PRIVACY POLICY
The purpose of this privacy policy
The purpose of this privacy policy is to inform users of our site about the personal data we will collect and the following information, if applicable
- the personal data we will collect
- how we use the data we collect
- who has access to the data collected
- the rights of site users
This privacy policy operates in conjunction with our site's Legal Notice
Applicable laws
In accordance with the General Data Protection Regulation (GDPR), this privacy policy complies with the following rules
Personal data must be :
a. processed lawfully, fairly and transparently with respect to the data subject (lawfulness, fairness, transparency) ;
b. collected for specified, explicit and legitimate purposes and not further processed in a way incompatible with those purposes; further processing for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes shall not be considered, in accordance with Article 89(1), as incompatible with the original purposes (purpose limitation);
c. adequate, relevant and limited to what is necessary for the purposes for which they are processed (data minimization);
d. accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data which are inaccurate in relation to the purposes for which they are processed are erased or rectified without delay (accuracy);
e. kept in a form which permits identification of the data subjects for no longer than is necessary for the purposes for which they are processed; personal data may be kept for longer periods insofar as they are processed exclusively for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes in accordance with Article 89(1), provided that the appropriate technical and organizational measures required by the Regulation are implemented in order to safeguard the rights and freedoms of the data subject (limitation of storage)
f. processed in such a way as to ensure appropriate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures (integrity and confidentiality).
Processing is only lawful if and insofar as at least one of the following conditions is met
a. the data subject has consented to the processing of his/her personal data for one or more specific purposes
b. the processing is necessary for the performance of a contract to which the data subject is party or for the performance of pre-contractual measures taken at the request of the data subject;
c. processing is necessary for compliance with a legal obligation to which the controller is subject;
d. processing is necessary to protect the vital interests of the data subject or of another natural person
For residents of the State of California, this privacy policy is intended to comply with the California Consumer Privacy Act (CCPA). If there are any inconsistencies between this document and the CCPA, state law will apply. If we find any inconsistencies, we will modify our policy to confirm with the relevant law.
Consent
Users agree that by using our site, they consent to:
a. the terms set forth in this Privacy Policy; and
b. the collection, use and retention of the data listed in this policy.
Personal Data We Collect
Data collected automatically
When you visit and use our site, we may automatically collect and store the following information:
a. IP address
b. Location
c. Hardware and software details
d. Links that a user clicks while using the site
e. Content that a user views on the site
Data collected in a non-automatic way, when filled in by the website user
a. Name and/or first name
b. e-mail address
Please note that we only collect data that helps us achieve the purpose stated in this privacy policy. We will not collect any additional data without informing you first.
How we use personal data
Personal data collected on our site will be used only for the purposes specified in this policy or as indicated on the relevant pages of our site. We will not use your data beyond what we disclose.
The data we collect is used for the following purposes:
a. statistics
b. communication
With whom we share personal data
Employees
We may disclose to any member of our organization such User Data as is reasonably necessary to fulfill the purposes set forth in this Policy.
Third Parties
We will not share User Data with third parties
Other Disclosures
We will not sell or share your data with third parties except as follows:
a. if required by law
b. if it is required for any legal proceedings
c. to prove or protect our legal rights
If you follow hyperlinks from our site to another site, please note that we are not responsible for and have no control over their privacy policies and practices.
How long we store personal data
We do not retain user data beyond what is necessary to fulfill the purposes for which it is collected.
Your rights as a user
Under the GDPR, users have the following rights as data subjects:
a. right of access
b. right of rectification
c. right to erasure
d. right to restrict processing
e. right to data portability
f. right of objection
You can find more information about these rights in chapter 3 'art 12-23- of the GDPR
How to modify, delete or contest the collected data
If you wish to have your information deleted or modified in any way, please contact us by email: contact@catherinehurand.com
Changes
This privacy policy may be amended from time to time to maintain compliance with the law and to reflect any changes to our data collection process. We recommend that our users check our policy from time to time to ensure that they are aware of any updates. If necessary, we may notify users by email of changes to this policy.
Contact
If you have any questions, please feel free to contact us: contact@catherinehurand.com
Effective date: January 1, 2021