/Privacy Policy
PERSONAL DATA AND COOKIES POLICY
Last updated 10/2024 This page is subject to change, so we invite you to consult it regularly.
I. PERSONAL DATA POLICY
1. PREAMBLE
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter the "GDPR") sets out, together with the other applicable texts in this area, the legal framework applicable to the processing of personal data.
These texts strengthen the rights and obligations of data controllers, processors, data subjects and data recipients. In particular, they require that data subjects be informed of their rights in a concise, transparent, comprehensible and easily accessible manner.
We, the company SAS “BRIDOR”, whose registered office is at 66 avenue du Maine – Immeuble Heron Building 75014 Paris, registered with the RCS of Paris under number 491 668 893 (the “Company”), publish the website “www.bridor.com” (the “Site”); as well as the sites below:
2. PURPOSE
The Company attaches great importance to the protection of your personal data and your privacy.
The objectives of this Policy are to:
- to bring together in a concise, transparent, understandable and easily accessible format information concerning the uses made of your personal data by the Company;
- to understand how your data is used;
- to know your rights, and how to exercise them.
This Policy only covers the processing for which the Company is responsible. The processing of personal data may be managed directly by the Company or through a subcontractor specifically designated by it. This Policy is independent of any other document that may apply within the contractual relationship between the Company and you (cookies, commercial contracts, partnership contracts, etc. ).
3. DATA PROTECTION OFFICER
The Company has appointed a data protection officer responsible for ensuring compliance with regulations relating to personal data.
You can contact him at this address: [email protected] or by post at:
Groupe LE DUFF Service Conformité – Délégué à la Protection des Données 52, avenue du CANADA 35 200 RENNES
4. GENERAL PRINCIPLES
When the Company collects and uses your data, it does so for a specific purpose and for which you are informed. In accordance with the regulations, the purposes for which your data is collected are listed in a processing register. They are also indicated in the information notices brought to your attention, as well as in article 10 of this Policy.
5. CATEGORIES OF PERSONAL DATA PROCESSED
The Company undertakes to collect and use only the personal data that is necessary for it to carry out its missions. The categories of personal data collected by the Company vary depending on the use that will be made of it. The list of data appears in article 10 of this Policy.
The Company does not process sensitive data within the meaning of Article 9 of the GDPR (i.e. any data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, as well as the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation).
6. ORIGIN OF THE PERSONAL DATA PROCESSED
Processing is only carried out by the Company if it concerns personal data collected by or for the services offered on the Site, or for the branches and franchisees of the Bridor brands or processed in relation to these services.
The Company may collect your personal data when:
- you visit the Site;
- you subscribe to the newsletter;
- you submit a complaint, ask a question or send any other comments;
- you communicate your personal data on the Site.
7. RECIPIENTS OF PERSONAL DATA
The Company ensures that only authorized persons and organizations can have access to your data, and only for the purposes related to their missions. This may include:
- corporate officers and employees of the Company, entities of the LE DUFF Group, franchisees;
- service providers of the Company contributing to the operation of the site, official social media pages, the management and sending of newsletters and commercial offers , etc.
- public bodies, exclusively to meet the Company’s legal obligations;
- legal assistants, ministerial officers.
The Company ensures that its subcontractors comply with its obligations under applicable regulations. In addition, the Company reserves the right to conduct an audit of its subcontractors to ensure compliance with applicable regulations.
The details of the recipients by purpose are specified in article 10 of this Policy.
With the exception of communication to the persons defined above and in article 10 of this Policy, your personal data will not be subject to communications, transfers, rentals or exchanges for the benefit of any third parties whatsoever.
8. TRANSFER OF PERSONAL DATA
If necessary for the purposes described in this Policy, your data may, for technical reasons, be transferred to a third country. When the country concerned does not benefit from an adequacy decision, the Company ensures that the transfer is governed by one of the following appropriate measures:
- standard contractual clauses approved by the CNIL;
- the Company's adherence to an approved code of conduct in force;
- compliance with a certification mechanism certified by an approved body;
- binding corporate rules approved by the CNIL.
In the event that a franchisee candidate wishes to complete an application form for a franchise establishment located in a country outside the European Union, the candidate is informed that the Company may be required, if necessary in the context of examining the file, to transfer the personal data collected to the recipients located in said country.
9. DURATION OF STORAGE OF YOUR DATA
The data retention periods are defined by the Company in light of the legal and contractual constraints that weigh on it. They are only kept for the period strictly necessary to achieve the purposes pursued.
