Privacy Policy

2.1 Legal basis for processing

The company is only authorized to use the personal data of its visitors if it has a valid legal basis, which may be:

the performance of a contract (e.g. to process and fulfill an order for goods or to open and manage an account), or;
the fulfillment of a legal obligation (e.g. keeping invoices), or;
when it is in the Company’s legitimate interest, or;
When the user has given his or her consent.

A “legitimate interest” of the Company must not conflict with the rights and freedoms of users. Examples of legitimate interests mentioned in the GDPR include fraud prevention, direct marketing and data sharing within a group of companies (such as Holding Egilope).

The applicable legal bases for each data processing operation are specified in the table hereafter.

2.2 The Company’s data processing operations

The company collects and records the personal data of its client Visitors for the following processing operations:

Setting up competitions and advertising campaigns
Legitimate interest of the Company in making promotional offers

The Company collects data directly from visitors when they use this website (request for information via contact form).

Your data is transmitted to partners of the Company who may process the data on their own behalf (these are recipients) or solely on behalf of and according to the instructions of the Company (these are subcontractors).

4.1. Data Recipients
The recipients of the data are:

The police authorities in the context of legal requisitions concerning the fight against fraud
Business partners and marketing and advertising agencies:
Affiliate marketing companies
Social networks (Facebook, Pinterest)
Marketing and advertising agencies (e.g. Google Ads)

The entities of Holding Egilope, and more specifically the subsidiaries and companies of the Group:

4.2. The Company also uses subcontractors for the following operations:

The fight against fraud and the recovery of unpaid debts
The management of chat, telephone calls, their possible recordings and the sending of postal mail
The provision of a videoconferencing system to enable remote purchases by Customers
The personalization of site content
The carrying out of maintenance and technical development operations on the website, internal applications and the information system.
The collection of customer reviews
The sending of commercial prospecting emails and mobile notifications

5.1. What are my rights?
Any person may exercise the following rights with the Company:

A right of access
A right of rectification,
A right to object to and erase the processing of their data
A right to object to profiling
A right to the limitation of processing,
A right to the portability of their data
A right to withdraw their consent.

5.2. How can they be exercised?

These rights can be exercised with the Company, which collected the personal data in the following way:

By post, by writing to us at the following address:
Customer Relations Department
Holding Egilope,
Agroparc Site 121, rue Jean Dausset BP 31285,
84911 Avignon Cedex 9.
By email, via the contact form

The request must be accompanied by proof of identity.

The Company will send a reply within 1 month of the right being exercised. In certain cases, related to the complexity of the request or the number of requests, this period may be extended by 2 months.

5.3. What are the consequences of exercising the right to object to profiling?

In the event of exercising the right to object to marketing profiling, the user is informed that they will continue to receive commercial solicitations, but these will be less relevant and will no longer be targeted according to the person’s interests.

5.4. What to do next?

In the event of no response or an unsatisfactory response, the data subject has the option of referring the matter to the supervisory authority in their country of residence:

• In France, the CNIL: https://www.cnil.fr/
• In the UK, the ICO: https://ico.org.uk/
• In Spain, the AEPD: http://www.agpd.es/portalwebAGPD/index-idfr-idphp.php
• In Portugal, the CNPD: https://www.cnpd.pt/index.as
• In Belgium, the CPVP: https://www.privacycommission.be/fr
• In Switzerland, the PFPDT: https://www.edoeb.admin.ch/edoeb/de/home.html

The User may formulate directives concerning the conservation, deletion and communication of his personal data after his death in accordance with article 40-1 of law 78-17 of January 6, 1978. Such instructions may be general or specific.

Users may formulate their advance directives using the contact form.

You are informed that your personal data may be transferred for the purposes defined above to companies located in countries outside the European Union which do not provide an adequate level of protection for personal data.

Prior to any transfer outside the European Union, and in accordance with current regulations, the Company implements all procedures required to obtain the necessary guarantees for the security of such transfers.

Transfers outside the European Union may be carried out in particular in connection with the following activities:

For further information on cross-border data flows, please contact the Data Protection Officer.

The Company has established specific rules concerning the length of time it keeps Users’ personal data.

8.1 General rules concerning the management of the commercial relationship:

To calculate the most appropriate retention period, the Company distinguishes between :

Prospects” who have never made a purchase or placed an order with the Company or its partners.
customers” who have made at least 1 purchase/order.

Customer and prospect data is kept for a period of 3 years.

In the case of prospective customers, the starting point for the retention period is the first time the data is obtained by contact (contact form, telephone, chat, video).

