Privacy,
Data
& Cookies.
Last updated: March 1, 2026 · Version 2.1. At Security255, we process your data with the same rigor with which we protect our clients’ data.
The data controller is Security255, a company registered in France.
Contact / DPO:privacy@security255.com
This website is subject to the General Data Protection Regulation (GDPR — EU 2016/679), the Loi Informatique et Libertés, the Loi pour la Confiance dans l'Économie Numérique (LCEN) and, for Swiss contacts, the LPD/nLPD.
Security255 collects only strictly necessary data. We do not sell or commercialize personal data to third parties.
Contact data
Name, email address, company, and message — collected through the contact form.
Browsing data
Anonymized IP address, browser type, visited pages, and session duration through technical cookies.
Communication data
Content of emails or messages sent directly to Security255.
Your data is processed exclusively for:
Contact management: responding to inquiries submitted through the form or by email.
Service delivery: contract execution and communication during the project.
Technical operation: security, fraud prevention, and website integrity.
Legal obligations: retaining records when required by law. Security255 does not send unsolicited commercial communications.
Each processing activity is based on a legal basis under Article 6 of the GDPR:
Contact responses: Legitimate interest (Art. 6.1.f) — B2B business relationships.
Contract execution: Performance of a contract (Art. 6.1.b).
Technical cookies: Legitimate interest — website functionality.
Analytics cookies: Consent (Art. 6.1.a) through the cookie banner.
Legal obligations: Legal obligation (Art. 6.1.c).
Your data is not shared with third parties for commercial purposes. Access is limited to:
Hosting and cloud providers bound by GDPR-compliant data processing agreements.
Professional advisors (legal and tax advisors) under confidentiality obligations.
Public authorities when disclosure is legally required.
For providers located outside the EEA, Security255 ensures appropriate safeguards through the European Commission’s Standard Contractual Clauses (SCCs).
Unconverted inquiries: 3 years from the last contact.
Customer data: 10 years after the end of the contractual relationship (French accounting obligation).
Server logs: 12 months (LCEN legal obligation).
After these periods, data is securely deleted or irreversibly anonymized.
Under the GDPR, you have the rights of: access, rectification, erasure ("right to be forgotten"), restriction, portability, objectionandwithdrawal of consent at any time.
To exercise your rights, contact privacy@security255.com. We will respond within a maximum of one month. In case of disagreement, you may file a complaint with the CNIL (www.cnil.fr).
In accordance with Article 82 of the Loi Informatique et Libertés and CNIL guidelines, cookies that are not strictly necessary require your prior consent.
Technical cookies — no consent required
s255t — Visual theme preference (light/dark). Stored in localStorage. Persistent.
Analytics cookies — consent required
If enabled, they collect anonymous usage statistics to improve the website. Duration: 13 months.
Security255 does not use advertising cookies or third-party tracking cookies. You can delete cookies from your browser settings at any time.
Security255 services are intended exclusively for businesses and professionals. This website is not intended for minors under 18.
If we became aware that we had received data from a minor, we would proceed with its immediate deletion. Contact privacy@security255.com if this is the case.
Security255 may update this policy to reflect regulatory or technical changes. Any significant change will be communicated through a visible notice on the website with reasonable advance notice.
The current version will always be available at this URL. Current version: 2.1 — March 1, 2026. Inquiries: privacy@security255.com.