Privacy and cookies policy
Sidaction is committed to ensuring the protection of the personal data of all audiences with which it has a relationship through all digital or paper media, including via its website fashionforsidaction.org
Sidaction is an association under the 1901 law recognized as being of public utility, whose head office is located at 228 rue du Faubourg Saint-Martin - 75010 Paris, represented by Françoise Barré-Sinoussi, its president.
In accordance with the provisions of the Law of 6 January 1978 relating to computers, files and freedoms known as the amended "Data Protection Act", and the European Regulation of 25 May 2018 on data protection ("GDPR"), Sidaction , as data controller, details in this data protection policy how it processes and protects the personal data it collects.
In addition, Sidaction has appointed a Data Protection Officer, a privileged interlocutor of the National Commission for Computing and Freedoms and point of contact within the association on matters of personal data protection.
ARTICLE 1 - PERSONAL DATA COLLECTED
When you make a purchase from our store, as part of our buying and selling process, we collect the personal data you provide to us:
- Last name and first name
- E-mail adress
- phone number
When you browse our store, we also automatically receive the Internet Protocol address (IP address) of your computer, which allows us to obtain more details about the browser and operating system you are using.
Email Marketing (if applicable): With your permission, we may send you emails about our store, new products, and other updates.
ARTICLE 2 - PURPOSES OF PROCESSING AND LEGAL BASIS
Sidaction is required to process the personal data you provide on this site in order to manage your order only.
If we ask you to provide us with your personal information for another reason, for marketing purposes for example, we will ask you directly for your express consent, or we will give you the opportunity to object.
The processing of your personal data on this site is legally based on a contractual obligation, the collection of this data being objectively necessary for the execution of your order.
ARTICLE 3 - DISCLOSURE
We may disclose your personal information if we are required to do so by law or if you violate our Terms of Sales .
ARTICLE 4 - SHOPIFY
Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our services and products to you.
Your data is stored in Shopify's data storage system and databases, and in the general Shopify application. Your data is stored on a secure server protected by a firewall. The hosting service provided by Shopify for this site is located in Europe. You can find the contact details on our page Legal Notice .
Purchases on the fashionforsidaction.org website are made through the Scellius payment platform (Banque Postale solution). The Scellius solution is certified to comply with the PCI-DSS standard (Payment Card Industry - Data Security Standard). This standard results from the data security program implemented by international payment card networks (Visa, Mastercard, American Express). It involves encryption of your credit card information.
Information relating to your purchase transaction is kept for as long as necessary to finalize your order.
For more information, you can consult La Banque Postale's commitments concerning the protection of personal data. here .
ARTICLE 5 - DURATION OF CONSERVATION
We keep your personal data for a period strictly necessary for the purposes for which they were collected and processed.
When the retention period expires, your data will be permanently deleted.
ARTICLE 6 - THE SHARING OF YOUR PERSONAL DATA
Sidaction only communicates the data it collects to its authorized internal services and to its authorized subcontractors to the extent that this is strictly necessary for the achievement of the purpose. All persons having access to the data are bound by a written and signed confidentiality obligation.
Sidaction asks all its subcontractors who process or are likely to process personal data on its behalf to comply with the regulations in force and to guarantee its obligations towards its audiences and the authorities. .
ARTICLE 7 - TRANSFER OUTSIDE THE EUROPEAN UNION
Sidaction strives not to make any transfer of personal data outside the European Union or an appropriate country. Nevertheless, the association may outsource some of its processing, and must, exceptionally, thus proceed to transfers of data outside the European Union. As part of these transfers, Sidaction undertakes to enter into contractual clauses with the third parties concerned guaranteeing an adequate level of protection of your personal data.
ARTICLE 8 - LINKS
You may be required to leave our website by clicking on certain links on our site. We do not assume any responsibility for the privacy practices of such other sites and recommend that you read their privacy policies carefully.
ARTICLE 9 - SAFETY
To protect your personal data, we take reasonable precautions and strive to follow best practices to ensure that it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
If you provide us with your credit card information through our payment solution, it will be encrypted using the SSL security protocol. Although no method of transmission over the Internet or of electronic storage is 100% secure, our payment platform follows all PCI-DSS requirements and implements the necessary precautions for data security.
Here is a list of cookies we use. We have listed them here so that you have the option of choosing whether you want to allow them or not.
_session_id, unique session identifier, allows Shopify to store information about your session (referrer, landing page, etc.).
_shopify_visit, no data held, Persistent for 30 minutes from the last visit. Used by our website provider's internal stats tracker to record the number of visits.
_shopify_uniq, no data held, expires midnight (depending on visitor location) the next day. Calculates the number of visits to a store per unique customer.
cart, unique identifier, persists for 2 weeks, stores information about your shopping cart.
_secure_session_id, unique session identifier
storefront_digest, unique identifier, undefined if the store has a password, it is used to find out if the current visitor has access.
If our store is acquired by or merged with another company, your information may be transferred to the new owners so that we can continue to sell products to you.
QUESTIONS AND CONTACT DETAILS
In accordance with the European Regulation of 25 May 2018 on data protection and the amended Data Protection Act, you can withdraw your consent. You also have a right of access, information, rectification, erasure, limitation, opposition and portability to the processing of data concerning you.
You also have a right to define the fate of your personal data after your death.
You can also contact our Data Protection Officer by writing either by mail to the following address Sidaction - 228 rue du Faubourg Saint-Martin - 75010 Paris or by email to firstname.lastname@example.org.
Any request to exercise a right must be accompanied by a photocopy of proof of identity.
If you consider it necessary, you can also lodge a complaint with the CNIL, which guarantees the protection of your rights. Your request can be entered online: https://www.cnil.fr/fr/plaintes/internet, or by mail National Commission for Computing and Liberties - 3 Place de Fontenoy-TSA 80715-75334 PARIS CEDEX 07