The protection and security of your Data, as defined in article 5 of the General Conditions, is important to Puremium.
This Confidentiality Policy is an integral part of the General Conditions and is intended to govern the collection, use, and access to your Data in the context of the use of the Site and the Service.
Puremium undertakes to respect the legislative provisions applicable in French law in this matter.
Puremium ensures that Users collect and process their Data in compliance with the provisions of Law No. 78-17 of January 6, 1978 relating to data processing, files and freedoms (amended by Law No. 2004-801). of August 6, 2004, law n°2016-1321 of October 7, 2016, law n°2018-493 of June 20, 2018, ordinance n°2018-1125 of December 12, 2018 and decree n°2019-412 of May 6, 2019) (the “ Data Protection Act ”) and Regulation No. 2016/679 of the European Parliament and of the Council of April 27, 2016 (the “ Regulation ”), in accordance with this confidentiality policy (the “ Policy of Confidentiality ").
1. Lawfulness of processing – Access to the Site and Service
The Confidentiality Policy must be expressly accepted by any User wishing to access the Site during their first visit and/or subscribe to the Service, and each time the Confidentiality Policy is modified.
In the event of non-acceptance of the Confidentiality Policy, the User must give up access to the Site and the Service.
The processing of Data being necessary for the use of the Service, the User expressly authorizes Puremium to carry out this processing as described in this Confidentiality Policy when subscribing to the Service.
2. Data controller
The Data Controller is the company Puremium, registered in the Paris trade and companies register under number 841 062 110, whose head office is located at 16, rue de la Ville L'Evêque in Paris (75008), represented by its president , Mr. Francky Defosse.
To exercise one of the rights referred to in Article 9 of the Confidentiality Policy or for any questions, Users can contact: firstname.lastname@example.org
3. Data collected
Puremium processes Data provided by Users while browsing the Site and using the Service.
Certain Data is obtained automatically due to the interactivity established between any User and the Site.
The Data collected is in particular that provided in the connection or account creation form. Mandatory information is marked with an asterisk.
Data relating to your identity : this Data designates in particular your name, your first name, your email address, your postal address, your telephone number, your profile (employee, visitor, supplier, service provider, customer), your consumption habits, your situation family, the occurrence or not of a disaster, the position held, the professional address, the professional telephone number, the professional email address.
Data relating to the connection and use of the Account when you own it : this Data designates all the information you need to access your personal space as well as that relating to the use of the Account and in particular, your username and password, your choices and preferences, information on the user's assets by tranche, whether you are an owner or tenant.
Data relating to navigation : this Data concerns the way in which the User navigates on the Site. This Data may include IP address, screen resolution, browser used, browsing time, search history, operating system used, language and pages viewed.
Social Media Usage Data : When you interact with social media features.
Furthermore, Puremium obtains information on the response that the User gives to the offer proposed by the Professional. Puremium has a legitimate interest in obtaining its information for the purposes of improving its Service.
4. Purposes of Data Processing
The Data may be collected and processed by Puremium and/or its subcontractors for the purposes of:
- connect Users with Professionals for the sale of products and/or services;
- provide and improve the use of its Service and access to the Site and provide possible technical support;
- communicate developments in our services;
- analyze your Data, allowing us to improve our Service, identify your usage trends and determine the effectiveness of our Service;
- prevent and detect possible threats to the security of our products or services, fraud or any other illicit activity;
- comply with its legal obligations, resolve disputes and enforce its contracts;
- enable the sending of emails and e-marketing campaigns and promotions;
- keep Users informed of updates and upcoming events;
5. Fundamentals of Data Processing
The above-mentioned treatments are based on:
- the execution of the Service between Puremium and the User where applicable;
- access to the Site;
When the processing of Data is based on the consent of the User, the latter has the right to withdraw their consent at any time.
An unsubscribe link will be present in the newsletters and marketing and commercial reminder emails sent by Puremium to the User.
6. Data Recipients
The recipients of the Data (excluding subcontractors) are the services of Puremium, its subsidiaries or affiliated companies required to use this Data: sales department, marketing department, customer service dedicated to the Service and the Site, accounting department.
Furthermore, the following are transmitted by Puremium to the Professionals concerned in a secure manner:
- Useful Data in order to enable contact and to be able to offer products and/or services adapted to the User's needs, contact and make an appointment with the User;
- [ certain anonymized statistical data allowing Professionals to evaluate User satisfaction
Puremium ensures that recipients undertake to process the Data transmitted in accordance with this Confidentiality Policy and in compliance with the Data Protection Act and the Regulations.
Puremium uses subcontractors.
Puremium ensures that the subcontractor(s) it employs themselves provide sufficient guarantees to ensure the implementation of appropriate technical and organizational measures so that the processing of the Data meets legal requirements. in force.
8. International Transfer of Data outside the European Union
Data may be shared with third parties, including Puremium providers located or using servers located outside the European Union in countries where Data protection laws may differ from those in the European Union. .
In such a case, Puremium ensures that the User is informed and that this transfer guarantees a sufficient level of protection of the privacy and fundamental rights of individuals in accordance with applicable laws and regulations.
You can contact Puremium for any questions or requests for additional information regarding these transfers, using the contact details indicated in Article 2 above.
9. User Rights
Under the provisions of the Data Protection Act and the Regulations, Users have the right to access, rectify, delete their Data, limit or oppose their processing, and the right to define directives relating to the conservation, erasure and communication of their Data after their death and the right to portability of their Data.
Users have the right to obtain from the data controller the limitation of processing in certain cases, for example when they contest the accuracy of the Data.
The right to object is understood as the possibility offered to Users to refuse that their Data be used for certain purposes.
The right to erasure is understood as being the possibility offered to Users to obtain from the data controller the erasure of Data concerning them in certain situations, for example when this Data is no longer necessary in view of the purposes for which it is used. were collected or processed.
The right to Data portability is the right for Users to receive the Data concerning them that they have provided to the data controller in a structured, commonly used and machine-readable format, and to transmit this data to another data controller. treatment.
To exercise any of the aforementioned rights or for any questions, Users can contact Puremium using the contact details indicated in Article 2 above.
Users have the right to lodge a complaint with the competent supervisory authority (CNIL) or to obtain compensation from the competent courts if they consider that Puremium has not respected their rights.
10. Data security and confidentiality
The Data collected by Puremium is kept in a secure environment.
To ensure Data security, Puremium uses the following measures in particular:
- access control: usernames/passwords;
- computer protection measures (antivirus, security updates and patches);
- data encryption;
- digital certificate development;
You can contact Puremium for any questions or requests for additional information regarding these security measures, using the contact details indicated in Article 2 above.
People working for Puremium are required to respect the confidentiality of this Data.
Puremium is committed to ensuring that adequate levels of protection exist in accordance with applicable legal and regulatory requirements. However, since no mechanism offers absolute security, some risk remains when the Internet is used to transmit data and personal information.
Puremium will notify the CNIL and/or the User of any Data violations covered by the Regulations.
11. Data retention period
The Data is only stored by Puremium for the duration necessary for the delivery of the Service and/or the execution of contractual relations and for the applicable limitation period (five (5) years in terms of contractual liability), subject to the obligations legal and regulatory requirements applicable to Puremium.
However, the necessary Data may be kept for commercial prospecting and/or archiving purposes for a maximum of three (3) years from the last contact with the User.
Browsing Data will be kept for a maximum period of thirteen (13) months.