Last version

15/06/2024

Privacy Policy

Allfeat as data controller, attaches great importance to the protection and respect of your privacy. The purpose of this policy is to inform you, in accordance with the European Regulation No. 2016-679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as the "Regulation" or "GDPR"), of our practices regarding the collection, use and sharing of information that you may provide to us through our website (hereinafter referred to as the "Site").

The purpose of this policy is to inform you about the categories of personal data we may collect or hold about you, how we use it, with whom we share it, how we protect it, and the rights you have over your personal data.

What is personal data?

The term "personal data" refers to any data that identifies you as an individual. When you use the website (the "Site"), we may ask you to provide us with certain personal information about yourself.

What personal data do we collect?

By using our Site and in the context of the missions we carry out on your behalf, you are led to transmit information to us, some of which are of a nature to identify you and therefore constitute personal data (hereinafter referred to as "Data"). This Data contains in particular (i) identification data (name, first name, address, email), (ii) transaction data (bank details for payment), (iii) technical data (if necessary for the functioning of the Site), (iv) data related to the support mission that we offer (which may include specific data) and (v) relating to your navigation on our Site.

How do we use the data we collect and on what legal basis?

Simple consultation of the Site does not require registration or prior identification. It can be done without you providing any personal data about yourself. However, when you decide to subscribe to our Site's information, when you contact us directly through the Site, or when you respond to surveys, or when you send us comments, we collect this information within the framework strictly necessary for the achievement of our mission.

This collected data is used to:

- Carry out the support missions you entrust to us, manage contracts, invoice and follow up the commercial relationship with you. The treatment is based on the execution of the contract; - Carry out commercial prospecting operations. This processing is based on our legitimate interest; - To manage accounting and meet our tax obligations. This processing is based on a legal obligation;

- To respond to your requests for information and contact formulated on our Site. This processing is based on your consent;

- To assist us in maintaining a safe and secure environment on our Site. This processing is (i) based on our legitimate interest (ensuring the security of the Site), (ii) necessary to comply with our legal obligations and/or (iii) necessary for the establishment, exercise or defence of legal claims;

- To manage our Site and to carry out internal technical operations in the context of problem solving, data analysis, testing, research, analysis, studies and surveys. This processing is based on our legitimate interest (ensuring the security of our Site and improving its features).

At the time of collection of the Data, you will be informed whether certain Data must be filled in or whether they are optional. If not, the execution of your request may be restricted.

Who is the data controller?

Person responsible for this processing: BARAT Jean-Christophe

E-mail address: [email protected]

Who are the recipients of the data we collect and why do we provide them with this data?

1. Data transferred to authorities and/or public bodies

In accordance with the regulations in force, the Data may be transferred to the competent authorities upon request, and in particular to public bodies, judicial officers, public officials, and bodies responsible for collecting debts, exclusively to meet legal obligations, as well as in the case of the search for the authors of offences committed on the Internet.

2. Data transferred internally

The Data collected and processed are transferred to team members, assistants, trainees, and to any internal department of the Company.

3. Data transferred to third parties

We may work in collaboration with third party companies or consultants, self-contractors who may have access to your Data, and in particular with

- The subcontractors we use to provide IT services (database management, hosting, storage, maintenance, etc.), accounting or communication services;

- The agents, consultants, or any third party involved in the framework of the support missions that we offer.

We only provide these third parties with the Data they need to perform their services, and we require that they do not use your Data for any other purpose. These third parties will only act in accordance with our instructions and will be contractually bound to maintain the same level of security and confidentiality of your Data as we do and to comply with applicable data protection regulations.

Duration of data retention

Your Data will not be retained beyond the period strictly necessary for the purposes set out in this Policy and in accordance with the Regulation and applicable laws.

In this regard, Data used for the purposes of carrying out the assignments you entrust to us are retained for the duration of the contractual relationship and then archived in accordance with the statute of limitations.

Your Data is deleted when the retention periods expire.

Archiving means that your Data will no longer be available online, but will be extracted and stored on an independent and secure medium.

Data used for prospecting and communication purposes may be kept for a maximum of 3 years from the end of the commercial relationship or the last contact of the prospect concerned.

Your Data is deleted when the retention periods expire. Nevertheless, your Data may be archived beyond the periods provided for the needs of research, the establishment and prosecution of criminal offences for the sole purpose of making your Data available to the judicial authorities, if necessary.

