ARTICLE 1: PREAMBLE

This privacy policy aims to inform users of the site:

  • Regarding how their personal data is collected. Personal data is defined as any information that allows a user to be identified. This may include: their first and last names, age, postal or email address, location, or IP address (non-exhaustive list);
  • Regarding the rights they have concerning this data;
  • Regarding the person responsible for the processing of personal data collected and processed;
  • Regarding the recipients of this personal data;
  • Regarding the site's cookie policy.

This policy complements the General Terms and Conditions of Sale available for consultation.

ARTICLE 2: PRINCIPLES RELATING TO THE COLLECTION AND PROCESSING OF PERSONAL DATA

In accordance with Article 5 of European Regulation 2016/679, personal data are:

  • Processed lawfully, fairly and transparently with regard to the person concerned;
  • Collected for specified purposes (see Article 3.1 herein), explicit and legitimate, and not to be further processed in a manner incompatible with those purposes;
  • Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
  • Accurate and, where necessary, kept up to date. Every reasonable step must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
  • Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which they are processed;
  • Processed in a manner that ensures appropriate security of the data collected, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.

 

The processing is lawful only if, and to the extent that, at least one of the following conditions is met:

  • The person concerned has consented to the processing of their personal data for one or more specific purposes;
  • The processing is necessary for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract;
  • The processing is necessary for compliance with a legal obligation to which the controller is subject;
  • The processing is necessary to protect the vital interests of the data subject or of another natural person;
  • The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  • The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.

ARTICLE 3: PERSONAL DATA COLLECTED AND PROCESSED DURING NAVIGATION ON THE SITE

Article 3.1: Data collected

The personal data collected as part of our business includes: email address, name, surname, date of birth…

The collection and processing of this data serves the following purpose(s): customer database, communication, accounting management, customer service follow-up, newsletter (if subscribed)

Article 3.2: Data Collection Method

When you use my site, Personal data is collected when you perform the following actions on the platform: filling out a contact form.

 

Article 3.3: Data Hosting

The website Hyper Ma is hosted by: o2switch, SAS, Chemin des Pardiaux, 63000 Clermont-Ferrand, support@o2switch.fr

ARTICLE 4: DATA CONTROLLER AND DATA PROTECTION OFFICER

Article 4.1: The data controller

Personal data is collected by Hyper Ma, SIRET 53796293800024.

The data controller can be contacted by email: hyper.maaa@gmail.com

 

Article 4.2: The Data Protection Officer

The company's or data protection officer is: Marion THIBAUD.

If, after contacting us, you believe that your "Data Protection" rights are not being respected, you can send information to the CNIL.

ARTICLE 5: USER RIGHTS REGARDING DATA COLLECTION AND PROCESSING

Any user whose personal data is being processed may exercise the following rights, pursuant to European Regulation 2016/679 and the French Data Protection Act (Law 78-17 of 6 January 1978):

  • Right of access, rectification and erasure of data (set out respectively in Articles 15, 16 and 17 of the GDPR);
  • Right to data portability (Article 20 of the GDPR);
  • Right to restriction of processing (Article 18 of the GDPR) and to object to processing of data (Article 21 of the GDPR);
  • Right not to be subject to a decision based solely on an automated process;
  • Right to determine the fate of data after death;
  • Right to lodge a complaint with the competent supervisory authority (Article 77 of the GDPR).

To exercise your rights, please send your Email Marion THIBAUD at hyper.maaa@gmail.com

In order for the data controller to comply with their request, the user may be required to provide certain information such as: their first and last names, their email address.

Visit the website www.cnil.fr for more information about your rights.