🇬🇧 🇩🇪 🇳🇱 🇫🇷

PRIVACY POLICY - Léti’Quête EI Laëtitia Vasseur-Reibel

This Privacy Policy, updated on May 1, 2025, aims to formalize the commitment of the sole proprietorship Léti'Quête regarding the respect of the privacy of Users of the website https://www.letiquete.fr/ (the "Site").

The Privacy Policy and the General Terms and Conditions of Sale and Use (GTCSU), available at the following address: https://www.letiquete.fr/cgvu-en, form a contractual whole.

All capitalized terms not defined in this Privacy Policy are defined in the GTCSU.

  • Updated 05/01/2025 - Only the complete french version is legally binding

    📝 ABOUT THE GDPR

    Léti'Quête processes your personal data in compliance with the General Data Protection Regulation (GDPR).

    Only adequate, relevant, and necessary information for the provision of Services is collected.

    👩‍💼 DATA CONTROLLER

    Laëtitia Vasseur-Reibel, sole proprietor residing at 13 rue de la Garenne 34230 Saint-Pons-De-Mauchiens, is solely responsible for the processing of collected data.

    She personally commits to ensuring this processing without using subcontractors for this mission.

    📊 DATA COLLECTION

    • What data is collected?

      • Identity and date of birth

      • Contact information (address, phone, email)

      • Information about the client's health status and, if applicable, their family's

      • Any element necessary for proper adaptation of Services

    • How is it collected?

      • Through website forms

      • When booking appointments on Perfactive

      • By email, phone, video conference, or in person

      • When subscribing to the monthly newsletter

    You may choose not to provide certain information, but this may be essential for the proper execution of Services.

    🤖 NO PROFILING OR AUTOMATED DECISION-MAKING

    Léti'Quête does not perform any automated profiling of users and does not make any automated decisions concerning you.

    The MailerLite tool is used for sending communications with basic segmentation features, but always with manual validation and without behavioral analysis.

    🔒 DATA PROTECTION

    Technical and organizational security measures are implemented to ensure the security, integrity, and confidentiality of your personal data, including:

    • Encryption of sensitive data

    • Use of complex and regularly renewed passwords

    • Secure information backup

    • Regular risk assessment

    🌍 INTERNATIONAL DATA TRANSFERS

    Léti'Quête commits not to transfer your personal data outside the European Union or the European Economic Area.

    The service providers used (Squarespace, Perfactive, Infomaniak) host their data in the EU/EEA or Switzerland.

    Special precautions are taken regarding communications via WhatsApp and interactions on social networks, with specific protection measures.

    ⏱️ DATA RETENTION

    Your personal data is kept for a uniform period of 5 years from your last service or contact with Léti'Quête.

    By exception:

    • Data related to financial transactions is kept for 10 years (accounting obligations)

    • Navigation data and cookies are kept for a maximum of 13 months

    🍪 USE OF COOKIES

    Cookies are used only to ensure the proper functioning of the site.

    When browsing, a cookie banner appears on the home page allowing you to manage your preferences.

    All cookies are destroyed 13 months after they are placed.

    ⚖️ YOUR RIGHTS

    In accordance with the GDPR, you have the following rights:

    • Right of access to your data

    • Right to rectification

    • Right to erasure (right to be forgotten)

    • Right to restriction of processing

    • Right to object to processing

    • Right to data portability

    • Right to withdraw your consent at any time

    • Right to define directives regarding your data after your death

    To exercise these rights, contact Léti'Quête by email at the following address: contact@letiquete.fr.

    A response will be provided within a maximum of 30 days.

    If you believe your rights are not being respected, you can file a complaint with the CNIL.

    🔄 MODIFICATION OF THE PRIVACY POLICY

    Léti'Quête reserves the right to modify this policy at any time.

    Significant modifications will be notified by email at least 8 days before they take effect.

    📜 APPLICABLE LAW AND JURISDICTION

    The Privacy Policy is subject to French law.

    In case of dispute, the parties commit to following the resolution procedure (amicable settlement, mediation, legal action) detailed in the GTCSU available at the following address: https://www.letiquete.fr/cgvu-en.

