;
  • provide you with the opportunity to access and modify your personal data at any time.
    To ensure that the processing complies with the applicable law on the protection of personal data, we implement the appropriate technical and organisational measures.

What personal information do we collect?

The data processed by SCANELIS is limited to your surname, first name, position, postal address, telephone numbers, email address(es) and the bank details or IBAN if you have chosen to pay your invoices by direct debit.
Your personal data may be collected when you:

  • Submit a scan request sheet.
  • contact customer service via our contact form on our website, by email or by phone;
  • Create an account via an application form, email or phone call.

Why do we use your data?

Your personal information is collected for the purposes detailed below. Under no circumstances will it be exchanged or sold to third parties. They enable us to fulfil our contractual obligations to you when you order SCANELIS services.

  • Management of analysis request files
    We collect and use your personal information to register your file, follow up on the analysis (from the samples to the results), send you the analysis report and the associated invoice.
  • Customer Relationship Management
    We use and store your personal information in order to update our customer file and offer you tailored services and personalized promotional offers.
  • Customer Relationship
    We collect and store your personal information so that we can communicate with you about your records, invoices, or complaints.
  • Personalized customer area
    We collect and store your personal information in order to be able to create your personal space and ensure that it functions optimally.
  • Legal or Regulatory Requirement
    We may be required to disclose your personal data in response to lawful requests by public authorities, including to meet national security, anti-fraud or law enforcement requirements.

Who are the recipients of your personal data?

We ensure that only authorised persons within SCANELIS can access your personal data when such access is necessary for the performance of our business relationship.

Our service providers may also be recipients of personal data that is strictly necessary for the performance of the services we have entrusted to them (e.g. an analysis laboratory to which a serology analysis is subcontracted). Transactions with a service provider receiving your data are subject to a written agreement in order to ensure the protection of your data and the respect of your rights.

How long is your personal data stored?

The data is stored in compliance with French legislation and European regulations.

SCANELIS undertakes to keep your personal data for no longer than is necessary for the purposes for which they are processed. In addition, SCANELIS retains your personal data in accordance with the retention periods imposed by the applicable laws in force and in accordance with the regulatory obligations to which SCANELIS submits in the context of carrying out some of its analyses.

At the end of these periods, we may proceed with the archiving of the data, in particular to meet the legal and tax limitation periods and those of legal actions.

How can you exercise your rights?

In accordance with the applicable regulations on the protection of personal data, you may, at any time, exercise the following rights:

  • the right to object to our processing of your personal data;
  • right to access your personal data;
  • the right to rectify it;
  • right to erasure;
  • right to data portability;
  • right to restriction of processing;
  • The right to set guidelines for the retention, deletion and communication of your personal data after your death.
    You also have the right to object to the processing of your personal data for commercial prospecting purposes.

You can exercise your rights:

  • by e-mail using the Contact form from our website or directly to the following addresses: or
  • by post accompanied by a copy of any identity document addressed to:

9 Allée Charles Cros
CS 70006, 31771 Colomiers Cedex

Regarding the objection to the processing of your personal data for commercial prospecting purposes, you can unsubscribe by following the link indicated on our emails or by contacting us via the various means described above.

If you would like more information on the content of these rights, please contact us at the addresses above.

We will provide you with answers to your requests within one month of receiving your requests.

You also have the right to appeal to the Commission Nationale de l'Informatique et des Libertés (CNIL) in the event of a violation of the applicable regulations on the protection of Personal Data and in particular the GDPR.

Securing the data collected

SCANELIS implements organizational and technical security measures adapted to the degree of sensitivity of the personal data to protect it against any malicious intrusion, loss, alteration or disclosure to unauthorized third parties.

As all personal data is confidential, access to it is limited to SCANELIS employees or service providers acting on behalf of SCANELIS, who need it in the context of the performance of their missions. All persons with access to your data are bound by a duty of confidentiality and may be subject to disciplinary measures and/or other sanctions if they fail to comply with these obligations.

Transactions with a third-party recipient are subject to a contract in order to ensure the protection of your personal data and the respect of your rights.


SCANELIS reserves the right to adapt the personal data protection policy and undertakes to inform you on its website of any changes or additions.

Last updated: 15/01/2024