Charter on the processing of personal data<

1. General statements 

The protection of your privacy and your personal data is at the heart of our concerns.

We are particularly concerned about the protection and confidentiality of the personal data that we process and collect.

We undertake to ensure the best level of protection for your personal data in accordance with the regulations in force on the protection of personal data, applicable in Europe (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, (hereinafter RGPD) and in France.

The purpose of this privacy policy is to explain to you :

• The personal data we collect,
• Why we do it,T
• The way we use them,
• And your rights in this regard.

This privacy policy is intended to apply to all Clients or Prospects visiting our website, using our services or having communicated their contact details to us for events, business card exchanges etc…

You should therefore read our privacy policy carefully as it contains important information about your personal data.

Who are we?

The terms “COSMEDICA Beauty Institute”, “we”, “our” and “us” refer to the CAJEMA Company operating the said Institute.

Site publisher

This site is edited by the CAJEMA Company, COSMEDICA Beauty Institute (CM) sign.

Limited Liability Company

SCR of NICE 499,353,878

19, Boulevard Victor Hugo – 06000 NICE

Hosting

This site is hosted by SAS OVH.

RCS Lille Métropole 424 761 419

2 rue Kellermann – 59100 Roubaix

Data Processing Manager

Ms Caroline BONIFASSI

Manager of CAJEMA

Phone:

E-mail :

3. 3. What personal data do we collect and how is it collected?

First of all, we would like to inform you that we undertake to collect only the data strictly necessary for the services we offer you.

We may collect personal data directly from you (e.g. when you purchase one of our products, when you subscribe to the Newsletter) or indirectly (e.g. from your electronic devices that interact with our website).

3.1 Personal data that you transmit directly to us

You may be asked to provide us with your personal data when:

3. 3. • you create an account online or in our shop;
      • you subscribe to our newsletter;
      • you buy our products on our website or in our shop;
      • you participate in one of our events.

The information collected by us may be as follows:

3. 3. • your identity (including title, first name, last name, date of birth, etc.);
      • your contact details (including postal address, e-mail, telephone numbers);
      • the information necessary for the delivery or the carrying of an ordered product;
      • your username and encrypted password used to identify you on our site,
      • billing data, payment receipt.

We do not collect your payment data such as your credit card number.

Indeed, when paying for the ordered item, you are automatically redirected to the secure online payment site of XXXXX or Paypal.

3.2 The data we collect in the course of our business relationship

In the course of our business relations, we collect the following information:

3. 3. • the history of our business relations,
      • your participation in events that we may organize,
      • the requests you have made to our after-sales service or the incidents you have been able to report to it,
      • information about product purchases you have made,
      • any other information you wish to bring to our attention.

As such, we recommend that you provide only the data requested or necessary for your request, with the exception of sensitive data concerning race, ethnic origin, political opinions, religious or philosophical beliefs, and data concerning health, sex life or sexual orientation.

3.3. Data that we collect automatically

Cookies

We may collect data when you use our site, including your IP address or other navigational data (browser, operating system, model of device you are using), through cookies or similar technologies placed on your device.

Some cookies are necessary for the proper functioning of our site and others are used for analytical purposes that help us provide you with more personalized services and a better digital experience.

For more information about cookies and how to change your preferences, please read our Cookie Policy below.

Data collected by standard Internet technologies

We may also use standard Internet technologies, such as scripts, pixels and redirects.

The purpose of these technologies is to enhance your experience on our site, including providing you with content that is customized to your interests.

These technologies give us access to the following information, among others:

3. 3. • Information relating to your use of our site;
      • Information relating to the presence of cookies on your terminal, the time and date of a page visit, and a description of the page where the web beacon is placed;

These technologies allow third party service providers to collect certain information such as your browser type, and the web page that redirected you to our websites.

These third party service providers process the information they collect for audit, research, and reporting purposes on our site.

We do not share your identifying information with these third parties in connection with their use of these technologies.

3.4 Data Relating to Minors

We would like to remind you that we do not enter into business relationships with persons under the age of 18.

We do not collect personal data from these persons.

We therefore ask you not to provide us with personal data of persons under 18 years of age.

3.5. Third party data

We may collect information about you from third parties, including a spouse who contacts us on your behalf or friends who provide us with your contact information.

If you provide us with personal data from a third party you must ensure that you have the right to disclose that data to us and that, without us taking any further action imposed by data protection legislation, we may collect, use and disclose such data for the purposes described in this Privacy Policy.

For example, you should ensure that the data subject is aware of the various matters set out in this Privacy Policy.

The individual must also give the consents set out in this Privacy Policy with respect to the manner in which we process his or her personal data.

3. 4. What is the purpose of collecting your personal data?