    📞 CONTACT

    For any questions regarding this Privacy Policy or concerning the processing of your personal data, you can contact the Controller by:

  • To facilitate understanding of the legal terms used in this document, here are simplified explanations of the main concepts:

    • Personal data: Any information relating to an identified or identifiable natural person (name, address, email, etc.).

    • Profiling: Automated processing of personal data aimed at evaluating certain personal aspects relating to a person, particularly to analyze or predict their preferences, behaviors, and attitudes.

    • Encryption: Computer security process that transforms readable data into a coded format to protect its confidentiality during storage or transmission.

    • Data breach: Security incident resulting in the destruction, loss, alteration, or unauthorized disclosure of personal data.

    • Cookies: Small text files placed on a user's device when browsing a website, allowing certain information about their session to be stored.

    • Data portability: Right allowing a person to retrieve the data they have provided in a structured, commonly used, and machine-readable format.

    • International data transfer: Transmission of personal data to a country outside the European Union or European Economic Area.

    • Data Privacy Framework (DPF): Agreement between the European Union and the United States framing personal data transfers, replacing the Privacy Shield following the European Commission's adequacy decision of July 10, 2023.

    • Standard contractual clauses: Contract templates validated by the European Commission allowing for the framework of data transfers outside the EU/EEA.

    For any questions regarding these terms or other elements of the document, do not hesitate to contact the Company.

    1. ABOUT THE GDPR

    2. DATA CONTROLLER

    3. DATA COLLECTION

    4. NO PROFILING AND AUTOMATED DECISION-MAKING

    5. DATA PROTECTION

    6. INTERNATIONAL DATA TRANSFERS

    7. DATA RETENTION

    8. USE OF COOKIES

    9. USER RIGHTS

    10. MODIFICATION OF THE PRIVACY POLICY

    11. APPLICABLE LAW AND JURISDICTION

    12. APPLICABLE LAW IN AN INTERNATIONAL CONTEXT

    13. UPDATE OF LEGAL REFERENCES

    14. CONTACT

1 - ABOUT GDPR

In the context of making this Website available, online booking on Perfactive or establishing a videoconference session via Kmeet; the personal data of Users is processed in compliance with the General Data Protection Regulation (GDPR) 2016/679 of April 27, 2016 and under the conditions set out below.

Personal data means any information relating to an identified or identifiable natural person. In strict compliance with the GDPR, personal data is collected and processed exclusively within the framework of providing and communicating the Services offered by the individual business Léti'Quête.

Only personal data that is adequate, relevant and limited to what is necessary for the purposes for which it is processed is collected. Thus, personal data considered as "sensitive", such as racial or ethnic origins, political, philosophical or religious opinions, will never be requested.

2 - DATA CONTROLLER

The individual entrepreneur Laëtitia Vasseur-Reibel (the Controller), residing at 13 rue de la Garenne 34230 Saint-Pons-De-Mauchiens, is solely responsible for processing the data collected on the Website.

The Controller undertakes to personally ensure the processing of your data and not to use subcontractors for this mission, thus guaranteeing direct and permanent control over the protection of your personal information.

3 - DATA COLLECTION

The following personal data transmitted by the User or Client may be collected and stored, particularly when they:

  • communicate it in a form, during a meeting or any interview by email, chat, telephone, videoconference...;

  • make an appointment online on Perfactive;

  • agree to receive, by email, news from the individual business Léti'Quête.

Concerning the User, Client or Consultant, the personal data collected may be of the following nature:

  • identity;

  • date of birth;

  • address, telephone and email;

  • health status;

or any element essential to ensuring that the Services offered or already booked are well adapted to their condition.

The User, Client or Consultant may always choose not to transmit this information. However, this information is, in certain cases, essential for the proper execution of the Services.

Personal data is collected to enable the implementation and management of the Website Services and to respond to specific requests from the User, Client or Consultant. No personal data is used for the purpose of operating or improving the Website.

The Controller undertakes never to communicate the personal data of its Users, Clients or Consultants.

If the latter has decided to receive emails and/or SMS from the Controller during their first session, the User, Client or Consultant will then receive electronic and/or alphanumeric messages relating exclusively to Services, news and current promotions of the individual business Léti'Quête.

