Coco et Piaf Privacy policy

 

Definitions

Consent: any free, specific, informed and unambiguous expression of will by which the data subject accepts, by a declaration or by a clear positive act, that personal data concerning him or her be processed.

Data Protection Officer (or "DPO"): the person designated to be in charge of the protection of Personal Data within an organization and of compliance with the applicable legislation.

Recipient: means the natural or legal person, public authority, department or any other body that receives communication of Personal Data, whether or not it is a third party. However, public authorities that may receive personal data in the context of a particular investigation mission in accordance with Union law or the law of a Member State are not considered as recipients; the processing of such data by the public authorities in question is in accordance with the applicable data protection rules according to the purposes of the processing.

Personal data: any information relating to an identified or identifiable natural person

Company: means a natural or legal person engaged in an economic activity, regardless of its legal form, including partnerships or associations regularly engaged in an economic activity.

Identifiable physical person: a physical person who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier, or to one or more factors specific to his or her physical, physiological, genetic, mental, economic, cultural or social identity. The following data are considered sensitive

Racial or ethnic origin, political, religious or philosophical opinions;

Membership in a trade union;

Physical or mental health;

Sexual orientation or sexual life;

Genetic and biometric Data;

Data relating to criminal convictions, offences or related security measures.

Controller: means the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing; where the purposes and means of such processing are determined by Union law or by the law of a Member State, the controller may be designated or the specific criteria applicable to his designation may be provided for by Union law or by the law of a Member State.

Representative: means a natural or legal person established in the Union, designated by the controller or processor in writing, pursuant to Article 27 of the GDPR, who represents them in relation to their respective obligations under the GDPR.

Legal Representative: a person appointed by law to represent and defend the interests of another person, for the purposes of the said policy it means holders of parental authority.

RGPD: abbreviation of the European Regulation n°2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data.

Processor: means the natural or legal person, public authority, department or other body that processes personal data on behalf of the controller.

Third party: means a natural or legal person, public authority, service or body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the personal data.

Processing: any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automatic means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction

 

Purpose of this policy

Coco et Piaf is committed to ensuring that the processing carried out within the framework of its activity and its annexes complies with the following legislation: the General Data Protection Regulation, also known as the European Regulation n°2016/679, the amended French Data Protection Act and any other regulation relating to the protection of personal data that may be in force.

This policy applies to all services provided for the learning of French to minors

The present policy aims to inform in a simple, clear and complete way the person who uses our services, whatever the method of collection online (contact form), orally (telephone) or in writing (electronic email or post).

This policy concerns the processing of personal data by Coco et Piaf as data controller. Coco et Piaf determines the means and purposes within the framework of its activity.

For any additional information concerning the company Coco et Piaf, you can consult the Legal Notice page.

 

Scope of application

The present policy covers all processing carried out by Coco et Piaf in the context of :

➢ The management of online forms, use of the Chatbot and contact requests

Data collected: identification data, personal data, contact data.

Legal basis: pre-contractual measures.

Retention period: the time it takes to process the request, up to 1 year after the last exchange.

➢ Management of Coco et Piaf's customers, service providers and partners

Data collected: identification data, personal data, bank data.

Legal basis: contractual measures.

Retention period: the time of the contractual duration within the limit of 2 years following the last exchange.

➢ Data of minors:

The European regulation requires the collection of consents from the minor and his legal representatives (or holders of parental authority).  Within the framework of the activities of services of Coco et Piaf personal data of minor persons can be collected:

Name; First name; E-mail address; School level (Add in case)

Legal basis: contractual measures

Retention period: for the duration of the contractual period up to a maximum of 2 years following the last exchange with the legal representatives

By accepting the aforementioned Privacy Policy, the holders of parental authority of the minor consent to the collection, processing and storage of his/her data. They undertake to obtain the prior consent of the minor by explaining the terms of the said policy in a clear, simple and complete manner. This data will be used strictly for the purpose of fulfilling the contractual mission of Coco et Piaf with its customers. In accordance with this policy and the applicable laws on data protection, the holders of parental authority may withdraw the consent of the minor at any time.

 

Principles applicable to the processing of your personal data

Coco et Piaf is committed to ensuring a high level of protection in all its processing. 

Data retention period:

Coco et Piaf only keeps your data for the time necessary to carry out the operations for which it was collected. However, where the law provides for an additional period, this is applied when the data is archived.

 

Sharing of data with third parties:

The data collected is only shared with the staff of Coco et Piaf to ensure the processing of the request.

If, in the course of processing your request, data must be shared with external service providers, this will be done on a need-to-know basis and throughout the exchange, we will ensure the permanent protection of your personal data. In addition, we will obtain your explicit consent for this operation in advance.

 

Transfer of your data outside the European Union:

Coco et Piaf works with service providers located outside the European Union. Coco et Piaf is committed to ensuring that each transfer is governed by a mechanism that provides protection equivalent to that guaranteed by European Union law.

 

Data security:

Coco et Piaf is committed to implementing all technical and organizational measures necessary to respect the protection of your personal data. These measures are taken to ensure the integrity, confidentiality and availability of your data. They concern in particular the loss, destruction, alteration, access or unauthorized disclosure.

 

The rights of individuals

In accordance with the legal provisions, you can exercise your rights by e-mail to contact@Cocoetpiaf.com or by post to the following address: 2 Rue Cognacq Jay, 75007 Paris, France.

In order to correctly process your request, it will be necessary to provide all the information necessary to identify you, in particular your personal details, e-mail address, etc.

Coco et Piaf will have one month to respond to your request. However, due to the complexity of the request or the large number of requests, the response time may be up to 2 months.

 

In addition, you may directly contact the Commission Nationale de l'Informatique et des Libertés (CNIL): 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07, with any complaint relating to the way in which Coco et Piaf collects and processes your data.

You may exercise the following rights:

Right of access: the right of the user to access his or her data.

Right of withdrawal: the right to withdraw consent.

Right of deletion: right to request the deletion of data concerning him.

Right of rectification: right to modify the data concerning him.

Right of limitation of the treatment: right to modify his consent and to limit it in the purposes of the treatment.

Right of opposition: right of the user to refuse the processing against him.

Right to the portability of your data: right that the user to request the transfer of his data to another provider. In other words, to change the destination of the data concerning him.

 

These rights are listed in Chapter III of the General Regulation on the Protection of Personal Data in Article 15 and following. You can access them directly via this link: https://www.cnil.fr/fr/reglement-europeen-protection-donnees/chapitre3

Contact us

For any additional information about this Policy, please contact us via the online form ("Contact us") or by e-mail at the following address contact@Cocoetpiaf.com