Privacy Policy
Data Protection Policy - (Compliant with EU Regulation 2016/679 of 27 April 2016 (GDPR) and Act no. 78-17 of 6 January 1978)
GENERAL INFORMATION
Iris Galerie, SAS ("Iris Galerie") understands the importance of privacy and the protection of personal data, and we take your privacy seriously. This privacy policy describes how Iris Galerie collects, uses, discloses and otherwise treats personal data in connection with this website.
PERSONAL DATA WE COLLECT
We may collect personal data about you in the following ways:
1. Information collected as part of a contractual relationship: We may collect personal data from you as part of a contractual relationship. This includes:
- Feedback and correspondence, such as information you provide when you contact us with questions, report a problem with our website, receive customer support, or otherwise correspond with us; and
- Marketing information, such as your preferences for receiving marketing communications.
2. Information we obtain from other third parties. We may receive information about you from third party sources, such as marketing partners, publicly available sources, and data service providers, and we may add this to the information we obtain from our website.
3. Information we collect automatically. We may automatically collect personal data about you, such as site usage information, information about your computer or mobile device, when you access our website. For example, we may record the name and version of your computer's or mobile device's operating system, manufacturer and model, browser type, browser language, screen resolution, the website you visited before browsing our website, the pages you viewed, the time you spent on a page, and access times and information about your use of, and actions on, our website. We collect this information about you using cookies.
HOW WE USE YOUR PERSONAL DATA
The purposes of the processing operations for which personal data are intended are as follows:
- Identification and contact with you;
- Identification of contact persons within entities providing services and members of the Iris Galerie network;
- Provision of contractual services;
- Administration of contracts and customer accounts;
- Management of relations with contacts at service providers and members of the Iris Galerie network;
- Sending information and/or service proposals to customers.
HOW WE SHARE YOUR PERSONAL DATA
The recipients of the personal data processed are:
- Iris Galerie staff members responsible for contractual services and relationship management with Iris Galerie network member entities and end customers; and
- Third-party companies and individuals providing services on our behalf (such as production laboratories, carriers or database management services). These third parties use personal data only as we request and in a manner consistent with this privacy policy.
HOW WE USE COOKIES
We may collect information using "cookies". Cookies are alphanumeric identifiers that are transferred to your computer's hard drive via your web browser to help us identify you when you visit our website. Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a better experience when using our website and allows us to improve it. Because of the way they function, cookies fall into the following categories:
- Strictly Necessary Cookies: These cookies are necessary for the operation of our website. These cookies cannot be deactivated. You can set your browser to block these cookies, but as a result, some parts of our website will not function as intended.
- Functionality cookies: These cookies enable our website to remember the choices you make when using our website. The purpose of these cookies is to provide you with a more personal experience and to avoid you having to re-select your preferences each time you visit our website.
- Analytics and Performance Cookies : These cookies are used to collect information about traffic to our website and how users use our website. The information collected may include the number of visitors to our website, the websites that referred them to our website, the pages they visited on our website, the time of day they visited our website, whether they have visited our website before, and other similar information. We use this information to help operate our website more efficiently, to gather demographic information and to monitor the level of activity on our website.
- Advertising and Marketing Cookies: These cookies serve targeted ads based on your browsing behavior. They help us and third-party advertisers tailor ads to your interests. These cookies remember your visits to our site and may share data with advertisers to improve ad relevance. You can manage your preferences or unsubscribe from targeted advertising.
Pixel tags
We may also use pixel tags (also known as web beacons and clear GIFs) on our website to track user actions on our website. Unlike cookies, which are stored on the hard drive of your computer or mobile device by a website, pixel tags are embedded invisibly on web pages. Pixel tags measure the success of our marketing campaigns and compile statistics on website usage, so that we can manage our content more effectively. The information we collect using pixel tags is not linked to our users' personal data.
YOUR CHOICES
In this section, we describe the rights and choices available to all users. Opt-out of marketing communications: You can choose not to receive marketing e-mails by clicking on a link at the bottom of each such e-mail. You may continue to receive service-related and other non-marketing e-mails for which you have not opted out.