The User, Client or Consultant can unsubscribe from these mailings at any time according to the following procedures:

  1. For emails:

    • By clicking on the unsubscribe link present at the bottom of each email sent by the Company

    • This unsubscribe link will be clearly identified by the mention "Unsubscribe" or "Unsubscription"

    • Unsubscription will be effective immediately and confirmed by a confirmation email

    • No justification will be requested to proceed with unsubscription

  2. For SMS:

    • By replying "STOP" to any SMS received from the Company

    • By sending an email to the following address: contact@letiquete.fr, with the subject "SMS Unsubscription"

    • Unsubscription will be effective within a maximum of 48 working hours

  3. For all communications:

    • By sending an email to the following address: contact@letiquete.fr, with the subject "Communications Unsubscription"

    • By sending a postal letter to the following address: 13 rue de la Garenne 34230 Saint Pons de Mauchiens

    • By telephone at (+33)6 63 82 29 94 during office hours

The Company undertakes to process any unsubscription request within a maximum of 72 working hours.

After unsubscription, the User, Client or Consultant will no longer receive any marketing communications, except for communications strictly necessary for the execution of ongoing Services (appointment confirmations, invoices, etc.).

The frequency of communications is limited so as not to overload your inbox, with a maximum of one monthly mailing except in case of urgent or important information relating to the Services.

4 - PROFILING AND AUTOMATED DECISIONS

4.1 - Non-use of automated profiling

The Controller does not perform any automated profiling of Users, Clients or Consultants within the meaning of Article 4 of the GDPR, that is to say, it does not carry out any automated processing consisting of using personal data to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict elements concerning work performance, economic situation, health, personal preferences, interests, reliability, behavior, location or movements of that person.

The data collected is used solely for the provision of Services and is not subject to any automated behavioral or predictive analysis.

4.2 - Use of marketing tools with limited segmentation features

It is specified that the Company uses the MailerLite tool for sending its electronic communications, with the following specific guarantees:

  1. Strict limitation of features used:

    • The Company only uses basic segmentation features strictly necessary for the relevance of communications

    • No advanced behavioral analysis, scoring or automated prediction features are activated

    • Precise geolocation data is never collected or used

  2. Restrictive tool configuration:

    • Email reading trackers are disabled by default

    • Click tracking functionality is limited to non-personalized links

    • Interaction history is limited to a maximum of 12 (twelve) months

    • Identification data is pseudonymized in segments

  3. GDPR-compliant settings:

    • The tool is configured according to "privacy by default" principles

    • Only strictly necessary data is transmitted to MailerLite (first name and email)

    • No sensitive data is ever shared with this tool

  4. Systematic human control:

    • Each segmentation is controlled and validated manually by the Controller before sending

    • No automated decision is made based on these segmentations

    • A periodic review of created segments is performed to verify their relevance and proportionality

The Company expressly specifies that these operations do not constitute profiling in the strict sense of Article 4 of the GDPR.

The Client may exercise their right to object to this limited use of segmentation at any time by contacting the Controller at the following email address: contact@letiquete.fr.

In this case, they will only receive general non-personalized communications.

4.3 - Specific rights

Although the Controller does not use these techniques, Users, Clients and Consultants have, in accordance with Articles 21 and 22 of the GDPR, the right to:

  • Object at any time to any potential profiling related to direct marketing

  • Not be subject to a decision based solely on automated processing, including profiling, producing legal effects concerning them or significantly affecting them

To exercise these rights, the User, Client or Consultant may contact the Controller by email at contact@letiquete.fr.

5 - DATA PROTECTION

In order to prevent them from being distorted, damaged or accessed by unauthorized third parties, technical and organizational security measures have been put in place to guarantee the security, integrity and confidentiality of all personal data of Users.

Taking into account the state of knowledge, implementation costs and the nature, scope, context and purposes of processing as well as risks and their probability, the Controller ensures an appropriate level of security.

Where applicable, it is the responsibility of the Consultant to ensure the confidentiality of data allowing them to access videoconferences on Kmeet.

These measures include in particular the encryption of sensitive data, the use of complex and regularly renewed passwords, as well as secure backup of information. The Controller also undertakes to regularly conduct a risk assessment in order to adapt its security measures accordingly.

