The purpose of this privacy policy is to inform users of our site about the personal data we may collect, how this data is used, who has access to this data, the rights of site users and the site’s cookie policy.
This privacy policy operates in parallel with the legal information already present on the site.
In accordance with the General Data Protection Regulation (GDPR), this privacy policy complies with the following regulations.
In accordance with Article 5 of European Regulation 2016/679, personal data shall be processed lawfully, fairly and transparently in relation to the data subject; collected for specified (see Article 3.1 hereof), explicit and legitimate purposes, and not further processed in a manner incompatible with those purposes; adequate, relevant and limited to what is necessary with regard to the purposes for which they are processed; accurate and, where necessary, kept up to date. All reasonable steps must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay; kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which they are processed; processed in such a way as to guarantee appropriate security of the data collected, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.
Processing is lawful only if, and insofar as, at least one of the following conditions is met:
The data subject has consented to the processing of his or her personal data for one or more specific purposes; the processing is necessary for the performance of a contract to which the data subject is party or for the performance of pre-contractual measures taken at the data subject’s request; the processing is necessary for compliance with a legal obligation to which the controller is subject; the processing is necessary in order to safeguard the vital interests of the data subject or of another natural person; processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller; processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data prevail, in particular where the data subject is a child.
Article 3.1 : Collected data
Personal data is collected via the contact form on the site’s contact page. They are as follows: surname, first name, company, e-mail address, content of the message sent.
This data is collected and processed for the following purpose(s): to provide a response to the message sent via the form.
Article 3.2 : Data collection mode
When you use the site’s contact form, the following data is automatically collected: surname, first name, company, e-mail address, content of message sent.
They are kept by the data controller under reasonable security conditions, for a limited period (6 months, or until the end of the exchange).
The site owner may retain certain personal data beyond the above-mentioned periods in order to meet its legal or regulatory obligations.
Article 3.3 : Data hosting
The sophie-palmer.com website is hosted by O2Swich SARL, whose registered office is located at Chemin des Pardiaux, 63000 Clermont-Ferrand, France, whose telephone number is 5109098070024 and whose e-mail address is support@o2swich.fr.
Article 4.1 : The data controller
Personal data is collected by Sophie Palmer, a natural person.
The person responsible for processing personal data can be contacted by e-mail at sophie@sophie-palmer.com.
Article 4.2 : The Data Protection Officer
The person in charge of data protection is Sophie Palmer, a natural person. She can be contacted by e-mail at sophie@sophie-palmer.com
If, after contacting us, you feel that your « Data Protection » rights have not been respected, you can send a complaint to the CNIL.
Any user concerned by the processing of their personal data may avail themselves of the following rights, pursuant to European Regulation 2016/679 and the Data Protection Act (Law 78-17 of January 6, 1978):
– Right of access, rectification and right to erasure of data (laid down respectively in Articles 15, 16 and 17 of the RGPD);
– Right to data portability (Article 20 of the RGPD) ;
– Right to limit (Article 18 of the RGPD) and object to data processing (Article 21 of the RGPD) ;
– Right not to be subject to a decision based exclusively on an automated process ;
– Right to determine the fate of data after death ;
– Right to refer the matter to the competent supervisory authority (Article 77 of the RGPD).
To exercise your rights, please contact us by e-mail at sophie@sophie-palmer.com
In order for the data controller to process the user’s request, the user may be required to provide certain information, such as first and last names, e-mail address and account, personal space or subscriber number.
Visit cnil.fr for more information on your rights.
The publisher of the sophie-palmer.com site reserves the right to modify the present Policy at any time in order to ensure that users of the site comply with current legislation.
Any modifications shall not affect purchases previously made on the site, which shall remain subject to the Policy in force at the time of purchase and as accepted by the user when validating the purchase.
Users are invited to familiarize themselves with this Policy each time they use our services, without having to be formally notified.
This policy, published on June 21, 2024, was updated on June 21, 2024.