ARTICLE 1: PREAMBLE
The way in which their personal data are collected and processed. All data that could identify a user should be considered as personal data. These include the first name and last name, age, postal address, email address, location of the user or his IP address.
What are the rights of users regarding this data;
Who is responsible for the processing of personal data collected and processed;
To whom these data are transmitted;
Possibly, the policy of the site regarding files & cookies.
General conditions of sale: https://www.cinedecors.net/en/conditions-generales-de-vente
PERSONAL DATA COLLECTED AND PROCESSED IN THE CONTEXT OF
NAVIGATION ON THE SITE
1- DATA COLLECTED AND PROCESSED AND METHOD OF COLLECTION
The personal data collected on the site cinedecors.net are the following:
The information given by the user in the registration forms (last name, first name, address ...) allowing the creation of his account, The technical characteristics of the means of connection to the website (size of the screen, IP address ...), and possibly information on the use of the site: number of orders, time spent, articles viewed ...
This data is collected when the user performs one of the following operations on the site:
subscribes to the site, buys a product on the site, reads an article of information, subscribes to a newsletter, moreover, during a payment on the site, it will be kept in the computer systems of the publisher of the site a proof of the transaction including the purchase order and the invoice. The data controller will store all the data collected for a period of: between 1 day and 3 years, for simple visits, up to 6 years if the user validates a request. command. Data collection and processing meet the following objectives: creation and control of access to customer accounts, creation of documents, completion of formalities, monitoring of payments and invoicing, connection with third party partners, sending of information marketing and commercial.And more generally all activities related to the sale of services or products related to the information presented on the website.
2- TRANSMISSION OF DATA TO THIRD PARTIES
2.1. Sharing your personal data with third-party companies
When browsing the Site, users' personal data may be transmitted to
external service providers. These third parties provide a service on our behalf and on our behalf for the purpose of enabling the proper functioning of payments by credit card and other Services, or are likely to offer their services or products to users. to be transferred to countries outside the European Union (such as the United States) for the purpose of processing your requests and securing data of a
staff. In accordance with the RGPD, all transfers of personal data to a country outside the European Union and / or not offering a level of protection deemed sufficient by the European Commission have been the subject of transboundary flow agreements in accordance with standard contractual clauses enacted by the European Commission and declared to the CNIL. Other transfers of personal data to the United States, including CRM, are governed by US PRIVACY SHIELD (Shield
European Union-United States Data Protection: click here for more information.
We will never share, without obtaining your prior consent, your personal data with third-party companies for marketing and / or commercial purposes.
2.2. Sharing with authorities: We may disclose your personal data to
administrative or judicial authorities when their disclosure is necessary for the identification, prosecution or prosecution of any individual who may prejudice our rights, any other user or a third party. We can finally be legally obliged to disclose your personal data and can not in this case oppose it.
3- ACCOMMODATION OF THE DATA The site cinedecors.net is hosted by: ABOMICRO, Service of AUMAPI, SARL Capital of 16200 €, having for registered office: 304 A Rue Garibaldi 69007 Lyon
The host can be contacted at the following number: 04 22 54 02 00
The data collected and processed by the site are exclusively hosted and processed in France.
ARTICLE 4: RESPONSIBLE FOR DATA PROCESSING AND DELEGATE TO THE PROTECTION OF
1- THE PERSON RESPONSIBLE FOR THE PROCESSING OF DATA The person in charge of the processing of personal data is: Mr Francois-Maurice DALINVAL He can be contacted as follows: By telephone on 09.51.09.35.35 from Monday to Friday from 9h00 to 17h00 or by email to email@example.com The data controller is responsible for determining the purposes and means used for the processing of personal data.
OBLIGATIONS OF DATA PROCESSING MANAGER
The data controller undertakes to protect the collected personal data, not to transmit it to third parties without the user having been informed and to respect the purposes for which the data was collected. The site has an SSL certificate to ensure that information and data transfer through the site is secure.
An SSL certificate (& quot; Secure Socket Layer & quot; Certificate) aims to secure the data exchanged between the user and the site. In addition, the data controller undertakes to notify the user in the event of rectification or deletion of the data, unless this entails disproportionate formalities, costs and procedures. In the case where the integrity, confidentiality or security of the user's personal data is
compromised, the controller commits to inform the user by any means.
ARTICLE 5: RIGHTS OF THE USER In accordance with the regulations on the processing of personal data, the user has the rights listed below. In order for the data controller to comply with his request, the user is required to provide him with: his first and last name and e-mail address, and if relevant, his account number or personal space or subscriber. The Data Controller is responsible for responding to the user within a maximum of 30 (thirty) days. PRESENTATION OF THE USER'S RIGHTS IN DATA COLLECTION AND PROCESSING 1. Right of access, rectification and right to erasure The user can read, update, modify or request the deletion of the data concerning him, by following the procedure described below: the user must send an email to the person in charge of the processing of the personal data, specifying the object of his request and using the contact e-mail address which is provided above If he has one, the user has the right to request the removal of his personal space by following the procedure below: the user must send an email to the controller of personal data, specifying his personal space number . The request to delete the data will be processed within 30 working days 2. Right to portability of data The user has the right to request the portability of his personal data, held by the site, to another site, by following the procedure below: the user must make a request for portability of his personal data to the person responsible for data processing, by sending an email to the address provided above 3. Right to limit and oppose the processing of data The user has the right to request the limitation or oppose the processing of his data by the site, without the site may not refuse, except to demonstrate the existence of legitimate and compelling reasons that may prevail over the interests and rights and freedoms of the user. In order to request the limitation of the processing of his data or to object to the processing of his data, the user must follow the following procedure: the user must make a request for limitation to the processing of his personal data with the person responsible for data processing, by sending an email to the address provided above
4. Right not to be the subject of a decision based exclusively on an automated process
In accordance with the provisions of Regulation 2016/679, the user has the right not to be the subject of a decision based exclusively on an automated process if the decision has legal effects concerning him or significantly affects him in a similar.
5. Right to determine the fate of the data after death The user is reminded that he can organize what should be the future of his data collected and processed if he dies, in accordance with the law n ° 2016-1321 of the October 7, 2016.
6. Right to seize the competent supervisory authority In the event that the data controller decides not to respond to the request of the user, and
that the user wishes to contest this decision, or, if he thinks that one of the rights enumerated above is infringed, he is entitled to refer to the CNIL (National Commission for Data Processing and Freedoms, https://www.cnil.fr) or any competent judge.
PERSONAL DATA OF MINOR PERSONS
In accordance with the provisions of Article 8 of European Regulation 2016/679 and the Data Protection Act, only minors aged 15 years or over can consent to the processing of their personal data.If the user is a minor under 15 years, the agreement of a legal representative will be required so that personal data can be collected and processed. The publisher of the site reserves the right to verify by any means that the user is older than 15 years, or that it has obtained the agreement of a legal representative before browsing the site.