NextStage AM (“the Group”) and all of the Group's companies and managed investment vehicles pay particular attention to respect for privacy and the protection of personal data, a pledge of respect for fundamental rights and freedoms of each one.
This personal data protection policy constitutes the Group's commitment to respecting personal data, in application of the Data Protection and Civil Liberties regulations and the General Data Protection Regulations.
The Group has appointed a Data Protection Officer, also a Data Protection Officer, with the mission of ensuring the protection of personal data in the possession of the Group as part of its activities.
The Information and Freedoms Correspondent / DPO is at your disposal at the following address:
Data Protection Officer / DPO
Legal & Compliance Department
19 Avenue George V
75008 Paris - France
Principles applicable to the protection of personal data
The Group is required to process personal data, in particular as part of its Fund management activities. This information, strictly necessary for the Group's activity, is processed in accordance with the provisions of the Data Protection Act of 6 January 1978 as amended, the European Data Protection Regulation No. 2016/679 as well as the standards enacted by the CNIL. .
As such, the Group implements all necessary procedures, mapping and controls. The Group can also have compliance with its provisions audited by an outsourced control.
Determined, explicit and legitimate purpose of the processing
The personal data stored is collected for purposes defined and necessary for the activity and which are brought to the attention of the persons concerned. The Group refrains from any use incompatible with the defined purposes. The data collected is in no case carried out without the knowledge of the persons concerned.
Proportion and relevance of data collected
The personal data collected is strictly necessary for the objective pursued by the collection and in particular in the context of the management of assets and the activities of the Group. The information collected is kept accurate and up to date without the Group being able to guarantee the accuracy of all the data.
Limited retention period for personal data
Personal data is kept for a limited period which does not exceed the period necessary for the purposes of collection. In particular, personal data is kept for periods in accordance with legal and regulatory obligations that apply to the Group in the context of its activities.
For example, we keep all of your identification data, as well as records of your transactions for the duration of the contractual relationship. These data are then archived for a period of 5 years after the end of the contractual relationship, in accordance with the regulations in force.
The Group ensures at all times that it has all the procedures and logical and organizational architecture necessary for data security and respect for their confidentiality.
The Group maps and monitors the personal data collected. By nature, cartography
corresponds to all the record keeping or data retention obligations applicable in the context of asset management.
The Group is likely to share data with third parties and subcontractors in the strictly necessary context of its activities. In this case, the Group ensures that each third party implements personal data protection systems at least equal to those in force within the Group.
Personal data may be transferred to countries located in the European Union or outside the European Union. If this is the case, the persons concerned are precisely informed, and specific measures are taken to supervise these transfers.
Rights of individuals
The Group implements all means necessary to guarantee respect for the rights of individuals to personal data concerning them. As such, it communicates on data processing and informs the persons concerned of the collection of data and the means of action for the respect of their rights, free of charge and at any time.
Each person subject to personal data processing can access them, have them rectified, request their deletion (within the limits of any applicable legal obligations) or oppose it, by writing to the Data Protection Officer.
This policy is posted on the Group's website and updated as necessary, in particular with regard to legislative and regulatory changes.