We use your personal data only for the purposes of :

3. 3. 3. 3. • providing you with the products or services you have requested;
            • carry out checks to identify you and verify your identity ;
            • provide you with after-sales service;
            • respond to your questions, requests and suggestions;
            • manage the events for which you have registered and/or participated;
            • monitor and improve our site;
            • perform statistical analysis;
            • improve our products and services;
            • provide information to regulatory bodies where required by law.
            • We collect and process your personal data necessary for the proper performance of our contractual relationship.

We may also process your personal data in our legitimate interest (e.g. to improve our business or customer relations) as long as such processing does not adversely affect your rights and freedoms. You have the right to object to this at any time for reasons relating to your particular situation.

Where the processing of your personal data is subject to your consent (e.g. subscriptions to our newsletters), you have the right to withhold or withdraw your consent at any time as set out below.

 

5. Newsletters

With your express prior consent, you may receive information from us about offers, products or events.

We rely on your consent to process the personal data you provide to us for this purpose.

Therefore, if you no longer wish to receive such information, you may withdraw your consent immediately by following the instructions specified in each newsletter email.

6. How long do we keep your personal data?

Your personal data is processed for the period necessary for the purposes for which it was collected, to comply with legal and regulatory obligations and for the duration of any period necessary to establish, exercise or defend legal rights.

Thus:

3. 3. 3. 3. • With regard to our prospects (potential customers): your data is kept for three years from your last action, then deleted or archived in order to comply with legal retention obligations ;
            • With regard to our customers: your data is kept for the duration of our business relationship and up to 5 years, then deleted or archived in order to comply with the legal obligations of conservation;
            • With regard to the cookies used on the site: they are stored for up to 13 months from the moment they are installed on your device.

7. 7. Who is likely to have access to your personal data?

7.1. Access to personal data

Specific collaborators and staff of the COSMEDICA Beauty Institute may need to have access to some of your personal data in order to carry out the tasks entrusted to them.

Access to your data is based on individual and limited access authorizations.

The personnel who can access personal data are subject to a strict obligation of confidentiality (by a nominal and personal commitment to confidentiality).

7.2. Transmission of data

Are likely to have access to some of your data:

Subcontractors

They provide services on our behalf, such as:

7. 7. 3. 3. 3. 3. • Online Payment Services, Security and Anti-Fraud Services
                  • Delivery Services
                  • Developers and IT support,
                  • Host of the site.

Access to your data by our subcontractors is based on signed contracts that specify their obligations in terms of data security and confidentiality protection.

These service providers undertake to respect confidentiality and are not authorised to use your personal data for any other purpose.

We also require them to implement appropriate security measures to protect your personal data.

Social networking platforms

We draw your attention to the use of social network buttons such as “Connect via … ».

The use of social networks to interact with our site is indeed likely to lead to data exchanges between the COSMEDICA Beauty Institute and these social networks.

We invite you to be vigilant and to consult the personal data protection policies of these social networks in order to find out precisely what information is collected by these sites and applications as well as the purposes for which your data will be used, in particular for advertising purposes.

You can sometimes set up access and confidentiality of your data directly on the social networks used.

The use of these “social networks” buttons is at your initiative and under your full responsibility.

We cannot be held responsible for the processing of your data by these third party social networks.

Police authorities, judicial or administrative authorities

When we are legally obliged to do so or in order to guarantee the rights, property and safety of the COSMEDICA Beauty Institute.

7. 7. 8. Are your data transferred outside the European Union?

We store your personal data within the European Union.

However, it is possible that the data we collect may be transferred to subcontractors or partners located in other countries, some of which may have less protective personal data protection legislation than that in force in the country where you reside.

In the event of any such transfer, we ensure that the processing is carried out in accordance with this Privacy Policy and that it is governed by the European Commission’s standard contractual clauses which ensure an adequate level of protection of the privacy and fundamental rights of individuals.

7. 7. 9. How do we protect your personal data?

As data controller, we implement appropriate technical and organisational measures in accordance with the applicable legal provisions to protect your personal data against alteration, accidental or unlawful loss, unauthorised use, disclosure or access.

All your personal data is strictly confidential.

COSMEDICA Beauty Institute has implemented security measures to protect your personal data against unauthorized access and use.

We follow appropriate security procedures in the storage and disclosure of your personal data in order to prevent unauthorised access by third parties and to avoid accidental loss of your data.

We limit access to your personal data to those who have a genuine need to access it for business purposes.

Persons accessing your data are subject to a duty of confidentiality.

We also require the persons to whom we transfer your personal data to comply with the above.

7. 3. 3. 3. 3. 10. What rights do you have over your personal data?

You may at any time request access, rectification, deletion and portability of your personal data, or restrict or oppose the processing thereof.