In case of a data breach likely to create a risk for the rights and freedoms of the persons concerned, the Controller undertakes to notify this incident to the CNIL within a maximum period of 72 hours after becoming aware of it, and to inform the persons concerned as soon as possible.

6 - INTERNATIONAL DATA TRANSFERS

6.1 - No transfers outside EU/EEA

The Controller undertakes not to transfer the personal data of Users, Clients or Consultants outside the European Union or the European Economic Area.

All personal data collected is hosted exclusively on servers located in the European Union, thus guaranteeing an adequate level of protection in accordance with the GDPR.

6.2 - Exceptional cases of transfers

In the event that, in the future, certain data should be transferred outside the European Union or the European Economic Area (for example, in case of a change of host or service provider), the Controller undertakes to:

  • Only make these transfers to countries recognized by the European Commission as ensuring an adequate level of protection, or

  • Implement appropriate safeguards in accordance with Articles 46 and 47 of the GDPR (standard contractual clauses, binding corporate rules, etc.), or

  • Obtain explicit consent from the persons concerned before any transfer.

The Controller will inform Users, Clients or Consultants in advance of any change in its data transfer policy and will update this Privacy Policy accordingly.

6.3 - Use of third-party services

The Controller uses certain third-party tools and services for managing its activity, notably:

  • Squarespace (Website hosting) whose servers are hosted in Ireland

  • Perfactive (appointments, client monitoring, billing and accounting) whose servers are hosted in France

  • Infomaniak (videoconferencing with Kmeet and data storage with Kdrive) whose servers are hosted in Switzerland

These providers are subject to strict data protection obligations and do not perform transfers outside the EU/EEA without appropriate guarantees.

6.4 - Use of third-party tools and data transfer

The Company may use certain third-party tools for web traffic analysis, digital marketing or other features aimed at improving Services and user experience.

In case of using such tools, the Company undertakes to:

  1. Rigorous selection of providers: Choose only providers compliant with GDPR and offering sufficient guarantees regarding the protection of personal data.

  2. Web analysis tools:

    • The Company currently does not use any tool for web traffic analysis.

    • In case of future use of tools like Google Analytics or similar, likely to transfer data outside EU/EEA, the Company will implement GDPR-compliant guarantees, such as standard contractual clauses approved by the European Commission.

    • The Company will systematically configure these tools to anonymize IP addresses and limit collection to strictly necessary data.

  3. Marketing tools:

    • For its marketing campaigns and newsletters, the Company currently uses MailerLite whose servers are hosted in Ireland (See MailerLite Privacy Policy).

    • In case of future use of marketing tools based outside EU/EEA, the Company will obtain prior explicit consent from Users, Clients or Consultants and inform them of potential risks related to these transfers.

  4. Social media:

    • Share buttons and social media widgets present on the Website may collect certain information. These data transfers are managed directly by the platforms concerned.

    • The User can prevent this collection by logging out of their social media accounts before visiting the Website or by using browser extensions that block trackers.

  5. Transparency and information:

    • The Company will maintain and make available on the Website an exhaustive list of third-party tools used, specifying for each its purpose, the nature of data collected and the place of their processing.

    • Any addition of a new tool likely to transfer data outside EU/EEA will be notified to concerned Users, Clients or Consultants.

  6. Rights of data subjects:

    • The rights of Users, Clients or Consultants as defined in Article 9 of this Privacy Policy also apply to data likely to be transferred via these third-party tools.

    • Any User, Client or Consultant may specifically object to the use of these tools by contacting the Company by email at the following address: contact@letiquete.fr.

6.5 - Specific guarantees for transfers via WhatsApp

The Company may be contacted via WhatsApp by its Clients.

This application being owned by Meta (formerly Facebook Inc.), an American company, exchanges via this channel may involve data transfers outside the European Union.

6.5.1 - Legal framework for WhatsApp transfers

Data transfers to the United States currently take place within the framework of the Data Privacy Framework (DPF), an agreement that replaced the Privacy Shield following the adequacy decision adopted by the European Commission on July 10, 2023.

Meta is certified under this legal framework.