In general, data enabling proof of a right or contract to be established will be kept for the period provided for by the regulations in force.
At the end of the retention period defined for each of the categories of personal data processed, and subject to the provisions allowing archiving strictly necessary for the exercise of a right and proof of this right for the duration of the applicable limitation periods or by virtue of the legal obligations to which the Company is subject, the Company:
- destroys personal data or;
- stores this personal data in an irreversibly anonymized form, so that this data no longer constitutes personal data within the meaning of the applicable regulations.
Please be reminded that deletion or anonymization are irreversible operations and that the Company is no longer able to restore them thereafter.
10. SUMMARY TABLE OF THE PURPOSES OF PROCESSING YOUR PERSONAL DATA, DATA COLLECTED, RECIPIENTS OF THE DATA, STORAGE PERIODS AND LEGAL BASES
The Company uses your personal data for defined purposes (why your data is used) and on the basis of legal bases (why the Company has the right to use your data), as provided for by the regulations. You will find in the table below the main purposes of the personal data processing implemented by the Company. For more information regarding the processing of your personal data, contact the Data Protection Officer. This list is subject to change.
Purpose of processing | Data collected | Legal basis | Retention periods | Internal and external recipients |
---|---|---|---|---|
Customer Account Management | Name, Email, Phone, Company details | CGU | 3 years after last collection | Authorized interns: - Service marketing - Service exploitation - Service clients - Information Systems Department |
Sending the newsletter | Company, Name, Email | Consent | 3 years after login | Authorized interns: - Service marketing - Service exploitation - Service clients - Information Systems Department |
Managing contact requests via the contact form | Name, first name, telephone, department, subject of the request, professional email,message, company name, sector of activity, company size, consent | Consent | 3 years after last collection | Authorized interns: - Service marketing - Service exploitation - Customer service/Quality - Information Systems Department |
11. YOUR RIGHTS OVER YOUR PERSONAL DATA
For all the rights listed below that you benefit from, you are informed that these are individual rights that can only be exercised by you, or by a person who has received a mandate to act on your behalf.
Right of access
You have the right to request confirmation from the Company as to whether or not data concerning you is being processed. You also have a right of access, and the right to request a copy of your personal data being processed by the Company.
Customers and contacts also have access rights.
If you submit your request for a copy of the data electronically, the requested information will be provided to you in a commonly used electronic form, unless otherwise requested.
You are informed that this right of access cannot relate to data whose communication is not authorized by law.
Right to limit the processing of your data
You may ask the Company to limit the processing of your data in the cases provided for by the regulations.
Right to object to the processing of your data
You may object, at any time for reasons relating to your particular situation, to the processing of your data whose legal basis is the legitimate interest of the Company. If you exercise this right, the Company will ensure that it no longer processes your personal data, unless it demonstrates that it has legitimate and compelling reasons to continue this processing. These reasons must outweigh your interests and your rights and freedoms, or the processing must be justified for the establishment, exercise or defense of legal claims.
Once you have agreed to receive offers (newsletter and/or commercial offers) from the Company, you have the option to unsubscribe at any time by clicking on the link provided to you or by other means provided to you.
Right of rectification
You may request the Company to rectify or complete your personal data if it is inaccurate, incomplete, ambiguous or outdated. The Company may not be held responsible for a failure to update if the customer or contact does not update their data.
Right to withdraw your consent
Where the Company uses your personal data based on your consent, you may withdraw your consent at any time. The Company will then cease to use your personal data, without affecting any previous operations to which you had consented.
Right to erasure
You may request that the Company delete your personal data where one of the following grounds applies:
- the data is no longer necessary in relation to the reason for which it was originally collected or processed;
- you withdraw your consent;
- you object to the processing of your data and there is no compelling legitimate reason for their use;
- the use of your data is not in accordance with the law or regulations.
Please note that this right is not a general right, it can only be exercised if one of the reasons provided for in the applicable regulations is present. If none of these reasons are present, the Company will not be able to respond favorably to your request. For example, if the Company must retain your data due to a legal or regulatory application or for the establishment, exercise or defense of rights in court.
Right to the portability of your data
You have the option to retrieve part of your data in a machine-readable format for personal use or to transmit them to a third party of your choice. This right does not apply to paper files and only applies on the basis of your prior consent or the execution of the contract. The exercise of this right must not infringe the rights and freedoms of third parties whose data may be found in the transmitted data.