For customers, the starting point of the retention period is the last purchase/order placed with the Company. The retention period for customer data will differ depending on whether or not the customer is a member of a loyalty program, which may last for more than 3 years.

8.2. Specific rules concerning certain types of data processing :

Certain types of data processing are subject to specific retention periods.

Recordings of telephone conversations in the customer relations department are kept for 3 months.
Anti-fraud instructions are kept for 3 years.
Invoices relating to purchases/orders are kept for 10 years.

As data controller, the Company takes all necessary precautions to protect the security and confidentiality of data, and in particular to prevent it from being distorted, damaged or accessed by unauthorized third parties.

The Company has deployed a robust security system to ensure the utmost security of the data collected and to detect data breaches. This includes the physical security of the buildings housing our systems, computer system security to prevent external access to your data, and having secure copies of your data.

When using subcontractors, La Société ensures that they comply with data protection rules.

Finally, when the Company detects a personal data breach likely to generate a high risk for your rights and freedoms, you will be informed of this breach as soon as possible.

The Company offers you the possibility of using social networks to improve business relations (e.g. Facebook messenger), share content (e.g. the “share” buttons on Facebook, Instagram or Twitter), and provide you with targeted advertising offers on these networks (e.g. Facebook Custom Audience or Pinterest).

The use of social networks to interact with the Company may result in the exchange of data between the Company and these social networks.

For example, if you are connected to the Facebook social network on your computer and you visit a page on the Company’s website, Facebook may collect this information. Similarly, if you click on the “tweet” button on a page of the Company’s site, twitter will collect this information.

On Instagram, when you express your consent using the hastag “#yesAlkiosFormation”, you consent to La Société processing the information from your post (comment and/or photo) for promotional and marketing purposes.

The Company invites you to consult the personal data management policies of the various social networks for information on the personal data that may be transmitted by them.

In accordance with the general terms and conditions of sale, you must be 16 years old to become a customer of the Company.

For a minor under the age of 16 to become a customer, a third party must ensure that they are the holder of parental authority and expressly consent to the transmission of the minor’s data to the Company.

13.1. Principles applicable to the Company

The Company uses your contact details to send you targeted advertising, in particular by e-mail, post, SMS, notification on your smartphone or web browser, on social networks or third-party websites.

In this context, the Company undertakes to comply with the rules applicable to each prospecting channel.

13.2. Prospecting by e-mail and sms
The Company complies with the rules laid down by Directive 2002/58/EC of July 12, 2002, which requires the prior express consent of the User for the sending of commercial prospecting by electronic means (e-mail or SMS).

Thus, when using a contact form or any other means requiring personal information, you will be asked for your consent to :

• to receive offers from the Company by e-mail
• to receive offers from the Company’s partners to whom your contact details may be sent
• to receive offers from the Company by sms

The Company will not send you personalized offers by e-mail or sms if you have not given your consent.

There is an exception in the event that the User, without having given his prior consent, may nevertheless be canvassed if he is already a customer of the Company and the purpose of the canvassing is to offer similar products or services.

In all cases, the User may object to receiving such solicitations by taking the following actions:

• When using a contact form or any other means requiring personal information, tick “no” to the boxes related to prospecting;
• For newsletter emails, by clicking on the unsubscribe link provided in each email;
• For SMS, by sending a stop SMS to the number indicated in the SMS;
• By contacting Customer Service or the Data Protection Officer.

13.3 Retargeting by e-mail

After browsing our site, you may receive an e-mail even though you have not entrusted the company with your e-mail address.  How is this possible?

The Company uses the services of companies whose role is to identify Internet users who have already visited our website and to send them personalized e-mails.

These companies use cookies to distinguish users and then to personalize the advertisements they receive according to their browsing history.

This processing involves partners who have already collected your e-mail address, as well as your consent to authorize the sending of advertising.

You may object to this type of processing by refusing advertising cookies on La Société’s site and on third-party sites.

13.4. Display of personalized digital advertising

A visitor to The Company’s site is likely to see advertisements for The Company’s products on third-party sites or social networks (Facebook ; Instagram . Pinterest).

The display of advertisements on social networks is carried out using the targeting criteria proposed by these platforms. The Company may also transmit certain pseudonymized data (e.g. hashed email) to improve targeting.

If you do not wish to be the subject of this type of processing, you should refuse cookies and advertising tags on the Company’s site and on third-party sites.

You can also configure the display of personalized ads in the privacy preferences of social networks.

You may object to this type of processing by consulting the article below dedicated to cookies.