However, the Company recognizes that the international legal landscape regarding data protection is constantly evolving and that this mechanism could be subject to modifications or invalidation, as was the case for previous mechanisms (Safe Harbor, Privacy Shield).

In case of invalidation or substantial modification of the DPF by a court decision or regulatory evolution, the Company undertakes to:

  1. Measures within 30 (thirty) days:

    • Temporarily cease using WhatsApp for any communication involving sensitive personal data

    • Inform concerned Clients by email of the situation and available secure alternatives

    • Implement Standard Contractual Clauses (SCCs) adopted by the European Commission, complemented by additional technical and organizational measures

  2. Measures within 90 (ninety) days:

    • Conduct a new Data Protection Impact Assessment (DPIA)

    • Progressively migrate to alternative messaging solutions based in the EU

    • Offer all Clients an alternative communication channel compliant with GDPR requirements

  3. Transparent information:

    • The Client will be informed of the evolution of the legal situation and measures taken

    • Specific consent will be collected before continuing exchanges via WhatsApp if this solution remains used

The Company undertakes to actively monitor regulatory and jurisprudential developments concerning international data transfers, to adapt its practices and protection measures according to legal developments, and to inform Users, Clients or Consultants of any significant change in the applicable legal framework.

6.5.2 - Technical and organizational measures

To secure these transfers and protect your data, the Company has implemented the following guarantees:

  1. Limitation of shared data: Only information strictly necessary for communication concerning appointments and services is exchanged via WhatsApp

  2. Prohibition of sensitive data sharing: No health data or sensitive information is transmitted via this channel

  3. End-to-end encryption: The Company exclusively uses end-to-end encryption offered by the application for all communications

  4. Regular data deletion: Systematic purging of conversation histories every 3 months

  5. Standard contractual clauses: In addition to the DPF, the Company relies on standard contractual clauses adopted by the European Commission

  6. Impact assessment: The Company has conducted a data protection impact assessment (DPIA) specific to the use of WhatsApp

  7. Compensatory measures: Implementation of additional guarantees recommended by the European Data Protection Board (partial anonymization, pseudonymization)

6.5.3 - Transparency and User choice

The Company undertakes to:

  • Not use WhatsApp as the preferred communication channel

  • Systematically offer alternative communication channels (telephone, SMS, email) that are more secure

  • Respect the Client's choice regarding their preferred communication channel

The Client may at any time request that communications continue via another channel of their choice by contacting the Controller by email at the following address: contact@letiquete.fr.

6.5.4 - Residual risks and specific rights

Despite these guarantees, the Client is informed that residual risks exist concerning potential access to their data by US authorities.

In case of concerns regarding these transfers, the Client has, in addition to the rights mentioned in Article 9, specific rights:

  • Right to obtain a copy of appropriate safeguards implemented

  • Right to file a complaint with the supervisory authority (CNIL)

  • Right to an effective judicial remedy

  • Right to compensation for material or moral damage suffered

6.6 - Processing of data on social networks

6.6.1 - Presence on social networks

The Company is currently present on only one social network: Facebook.

The User who interacts with the Company's pages or profiles on this platform is informed that their personal data may be collected and processed by:

  • The Company, in its capacity as data controller for data it collects directly

  • The social network platform itself, in accordance with its own privacy policies

6.6.2 - Data collected via social networks

Within the framework of its presence on social networks, the Company may collect the following types of data:

  • Public profile information (name, username, profile picture)

  • Interactions with published content (comments, shares, "likes")

  • Private messages sent to the Company via platform messaging systems

  • Anonymized statistical data on page attendance and engagement

The Company does not have access to personal data that the User has not made public or voluntarily shared with it.

6.6.3 - Purposes of processing data on social networks

Personal data collected via social networks is processed by the Company for the following purposes:

  • Communicate with the User at their request

  • Respond to questions, comments and information requests

  • Analyze engagement and interaction with published content

  • Improve its services and communication

  • Inform the User about its activities, offers and events

6.6.4 - Legal basis for processing

The processing of data collected via social networks is based on:

  • The User's consent manifested by their voluntary action of interacting with the Company's pages

  • The Company's legitimate interest in developing its activity and communicating about its services

  • The execution of a contract when the interaction is related to a service provision

6.6.5 - Data transfers via social networks

The User is informed that most social network platforms are based outside the European Union and may transfer their data to third countries.

