PERSONAL DATA USE POLICY
Website – customer and partner relations
The French version is authoritative and binding on all parties.
Last update on August 10, 2020
Website management and customer relationship
Activities relating to the www.enlaps.io website and to customer and partner relations involve the processing of personal data.
What is the policy on the use of personal data?
This policy informs you of the features of these processing operations and of your rights regarding your personal data. This privacy policy is drafted in accordance with the French law no. 78-17 of 6 January 1978 (known as the “Loi informatique et libertés” or “LIL”) and the General Data Protection Regulation (“GDPR”) no. 2016/679.
Who is responsible for this policy?
Enlaps
Simplified joint-stock company with a capital of 200,000 euros
Registered with the Grenoble Trade and Companies Registry under number 813 731 262,
Whose registered office is located: 26 Avenue Jean Kuntzmann 38330 Montbonnot-Saint-Martin
Represented by Antoine Auberton, acting as Chairman, and Director of Publication, duly authorised for the purposes hereof.
Contact details of the person in charge of the personal data use policy
Monsieur Antoine Auberton.
Email : info@enlaps.fr
Who is this policy for?
This policy is intended for users of the site.
It concerns:
-those who sign up to the technical and commercial newsletters (newsletters)
-customers who order products and services
-those to whom we have entrusted technical services relating to the site (hosting service provider, maintenance, security)
-those who have access to the back office of the site for its administration
-those who contact us for information or to become a partner or reseller
-those who contact us for the after-sales service or technical assistance
-those who use the online chat service
-those who leave a comment about a blog post
Purposes (what the collected data is used for)
The purpose of the processing is the management of the website.
This processing is for the following:
-management of subscriptions
-management of technical and commercial newsletters (newsletter)
-management of orders for products and services and customer relations, including the online shop
-technical management of the site (maintenance, hosting, site security)
-administration of the website
-management of inquiries and partnerships
-management of requests for the after-sales service and technical assistance
-management of the online chat service
-management of comments on blog posts
Legal basis of the processing operations: which gives us the right to process the data
The legal bases of the processing operations are as follows:
for the management of subscriptions to technical and commercial newsletters (newsletters), the legal basis is the legitimate interest (technical newsletter) and the consent of the subscriber (commercial newsletter)
for the management of orders and customer relations, the legal basis is the order placed by these customers (the contract)
for the technical management of the site (maintenance, hosting, site security), the legal basis is legitimate interest
for the administration of the website, the legal basis is the legitimate interest
for the management of requests for information and partnership, the legal basis is the legitimate interest (allowing online communication) or the execution of pre-contractual measures (making quotes at the request of individuals)
For the management of requests for the after-sales service and technical support: the legal basis is the contract concluded with the customer or the legitimate interest
for the management of the chat on the site, the legal basis is the consent of the data subjects
for the management of comments on blog articles, the legal basis is the consent of the data subjects
Data retention period
The data being processed are kept for a period not exceeding that necessary for the purposes for which they are recorded (principle of data minimisation).
The maximum retention periods are as follows:
for the management of newsletter subscriptions: the email address is retained as long as the person concerned does not unsubscribe
for the management of orders and customer relations: 10 years from the end of the contract
for the technical management of the website (maintenance, hosting, website security): 12 months for IP addresses and connection logs
for the administration of the website: as long as the concerned individuals administer the site
for the management of information requests: 3 years from the request
for the management of customer service and support requests: 5 years from the request if it concerns a customer – Otherwise 3 years
for the management of the online chat: 3 years from the request
for the management of comments published on the blog: 5 years from the posting
Data processed
The data controller processes the following categories of data:
for the management of newsletter subscriptions (newsletters): the email address
for the management of orders and customer relations: identification data (name, first name, company name, telephone, address, delivery address if different); the products and services ordered
for the technical management of the website (maintenance, hosting, website security): IP addresses and connection logs
for the administration of the website: the identity of the individuals who administer the site
for the management of information requests: type of information (quote/partner), name, first name, email, company name, telephone, country, message
for the management of after-sales service and support requests: type of information (quote/partner), name, first name, email, company name, telephone, country, message, camera serial number
for the management of the online chat: name, email address, question
for the management of comments posted on the blog: name, email address, comment, website address
Mandatory or optional nature of the data collection
The data collected are compulsory for the purposes of processing, except in certain cases: For online orders, the collected data is required for the conclusion and execution of the order (contract). However, the name of the company and the delivery address, if different from the address of domicile, are optional data. For enquiries and after-sales service requests, the company name, telephone number and country are optional data.
