This privacy policy informs users of this website about how their personal data is collected and processed, in accordance with Law No. 78-17 of January 6, 1978, as amended, and Regulation No. 2016/679 of April 27^th 2016.

Article 1. Definitions

Controller : the natural or legal person, which, determines the purposes and means of the processing of personal data, meaning the objective and the way in which it is carried out.

The Data Controller is CARILLON CONSEIL, SASU with a capital of 10.000 euros, headquartered at 12 RUE DES RESISTANTS, 56470 LA TRINITE-SUR-MER, registered in the LORIENT RCS under number 980 987 614 represented by Claudia WIRZ as President.

GPRD : Regulation (EU) 2016/679 of the European Parliament and of the Council of April, 27^th 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

Personal Data : Are considered as personal data any information relating to an identified or identifiable natural person. It may include is/her first and last names, age, email address or postal address, location, etc. (non-exhaustive list).

Processing of Personal Data : The processing of personal data involves an operation, or set of operations, concerning personal data, regardless of the method used (collection, recording, organization, storage, adaptation, modification, extraction, consultation, use, communication by transmission or dissemination, or any other form of provision, correlation).

Site : Controller’s website, accessible at the following address : https://storage.net-fs.com/hosting/7747002/9/

Services : All the services offered by the controller’s platform

User : Any person browsing the controller’s website

Article 2. Processing of Personal Data

Browsing on the Site

While browsing the site, the data controller may automatically collect technical data about your device, actions, and browsing patterns, particularly through cookies. Please consult the cookie policy below for further details on the purposes of data processing, retention periods, and your rights.

Use of IDN Platform

When utilizing the services offered by the IDN platform, you may be required to furnish the following personal information to the data controller: company name, email address, postal address, phone number.

Upon the conclusion of the contract for platform services provision, you will be prompted to supply your banking details to facilitate monthly fee payments for platform usage.

This processing is legally grounded in the execution of contractual obligations.

Your banking information will be held for the duration of the contractual relationship.

All collected data will be retained throughout the entire duration of service provision. Invoices will be preserved for a period of 10 years, as mandated by the legal and regulatory requirements of the data controller.

Processing of data contained within the videos published on the IDN platform

In the context of providing the IDN platform’s services, videos containing data that may identify individuals are published on the data controller’s website.

This processing is legally grounded in the execution of contractual obligations.

The individual or legal entity providing these videos to the data controller warrants that they are authorized to process this data for this purpose and that they comply with local data protection laws.

Failure to do so would absolve the data controller of any responsibility for such a breach.

Article 3. Recipients of Personal Data

The data controller may disclose your information to the following categories of recipients:

• Authorized internal personnel for their designated duties and roles

• Payment service providers for identity and bank details verification

• Subcontractor service providers essential for the operation of its activities. The data controller mandates that all third-party providers uphold the security of personal data and process them in accordance with the law, strictly for specified purposes as instructed by the data controller, and never for their own purposes

• Advisors bound by professional confidentiality obligations (legal, acounting, banking, insurance)

• Third parties as required by a public or administrative authority, or to adhere to legal or procedural obligations, or to safeguard its interests in legal proceedings.

Article 4. Transferring Personal Data Outside the EEA

The data controller may share your data with service providers who may be located outside of the European Economic Area (EEA).

In such instances, the data controller ensures that your data is transferred to countries where the level of personal data protection has been determined to be adequate by the European Commission. If such adequacy is not established, the data controller ensures that appropriate safeguards are implemented to guarantee a secure transfer of your data. This may include the execution of standard contractual clauses approved by the European Commission with the receiving party.

Article 5. Data security statement

The data controller implements suitable technical and organizational measures to prevent unauthorized disclosure, alteration, or access to data by third parties.

When transmitting credit card information during a payment, SSL encryption technology is employed to ensure the security of your transactions.

Article 6. Rights and Exercise Modalities

Your rights

• Right to request access to data (Article 15 of the GDPR): The user can request confirmation regarding the processing of their data, and if confirmed, they have the right to access their data along with information about the processing circumstances.

• Right to correct inaccurate data (Article 16 of the GDPR): The user can request the data controller to promptly rectify any inaccuracies or incompleteness in their data.

• Right to restriction of processing (Article 18 of the GDPR): The user can request from the data controller the restriction of processing their data, which entails temporarily halting the use of the data without deleting it.

• Right to object to processing (Article 21 of the GDPR): The user has the right to object at any time to the processing of their data by the data controller, unless the latter can demonstrate compelling legitimate grounds for such processing.

• Right to withdraw consent at any time (e.g., unsubscribe from the newsletter).

• Right to data portability (Article 20 of the GDPR): The user has the right to receive the data that the data controller processes automatically and that have been provided on the basis of a contract or their consent.

• Right to provide directives regarding the handling of data after death.

Exercise of rights

You may exercise your rights by sending a request:

• By e-mail : claudia.carillon@t-online.de

• By postal mail : CARILLON CONSEIL SASU, 12 RUE DES RESISTANTS, 56470 LA TRINITE-SUR-MER,

Your request will be processed within one month of its receipt. In case of uncertainty regarding your identity, we reserve the right to request proof of identity from you. A copy of the proof of identity will be retained for one year. Other data pertaining to the processing of your request (such as title, surname, first name, nature of the request, and response provided) will be retained for 3 years.

The data controller pledges to honor your instructions concerning the storage, deletion, and disclosure of your personal data after your passing. In the absence of such instructions, the data controller will adhere to the requests of heirs as delineated by the relevant provisions of the Data Protection Act (« Loi Informatique et Libertés » n°78-17 of January 6, 1978).

Should you believe that your personal data or your requests to exercise rights pertaining to your personal data are not being handled in accordance with legal provisions by the Data Controller, you have the right to lodge a complaint with the CNIL, at the following address: CNIL – 3 Place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07.

Article 7. Updates to privacy notice

This policy may be updated at any time, especially upon the introduction of new data processing methods, in compliance with legal and/or regulatory requirements and/or any recommendations from the CNIL. Therefore, we encourage you to review the latest version of this page before browsing.

Article 8. Cookie Policy

Controller use a browser feature known as a « cookie », which assigns a unique identification to your computer.

Cookies are typically stored on your computer’s hard drive. Information collected from cookies is used by us to evaluate the effectiveness of our website, analyze trends, and administer our website.

The information collected from cookies allows us to determine such things as which parts of our website are most visited and difficulties our visitors may experience in accessing our website. With this knowledge, we can improve the quality of your experience on our website by recognising and delivering more of the most desired features and information, as well as by resolving access difficulties.