Your rights are as follows:

3. 3. 3. 3. • Your right of access: the right to receive a copy of your personal data.
            • Your right of rectification: the right to ask us to rectify any errors in your data or to complete them.
            • Your right to forget: the right to ask us to delete your personal data, in certain situations.
            • Your right to limit processing: the right to ask us to limit the processing of your personal data, in certain
            • circumstances, for example if you dispute the accuracy of the data.
            • Your right to data portability: the right to receive the personal data you have provided us with in a structured,
            • commonly used, machine-readable format and/or to pass it on to a third party in certain situations.
            • Your right to object to the processing of your personal data when the processing is based on legitimate interest for reasons relating to your particular situation, but also the right to object to the processing at any time when the data is processed for the purpose of canvassing.

You also have the right to file a complaint with your local data protection authority in the event of an alleged breach of the data protection rules applicable to you.

To exercise any of these rights, please contact us using the “Contact” section.

Please note that if you exercise any of the rights mentioned above, you will be asked to let us know which right you wish to exercise and to provide us with certain information (copy of an identity card, passport or other legally recognised ID) for identification purposes in order to process your request and to protect you against fraudulent requests from third parties.

3. 3. 3. 3. 11. Cookies policy

During each of your visits to our site, we collect information relating to your connection and your browsing through the use of cookies.

A cookie is a text file deposited during the consultation of a site, an application or an online advertisement and stored in a specific space on the hard disk of your computer.

For example, we use cookies to identify you or to store your selection of products in your shopping cart.

Cookies are managed by your web browser.

There are two types of cookies on our site:

cookies strictly necessary for the functioning of the site.

These cookies allow you to use the main functionalities of the site such as storing your selection of products in your basket.

These cookies facilitate navigation and are necessary to make online purchases.

statistical analysis cookies.

They collect information on the navigation made on our site, allowing us to improve your user experience and to adapt the services to your preferences.

We do not use advertising cookies to offer you services that may be of interest to you on other websites.

All information collected is anonymous, a cookie does not identify you personally.

More information on cookies can be found on the following sites: www.cnil.fr

You have the possibility to choose yourself to accept the deposit of cookies or to personalize them by prohibiting any deposit or by setting your browser to choose which cookies you wish to leave active during your navigation. (See below).

Thus, a banner is displayed as soon as you arrive indicating “This site uses cookies and gives you control over what you wish to activate” and which cannot disappear until you have carried out an action among the proposed choices, namely: “Ok, accept all” – “Customize”-

The cookies deposited subject to your choices give us access in particular to the following information:

3. 3. 3. 3. • Identifiers of the equipment you use (ex: IP address of your computer)
            • Type of operating system used by your terminal (Microsoft, Apple Os, Linux…),
            • Type and version of the browser software used by your device (Microsoft Internet Explorer, Apple Safari,
            • Mozilla Firefox, Google Chrome, etc.),
            • Dates and times of connection to our services,
            • Address of the Internet page of origin (“referrer”),
            • Navigation data on our services, content viewed.

You can also easily deactivate and/or delete cookies from your computer by managing your browser settings.

We recommend that you do not deactivate the cookies that are strictly necessary for the operation of the site as this would prevent you from ordering online and benefiting from the site’s services.

In order to manage cookies as closely as possible to your expectations, we invite you to set your browser parameters taking into account the purpose of the cookies.

Below are instructions on how to manage and disable cookies, depending on your browser:

Internet Explorer

Just click on the “Tools” button, then “Internet Options”. Under the General tab, under “Browsing History”, click on “Settings”. Click on the “Show Files” button. Finally, click on the “Name” column to sort all the files in alphabetical order, browse the list to find files with the prefix “Cookie”. Select the cookie(s) with the name « www.cosmedica-institut.com» and delete them. To finish, close this window which contains the list of files, then click twice on OK to return to your Internet Explorer browser.

Google Chrome

Click on the icon in the “Tools” menu. Select the “Options” tab, then click on “Advanced Options” and go to the “Privacy” section. Click on the “Show Cookies” button to select all the files that contain the name “cookies”. « www.cosmedica-institut.com ».Delete them. Finally, click on “Close” to return to your browser.

Mozilla Firefox

Go to the “Tools” tab of the browser, then select the “Options” menu. In the window that appears, choose “Privacy” and click on “Show Cookies”. In the last step, locate all the files that contain the name “www.cosmedica-institut.com” in order to select and delete them.

Safari

In your browser, choose the “Edit” menu, then “Preferences”. Click on “Security”. Click on “Show Cookies”. Select all cookies that contain the name ” www.cosmedica-institut.com ” and click on ” Delete ” or ” Delete All “. After deleting the cookies, you can click on “Finish”.

12. Changes to the Privacy Policy

Our privacy policy is subject to change or modification at any time.

We encourage you to review this Privacy Policy frequently whenever you provide us with personal information.