Date source
The data are sent directly by the data subjects.
Recipients of the data
Depending on their respective needs, the following will receive all or part of the data: -people in charge of technical services (AWS hosting provider, maintenance, site security) -providers of online payment services (PayPal, banks) -carriers -Social intents for online chat Enlaps may be required to disclose personal data to the competent authorities as part of operations aimed at combating any criminally reprehensible activity.
What security measures are in place?
The data controller shall implement appropriate technical and organisational measures to ensure a level of security commensurate with the risk involved. The data controller takes measures to ensure that any natural person acting under the authority of the data controller or under that of the processor, who has access to personal data, does not process them, unless instructed to do so by the data controller, provided that it is not obliged to do so.
The transfer or non-transfer of data to a country outside the European Union and associated warranties
The data controller does not perform any transfers of personal data outside the European Union.
Automated decision making
The processing operations do not provide for fully automated decision making.
What happens to personal data after death? – Right to access, rectification, deletion and data portability
The data subject of a processing operation may lay down guidelines for the storage, erasure and disclosure of their personal data after their death. These guidelines may be general or specific. The person concerned by a processing operation also has a right of access, opposition, rectification, deletion and, under certain conditions, the portability of their personal data. The data subject shall have the right to withdraw their consent at any time if consent constitutes the legal basis for the processing operation. The application must indicate the last name and first name, e-mail or postal address of the data subject, and be signed and accompanied by valid proof of identity.
Claim
The person concerned by a processing operation has the right to lodge a complaint with the supervisory authority (CNIL): https://www.cnil.fr/fr/webform/adresser-une-plainte
COOKIE POLICY
Site web
The French version is authoritative and binding on all parties.
Updated on August 10, 2020
What is this Cookie Charter about?
When you visit our www.enlaps.io cookies (and other trackers) are deposited or read on the terminal you use (computer, mobile or tablet). This policy tells you what types of cookies we use and for what purposes. We also explain what your rights are regarding these cookies and how you can exercise them. This charter gives you additional information to that which you can find in the cookie banner that you see when you browse our site. This Charter relating to Cookies was drawn up in accordance with the French law no. 78-17 of 6 January 1978 (known as the “Loi informatique et libertés” or “LIL”) and the General Data Protection Regulation (“GDPR”) no. 2016/679.
Who is responsible for this Charter?
Simplified joint-stock company with a capital of 200,000 euros Registered with the Grenoble Trade and Companies Registry under number 813 731 262, Whose registered office is located: 26 Avenue Jean Kuntzmann 38330 Montbonnot-Saint-Martin Enlaps. Represented by Antoine Auberton, acting as Chairman, duly authorised for the purposes hereof.
Contact details of the person in charge of the personal data use policy
Mr Antoine Auberton. E-mail address: info@enlaps.fr or by phone at +33 04-58-00-57-30 (price of a local call from a landline) during customer service opening hours, Monday to Friday from 9am-12pm and 2pm-6pm (closed on Saturdays, Sundays and public holidays).
What is a cookie and what is it for?
