Skip to main content



The GDPR applies to companies, public bodies and associations regardless of their size or activity, as long as they process personal data of natural persons located on the territory of the European Union. The applicability criterion is therefore not that of the place of establishment of the controller. The GDPR also applies to companies headquartered outside the EU that process the data of EU citizens.



Data processing means any operation carried out on personal data, whether automated or manual, such as, for example, the collection, recording, storage, modification, consultation, dissemination or deletion of personal data.

In accordance with the European laws of 2016, OKAN retains, uses and protects data relating to personal management obligations, commercial contacts containing personal data, pictures and publications on this site and the networks, visitors’ IP addresses and cookies.



    1. Request information about the processing of your personal data ;
    2. Obtain access to the personal data held about you;
    3. Request that incorrect, inaccurate or incomplete personal data be corrected;
    1. Request that the personal data be erased when they are no longer necessary or if their processing is unlawful;
    2. Oppose the processing of your personal data for prospecting purposes or for reasons related to your particular situation ;
    3. Request the limitation of the processing of your personal data in specific cases ;
    4. Retrieve your personal data, in a used and machine-readable format, for personal use or to transfer it to another organization;
    5. Request that decisions based on automated processing which concern or significantly affect you and based on your personal data are taken by natural persons and not only by computers. In this case, you also have the right to express your opinion and to contest the said decisions;
    1. In the event of material or moral damage linked to the violation of the GDPR, you have a right of recourse. You can file a complaint with the National Commission for Computing and Liberties (CNIL) or bring a collective action, in particular by appealing to approved national consumer protection associations.



As an ethical player in human resources consulting, OKAN undertakes to :

– Respect the principle of protection of personal data and privacy imposed by the regulations, from the design of any project;

– Identify the processing that they implement in a register of processing;

– Be able to prove that the processing of personal data implemented complies with the applicable rules, in particular by adhering to codes of conduct and obtaining certification ;

– Notify any breach of personal data by the controller and the processor to the authorities and the persons concerned;

– Carry out a privacy impact study for risky processing;

– Appoint a data protection officer for public bodies and companies whose main activity leads them to carry out regular and systematic monitoring of people on a large scale or even bodies that process so-called “sensitive” data or data relating to criminal convictions and offences;

– Ensure that individuals are informed, in a clear and concise manner, of the data retention period, the existence of profiling, their rights and available remedies;

– Allow the persons whose data are processed to exercise their rights (to be forgotten, to the portability of data, to limitation, etc.).