PRIVACY POLICY
Date of last modification: 13/06/23
We are committed to ensuring that the collection and processing of your data, carried out from the Comité Sérusier website, complies with the General Data Protection Regulation (RGPD) and the French Data Protection Act (Loi Informatique et Libertés). This policy informs you about the way in which the Comité Sérusier, its sub-contractors and any partners process your personal data. This policy applies in particular to customers and users of the Comité Sérusier’s offers and services. It may be supplemented by specific information brought to the user’s attention in relation to a particular offer or service.
Cookies
A cookie is a small computer file, a tracer, which is deposited and read, for example, when a website is consulted. The use of these tools is subject to your consent if they are not strictly necessary for the operation of the site concerned.
Protection against SPAM
In order to filter messages recognised as spam via the contact forms, we use a service that analyses the data transmitted: reCAPTCHA. Use of these forms implies acceptance of the confidentiality policies specific to these services, described below. Google reCAPTCHA (Google Ireland Limited) is a service for protecting form entries on our site. It is used to differentiate between human input and automated abuse. Use of reCAPTCHA is subject to Google Ireland Limited’s Privacy Policy and Terms of Use. Data transmitted: cookies and usage data. Place of processing: Ireland.
Forms and teleservices
Each form or teleservice limits the collection of personal data to what is strictly necessary (data minimisation) and indicates in particular :
- the purposes for which the data is collected ;
- whether this data is obligatory or optional for the management of your request;
- who will be able to access it (in principle, only the Comité Sérusier, unless it is specified on the form that it will be passed on to a third party for the purposes of managing your request);
- your rights in terms of personal data protection and how to exercise them with the CNIL.
The personal data collected as part of the services offered on the Comité Sérusier website are processed using secure protocols and enable the Comité Sérusier to manage the requests received in its IT applications.
What are your rights?
You have the right to access, rectify and delete your personal data. You may request the portability of this data. You also have the right to object to the processing carried out or to request that it be restricted. You may also issue instructions concerning the retention, deletion or communication of your personal data after your death.
How can you exercise your rights?
You may exercise your rights and contact the Comité Sérusier at any time by sending a signed letter together with a copy of your identity document to the following address
5 place Paul Gauguin
29930 Pont-Aven
If you do not receive an adequate response, you may lodge a complaint with the Commission Nationale de l’Informatique et des Libertés (CNIL).
Purposes of processing your personal data
The Comité Sérusier only processes personal data for specific, explicit and legitimate purposes. The Comité Sérusier does not process this data in a way that is incompatible with these purposes. To this end, the purposes pursued by the Comité Sérusier are as follows:
Processing of contact form data
The collection, transmission and recording of data in order to contact the Comité Sérusier: Sending a reply email
Customer knowledge and website audience statistics
We may use data to better understand our customers or for statistical purposes to analyse our site activity and improve the services we offer. For example, we measure the number of pages viewed, the number of visits to the site, visitor activity on the site and the frequency with which visitors return.
What data is processed?
The Comité Sérusier only processes data or a category of data if it is strictly necessary for the intended purpose. You can find information on these purposes above. The Comité Sérusier processes the following categories of data:
- Identity data: First name, surname, date of birth, ID, age, company profile, etc.
- Contact data: Email, postal address, telephone number, etc.
- Location data
Who receives your data?
The data collected is intended for the site’s internal departments and its subcontractors. The data processed may also be passed on to the competent authorities, at their request, as part of legal proceedings, as part of legal investigations and requests for information from the authorities or in order to comply with other legal obligations.
Subcontractors; Services; Outside EU ?
ID Interactive; Hosting; No
Google Analytics; Statistics tool; No
How is your data secured?
The Comité Sérusier ensures that your data is treated with the utmost security and confidentiality, including when certain operations are carried out by subcontractors. To this end, appropriate technical and organisational measures are put in place to prevent the loss, misuse, alteration and deletion of your personal data. These measures are adapted according to the sensitivity of the data processed and the level of risk presented by the processing or its implementation.
Data retention period
The useful administrative life (DUA) is the length of time for which archived documents, data or information must be kept and kept in a condition to be consulted and used, either by those who produced them or by archive services. You will find below the administrative useful life (DUA) applicable to the main procedures managed by the Comité Sérusier. The useful life covers the storage period in the active database and in the internal archives.
Procedures; Time limit
Processing of contact form data; 3 years
Referral to the data controller; 3 years
Modification of the data protection policy
This personal data protection policy may change from time to time.