Your personal data retirement savings plan

Personal data
Supplementary Retirement Savings Plan

Your personal AXA data

Our commitments

AXA Retraite Entreprise, located at 313 Terrasses de l’Arche, 92727 Nanterre Cedex, as the data controller, adheres to the following principles:

Your data is used solely for explicit, legitimate, and defined purposes related to our various business activities (such as insurance, banking, and assistance).
Only data that is necessary is collected.
We do not retain your data beyond the time required for the operations for which it was collected (such as assistance), or beyond the durations recommended by the CNIL (guidelines, practical sheets, etc.) or required by law (such as legal statutes of limitation).
We share your data only with authorized intermediaries, AXA Group companies, partners, reinsurers, service providers, or professional organizations that need it in the context of our activities.
We provide clear and transparent information, whether during the preparation of a quote or the signing of a contract, particularly regarding the purpose of data use, whether responses in forms are optional or mandatory, and your rights regarding data protection.
AXA Retraite Entreprise ensures that information about the processing of your data is kept up to date through its website.

Collective vigilance and transparency: more than an obligation, a commitment

As part of our retirement savings activities, we may collect information from our clients regarding their needs, how they financed the acquisition of a property, or the origin or destination of a financial investment...

But why all these questions?

They serve a single purpose: to advise and protect each of us. Collective vigilance and transparency are guarantees of security and trust for all of us, and this is how we operate with all our clients.

How is your personal data used?

Legal bases, purposes of processing, and retention periods

Performance of the contract or precontractual measures

Purpose

The initiation, management (including commercial aspects), and execution of your insurance contracts, which may include the use of your social security number and access to the National Register for the Identification of Individuals (RNIPP) under the required conditions.

The provision of advice and quotes based on your insurance needs, in order to offer contracts tailored to each situation.

The collection of data related to offenses, convictions, and security measures, either at the time of subscription to the insurance contract, during its execution, or as part of the management of claims and legal disputes.

AXA Retraite Entreprise uses your data for purposes based on the following legal grounds:

Performance of the contract or precontractual measures

Purpose

The provision of advice and quotes based on your insurance needs, in order to offer contracts tailored to each situation.

Compliance with our legal and regulatory obligations

Purpose

The fight against money laundering and the financing of terrorism, through the implementation of contract monitoring that may result in the drafting of a suspicious transaction report or the freezing of assets, in accordance with the Monetary and Financial Code.

Legitimate interest

Purpose

The fight against insurance fraud, which may lead to inclusion on a list of individuals presenting a fraud risk. The processing of personal data strictly necessary for fraud prevention purposes constitutes a legitimate interest.

The analysis of all or part of the data concerning you collected within the AXA Group, in order to improve our products (research and development), assess your situation or predict it (propensity scoring), and personalize your customer journey (targeted offers and advertisements). The legitimate interest pursued is customer satisfaction.

Verification of the accuracy and completeness of your information (identity, contact details, etc.), with the assistance of trusted third-party data verification organizations.

Your consent

Purpose

Commercial prospecting targeting potential clients or conducted via electronic means (email, SMS, etc.).

Use of your browsing data to offer personalized offers.

See cookie policy for more information.

As the data controller, AXA Retraite Entreprise only relies on the legal basis of legitimate interest after a thorough analysis of the balance between the necessity of the intended processing and your rights and freedoms, supported by documentation reflecting the weighing of our respective interests.

Retention periods

We retain your personal data for as long as necessary to carry out the operations for which it was collected. These retention periods may be extended to comply with regulatory requirements, to assert our legal rights, or to respond to requests from regulatory authorities.

You can find the main retention periods applicable to our commercial and contractual relationship with you in the brochure available at the following link:

Retention rules brochure (june 2025)

AXA Retraite Entreprise is legally required to ensure that your data is accurate, complete, and, if necessary, up to date.

We may contact you to verify this or update your file (for example, by recording your email address if you have contacted us by email, or by consulting databases such as directories or public registers).

Your data is collected through documents you complete when subscribing to a contract (insurance contract), through forms you fill out to exercise your coverage (claims, management actions), or during interactions with you (phone calls, emails).

We may also consult databases from public bodies or partners (including the SIRENE database of companies and their establishments, the AGIRA register for unclaimed contracts, La Poste’s relocation file for address changes, civil status registers, and genealogical databases).

The categories of data processed include identification data, contract management data, and data related to family and/or professional situations. Some of the data collected may come from publicly accessible sources.

When subscribing to your contract, certain questions—when indicated—are mandatory. In the case of false declarations or omissions, the consequences may include the cancellation of the contract (Article L.113-8 of the Insurance Code) or a reduction in the compensation paid (Article L.113-9 of the Insurance Code).

For any questions regarding the management of your personal data:

You may contact the DPO by sending an email to service.informationclient@axa.fr.

Data recipients

They will only be shared with AXA Group companies, insurance intermediaries, reinsurers, authorized partners or professional organizations, trusted third-party data verification entities, and insurers working with these entities, who require access to the data to carry out these operations.

For recipients located outside the European Union, data transfers are limited to countries listed by the European Commission as providing an adequate level of protection, or to recipients who comply with either the European Commission’s standard contractual clauses or AXA Group’s Binding Corporate Rules (BCR) for data protection.

These data may also be disclosed to supervisory authorities, competent public services, and any other public or private entity with which AXA may exchange personal data in accordance with applicable legislation.

Data security

Confidentiality measures

We are committed to ensuring the security of your data by implementing enhanced data protection through physical and logical security measures that comply with industry best practices and the standards imposed on us.

Data transfer controls

The AXA Group, present in more than 50 countries, has established a dedicated policy and governance framework for the protection of personal data internationally.

This includes strict control over the transfer of your data, particularly when such transfers occur outside the European Union and its protective legislation, under conditions that comply with applicable regulations.

AXA Retraite Entreprise currently transfers data outside the European Union to the following countries:

- United States

- Mauritius

- India

- Morocco

- Vietnam

For these transfers, appropriate safeguards have been implemented through the use of European Commission standard contractual clauses with the aforementioned recipients.

You may obtain further information by contacting: service.informationclient@axa.fr

What are your rights?

Rights of access, rectification, erasure, restriction, portability, objection, and to decide the fate of your data after your death

You have rights that allow you to:

access your data,
request its rectification in case of error,
request its erasure,
request restriction of its processing,
request its portability,
object to its processing,
define instructions regarding the fate of your data after your death.

Additionally, when you have given your consent for data processing, you may withdraw it at any time, without affecting the lawfulness of processing carried out prior to the withdrawal.

You may exercise these rights by sending an email to service.informationclient@axa.fr or by postal mail to: AXA France, Service Information Clients, 313 Terrasses de l’Arche, 92727 Nanterre Cedex.

When exercising your rights, you must provide proof of your identity by any means. However, if reasonable doubts remain regarding the accuracy of your identity, AXA France may request additional information deemed necessary, including, where required, a photocopy of an identity document.

You also have the right to lodge a complaint with the CNIL (3 Place de Fontenoy - TSA 80715 – 75334 Paris Cedex 07).

To learn more about your rights, visit the CNIL website.

This policy was approved prior to its publication by the Data Protection Officer of AXA France.

Date: September, 2025

ABOUT AXA

Partially compliant accessibility

FOLLOW AXA