PRIVACY POLICY
PERSONAL DATA PROTECTION POLICY
The data controller implements a policy enabling it to collect and process certain personal data of its Users (the "Personal Data"), in compliance with their rights and the regulations in force in France, particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (the "RGPD") and any other legal or regulatory provisions adopted in application of the RGPD (together, the "Regulations").
This policy applies to all Users of the Site and to all uses made of their Personal Data. It is based on the principles described below, of which Users are informed.
ARTICLE 1 - NATURE OF THE PERSONAL DATA COLLECTED
The data controller undertakes only to collect Personal Data that is strictly necessary and relevant to the purposes for which it is processed, in a lawful manner and in accordance with the Regulations.
Mandatory Personal Data is indicated on the collection forms specific to each Process, such as surnames, first names, email addresses and passwords.
The data controller does not process any "sensitive" Personal Data within the meaning of the Regulation.
COOKIES:
Each time the Site is used, cookies may be automatically installed on the User's browser.
Cookies are small pieces of text sent to a web browser by a website. A cookie file is stored in the User's web browser and enables the Site to recognise the User and to ensure accessibility and navigation on the Site, as well as to improve navigation performance on the Site.
When browsing the Site, the data controller may use technical and browsing cookies to ensure the smooth operation of the Site, for which the User's consent is not required.
ARTICLE 2 - CONTROLLER OF THE PERSONAL DATA COLLECTED
Users' Personal Data is processed by the controller in its capacity as joint controller of Personal Data within the meaning of the Regulation (hereinafter referred to as the controller).
The Data Controller is responsible for determining the purposes and means of processing Personal Data.
He can be contacted by email at:
The Data Controller undertakes to use the Personal Data solely for the specified purposes. It undertakes to take all the necessary precautions and to put in place the technical and organisational measures with regard to the nature of the Personal Data and the risks presented by the processing to protect the Personal Data from accidental or unlawful destruction, accidental loss, alteration, unauthorised disclosure or access or any other unlawful form of processing.
In the event that the integrity, confidentiality or security of the User's Personal Data is compromised, the Data Controller undertakes to inform the User by any means necessary.
ARTICLE 3 - PURPOSES OF PERSONAL DATA PROCESSING
The Personal Data collected by the data controller are processed for the following purposes:
- provide and manage access to the Site and all its functions and content, as well as their consultation or use by Users;
- Enable and manage Users' participation in the Process and monitor it;
- inform the User of any changes made to the Site;
- to organise the follow-up of the relationship with Users, in particular by sending newsletters or e-mails relating to the Process or the Organiser's activity;
- provide assistance to Users and manage their complaints;
- organise the management and follow-up of Users' requests relating to the exercise of their rights as defined below;
- enable the management of any disputes with any User;
- to monitor the use of the Site and to enable the security of the Site to be managed;
- detect, prevent and deal with technical problems;
- to enable the data controller to compile anonymous statistics on the Site's activity in order to measure User satisfaction and the quality of its content and functions and, in so doing, to improve and optimise the Site and its content and functions.
The data controller may also use Personal Data for any other purpose required by law or the courts.
The legal basis for processing personal data is the User's consent.
ARTICLE 4 - RETENTION PERIOD FOR PERSONAL DATA
In accordance with the Regulations, Personal Data collected by the data controller is kept for no longer than is necessary for the purposes for which it is processed.
Personal Data is kept for as long as the User is active, then for a period of five (5) years from the end of the services or in the event of inactivity, and is then deleted.
ARTICLE 5 - TRANSMISSION OF PERSONAL DATA TO A THIRD PARTY
The data controller may communicate Personal Data to its subcontractors, service providers and suppliers solely for the aforementioned purposes. For example, when the data controller requires the assistance of its subcontractor, the company EMUNDUS SAS, in managing the Site and providing technical support to Users.
Personal Data is processed in the European Economic Area (EEA).
ARTICLE 6 - USERS' RIGHTS
The User has a number of rights under the Regulations, listed below:
- A right of access to his/her Personal Data: The User has the right to obtain clear, transparent and comprehensible information concerning the processing of his/her Personal Data (in particular the nature of the Personal Data used, for what purposes, etc.) as well as a copy thereof;
- A right to object to the processing of his/her Personal Data, subject to justification of reasons relating to his/her particular situation, and a right to request the limitation of the processing of his/her Personal Data, in certain cases provided for by the Regulation;
- A right of rectification: Users have the right to have their Personal Data rectified if it is inaccurate or incomplete;
- A right to withdraw your consent;
Finally, all Users have the right to lodge a complaint with the Commission Nationale Informatique et Libertés (CNIL) for France regarding the processing of their Personal Data. The User is encouraged to contact the Data Controller prior to any complaint, in order to try to resolve the problem.