Personal Data Protection Policy
Last update: 28 February 2025
This website (hereinafter the “Website”) is the corporate website of Société de Distribution de Produits Maraîchers et Horticoles du Maroc Disma International, operating under the trade name “Azura” (hereinafter “Azura,” “we,” or “our”).
When accessing, browsing, and/or using the Website, you may be asked to provide Azura with personal data about yourself.
We invite you to read this policy carefully, which explains how Azura uses your personal data in connection with the Website and how you can exercise your rights in this regard. This policy supplements any other document or information notice referring to it.
If necessary, you may address any questions directly to Azura by sending an email to protectiondesdonnees@azura-group.com.
1. WHO IS RESPONSIBLE FOR PROCESSING YOUR PERSONAL DATA?
- In its capacity as publisher of the Website, Azura is the data controller for the personal data collected in connection with the administrative, operational and commercial management of the Website, including facilitating contact between you and the Azura Group entity responsible for the job offer to which you may be applying.
- In its capacity as recruiter, the Azura Group entity responsible for the job offer to which you apply is the data controller for the personal data collected for the purpose of processing your application, where applicable.
2. WHAT PERSONAL DATA MAY BE PROCESSED BY AZURA?
All data that you enter on the Website or communicate to Azura, including:
| Categories of data | Examples of data |
| Identification data | Title, first name, last name |
| Coordonnées | Email address, postal address, telephone number |
| Data relating to your interactions with Azura | Communications with Azura services (date, time, subject, content) |
| Data relating to your application for a job offer | Current situation, position applied for, level of education, availability, mobility, CV, cover letter, video, and any other information voluntarily provided as part of your application |
Some of this data is mandatory, while other data is optional in order to benefit from the services offered on the Website. The mandatory or optional nature of the personal data to be provided is indicated on the online forms. If you choose not to provide the required mandatory data, Azura will not be able to process your request (such as a contact request or a job application).
In addition, certain data is automatically collected by the Website through cookies and other trackers, including:
| Categories of data | Examples of data | Purpose |
| Connection and browsing data | Date and time of visit, IP address, device, browser, operating system, system configuration data, pages viewed | This data is necessary for the proper technical functioning of the Website, as well as for audience measurement purposes. For more information on cookies and other trackers, please refer to the Website’s Cookie Management Policy. |
3. WHY DOES AZURA USE YOUR PERSONAL DATA?
Azura uses your personal data solely for the following purposes:
| Purpose | Examples of use of your personal data | Legal bases |
| Processing your contact request | – process and respond to your contact request | Azura’s legitimate interest in processing contact requests addressed to it |
| Processing your job application | to review your application where applicable, to forward your application to the relevant Azura Group entity responsible for the job offer to which you are applying if your application is successful, to arrange an interview to assess your suitability for the position and your professional skills to contact you again if necessary | Pre-contractual measures |
| Creation of a CV database | – to contact you again in order to inform you of any new job offers that may be of interest to you and match your profile | Your consent |
| Business solicitation intended exclusively for professionals | – to send you, in your capacity as a professional, communications about Azura Group’s activities that may be of interest to you | Azura’s legitimate interest in developing its business with professionals |
| Organization of contests | – to manage the list of contest participants – to select or draw the winner – to award the prize, where applicable | Performance of the contract |
| Improvement of the Website and of your user experience on the Website | – to assess and improve the Website – to facilitate your browsing experience on the Website – to ensure the security of the Website | Azura’s legitimate interest in improving the Website and enhancing your user experience on the Website |
| Management of pre-litigation or litigation | – to take action against any identified violations – to manage any disputes or litigation | Azura’s legitimate interest in defending its rights and interests |
| Compliance with legal and regulatory obligations | – to comply with legal and regulatory obligations – to respond to your requests to exercise your rights | Legal and regulatory obligations applicable to Azura |
