PERSONAL DATA PROCESSING POLICY OBEE-SHOP.COM WEBSITE
The policy stated below applies to processing of personal data carried out by FAMILLE MICHAUD APICULTEURS (FMA), a public limited company with capital of €837,200 and with head office located at Domaine Saint-Georges, 9 chemin de Berdoulou 64290 GAN, FRANCE, registered in the Trade and Companies Register of Pau under number 775638117, hereinafter referred to as the data controller.
The following provisions concern all the processing of personal data carried out by the data controller for the operation of its website and the management of its business relationships.
Legal framework – compliance with GDPR and French law
The data controller declares that it processes personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as GDPR) and to French law no. 78-17 of 6 January 1978 on information technology, files and freedoms (as amended).
Personal data collected
The data that we are required to collect are all data that are relevant in the context of the operation of the website and of our business relationship.
The data controller is identified above. Its details are:
Famille Michaud Apiculteurs - Domaine Saint Georges
9 Chemin de Berdoulou - 64290 - GAN, FRANCE
Telephone: (0033) (0)5 59 21 91 00 - Email address: email@example.com
Definitions of terms used
Data permitting direct or indirect (by grouping of information) identification of natural persons (in particular by surname, forename, identifier, telephone number etc.).
Any structured set of personal data, whatever its medium (paper/digital).
Any operation or set of operations relating to these data, regardless of the procedure used, and in particular collection, recording, organisation, storage, adaptation, modification, extraction, consultation, use, communication by transmission or dissemination, matching, locking, erasure or destruction.
When are your data collected?
Your personal data are collected:
- When you navigate on the website, through trackers or cookies,
- When you create a customer account,
- When you place an order,
- When you send messages to the data controller via the Internet page,
- When you subscribe to the Newsletter
Legal basis of data processing
Your personal data are collected and/or processed on the following legal bases:
- For the purposes of fulfilling a legitimate interest (measurement of the operation of the site or of the page in order for you to benefit from its functionalities, replying to messages sent from the contact forms of the website or from Facebook or Instagram messaging).
- On the basis of your consent, which you can withdraw at any time (to measure the audience of the site and establish statistics, to ensure that the site is interactive with social networks).
- In order to ensure compliance with our legal and regulatory obligations.
The personal data collected are intended, within the limits of their functions, for our internal services and for any potential subcontractors we may use.
The data controller declares that it does not intend to transfer personal data to a third country or to an international organisation.
The data controller may also use the data when this use is justified by a legitimate interest: to evaluate or improve existing services or to create new services, as well as to conduct business development and promotional operations etc.
Data retention period
Personal data are kept for the time necessary to fulfil the purposes described above and in accordance with applicable French and European laws and regulations.
Rights of the person whose data are collected (data subject)
The data subject has the right to:
- Request that the data controller: provide access to the personal data, rectify or erase the personal data, or restrict data processing relating to the data subject,
- Object to processing
- Request portability of their data,
- Lodge a complaint with a supervisory authority,
- Revoke their consent at any time, without affecting the legality of processing based on consent given before this revocation; this right exists exclusively when the processing is based on Article 6 paragraph 1 a) or on Article 9 paragraph 2 a) GDPR, i.e. on the consent that the data subject has provided to the processing of their data for one or more specific purposes.
You can make any request to exercise your rights regarding your personal data by contacting us via email at the following address: firstname.lastname@example.org
Security and anti-fraud measures
The data controller takes all useful precautions to preserve the security and confidentiality of the data, in particular to prevent it from being distorted, damaged or disclosed and to prevent unauthorised third parties gaining access to it.
Management of cookies
A cookie is a small file saved on the hard drive of your computer at the request of the server managing the website visited. It contains information on the navigation you have done on the pages of the site. The purpose of the cookies placed during a visit to the site is to ensure its optimal functioning by keeping the Internet user’s data for the duration of that user’s session, to allow audience measurement statistics to be established, and to show you advertisements that fit your interests, as well as to improve the interactivity of the site via social networks. On your computer, it is the browser (Internet Explorer, Firefox, Chrome, Safari, etc.) that manages cookies and receives the order from the server to store them. This means that you can prohibit any storage of cookies (but if you do so, access to many sites, or at least use of their functions, then becomes impossible or limited). Browsers allow you to find cookies, list them and even delete them. Even if you do not delete them, they will eventually disappear because they expire after several months or at the ‘end of session’, that is to say the moment when you leave the site you were visiting.
Several different kinds of cookies are used on the website:
Strictly necessary cookies: these are essential for the website to function properly and cannot be deactivated from our systems. They are usually only activated in response to actions you take that constitute a request for services, such as setting your privacy preferences, logging in, or filling in forms. You can set your browser to block cookies or to alert you when they are used. However, if this category of cookies - which does not store any personal data - is blocked, certain parts of the site will not be able to work.
Performance cookies: These cookies make it possible to establish the number of visits to the website and the sources of its traffic, in order to measure them and to improve website performance. All data collected by these cookies are aggregated and hence anonymised. If you do not accept this category of cookies, your visits will not be included in our visitor statistics but you can use the site normally.
Functional cookies: These cookies allow us to improve the functions of our site and to personalise it. They may be set by us or by third-party partners whose services we have added to our pages. If you do not accept these cookies, some or all of these services may not function correctly.
Targeted advertising cookies: These cookies may be activated on our website by our advertising partners. They may be used by these companies in order to establish profiles on your interests, and in order to offer you targeted advertising on other sites. They operate only by identifying your browser and your device. If you do not accept this category of cookies, the advertising you will see when you navigate to other websites will be less targeted to your interests. In particular, the Site uses Google group cookies. For all information on how Google uses data collected via these cookies, you can review Google’s confidentiality regulations and conditions of use, accessible here.
The data controller may periodically amend this Policy. Consequently, we invite you to contact the data controller to verify that you have the most recently updated version of this policy.