Cookies and browser web storage: We may allow service providers and other third parties to use cookies and similar technologies to track your browsing activity over time and across the website and third-party websites. Most browsers allow you to delete or reject cookies. Many browsers accept cookies by default until you change your settings. To update your browser settings, follow your browser's instructions. Please note that if you configure your browser to disable cookies, the website may not function correctly.
LEGAL BASIS FOR PROCESSING
If you reside in the European Economic Area, the United Kingdom or Switzerland, we are required to inform you of the legal basis for our processing of your personal data on our website, which is described below.
Consent: To provide you with services or take action you request prior to providing those services. Processing is based on your consent. Where we rely on consent, you have the right to withdraw it at any time;
Legitimate interest: We may communicate with you on the basis of our legitimate interests in doing so. We consider and balance the potential impact on your rights and do not process your personal data for activities where our interests are outweighed by the impact on you (unless we have your consent or the law otherwise requires or permits) ;
Legal obligations : To comply with our legal obligations, particularly with regard to the exercise of rights and tax and accounting obligations.
TRANSFER OF PERSONAL DATA OUTSIDE THE EUROPEAN ECONOMIC AREA ("EEA"), THE UNITED KINGDOM ("UK") OR SWITZERLAND
The personal data you choose to provide to us may be transferred to the United States or to other locations outside of your state, province, country or other governmental jurisdiction. The laws of these countries or jurisdictions may not be as protective as those of your country. We will process and transfer your personal data in accordance with applicable law and this Privacy Policy, regardless of where your personal data is stored or accessed. Our third-party service providers are contractually bound to process personal data in accordance with this policy and applicable data protection laws.
RETENTION OF PERSONAL DATA
The retention of your personal data depends on the purpose of the processing and the nature of our relationship. This does not affect your right to request that we delete your personal data before the end of its retention period.
| Data categories | Purposes | Retention Period |
|---|---|---|
| Prospects | ||
| All personal data (including contact details and iris capture) | Create and use a prospect database. | 3 (three) years from the last contact with the prospect. |
| Current and former customers | ||
| Personal details. | Management of customer accounts, identifiers, orders, invoicing and payments. Dissemination of information on offer developments. | 3 (three) years from the last order. |
| Data relating to the performance of the contract. | Manage customer accounts, orders, invoicing and payments. | 10 (ten) years from the last order. |
| Capturing irises. | Final product | 24 (twenty-four) hours in the active base. |
RIGHTS CONCERNING YOUR PERSONAL DATA
If you reside in the EEA, the UK or Switzerland, you may request that we take the following steps in relation to your personal data:
Access : Provide you with information about the processing of your personal data and give you access to your personal data;
Correction: To update or correct inaccuracies in your personal data;
Deletion : Delete your personal data, in particular when it is no longer required for the purposes of processing, when you have withdrawn your consent or when processing is unlawful, subject to legal retention obligations;
Restriction : Restrict the processing of your personal data;
Objection : To object to the processing of your personal data. You may object at any time to the processing of your personal data for direct marketing purposes;
Transfer : Transfer a machine-readable copy of your personal data to yourself or to a third party of your choice.
To submit a request, residents of the UK, EEA and Switzerland can write to us at the postal address provided below or contact us at the following e-mail address: contact@irisgalerie.com.
Complaints to the CNIL
Data Subjects may lodge a complaint with the supervisory authority, namely the Commission nationale de l'informatique et des libertés (CNIL): 3 Place de Fontenoy - TSA 80715 - 75334 Paris 07, if they consider that the Data Controller's responses to their questions about the processing of their personal data are not satisfactory.
CHANGES TO THIS PRIVACY POLICY
We may make changes to this Privacy Policy from time to time. If we make material changes that materially affect your privacy rights, we will notify you by updating the date of this Privacy Policy and posting it on our website. We may, if required by law, also notify you of changes in a way that is reasonably likely to reach you, such as by e-mail (if you have provided your contact details) or via the website.
CONTACT US
If you have any questions or concerns about our privacy policy or would like to request this policy in an alternative format due to a disability, please feel free to email us at contact@irisgalerie.com, or write to us at :
Iris Galerie SAS,
60 rue de la Boétie, 75008 Paris, France