4. WHO MAY HAVE ACCESS TO YOUR PERSONAL DATA?
In connection with accessing, browsing, and/or using the Website, your personal data may be disclosed to the following recipients:
| Recipients | Purpose |
| Azura and its authorized staff | For the administrative, operational, and commercial management of the Website, as specified in section 3 of this policy |
| The Azura Group entity responsible for the job offer to which you are applying | Where applicable, for the purpose of forwarding your application to the Azura Group entity responsible for the job offer to which you are applying, so that it may review it and contact you if necessary |
| Azura’s subcontractors (hosting provider, IT solution and service providers, IT maintenance service providers, etc.) | For purely technical or logistical purposes related to the administrative, operational, and commercial management of the Website |
| Other third parties | Only in the event of an explicit and justified request from them, or in the case of a proven breach of legal or regulatory provisions |
| External advisors | Solely in the context of managing potential disputes and other legal matters, where applicable |
| Other third parties | Following or in connection with any restructuring, reorganization, acquisition, debt financing, merger, sale of Azura’s assets, or similar transaction, as well as in the event of insolvency, bankruptcy, or receivership proceedings in which personal data may be transferred to one or more third parties as assets of Azura |
5. ARE YOUR PERSONAL DATA TRANSFERRED OUTSIDE THE EUROPEAN ECONOMIC AREA?
Where possible, your data are processed within the European Union (EU)/European Economic Area (EEA). However, since certain Azura Group entities and some of Azura’s service providers are located in countries outside the EU/EEA, your personal data may be transferred to a third country.
If the third country does not ensure a level of personal data protection equivalent to that of the European Union, Azura takes all necessary measures to protect your personal data on the basis of appropriate safeguards (including the European Commission’s standard contractual clauses). You can obtain a copy of these safeguards directly from Azura by emailing protectiondesdonnees@azura-group.com.
6. HOW DOES AZURA PROTECT YOUR PERSONAL DATA?
Azura has implemented technical and organizational measures to protect your personal data, including against potential breaches that could accidentally or unlawfully result in the destruction, loss, alteration, unauthorized access to, or disclosure of your personal data. These measures ensure an appropriate level of security and take into account the state of the art, implementation costs relative to the risks, and the nature of the data to be protected. In particular, standard SSL (Secure Sockets Layer) encryption is applied on all Website pages that require the entry of personal data.
Azura also ensures that its staff members and any persons involved in processing your personal data comply with internal rules and procedures on data protection, including the technical and organizational security measures put in place to protect your personal data. In this context, Azura’s practices are regularly reviewed and updated to maintain confidentiality and ensure that internal policies are followed.
If you identify a vulnerability or wish to report a security incident, please contact Azura directly by emailing protectiondesdonnees@azura-group.com.
7. HOW LONG IS YOUR PERSONAL DATA RETAINED?
In general, your personal data will be retained only for the period necessary to fulfill the purposes for which it was collected or to comply with applicable legal or regulatory requirements.
Except in the following cases:
- Data collected in connection with your online contact requests are retained until those requests have been fully processed;
- Data collected as part of your job application are retained as follows:
- in the event of recruitment: for the retention periods applicable to Azura Group employees.
- In the event of an unsuccessful application:
- For three (3) months from the date of the rejection decision, so that you may, where applicable, obtain an explanation of the reasons that led to this decision;
or - For two (2) years from your last active contact with the Azura Group entity concerned by the job offer, if you consent to be included in our CV database so that we may inform you of any new job opportunities that may be of interest to you;
- For three (3) months from the date of the rejection decision, so that you may, where applicable, obtain an explanation of the reasons that led to this decision;
- Connection and browsing data are retained for thirteen (13) months.
Beyond these periods, your personal data are retained:
- For three (3) years for data kept for commercial prospecting purposes (applicable only if you are a professional);
- For five (5) years for data kept for evidentiary purposes.