13.5. Notifications on mobile applications and web browsers

When you first visit the Company’s website, you may be asked to give your consent to receive mobile or “push” notifications.

13.6. Commercial prospecting by telephone

The Company may contact you by telephone to offer you products or services. Your telephone details may also be passed on to the Company’s partners (list of partners in section 3.1 of this policy). If you do not wish to be contacted, you may exercise your right to object by contacting the Company.

13.7. Commercial prospecting by post

The Company or its partners may send you solicitations by post. You may object to this at any time by exercising your right to object in accordance with point 4 of this data protection policy.

When you use our Service, information relating to the browsing of your terminal (computer, tablet, smartphone, etc.) may be recorded in “Cookies” deposited on your terminal, subject to the choices you have made concerning Cookies and which you may modify at any time.

14.1 What are cookies?
The term “cookie” encompasses a number of technologies used to track the browsing habits or behavior of Internet users. These technologies are numerous and constantly evolving. They include cookies, tags, pixels and Javascript code.

A cookie is a small text file saved by the browser on your computer, tablet or smartphone, which is used to store user data to facilitate browsing and enable certain functions.

There are two types of cookie

• first-party cookies, placed by La Société for the purposes of site navigation and operation;
• third-party cookies, placed by third-party partner companies in order to identify your centers of interest and send you personalized offers. These third-party cookies are managed directly by the companies that publish them, who must also comply with data protection regulations.
  The cookie is stored on your computer when you visit the Company’s website or when you consult an e-mail from the Company.

14.2. Why are cookies, tags and tracers used?

Cookies issued by the Company on the site enable us to:

• compile statistics and volumes of visits to and use of the various elements making up our services. To this end, we use audience measurement cookies.
• adapt the presentation of our Site according to the terminal used;
  adapt the presentation of our Site according to the affinities of each user;
• to store information relating to a form you have filled in on our Site (event registration, subscribed service, contents of an order basket, etc.);
• allow you to access reserved and personal areas of our Site, such as your account, by means of identifiers;
• to implement security measures, for example when you are asked to log in to your account again after a certain period of time;
• to share information with advertisers on other websites in order to provide you with relevant advertisements in line with your interests. To this end, we use advertising cookies;
• share information on social networks. To this end, we use cookies to share information on social networks;
• to obtain delivery, opening and reading statistics for newsletters sent by e-mail.

14.3. What cookies are used on the Company’s services?

Article 82 of the French Data Protection Act requires that the User’s explicit consent be obtained before cookies are placed on a user’s terminal. However, this same article stipulates that certain cookies are exempt from consent when they have
(1) are exclusively intended to enable or facilitate communication by electronic means
(2) are strictly necessary for the provision of an on-line communication service at the express request of the user.

14.4. List of cookies requiring the User’s consent

Cookies requiring consent are used for the following purposes:

Personalization of the site and applications the user’s profile;
Site traffic;
Data sharing with social networks for social features (facebook connect; share button…);
The display of personalized advertising on the Company’s site and third-party sites and performance measurement.

14.6. How do I configure the use of cookies, tags and tracers?

You may choose at any time to express and modify your wishes with regard to cookies, by the means described below.

14.6.1. Setting cookies with a tool provided by the Company

In order to comply with regulations, the Company uses a tool that enables Internet users to set the parameters for the deposit of cookies on their first visit to the site.

14.6.2. Browser settings
You can configure your browser so that cookies are stored on your terminal or, conversely, so that they are rejected, either systematically or depending on the sender. You can also configure your browser so that you are prompted to accept or reject cookies before a cookie is stored on your terminal.

14.6.3. Setting your smartphone’s operating system
You can control the placement of cookies on your smartphone by setting the operating system parameters.

The Data Protection Officer appointed within the Company is responsible for ensuring compliance with the regulations and rules described in this document.

In particular, he or she is responsible for drawing up a register of personal data processing operations carried out within the company, and for ensuring that these comply with regulations and future developments.

He raises awareness among our teams and responds to users wishing to exercise their rights concerning the personal data collected by the Company.

You can contact the Data Protection Officer at dpo@alkiosformations.eu.

To find out more about your rights, visit the website of your supervisory authority:

• In France, the CNIL: https://www.cnil.fr/
• In the UK, the ICO: https://ico.org.uk
• In Spain, AEPD: http://www.agpd.es/portalwebAGPD/index-idfr-idphp.php
• In Portugal, CNPD: https://www.cnpd.pt/index.asp
• In Belgium, the CPVP: https://www.privacycommission.be/fr
• In Switzerland, PFPDT : https://www.edoeb.admin.ch/edoeb/de/home.html