Privacy Policy
This privacy policy aims to explain to you why we collect your data and how we are committed to protecting it.
We are committed to protecting your personal data and your privacy.
As such, and in application of the General Data Protection Regulation (hereinafter referred to as "GDPR"), we inform you below of the conditions under which your personal data is to be processed by us.
What personal data do we process?
Purposes:
We may collect and store your personal data, in particular to:
Process and respond to your messages, Create and manage access to your accounts, Receive and process your order, Manage your subscriptions to our newsletters, Establish and monitor the commercial relationship that may result from your messages, Write a review/comment published on the site, Collect your payment, Ensure accounting and management, Improve our monitoring and customer service, Manage the proper functioning and personalization of services, Send you commercial and advertising information according to your preferences, Detection of attacks and legal recourse against fraud, Memorize your choices regarding the use of cookies, Process and respond to your requests to exercise rights, To meet regulatory requirements in force or in the process of being adopted.
Data categories:
Contact details (e.g. name, first name, telephone number, email); Your preferences, Technical and location information generated as part of the use of our services, No sensitive data is collected or processed.
Legal basis for processing
The processing of personal data implemented is based on:
- Either on the consent of the person concerned (Article 6.1.a of the GDPR) for all processing that requires the prior collection of consent. In online forms, mandatory fields are marked with an asterisk. If the mandatory questions are not answered, we will not be able to provide you with the requested services.
- Either for the execution of a contract or the execution of pre-contractual measures,
- Either for the pursuit of a legitimate interest (Article 6.1.e of the GDPR).
- Either for compliance with a legal or regulatory obligation;
Your data is kept for the period necessary to fulfill the purposes mentioned above.
The period of retention of Customers' personal data depends on the purpose concerned. In this context, Customers' personal data is kept for the time necessary to fulfill
their request. In the absence of any fulfillment, personal data is deleted within the time limits recommended by the National Commission for Information Technology and Civil Liberties (CNIL), after a period of three years from their collection, subject to: – the legal possibilities and obligations regarding archiving,
– the obligations to retain certain data, for evidentiary purposes, and/or to anonymize them
.
The Customer's personal data collected and processed, for the purposes of executing offers, is kept
for the period necessary to manage the contractual relationship.
By way of exception, personal data required to establish proof of a right or a contract are archived in accordance with legal provisions (5 or 10 years after the end of the commercial relationship as the case may be).
Who are the recipients of your data?
Your personal data is intended for:
- Yann Offry, publication director of the website www.baiedesommephoto.fr.
- Technical subcontractors: Personal data concerning you may be transferred to our technical subcontractors (within the meaning of Article 4.8 of the GDPR) in a strictly regulated manner. In the event of a transfer, we ensure that the subcontractors comply with the GDPR and take technical and organizational measures to guarantee data protection (Art. 28 of the GDPR).
- Traffic analysis (like Google Analytics ),
- Payment service provider (such as Stripe)
We sometimes need to allow our partners to process, on our behalf, the personal information we hold about you for the purposes set out in this policy or for any other reason required by law.
The personal data of Customers collected is hosted in France.
In the case of using a service provider located outside the European Union, we undertake to verify that appropriate measures have been put in place so that the personal data benefits from an adequate level of protection.
How do we keep your data secure?
We implement all organizational and technical measures to ensure an appropriate level of security for your personal data, and in particular to avoid any loss of confidentiality, integrity or accessibility.
We frequently back up data, implement technical and organizational measures to ensure that the storage of Customers' personal data is secure and this, for the duration necessary to exercise the purposes pursued.
What are your rights over your personal data?
In accordance with the Applicable Regulations, you have the following rights:
A right of rectification : you have the right to obtain the rectification of inaccurate data concerning you. You also have the right to complete incomplete data concerning you, by providing a supplementary declaration. In the event of exercising this right, we undertake to communicate any rectification to all recipients of your data,
A right to erasure : in certain cases, you have the right to obtain the erasure of your data. However, this is not an absolute right and we may for legal or legitimate reasons retain this data.
