Privacy Policy

Connexion South ("Connexion South," "we," "us," or "our") respects your privacy. This Privacy Policy explains what information we collect through connexionsouth.com (the "Site"), how we use that information, the legal bases on which we rely, and the choices and rights available to you. This Policy applies to visitors and contacts located in the United States, in the European Union (including France, where we maintain an office), and elsewhere.

Controller

Connexion South is the controller of personal data collected through the Site. You can reach us at the contact details listed at the end of this Policy.

Information We Collect

Information you provide directly. When you contact us, request a proposal, sign up for updates, attend an event, or otherwise communicate with us through the Site, you may provide information such as your name, email address, postal address, phone number, employer or organization, your role, and any other details you choose to share.

Information collected automatically. Like most websites, we automatically collect certain technical information when you visit the Site, including IP address, browser type, device type, referring URL, pages visited, and timestamps. We use cookies and similar technologies to operate the Site and analyze usage.

How We Use Information

We use the information we collect to:

•       respond to inquiries, proposals, and other communications;

•       provide and improve our services and client deliverables;

•       communicate with clients, prospects, and the public about Connexion South's work and insights;

•       administer client engagements, contracts, and billing;

•       improve the Site, including through analytics; and

•       comply with applicable legal, tax, and contractual obligations.

Legal Bases (GDPR / EU and UK Visitors)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, we process your personal data on the following legal bases under the General Data Protection Regulation (EU) 2016/679 ("GDPR") and equivalent UK and Swiss law:

•       Consent (Article 6(1)(a)) — for example, when you subscribe to marketing communications or accept non-essential cookies.

•       Performance of a contract (Article 6(1)(b)) — to administer a client engagement, deliver services, or respond to a proposal request.

•       Legitimate interests (Article 6(1)(f)) — to operate and secure the Site, conduct general business communications, and analyze Site usage. Where we rely on legitimate interests, we balance those interests against your rights and freedoms.

•       Legal obligation (Article 6(1)(c)) — to comply with applicable tax, accounting, and other legal obligations.

Sharing of Information

We do not sell personal data. We share information only with:

•       service providers acting on our behalf (e.g., email service providers, hosting providers, analytics providers, CRM and billing platforms), who process personal data on our instructions and are bound by appropriate data protection terms;

•       subcontractors, advisors, and consultants engaged on a specific client matter and bound by appropriate confidentiality and data protection terms;

•       legal and regulatory authorities where required by law; and

•       successors in interest in the event of a merger, acquisition, or transfer of assets.

International Data Transfers

Because we operate in both the United States and France, personal data may be transferred between the EEA and the United States or other jurisdictions. Where required, we rely on the European Commission's Standard Contractual Clauses or other lawful transfer mechanisms to protect personal data transferred outside the EEA. You may request a copy of the relevant safeguards by contacting us at the address below.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, tax, accounting, or contractual retention requirements. When personal data is no longer needed, we delete or anonymize it.

Your Rights (GDPR / EU and UK Visitors)

If you are located in the EEA, the UK, or Switzerland, you have the following rights, subject to applicable exceptions:

•       Right of access — to obtain confirmation of whether we process personal data about you and a copy of that data.

•       Right to rectification — to have inaccurate or incomplete personal data corrected.

•       Right to erasure — to have your personal data deleted in certain circumstances.

•       Right to restriction of processing — to limit the use of your personal data in certain circumstances.

•       Right to data portability — to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.

•       Right to object — to object to processing carried out on the basis of legitimate interests, and to object at any time to direct marketing.

•       Right to withdraw consent — where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing carried out before the withdrawal.

•       Right to lodge a complaint — with a supervisory authority, including the Commission Nationale de l'Informatique et des Libertés (CNIL) in France, or another supervisory authority in your country of residence.

To exercise any of these rights, please contact us at the address below.

EU Representative (Article 27 GDPR)

Because Connexion South maintains an office in France, requests from EU data subjects can be directed to our French office.

Brian Tolleson
4 Rue D’Opio
Sophia Antipolis-Valbonne
06560
FRANCE
+33 1 89 70 24 64

State-Specific Rights (U.S. Visitors)

Residents of certain U.S. states have additional rights under state privacy laws, including the right to know what personal information we collect, the right to request deletion, the right to correct inaccurate information, and the right to opt out of certain disclosures. To exercise these rights, contact us at the address below. We will not discriminate against you for exercising these rights.

Cookies

The Site uses cookies and similar technologies to operate, secure, and analyze the Site. You can manage cookie preferences through your browser. A cookie consent mechanism for non-essential cookies will be added to the Site as part of a forthcoming update; in the interim, the categories of cookies used are limited to those strictly necessary for Site operation and basic analytics.

Children's Privacy

The Site is not directed to children under the age of 13 (or under 16 in the EU), and we do not knowingly collect personal data from children. If you believe we have collected such information, please contact us and we will delete it.

Data Security

We maintain administrative, technical, and physical safeguards designed to protect the personal data we collect. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security.

Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected by an updated effective date below.

Contact Us

Connexion South

Attn: Privacy

Email: cs@connexionsouth.com

Effective: May 22, 2026