The Company is not responsible for data transfers made by social network platforms themselves.

To learn more about these transfers and the guarantees implemented, the User is invited to consult the privacy policies of the platform concerned:

6.6.6 - Specific rights concerning social networks

In addition to the rights mentioned in Article 9 of this Privacy Policy, the User may exercise control over their data on social networks by:

  • Configuring privacy settings of their accounts

  • Limiting information they make public

  • Using platform logout features before visiting the Website

  • Deleting their interactions (comments, "likes") with the Company's pages

  • Directly contacting the platform concerned to exercise their rights on data it holds

The Company undertakes to follow up on any request for deletion of content published by the User on its pages within a maximum period of 48 (forty-eight) working hours.

7 - DATA RETENTION

Upon simple unsubscription request, the personal data of the User, Client or Consultant will be erased and only kept in archive form for the purposes of establishing proof of a right or contract.

In any case, in accordance with the uses set out in this Privacy Policy and in compliance with laws and regulations, personal data will be retained for a period not exceeding that necessary in view of the purposes for which it is processed.

7.1 - Uniform duration of personal data retention

Except for specific legal provisions, all personal data of Clients (identification, contact and health data) is retained for a uniform period of 5 (five) years from the last service or last contact with the Company, according to whichever event occurs latest, in order to guarantee the consistency of the client file as a whole.

This 5 (five) year period therefore begins to run from the last significant interaction between the Client and the Company, whether it is a service provision, an email exchange, a telephone call relating to services, or any other form of contact established at the initiative of either party.

By exception to this rule:

7.2 - Client information on retention periods

During the first session, the Client is informed of the retention periods applicable to their various personal data.

The Company undertakes to implement a manual data purging system upon expiration of the planned retention periods, thus guaranteeing compliance with the announced durations.

These retention periods apply uniformly in all the Company's legal documents (Terms of Use, Privacy Policy and Legal Notices).

8 - USE OF COOKIES

A cookie is a text file that may be stored in a terminal when consulting an online service with browsing software.

A cookie file allows its issuer, during its validity period, to recognize the terminal concerned each time this terminal accesses digital content containing cookies from the same issuer.

In any case, cookies stored on their browsing terminal with the User's agreement are destroyed 13 (thirteen) months later.

The cookies issued allow the Controller to ensure only the proper functioning of the Website.

When browsing the Website, social network cookies may be generated particularly through share buttons that collect personal data.

At each visit to the Website, a cookie banner appears on the homepage. A clickable link provides more information about the purpose and functioning of cookies, referring to this Privacy Policy and the Terms of Use available at the following address: https://www.letiquete.fr/cgvu-en.

Continuing navigation on another page of the site or selecting an element of the Website (notably: image, text, link...) materializes the User's acceptance of the deposit of the targeted cookies on their computer.

The User also has access to a cookie preference panel allowing them to precisely select the categories of cookies they accept, except for cookies strictly necessary for the Website's functioning.

WARNING! Any setting is likely to modify the User's navigation on the internet and their access conditions to certain services requiring the use of cookies.

The Controller declines any responsibility regarding consequences, related to the degraded functioning of its Services, resulting from the impossibility of recording or consulting cookies necessary for their functioning and that the User would have refused or deleted.

This would be the case particularly:

  • if the User tried to access content or Services that require identification;

  • when the Controller could not recognize, for technical compatibility purposes, the type of browser used by the User's terminal, its language and display settings or the country from which the User's terminal seems connected to the Internet.

For cookie management and User choices, each browser's configuration is different.

It is described in the help menu of the User's browser, which will allow them to know how to modify their wishes regarding cookies.

The User will find below useful information concerning the main browsers:

  • Internet Explorer/Edge: click on the Tools button, then on Internet Options. In the General tab, under Browsing History, click on Settings; click on the View Files button;

  • Firefox: go to the Tools tab of the browser then select the Options menu. In the window that appears, choose Privacy and click on Show cookies;

  • Safari: access Settings via the browser menu (Safari > Preferences) and click on Privacy;

  • Google Chrome: access Settings via the button to the right of the URL bar or via the browser menu (Chrome > Preferences). Select Advanced Settings; click on Content Settings then on Cookies.