A cookie is a tracker. When an internet user browses a website, it collects personal information about them. When the internet user uses their computer, cookies are managed by your web browser (Internet Explorer, Firefox, Safari or Google Chrome). There are other types of trackers in addition to cookies (e.g. invisible pixel, fingerprinting, local storage, flash cookie). Some cookies are internal to the website, others are third party cookies placed on the site by third party companies. For simplicity, we will use the term “cookies” in this policy to refer to different types of trackers. A cookie can collect various personal data about you, such as the IP address of your computer, the browser used, the date and time of connection, the pages visited on the site, etc.
What types of cookies do we use on this website?
Necessary cookies for website operation:
Purposes: these cookies allow you to navigate the Site and are essential for the proper functioning of the Site. Disabling them will lead to difficulties in using the Site and will result in the inability to access certain features.
Cookies: _icl_current_admin_language, cookie_notice_accepted, _icl_current_language, wfwaf-authcookie, woocommerce_cart_hash, wp_woocommerce_session, woocommerce_items_in_cart, wp-settings, wordpress_logged_in, wordfence_verifiedHuman, wordpress_test_cookie, wp-settings-time, 240planBAK, 240planD, wfvt, ppviewtimer
Performance and statistics cookies (audience measurement):
Purposes: these cookies collect information about how Users use the Site (number of visits, number of pages viewed, visitor activity) through Google Analytics and Facebook analysis tools. These cookies also help us identify and resolve Site operation issues and improve it.
Cookies: hubspotutk, gat, hssc, hssrc, hstc, ga, gid, zb_admin_last_url, zb_static, zb_static_dr_currentsessiontimevisit, zb_static_dr_firsttimevisit, zb_static_dr_widgetsupdatetime, zb_stats_impression, zb_stats_impression, zb_stats_impression_freemium_, zb_stats_visit
Learn more about https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage?hl=fr
Advertising cookies:
Purposes: We use cookies to make advertising more appealing to users and more profitable for publishers and advertisers. Cookies are also used to select advertisements based on their relevance to the user, to improve campaign performance reporting, and to avoid showing ads the user has already seen.
We use cookies, such as "NID" and "SID", to personalize ads on Google sites, such as Google Search. For example, they are used to record your most recent searches, your previous interactions with search results or announcements from an advertiser, as well as your visits to an advertiser's website. This allows us to display personalized ads on Google.
We also use one or more cookies for the ads we deliver across the Internet. One of the main third-party advertising cookies is called "IDE" and is stored in browsers under the domain doubleclick.net. Another is stored in google.com and called ANID. We also use other cookies called DSID, FLC, AID, TAID, and exchange_uid. Other Google services, such as YouTube, may also use cookies to present you with more relevant ads.
It is possible that advertising cookies are used by the site you are visiting. Regarding the ads we deliver across the Internet, cookies called "__gads" or "__gac" may be used by the website you are visiting. Unlike cookies used by Google's own websites, these cookies cannot be read by Google when you are browsing a site other than the one from which they were originally installed. These cookies may be used to measure your interaction with ads on a website and to prevent the same ad from being shown to you too many times.
Google also uses cookies for conversion tracking, whose main purpose is to help advertisers determine how many people who clicked on an ad proceeded to purchase their products. These cookies allow Google and the advertiser to determine if you clicked on an ad and then visited the advertiser's website. Conversion tracking cookies are not used by Google for targeted advertising and are kept only for a limited time. A cookie called "Conversion" is dedicated for this purpose. It usually comes from the website googleadservices.com or google.com (a list of websites used for advertising cookies can be found at the bottom of this page). Some of our other cookies may also be used to measure event conversions. For example, DoubleClick and Google Analytics cookies may also be used for this purpose.
We also use cookies called "AID", "DSID", and "TAID" to track your multi-device activity when you have already logged into your Google account from another device. We do this to coordinate the ads you see across different devices and to measure conversion events. These cookies may come from websites google.com/ads google.com/ads/measurement, or googleadservices.com. If you do not want the ads you see to be coordinated across your devices, you can opt out of Ad Personalization from the ad settings.
Cookies: ga, gat
You can find a tool to block the collection and use of your data by Google Analytics Cookies by clicking on the following link https://tools.google.com/dlpage/gaoptout?hl=fr opt-out or opt-out
Learn more about https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage?hl=fr Analytics cookies and privacy >.
Social networking and sharing cookies:
Purposes: these cookies allow users to share pages and content through third-party social networks and to target the advertising that will be offered to you by these networks. Social networks may be able to identify you using the buttons on our site, even if you have not used them when consulting our site. This type of application button can allow social networks to follow your navigation on our site, simply because your account was activated on your terminal (open session) during your navigation on our site. We invite you to consult the privacy policies of these social networks to learn about the purposes of use, especially advertising, of the browsing information they can collect through these application buttons.
More information:
Facebook: https://www.facebook.com/about/privacy/cookies
Twitter: https://twitter.com/privacy?lang=fr
Google: https://www.google.com/policies/technologies/cookies/
Cookies: _icl_current_admin_language, cookie_notice_accepted, _icl_current_language, wfwaf-authcookie, woocommerce_cart_hash, wp_woocommerce_session, woocommerce_items_in_cart, wp-settings, wordpress_logged_in, wordfence_verifiedHuman, wordpress_test_cookie, wp-settings-time, 240planBAK, 240planD, wfvt, ppviewtimer
Performance and statistical cookies (audience measurement):
Purposes: These cookies collect information on how Users use the Site (number of visits, number of pages viewed, visitor activity using the Google Analytics and Facebook analysis tools. We also use these cookies to identify and resolve problems with the operation of the Site and to improve it.
Cookies: hubspotutk, gat, hssc, hssrc, hstc, ga, gid, zb_admin_last_url, zb_static, zb_static_dr_currentsessiontimevisit, zb_static_dr_firsttimevisit, zb_static_dr_widgetsupdatetime, zb_stats_impression, zb_stats_impression_freemium, zb_stats_visit
Learn more about https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage?hl=en
What are your rights regarding cookies?
In accordance with Article 82 of the Data Protection Act of January 6, 1978, internet users are informed about the processing of personal data through the use of cookies.
This charter fulfills the obligation to provide information.
Furthermore, if we use cookies that require the consent of the internet user, consent is obtained when a Cookie banner appears on the website.
Until the internet user has been informed and has given their express consent, this type of cookies is not placed or read on their terminal.
Consent is requested for each type of cookie (by purpose).
The list of third-party cookie providers is given at the time consent is collected.
The user has the option to delay their decision and make their choice later. As long as their consent is not given, no cookie is deposited.
The user has the option to refuse the deployment of these cookies.
It is possible for them to withdraw their consent at any time and as easily as they granted it.
The cookies placed have a maximum lifespan of 13 months. After this period, consent is requested again.
Internet users are informed that they can disable cookies by configuring their web browser:
If the internet user wishes to delete the cookies stored on their terminal and configure their browser to refuse cookies, they can do so through the preferences of their internet browser.
These cookie-related navigation options are usually found in the "Options", "Preferences", or "Tools" menus of the browser.
To learn more about the rules applicable to cookies, internet users can consult the following links:
https://www.cnil.fr/fr/cookies-et-autres-traceurs-la-cnil-publie-de-nouvelles-lignes-directrices
https://www.legifrance.gouv.fr/affichTexte.do?cidTexte=JORFTEXT000038783337
Handling of personal data after death – Right of access, rectification, erasure, and data portability
The individual concerned by processing may set instructions concerning the retention, erasure, and communication of their personal data after their death. These instructions can be general or specific.
The individual has the right to access, oppose, correct, delete, and, under certain conditions, the portability of their personal data. The person concerned has the right to withdraw consent at any time if consent is the legal basis for processing.
The request must include the concerned individual's first and last name, email or postal address, and be signed and accompanied by a valid identity proof.
The individual concerned by a treatment has the right to lodge a complaint with the supervisory authority (CNIL): https://www.cnil.fr/fr/webform/adresser-une-plainte