8. WHAT ARE YOUR RIGHTS REGARDING YOUR PERSONAL DATA?
In accordance with regulations on the protection of personal data, you have the following rights concerning your personal data:
| Your rights | Scope of your rights |
| Right of access | You have the right to request: confirmation as to whether or not Azura processes your personal data; clear, transparent and comprehensible information on how Azura uses your personal data, as well as on your rights (as set out in this policy); a copy of your personal data. |
| Right to rectification | You have the right to request the rectification of your personal data, allowing you to have them updated, corrected or completed if they are outdated, inaccurate or incomplete. |
| Right to erasure | You have the right to request the erasure of your personal data (also known as the right to be forgotten) when one of the following grounds applies: Ø you object to the processing of your personal data and there are no overriding legitimate grounds justifying the continuation of such processing (for example, a legal obligation requiring Azura to retain certain documents containing personal data); Ø you object to the use of your data for commercial prospecting purposes; Ø you decide to withdraw your consent on which the processing is based; Ø your personal data are no longer necessary for the purposes for which they were originally collected or otherwise processed; Øthe use of your personal data does not comply with applicable legislative or regulatory provisions. |
| Right to restriction of processing | You have the right to request the temporary restriction of the processing of your personal data, particularly for the purpose of carrying out verifications, in the following cases: Ø when you contest the accuracy of your information, for the time necessary for Azura to verify its correctness; Ø if the processing is unlawful and, instead of requesting erasure, you prefer to restrict its use; Ø If Azura no longer needs the data for processing purposes, but it remains necessary for you to establish, exercise or defend a legal claim; Ø If you object to the processing in accordance with your right to object, during the period required to verify whether the legitimate grounds pursued by Azura override your own. |
| Right to data portability | You have the right to request the portability of your personal data, allowing you to receive the personal data you have provided in a structured, commonly used, machine-readable format and to have it transmitted to a third party, where technically feasible. This right does not apply in all circumstances and is subject to the following conditions: Ø It applies only to your own personal data, excluding any anonymous data or data relating to third parties; Ø It must not infringe the rights and freedoms of Azura (in particular trade secrets) or of third parties (notably intellectual property rights); Ø It concerns personal data processed by automated means (therefore excluding paper files); Ø The processing is based on your consent or on the performance of a contract concluded with Azura (to verify this, please refer to section 3 of this policy). |
| Right to object | You have the right to object to the processing of your personal data where such processing is based on Azura’s legitimate interest. In this case, Azura will cease processing your data unless there are compelling legitimate grounds for the processing which override your interests, rights and freedoms (for example, compliance with a legal obligation or the establishment, exercise or defence of legal claims). |
| Right to withdraw consent | You have the right to request the withdrawal of your consent where it has been obtained, without such withdrawal affecting the lawfulness of the processing previously carried out. |
It is specified that the exercise of these rights depends on the legal basis of the processing, as indicated in the table below:
| Access | Rectification | Erasure | Restriction | Portability | Objection | |
| Consent | Yes | Yes | Yes | Yes | Yes | revocation of consent |
| Pre-contractual measures | Yes | No | No | |||
| Contract | Yes | Yes | No | |||
| Legitimate interest | Yes | No | Yes | |||
| Legal obligations | No | No | No |
As a French resident, you also have the right to set directives, be they general or specific, regarding your personal data in the event of your death (for example, their deletion or their transmission to any person of your choosing). You may revoke your directives at any time.
In certain circumstances, Azura may ask you for specific information to confirm your identity and ensure the exercise of your rights. This is an additional, appropriate security measure to make sure personal data are not disclosed to anyone who is not entitled to receive them.
For any questions or to exercise your rights, you may contact Azura directly by email at: protectiondesdonnees@azura-group.com.
If necessary, you may lodge a complaint with the Commission Nationale de l’Informatique et des Libertés (CNIL) via its website or by post at: 3, place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07. This right may be exercised at any time free of charge, apart from any mailing costs where applicable, and any costs of assistance or representation if you choose to be assisted by a third party.
9. UPDATE OF THIS POLICY
This personal data protection policy is precisely dated and may be amended and updated by Azura at any time, particularly in the event of changes to the services offered on the Site or to the applicable law. Consequently, we recommend that you review this policy each time you access the Site. Where required by applicable law, the updated policy will be communicated to you by any appropriate means.