For more information about cookies, the User can consult the website of the National Commission for Information Technology and Civil Liberties (CNIL) at the following address: https://www.cnil.fr/fr/site-web-cookies-et-autres-traceurs.

9 - USER RIGHTS

The data in possession of the Controller is communicated by the User themselves.

The latter has rights over their personal data.

In accordance with regulations regarding the protection of personal data, particularly Articles 15 to 22 of the GDPR, and after proving their identity, the User has the right to request from the Controller access to personal data concerning them, rectification or erasure thereof.

Furthermore, within the limits set by law, the User also has the right to object to processing, to limit it, to decide the fate of their data, to withdraw their consent at any time and the right to portability of personal data provided.

Also, in accordance with Article 85 of Law No. 78-17 of January 6, 1978 relating to information technology, files and freedoms, the User, Client or Consultant may define directives relating to the conservation, erasure and communication of their personal data after their death.

These directives may be:

  • General: they concern all personal data and may be registered with a digital trusted third party certified by the CNIL

  • Particular: they specifically concern data processed by the Company and are addressed directly to it

The User, Client or Consultant may modify or revoke these directives at any time.

In the absence of directives or contrary mention in said directives, the heirs of the User, Client or Consultant may exercise after their death the rights of access, rectification and objection necessary for the organization and settlement of the deceased's succession as well as taking into account their death by the Company.

To define particular directives concerning data processed by the Company, the User, Client or Consultant may send their request by email to the following address: contact@letiquete.fr.

The Controller undertakes to respond to any request for exercising rights within a maximum period of 30 (thirty) days from receipt of the complete request.

This period may be extended by two months taking into account the complexity and number of requests, in which case the User will be informed.

If the User believes, after contacting the Controller, that their rights are not respected, they have the right to file a complaint with the CNIL at the following address: http://www.cnil.fr.

10 - MODIFICATION OF THE PRIVACY POLICY

The Controller reserves the right to modify this Privacy Policy at any time.

For this purpose, it is advised that the User consult it regularly.

Important modifications will be notified by email to Users with an account or subscribed to the monthly newsletter, at least 8 (eight) days before they come into effect, in order to give them time to take note of them.

After any modification, use of the Website means that the User accepts it. If the latter does not accept certain substantial modifications made to this Privacy Policy, the Controller expressly asks them to stop using the Website and, where applicable, to unsubscribe from mailings.

11 - APPLICABLE LAW AND COMPETENT JURISDICTION

This Privacy Policy is subject to French law.

The complete procedures for dispute resolution, including amicable settlement procedure, mediation and jurisdictional competence, are detailed in Articles 22 and 23 of the General Terms of Sale and Use (GTSU) available at the following address: https://www.letiquete.fr/cgvu-en.

These provisions apply to all contractual documents, including this Privacy Policy.

12 - APPLICABLE LAW IN AN INTERNATIONAL CONTEXT

Within the framework of the internationalization of the Company's Services, the following principles apply concerning data protection:

  • Only French and European legislation (GDPR) applies to the processing of personal data, regardless of the country of residence of the User, Client or Consultant

  • Users, Clients or Consultants residing outside the European Union benefit from the same rights as those residing in the EU

  • In case of conflict between the GDPR and local legislation of the country of residence of the User, Client or Consultant, the protection most favorable to them will be applied, insofar as this is compatible with French law

13 - UPDATE OF LEGAL REFERENCES

References to legal and regulatory texts mentioned in this document are provided for informational purposes.

In case of modification, abrogation or replacement of these texts subsequent to the date of update of the document, the new legal or regulatory provisions will apply automatically, without it being necessary to formally modify this document.

The Company undertakes to update these references during each regular revision of the document.

In case of doubt about the applicability of a provision due to legislative or regulatory evolution, the Client is invited to contact the Company for clarification.

14 - CONTACT

For any question relating to this Privacy Policy or concerning the processing of your personal data, you may contact the Controller by: