1.PREAMBLE
AMPERE is more than ever mobilized to ensure the
protection of personal data of its customers and prospects. The purpose of
this Personal Data Protection Policy is to provide all the necessary
information on the processing of your data and on the measures implemented to
ensure the protection and security of your data. AMPERE processes your personal
data in compliance with the laws in force. It guarantees an optimal level
of data security as well as a number of rights for data subjects.
2.CNIL
DEFINITIONS.
Personal
data (CNIL definition): A
personal data is any information relating to an identified or identifiable
natural person. But because they involve people, they must retain control.
A natural person can
be identified:
directly (example: name and surname); indirectly (example: by telephone
number or licence plate, an identifier such as social security number, postal
or e-mail address, but also voice or image).
The identification of
a natural person can be made from a single data (example: name); from the
crossing of a data set (example: a woman living at such an address, born such a
day and member in such an association).
Processing
relating to particular categories of personal data: Processing of
personal data that reveals racial or ethnic origin, political opinions,
religious or philosophical beliefs or trade union membership, as well as the
processing of genetic data, biometric data for the purpose of uniquely
identifying a natural person, health data or data concerning the sexual life or
sexual orientation of a natural person are prohibited.
Processing:
any operation or set of operations carried out or not carried out using
automated processes and applied to personal data or data sets, such as
collection, recording, organisation, structuring, retention, adaptation or
modification, retrieval, consultation, use, communication by transmission,
dissemination or any other form of provision, approximation or interconnection,
limitation, erasure or destruction.
Consent
of the data subject: any expression of free, specific, informed and
unequivocal will by which the data subject accepts, by a statement or by a
clear positive act, that personal data concerning her be the subject of
processing.
Personal data breach: a security breach
resulting in the accidental or unlawful destruction, loss, alteration,
unauthorised disclosure of personal data transmitted, stored or otherwise
processed, or unauthorized access to such data.*
3. PERSONNAL DATA
As part of its
activities, AMPERE collects information about you. These can be collected
when you fill out our forms, when you visit our website or during exchanges (by
mail, by telephone, etc.). The categories of personal data collected are
different depending on the purposes. For example, we collect the following
categories of data:
- Identification data (name, surname, marital
status, date of birth, etc.),
- Contact details (postal or e-mail address,
telephone, etc.),
- Connection and traceability data (cookies,
etc.).
4.LEGAL PURPOSES AND BASES
Personal
data are collected for specific, explicit and legitimate purposes. The
processing of this data by AMPERE is based on a legal basis, in accordance with
the European Data Protection Regulation (GDPR). AMPERE processes the data
collected according to the legal bases and for the purposes described below. To
enable the execution of contracts or pre-contractual measures as part of the
monitoring of the commercial relationship. To respect the consent of the
client/prospect in the context of a commercial prospecting. The consent
given by the client/prospect may be withdrawn at any time.
5.REGISTER
OF PROCESSING OPERATIONS
As
part of the fulfilment of its commitments, BOONDOOA maintains a complete
internal documentation on the processing of personal data that it carries out
and ensures that such processing complies with legal obligations. This
register is updated with each processing change.
6.UPSTREAM
RISK TREATMENT
AMPERE
ensures to take into account the rights and interests of individuals as far
upstream as possible, namely, from the design of the product or service
involving the processing of personal data and within the framework of the
default settings of the tool. Thus, AMPERE adopts measures to limit by
default the processing of data to what is strictly necessary for the defined
purpose.
7.EMPLOYEE
AWARENESS AND TRAINING
AMPERE
ensures that its employees are aware of the personal data protection
legislation in force. Thus, employees are made aware through training
sessions. The objective is for everyone to be informed of the regulatory
issues and apply, at their level, the good practices disseminated by AMPERE.
This Privacy Policy helps to ensure the effectiveness of AMPERE’s commitment to
protecting the rights of individuals with regard to their personal data.
8.COOKIES
A
cookie is a text file placed on your computer when you visit the site. The
cookie does not allow us to identify you but its purpose is to collect
information about your browsing in order to offer you a better, secure and
personalized browsing experience. The storage period of cookies is 13
months maximum. For more information about the cookies issued on the AMPERE
website, go to the "cookies" tab.
9.YOUR
RIGHTS
Depending on
the case, you have the rights mentioned below, which you can exercise by
contacting the legal department of the MGP group or on mgp.fr, section «Write
to us»:
- Right of access to your data
- Right to object for legitimate reasons to the
processing of your data
- Right to request rectification of your data in
case of error
- Right to request the erasure of your data
- Right to request the limitation of the
processing of your data concerning you
- Right to define guidelines regarding the fate
of your data after your death
- Right to request portability of your data
- Where
applicable, the right to request the withdrawal at any time of the consent to
the processing of the data (where the legal basis of the processing is the
consent of the person).
We take the
protection of your personal data very seriously and we are committed to
handling your requests in accordance with French and European regulations.
To exercise these rights, you can send your request:
- Either on contact (provide a basic email for
various requests),
- By mail: AMPERE – La Bruyère – 01300
Brégnier-Cordon
If your requests are not granted, you may lodge
a complaint with the CNIL:
- On the CNIL website (www.cnil.fr)
- By post: CNIL – 3 Place de Fontenoy – TSA 80715 –
75334 PARIS CEDEX