Definitions :

The Publisher The natural or legal person who publishes the online public communication services.
The site All sites, web pages and online services offered by the Publisher.
The User The person using the Site and the services.

Type of data collected

When using the Sites, the Publisher may collect the following categories of data about its Users:

Civil status, identity and identification data...

Connection data (IP addresses, event logs, etc.)

Data aggregation

Aggregation with non-personal data
We may publish, disclose and use Aggregate Information (information about all of our Users or specific groups or categories of Users that we combine so that an individual User can no longer be identified or referred to) and Non-Personal Information for industry and market analysis, demographic profiling, promotional and advertising purposes and other business purposes.

Aggregation with personal data available on the User's social accounts
If you connect your account to another service's account for the purpose of cross-mailing, that service may share your profile and login information with us, as well as any other information you have authorized to be shared. We may aggregate information about all of our other Users, groups, accounts, with the personal data available about the User.

Cookies

Cookie retention period
In accordance with CNIL recommendations, cookies are kept for a maximum of 13 months after they are first placed on the User's terminal, as is the period of validity of the User's consent to the use of these cookies. The lifespan of cookies is not extended with each visit. The User's consent must therefore be renewed at the end of this period.

Purpose of cookies
Cookies may be used for statistical purposes, in particular to optimise the services provided to the User, by processing information concerning the frequency of access, the personalisation of pages, the operations carried out and the information consulted.
You are informed that the Publisher may place cookies on your terminal. The cookie records information relating to your browsing on the service (the pages you have visited, the date and time of the visit, etc.) which we will be able to read on your subsequent visits.

Retention of technical data

Technical data retention period 
Technical data is kept for as long as is strictly necessary for the purposes set out above.

Retention period for personal data and anonymisation

Deleting data after account deletion 
Data purging procedures are in place to ensure that data is effectively deleted as soon as the retention or archiving period required to fulfil the specified or imposed purposes has been reached. In accordance with the French Data Protection Act no. 78-17 of 6 January 1978, you also have the right to delete your data, which you may exercise at any time by contacting the Publisher.

Deletion of data after 3 years of inactivity 
For security reasons, if you have not logged on to the Site for a period of three years, you will receive an e-mail inviting you to log on as soon as possible, failing which your data will be deleted from our databases.

Deleting an account

Account deletion on request 
The User may delete his/her Account at any time, by simple request to the Publisher OR via the Account deletion menu in the Account settings, if applicable.

Deletion of the account in the event of a breach of the GCU 
If you breach any provision of the TOS or any other document incorporated herein by reference, the Publisher reserves the right to terminate or restrict, without notice and at its sole discretion, your use of and access to the services, your account and all the Sites.

Indications in the event of a security vulnerability detected by the Publisher

Informing the User in the event of a security breach 
We undertake to implement all appropriate technical and organisational measures to guarantee a level of security appropriate to the risks of accidental, unauthorised or illegal access, disclosure, alteration, loss or destruction of your personal data. In the event that we become aware of unlawful access to your personal data stored on our servers or those of our service providers, or of unauthorised access resulting in the risks identified above, we undertake to :

• Notify you of the incident as soon as possible;
• Examine the causes of the incident and inform you;
• Take the necessary measures within reasonable limits to mitigate the negative effects and damage that may result from the said incident

Limitation of liability 
Under no circumstances may the undertakings set out in the point above relating to notification in the event of a security breach be assimilated to any acknowledgement of fault or responsibility for the occurrence of the incident in question.

Changes to the privacy policy

In the event of modification of these conditions, an undertaking not to lower the level of confidentiality substantially without prior information of the persons concerned. 
We undertake to inform you in the event of any substantial modification to these conditions, and not to lower the level of confidentiality of your data substantially without informing you and obtaining your consent.