COOPERATIVE AND PARTICIPATIVE SOCIETY (SCOP) and the GDPR

A cooperative and participatory society (SCOP) is a form of business that operates based on the cooperation and participation of its members. SCOPs are for-profit businesses, but they are also focused on achieving social and environmental objectives.

The Cooperative and Participatory Society (SCOP) is primarily aimed at employees of a company who wish to engage in an economic model based on participation and cooperation. SCOPs are generally created by workers who have a strong interest in economic democracy and who seek to transform their company into a more equitable and participatory enterprise.
SCOPs may also be of interest to entrepreneurs looking to create a business based on cooperative and participatory principles. These entrepreneurs may be individuals seeking to create a business with a strong social or environmental dimension, or seeking to implement a fairer and more equitable economic model.
SCOPs can be created in any sector of activity, but they are particularly suitable for medium to large companies. SCOPs can also be an attractive option for struggling companies looking to restructure and involve workers more in the management of the company.

SCOPs are often created by groups of workers who wish to transform their company into a more democratic and participatory enterprise. Members can also be recruited through co-optation, that is, through membership proposed by existing members.
SCOPs are governed by specific laws in many countries, including France, where they are particularly widespread. In France, SCOPs can be created in all sectors of activity, from industry to crafts, including commerce and services.

The personal data processed by a cooperative and participatory company (SCOP) may vary depending on the company's activities and processes. SCOPs may process personal data concerning different types of stakeholders, including:

• SCOP Members: Personal data of SCOP members may include information such as their name, address, telephone number, email address, age, gender, marital status, education, professional experience, skills, opinions and preferences.
• Customers: Customers' personal data may include information such as their name, address, telephone number, email address, age, gender, marital status, occupation, purchase history, preferences, opinions and comments.
• Suppliers: Suppliers' personal data may include information such as their name, address, telephone number, email address, SIRET number, legal status, activity, supply history, products or services offered, preferences and comments.
• Employees: Employee personal data may include information such as their name, address, telephone number, email address, age, gender, marital status, education, work experience, skills, salary, benefits, leave, working hours, evaluations, comments and opinions.

The personal data processed by a SCOP may include sensitive information, such as health data, political or religious opinions, sexual orientation, criminal record, or genetic data. The SCOP must be particularly attentive to the protection of this sensitive data, in accordance with local regulations on the protection of personal data.

In summary, SCOPs must comply with the data protection principles set out in the GDPR and implement appropriate security measures to protect the personal data they process. SCOPs must also inform data subjects of the use of their data and obtain their consent before processing it, particularly for sensitive data.