Last updated: February 7th, 2026
Hyperion Consulting (SASU)
SIRET: 94804171000013
TVA: FR73948041710
126 Avenue du General Leclerc, 92100 Boulogne-Billancourt, France
Director: Mohammed Cherifi
For the purposes of the General Data Protection Regulation (GDPR), the data controller is:
Hyperion Consulting
Email: [email protected]
Given the size and nature of our operations, the appointment of a Data Protection Officer (DPO) is not mandatory under Article 37 of the GDPR. However, for all data protection inquiries, you may contact:
A Record of Processing Activities (ROPA), as required by Article 30 of the GDPR, is maintained internally and is available upon request to the supervisory authority.
We collect several categories of information:
Information that can directly or indirectly identify you:
We use cookies and similar tracking technologies. See Section 9 for detailed information.
We process your personal data based on the following legal grounds:
We use your personal data for the following purposes:
When collecting data, we will indicate whether providing certain information is:
Consequences of not providing mandatory data: We may not be able to provide certain services to you.
We retain your personal data only for as long as necessary for the purposes set out in this Privacy Policy:
Customer data
Duration of the business relationship plus 2 years
Marketing data
Until you withdraw consent or 2 years after last interaction
Technical logs
3 months
Cookie data
See cookie policy (Section 9)
Your personal data may be shared with:
We do not sell, trade, or rent your personal information to third parties.
Your information, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ.
If we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place:
You have the right to obtain information about these safeguards by contacting us.
Under GDPR, you have the following rights regarding your personal data:
Right of access
Obtain confirmation whether we process your data and access to it
Right to rectification
Correct inaccurate or incomplete data
Right to erasure ('right to be forgotten')
Request deletion of your data under certain circumstances
Right to restriction of processing
Request limitation of processing under certain circumstances
Right to data portability
Receive your data in a structured, commonly used format
Right to object
Object to processing based on legitimate interests or for direct marketing
Right to withdraw consent
Where processing is based on consent, you can withdraw it at any time
Right not to be subject to automated decision-making
Including profiling
To exercise these rights, submit a request through our Data Subject Request form at /data-subject-request, or contact us at: [email protected]. We may need to verify your identity before processing your request. Verification will be proportionate to the sensitivity of the data involved.
You also have the right to lodge a complaint with the supervisory authority:
Commission Nationale de l'Informatique et des Libertés (CNIL)
3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07
Tel: +33 (0)1 53 73 22 22
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
However, no method of transmission over the Internet or electronic storage is 100% secure.
Cookies are small text files placed on your device when you visit our website. We use the following types of cookies:
Essential cookies
Necessary for the website to function
Analytical cookies
Help us understand how visitors use our website
Functional cookies
Remember your preferences
Marketing cookies
Used to deliver relevant advertisements
We will request your consent before placing non-essential cookies on your device. You can withdraw consent at any time through your browser settings or our cookie management tool.
Some of our pages may contain content from third-party services (e.g., Google Analytics) which may set their own cookies. We do not control these cookies.
Below is a complete list of cookies used on this website:
| Cookie | Purpose | Type | Duration | Provider |
|---|---|---|---|---|
| hyperion_cookie_consent | Stores your cookie consent preferences | Necessary | Persistent (until consent version changes) | Hyperion Consulting |
| admin_token | Authentication for the admin dashboard | Necessary | 2 hours | Hyperion Consulting |
| _ga, _ga_* | Google Analytics — distinguishes users and sessions for website analytics | Analytics | 2 years / 24 hours | |
| NEXT_LOCALE | Stores your preferred language/locale setting | Functional | Session | Hyperion Consulting |
You can withdraw or modify your cookie consent at any time by clicking the 'Cookie Settings' link in the footer of any page. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
We do not use automated decision-making that produces legal effects or similarly significantly affects you.
We use Apollo.io for business contact enrichment to qualify leads and personalize our outreach. This constitutes profiling under Article 4(4) of the GDPR. You have the right to object to this processing at any time by contacting [email protected] or submitting a request via our Data Subject Request form.
Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18.
Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.
We may update our Privacy Policy from time to time. We will notify you of any material changes by:
You are advised to review this Privacy Policy periodically. Continued use of our Service after changes constitutes acceptance of the updated policy.
If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:
126 Avenue du General Leclerc
92100 Boulogne-Billancourt, France
Response time: We will respond to your requests within one month of receipt, as required by GDPR.
This Privacy Policy is governed by French law and complies with the General Data Protection Regulation (EU) 2016/679.