A right to restriction of processing : in certain cases, you have the right to obtain restriction of processing of your data,
A right to data portability : you have the right to receive your data that you have provided to us, in a structured, commonly used and machine-readable format, for your personal use or to transmit it to a third party of your choice. This right only applies when the processing of your data is based on your consent, on a contract or when this processing is carried out by automated means,
A right to object to processing : you have the right to object at any time to the processing of your data for processing based on our legitimate interest, a mission of public interest and those for commercial prospecting purposes. This is not an absolute right and we may refuse your request for opposition for legal or legitimate reasons,
The right to withdraw your consent at any time : you can withdraw your consent to the processing of your data where the processing is based on your consent. The withdrawal of consent does not affect the lawfulness of processing based on consent carried out before its withdrawal,
The right to lodge a complaint with a supervisory authority : You have the right to contact your data protection authority to complain about our personal data protection practices.
In application of the GDPR , the conditions for exercising these rights may vary depending on the basis of lawfulness of the processing mentioned in the first paragraph.
We will respond to any exercise of rights as soon as possible and in any event within 30 days of receipt of the request.
We reserve the right:
- To request proof of the applicant's identity in the event of reasonable doubt about the latter and in order to respect its obligation of confidentiality,
- To extend the response period by two months, informing the applicant of this extension and the reasons for the postponement within one month of receipt of the request,
- To refuse to respond to an exercise of rights if it was considered abusive (in view of their number, their repetitive or systematic nature).
Who to contact for all GDPR related requests?
To exercise your rights, you can contact us:
Yann Offry
Sole Proprietorship
Registered in the Trade and Companies Register of XXX under SIRET number.
Address: 38 Rue des coquelicots 80230 Saint Valery sur Somme
Telephone: 0781475817
By phone: 0781475817
Via the contact form,
By email: yann.offry@baiedesommephoto.fr
If, despite our efforts and commitments, you feel that your rights regarding your personal data have not been respected, you can submit a complaint to the National Commission for Information Technology and Civil Liberties: CNIL 3 Place de Fontenoy TSA 80715 75334 Paris Cedex 07
Reservation of modification of the Data Protection Policy
This Personal Data Protection Policy may be subject to change. It has been developed from a free template that can be downloaded from the site https://donnees.net . As we are constantly developing our services, we reserve the right to modify this Privacy Policy, in accordance with the legal provisions in force. Any changes are published on this document in a timely manner. We advise you to consult this page regularly to learn about any changes or updates made to our privacy policy.
Cookies Policy
What is a “cookie”?
Cookies are small text files that a website saves on your computer or mobile device when you visit the site.
They make your online experience easier by saving browsing information. With cookies, sites can keep you logged in, remember your site preferences, and offer you personalized content. Cookies can also be used to compile statistics on the browsing experience and to show targeted advertising.
In general, cookies can be classified by:
Domain:
– First-party cookies are issued by a website that a user visits directly.
– Third-party cookies are not created by the website visited, but by a third party such as Google Analytics, DoubleClick, Facebook, Twitter, LinkedIn, Youtube, Vimeo, etc.
Purpose:
– Strictly necessary cookies are required for the website to function properly.
– Preference cookies allow a website to remember choices you have made in the past.
– Statistics cookies help the website owner to collect statistical data and understand how visitors interact with the website.
– Marketing cookies track the user’s online activity to help advertisers deliver more relevant ads.
Duration:
– Session cookies which are erased when the user closes the browser.
– Persistent cookies which remain on the user’s device for a certain period of time.
What cookies and trackers do we use?
Strictly Necessary Cookies
Cookie key:PHPSESSID
Domain path: baiedesommephoto.fr
Type of cookie: / First-party
Expiration: 1 year 1 month
Description: Cookie generated by PHP based applications. This is a general purpose identifier used to maintain user session variables. It is normally a randomly generated number, how it is used can be specific to the site, but a good example is maintaining a logged in status for a user between pages.
Unclassified cookies:
Cookie key: PrestaShop-[abcdef0123456789]{32}
Domain path: baiedesommephoto.fr
Type of cookie: / First-party
Expiration: 20 days
Your preferences regarding cookies
When you first arrive on the site, a cookie banner offers you to accept or refuse Cookies that are not essential to the operation of the site. You can refuse/disable Cookies at any time, with the exception of Cookies necessary for the stable operation of the site. You can change your preferences for cookie management at any time.How to enable or disable cookies on your browsers:
You can block your browser from accepting cookies. However, this may make it less effective or prevent access to certain functions or pages of the site. Below are the ways in which the main browsers can block the acceptance of cookies
https://support.microsoft.com/fr-fr/help/17442/windows-internet-explorer-delete-manage-cookies
https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=en
https://support.apple.com/fr-fr/guide/safari/sfri11471/mac