Right to define postmortem directives
You have the possibility to define specific guidelines relating to the retention, deletion and communication of your personal data after your death. These specific guidelines will only concern the processing implemented by the Company and will be limited to this scope only.
Right to lodge a complaint with the CNIL
If you believe that your “Data Protection and Liberties” rights have not been respected, you have the option of submitting a complaint to the National Commission for Data Protection and Liberties (CNIL):
CNIL – Service des plaintes : 3, place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07
Tel: 01 53 73 22 22
12. HOW TO EXERCISE YOUR RIGHTS
You can exercise your rights by email at the following address:
[email protected] or by post to:
Groupe LE DUFF Service Conformité – Délégué à la Protection des Données 52, avenue du CANADA 35 200 RENNES
The Company will acknowledge receipt of your request to exercise rights and will respond to your request as soon as possible and no later than one (1) month from receipt of your request. This period may be extended by two (2) months if the request is complex, for a total of three (3) months after receipt of your initial request. In the latter case, the Company will inform you of the extension and explain the reasons for it.
If there is any doubt about your identity, the Company may ask you to provide additional information necessary for your identification.
If you wish to prove your identity by sending an identity document, make sure to send only the front in black and white, with a watermark ( https://filigrane.beta.gouv.fr/ ).
Exercising your rights is free. However, if your requests are repetitive, excessive or abusive, you may be charged a fee.
In accordance with the regulations, the Company retains data relating to the exercise of your rights for a maximum period of three (3) years and then anonymizes them.
If you have provided proof of identity, it will be kept for one (1) year after receipt of the request if proof is necessary. Otherwise, the proof will be deleted immediately.
13. MANDATORY OR OPTIONAL NATURE OF THE RESPONSES
On each personal data collection form, you are informed of the mandatory or optional nature of the responses by the presence of an asterisk.
14. LINKS TO THIRD PARTY SITES
The Company may also provide you with links to other websites. However, the Company shall not be responsible for the content or information collection policies of these websites. If you visit third-party websites, please check their information collection and privacy policies before providing them with your personal data. The Company accepts no liability in this regard.
15. RIGHT OF USE GRANTED TO THE COMPANY
The Company is granted by the persons concerned a right to use and process their personal data for the purposes defined above.
16. SECURITY OF YOUR DATA
The Company attaches particular importance to the security of your personal data. Appropriate technical and organizational measures are implemented to ensure that your data is processed in a manner that guarantees its protection against loss, destruction or accidental damage that could affect its confidentiality or integrity.
When creating or selecting a new tool that allows the use of your personal data, the Company ensures that it will offer an adequate level of protection. The Company enters into contracts with its subcontractors and partners that clearly define the terms and conditions for the use of your data. In the event of an incident involving your personal data, the Company has implemented a specific procedure. In the event of a high risk to your privacy, rights and freedoms, the Company will inform you of this incident, in accordance with its obligations in this area.
II. COOKIES POLICY
The purpose of this policy is to present to you, in a clear and transparent manner:
- The terms and conditions under which the Site www.bridor.com is required to use cookies or other tracers;
- How do cookies that may be placed on your equipment (computer, tablet, smartphone, etc. ) work when you visit the Site, subject to the choices you have expressed regarding cookies;
- How to use the tools at your disposal to configure your choices.
1. WHAT IS A COOKIE?
In short: a cookie is a tracer allowing us to obtain information relating to your browsing on our Site.
When you visit our Site, information relating to your browsing may be recorded in "cookie" files installed on your equipment (computer, tablet, smartphone, etc. ), subject to your choices. These files include the pages visited, the advertisements you clicked on, and the type of browser you use.
Cookies allow their issuer to identify the terminal in which they are stored, during the period of validity or registration of the cookies concerned.
If your device is used by multiple people and when the same device has multiple browser software, we cannot ensure with certainty that the services and advertisements intended for your device correspond to your own use of this device and not to that of another user.
2. HOW LONG DOES A COOKIE LAST?
The validity period of cookies is 13 months maximum. The duration of taking into account your consent or refusal to the installation of these cookies is 6 months. In the event of non-renewal of your consent at the end of the 6 months, the cookies stored on your terminal are made inactive and no longer cause data to be sent.
3. HOW TO MANAGE COOKIES PLACED ON YOUR EQUIPMENT?
When you first visit our Site, a cookie management module is displayed, through which you are offered to accept or prohibit the use of all our cookies and third-party cookies. You can also manage your preferences via the "Customize" button.
