BREIZELEC, hereinafter "We" attach great importance to the protection and respect of your privacy. Through this, we intend to communicate clear and precise information to you regarding the collection and processing of personal data that you are required to provide to us through the site MANTAGUA (hereinafter referred to as the "Site").
Art.1 Confidentiality rules
The general data protection regulations of April 27, 2016 (hereinafter the GDPR) apply from May 25, 2018. It imposes strict rules and conditions on businesses and merchants in the context of the processing of personal data staff of their customers and prospects, in order to protect their privacy.
Art.2 The controller
The "data controller" of your personal data is BREIZELEC, responsible for the site MANTAGUA that you consult and to which you communicate data.
Art.3 Legal basis for data processing and use
We can only use your personal data for both legitimate and necessary purposes (art. 6 GDPR). In concrete terms, this means that we process your personal data, whether or not in electronic form, for legitimate purposes in the context of the contractual relationship, business and security / safety. These purposes include, but are not limited to, the following :
Art.4 What is personal data
Personal data includes all information which concerns you and on the basis of which you can be identified (hereinafter referred to as "the data"). Anonymous data, which does not identify you, is therefore not considered to be personal data. Your personal data may therefore include :
Sensitive data :
The processing of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, as well as the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning the sexual life or sexual orientation of a natural person is prohibited. We undertake to strictly comply with this prohibition.
Art.5 Sources and origins of personal data
In principle, the data we hold comes from you when you fill out a form. If you do not intend to provide the mandatory or necessary information, you may lose the benefit of certain advantages and / or we may decide to terminate our services for your benefit or we will be unable to perform the contract.
Art.6 Access to personal data - Who do we share your information with ?
In accordance with the regulations in force, the data may be transmitted to the competent authorities on request and in particular to public bodies, exclusively to meet legal obligations, court officials, ministerial officers and bodies responsible for collecting debts, as well as in the search for perpetrators of offenses committed on the internet. Your data is mainly for internal use. We may communicate your data to third-party companies, which will be able to process it, within the framework of legitimate reasons and in particular for the proper performance of the contract, when we use providers and subcontractors for the realization of the order or services provided by us (technical services, payment service, secure payment, deliveries, sending of commercial prospecting ...). We only give them the data they need to perform their services. However, we will ensure compliance with the GDPR regulations by our subcontractors. The processing of data by them is governed by a strict legal framework.
Art.7 Duration of data storage
We use the necessary means to ensure that the storage of personal data for the purposes described above does not exceed the legal durations.
Art.8 What are your rights ?
We undertake to take the appropriate technical and organizational measures to guarantee the security of the processing of each person's personal data (Art. 32 of the GDPR). In accordance with applicable laws and regulations regarding the protection of personal data, you have a number of rights relating to your personal data, namely :
You have the right to receive your data in a structured format, commonly used and machine readable, for your personal use or to transmit it to a third party of your choice.
Art.9 Our commitment
We aim to implement security techniques to protect stored data against unauthorized access, improper use, alteration, illegal or accidental destruction and accidental loss.
Art.10 Procedure in the event of violations
It is always possible that personal data processed within the framework of the contractual relationship may fall into the wrong hands as a result of human error, computer error, etc. When the violation poses a high risk to human rights and freedoms, we will immediately notify the facts and measures. We will ensure that the necessary steps are taken to notify the violation in question to the Privacy Commission within 72 hours after becoming aware of it, unless the violation does not pose a high risk to the rights and freedoms of the no one. (Art. 32-34 of the GDPR).
Art. 11 Consent
You give your express, informed and unequivocal consent for the processing of personal data as described in this Privacy Notice. You have the right to withdraw your consent at any time, upon simple written request. We reserve the right to modify this Privacy Notice.
We may occasionally modify this confidentiality policy, in particular in order to comply with any regulatory, jurisprudential, editorial or technical changes.