Privacy Policy

PRIVACY POLICY (GDPR) APPLICABLE TO THE FICADE GROUP AND ITS SUBSIDIARIES

1. PROCESSING OF PERSONAL DATA

Access to the service is available 24 hours a day, 7 days a week, except in cases of force majeure or event.

As part of the use of the Ficade Group’s websites (hereinafter referred to as the "Site"), the user (hereinafter referred to as the "User") may be required to transmit personal data to the Ficade Group or the concerned subsidiary (hereinafter referred to as the "Ficade Group") as part of its use (contact form, various registrations, orders, newsletter, etc.). The data controller for this purpose is the publication director of the site indicated in the legal notices. Any use of the site, including the use of contact or registration forms, implies acceptance of this section relating to the processing of personal data (hereinafter the "Privacy Policy").

Mandatory fields are indicated in the forms. The Ficade Group, as the data controller, undertakes that the collection and processing of the User’s personal data will be carried out lawfully, fairly, and transparently, in accordance with the General Data Protection Regulation (EU) ("GDPR") and the amended 1978 French Data Protection Act ("LIL").

This information collection is limited to what is necessary to process the request, in accordance with the principle of data minimization. The definitions provided in Article 4 of the GDPR apply to these terms.

2. PURPOSE

The Privacy Policy defines the rules applicable to the collection and processing of the User’s personal data during their navigation on the Site and use of it. The Ficade Group is free to modify the Privacy Policy at any time, particularly to take into account any legislative, regulatory, jurisprudential, and technical changes. The prevailing version is the one accessible online at the following address: https://www.groupeficade.fr/rgpd

3. IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER

The data controller for the personal data transmitted by the User during their registration on the Site or during any navigation process is the publication director indicated in the legal notices, or failing that, Mr. Gaël Chervet.

4. LEGAL BASIS FOR PROCESSING

The legal basis for processing is Article 6 1. a) of the GDPR, i.e., the User’s consent. When using the forms, the User consents to the collection of their personal data by ticking the acceptance box for the Privacy Policy included in the Site’s legal notices, which they declare having read.

5. PERSONAL DATA COLLECTED

Data communicated by the User to the Ficade Group:

By submitting a form, the User provides the Ficade Group with their name, first name, and email address so that their request can be processed. The User agrees, in their use of the contact form and the Site, not to disclose personal information, particularly personal data of third parties without their consent, nor to make any unlawful comments or contents, including any counterfeit, defamatory, abusive, obscene, offensive, discriminatory, violent, xenophobic content, inciting racial hatred or advocating terrorism; or any other content contrary to applicable legislation and regulations as well as good morals and decency.

6. PURPOSES OF PROCESSING

The personal data collected from the User is intended for processing the request submitted via the form.

7. RETENTION PERIOD OF PERSONAL DATA PROVIDED BY THE USER

The Ficade Group commits to retaining the personal data provided by the User only for the duration strictly necessary for processing according to the aforementioned purposes and in any case within the legal limits. Depending on the type of personal data, the retention period will not exceed 12 months. The Ficade Group undertakes to delete the User’s personal data from the Site’s databases at the end of the specified periods.

8. RECIPIENTS OF PERSONAL DATA

The recipients of the User’s personal data are the personnel involved in the management of the Ficade Group, namely: the Ficade Group teams, including its sales, event, and administrative departments.

9. RECIPIENTS OF PERSONAL DATA

The User’s personal data is for internal use by the Ficade Group’s services. It is strictly confidential and cannot be disclosed to third parties, except with the express consent of the User or if the User has decided to make it public. In case of communication of the User’s personal data to a third party, whatever their quality, the Ficade Group will ensure beforehand that the latter is required to apply confidentiality conditions providing at least the same level of guarantees as theirs.

The Ficade Group undertakes to:

(i) ensure that any subcontractor presents sufficient and appropriate contractual guarantees to respect the User’s rights, so that the processing meets the GDPR requirements and

(ii) respect the GDPR provisions applicable to data transfers. Based on legal obligations, the User’s personal data may be disclosed under a law, regulation, or a decision by a competent regulatory or judicial authority.

10. SECURITY OF PERSONAL DATA

The Ficade Group implements all technical and organizational measures to ensure the security and compliance of personal data processing, as well as the confidentiality of such data. As such, the Ficade Group takes all necessary precautions on the Site (including data encryption), considering the nature of the data and the risks presented by the Site, to preserve data security and, in particular, to prevent it from being distorted, damaged, or accessed by unauthorized third parties.

11. USER RIGHTS

In accordance with the current European regulations, the User has the following rights: the right to access (Article 15 of the GDPR), rectify, update, and complete their data (Article 16 of the GDPR), the right to delete their data under the conditions provided for in Article 17 of the GDPR. Exercising the right to delete data by the User will result in the deletion of their account and any submitted applications, the right to limit the processing of their data (Article 18 of the GDPR), the right to data portability (Article 20 of the GDPR).

The User can exercise their rights by contacting the company: either by email at the following address: [email protected], or by postal mail at the following address: 88, Boulevard de la Villette 75019 Paris, France.

In this case, the User must specify which data is concerned by their request and provide proof of their identity (provide a copy of an identity document). Moreover, as soon as the Ficade Group becomes aware of a User’s death, it commits to destroying their data unless its retention is necessary to fulfill a legal obligation. If the User believes, after contacting the Ficade Group, that their data rights have not been respected, they can file a complaint with the CNIL. See the CNIL website for more information on User rights.