You can change your cookie choices at any time :
- by configuring your browser (see article 5 of this Cookies Policy);
- via the cookie management module located at the bottom of the page;
- directly via the link accessible here .
Your new choice will then be taken into account and will prevail.
When you accept the deposit of cookies, a consent cookie is installed. If you do not want cookies to be installed or read on your terminal, a refusal cookie will be placed on your equipment, so that we can record the information that you have opposed the use of cookies. If you delete this refusal cookie, it will no longer be possible to identify you as having refused the use of cookies. Refusal or consent cookies must remain on your terminal equipment.
4. HOW AND WHY DOES BRIDOR USE COOKIES?
On the Site, we may place different types of cookies for several purposes detailed below.
4.1 Technical and functional cookies
These cookies are used to track your consent to the placement of cookies, to record your screen display preferences, or to memorize identifiers. They are essential for the proper functioning of the Site. Other technical cookies make it possible to detect connection errors, to identify connection points. They also make it possible to ensure authentication, to ensure the proper functioning of the Site, to ensure its security. These cookies cannot be deactivated, and are not subject to the collection of your consent.
TECHNICAL COOKIES | Cookie name | Supplier | Purpose | Period of validity |
---|---|---|---|
|
|
|
|
4.2 Statistics and audience measurement cookies
These are cookies that allow us to know the use and performance of the Site, to improve its operation for visitors, to analyze the audience and traffic. These cookies help us understand how visitors interact with our Site and therefore contribute to improving its ergonomics.
STATISTICS AND AUDIENCE MEASUREMENT COOKIES | Cookie name | Supplier | Purpose | Period of validity |
---|---|---|---|
|
|
|
|
4.3 Cookies and social media plug-ins
We may include on the Site application buttons (plug-ins) from third parties that allow you to share certain content on the Site with third parties via social networks (Facebook, Twitter, LinkedIn, Instagram).
These cookies are only placed when you have expressly consented to them via the banner displayed when you first log in. Refusing these cookies will block the social media sharing functionality.
SOCIAL MEDIA COOKIES | Cookie name | Supplier | Purpose | Period of validity |
---|---|---|---|
|
|
|
|
We have no control over the process used by these social networks to collect information relating to your browsing on our sites and associated with them as well as the Personal Data they have. We invite you to consult their data protection policies in order to know your rights with respect to each of them, and to manage your privacy settings.
The cookie policies of the social networks concerned are accessible below:
4.4 Advertising cookies
These cookies allow us to choose in real time which advertising to display on third-party sites. These cookies are only placed when you have expressly consented to them via the banner displayed when you first connect. They also allow us to send you, where appropriate, personalized commercial prospecting requests for your benefit. Finally, they allow us to optimize the operation of BRIDOR's advertising campaigns, i.e. to display advertising content corresponding to your interests on the Site, in the name and on behalf of BRIDOR, when you browse sites external to this Site.
These cookies are also used to limit the number of offers sent to you and help measure the effectiveness of a marketing campaign.
Refusing these advertising cookies has no impact on the use of our site. But in this case, the proposals sent will not take into account your interests or preferences.
5. HOW TO SET UP YOUR BROWSER?
You can configure your browser to delete cookies already installed on your device, to accept or reject the installation of cookies on a case-by-case basis, or to automatically accept or reject all cookies for certain Sites or for all Sites. However, refusing to use cookies may prevent certain features of the Site from working.
Cookie management settings vary between browsers. Instructions for the most common browsers are available by clicking on the links below:
Open the "Tools" menu, then select "Options"; click on the "Privacy" tab and then choose the desired options or follow this link: https://support.mozilla.org/en-US/products/firefox/protect-your-privacy/cookies
- Safari Mac / iPhone / iPad
Choose "Safari > Preferences" then click on "Security"; In the "Accept cookies" section choose the desired options or follow this link: https://support.apple.com/en-us/HT201265 or https://support.apple.com/en-us/guide/safari/sfri11471/mac
- Google Chrome
Open the settings menu (wrench logo), then select "Preferences"; click on "Privacy and security", and choose the desired options or follow the following link: https://support.google.com/chrome/answer/95647?hl=en
- iOS
You can also type "Cookies" in the "help" section of your browser to access configuration instructions.
TASTING REQUEST
If you wish to taste our products feel free to connect with us.