Archiving implies that your data will no longer be available for consultation online but will be extracted and stored on an independent and secure medium.

How is your data protected?

All precautions and appropriate organizational and technical measures have been taken to preserve the security, integrity and confidentiality of your personal data.

If we use a service provider, we make sure that the latter complies with its security obligations, prior to the communication of your data.

Where is your data stored?

Your data is kept and stored for the duration of its processing on servers located in Cloudflares pages datacenters.

The IP can also be collected to determine the city from which you connect.

What are your rights to your data and how can you exercise them?

In accordance with applicable laws and regulations on the protection of personal data, you have a number of rights relating to your Data, namely: Right to information: you have the right to be informed about the processing of your personal data and if you want more details, you can contact us at [email protected]

Right of access: you have the right to access all your personal data at any time.

Right of rectification: you have the right to rectify at any time your inaccurate, incomplete or obsolete personal data.

A right to erasure: in certain cases, you have the right to have your Data erased. However, this is not an absolute right and we may, for legal or legitimate reasons, retain such Data.

Right to limitation: you have the right to obtain the limitation of the processing of your personal data in certain cases defined in art.18 of the GDPR.

Right to portability: you have the right to receive your personal data in a readable format and to demand their transfer to the recipient of your choice.

Right to be forgotten: you have the right to demand that your personal data be deleted, and to prohibit any future collection.

Right to lodge a complaint: with the CNIL in France, if you consider that the processing of your personal data constitutes a violation of the applicable laws.

Right to object: you have the right to object to the processing of your personal data.

Please note, however, that we may continue to process your personal data despite this objection, for legitimate reasons or to defend legal rights.

The right to withdraw your consent at any time: you may withdraw your consent to the processing of your Data where the processing is based on your consent. Withdrawal of consent does not affect the lawfulness of the processing based on consent carried out prior to such withdrawal.

The right to give instructions about what to do with your Data after your death: you have the right to give us instructions about the use of your Data after your death.

You may exercise the above rights by writing to us at [email protected]

Changes to and enforcement of the privacy policy

We reserve the right, at our sole discretion, to change this policy, in whole or in part, at any time. Such changes will be effective upon posting of the new policy. We will notify you in advance by any means necessary.

Cookies

In order to facilitate access to the Service, the Company uses cookies on its Site. Cookies are text files, often encrypted, stored in your smartphone or browser. They are created when your smartphone, tablet or computer loads an application or website: the application or website sends information to your smartphone or browser, which then creates a text file.

These elements record information on the pages that it has consulted, their date and time of consultation. Each time you return to the same application or site, your smartphone or browser retrieves this file and sends it to it.

The site may automatically collect standard information. Any information collected indirectly will be used only to track the volume, type and pattern of traffic using this site, to develop the design and layout of the site, and for other administrative and planning purposes, and generally to improve the service we offer you.

At no time do these cookies allow the Company to personally identify the User. These cookies are kept on the User's computer for no longer than one (1) month. However, the User is informed that he/she has the right to oppose the recording of these cookies, in particular by configuring his/her Internet browser to do so.

You acknowledge that you have been informed that the Publisher may use cookies. If you do not want cookies to be used on your device, most browsers allow you to disable cookies through the settings options. You can refuse to accept cookies by configuring your browser or smartphone. However, such a refusal could prevent the proper functioning of the Site. We use technical cookies throughout your browsing experience, to facilitate it and to perform certain functions.

We also use social network cookies that may be created by social platforms to allow website designers to share their content on those platforms. These cookies are only set if you give your consent. You can learn about their nature, accept or reject them. We also invite you to consult the privacy policies of the social platforms from which these cookies originate.

We use advertising cookies, which may be created not only by the website you are browsing, but also by other websites that display advertisements, announcements, widgets or other elements on the page you are viewing. These cookies are deposited only if you give your consent. You can inform yourself about their nature, accept or refuse them.

We use Google Analytics which is a statistical audience analysis tool that generates a cookie to measure the number of visits to our site, the number of pages viewed and user activity. Your IP address is also collected to determine the city from which you are connecting.

Contact

If you have any questions about this Policy or if you have any requests regarding your Data, you may contact us by sending an e-mail to [email protected]

Allfeat pattern