This confidentiality policy applies to the site: Poderm.
The purpose of this confidentiality policy is to explain to users of the site :
This privacy policy supplements the legal notice and the General Terms and Conditions of Use, which users can consult at the following address: https: //www.poderm.com/mentions-legales/
In accordance with the provisions of Article 5 of European Regulation 2016/679, the collection and processing of data from users of the site complies with the following principles:
In order to be lawful, and in accordance with the requirements of Article 6 of European Regulation 2016/679, personal data may only be collected and processed if at least one of the following conditions is met:
The personal data collected on the Poderm site is as follows:
This data is collected when the User carries out one of the following operations on the site:
Furthermore, when a payment is made on the site, proof of the transaction, including the order form and the invoice, will be kept in the site editor's computer systems.
The data controller will keep all the data collected in the site's computer systems under reasonable security conditions for a period of : The data collected concerning you will be kept for the period necessary to achieve the purposes described above, i.e. 3 years from the date of termination of the commercial relationship, i.e. the date of the last contact from the Customer.
Data is collected and processed for the following purposes:
The data processing carried out is based on the following legal grounds:
Personal data collected by the site is not passed on to any third party and is only processed by the site editor.
The Poderm site is hosted by : Shopify Inc - 151 rue O'Connor Ottawa, Ontario K2P 2L8 Canada
The person responsible for processing personal data is: Maud Falconnet. She can be contacted as follows:
41(0) 22.342.53.39
contact@poderm.com
Rue Baylon 2b, 1227 Carouge
The data controller is responsible for determining the purposes and means of processing personal data.
The data controller undertakes to protect the personal data collected, not to pass it on to third parties without the user's knowledge and to comply with the purposes for which the data was collected.
The site has an SSL certificate to guarantee that information and data transfer via the site is secure.
The purpose of an SSL certificate (‘Secure Socket Layer’ Certificate) is to secure the data exchanged between the user and the site.
In addition, the data controller undertakes to notify the user in the event of rectification or deletion of the data, unless this would entail disproportionate formalities, costs and steps for the user.
In the event that the integrity, confidentiality or security of the user's personal data is compromised, the data controller undertakes to inform the user by any means necessary.
In accordance with the regulations concerning the processing of personal data, the user has the rights listed below.
In order for the data controller to comply with the user's request, the user must provide the following information: first and last name, e-mail address and, if relevant, account number, personal space number or subscriber number.
The data controller is obliged to respond to the user within a maximum of 30 (thirty) days.
a. Right of access, rectification and deletion
Users may access, update, modify or request the deletion of data concerning them by following the procedure set out below:
The user must send an e-mail to the person responsible for processing personal data, specifying the subject of the request, to the contact e-mail address.
If he/she has one, the user has the right to request the deletion of his/her personal space by following the procedure set out below:
The user must send an e-mail to the data controller specifying his/her personal space number. The request will be processed within 10 working days.
b. Right to data portability
Users have the right to request the portability of their personal data held by the site to another site, by complying with the following procedure:
The user must make a request for the portability of his/her personal data to the data controller, by sending an e-mail to the address provided above.
c. Right to limit and object to data processing
The user has the right to request the limitation of or to object to the processing of his/her data by the site, without the site being able to refuse, unless it can demonstrate the existence of legitimate and overriding reasons, which may prevail over the interests and rights and freedoms of the user.
In order to request the limitation of the processing of his/her data or to formulate an objection to the processing of his/her data, the user must follow the following procedure:
The user must make a request to limit the processing of his/her personal data by e-mail to the data controller.
d. Right not to be subject to a decision based exclusively on an automated process
In accordance with the provisions of Regulation 2016/679, the user has the right not to be subject to a decision based exclusively on an automated process if the decision produces legal effects concerning him or her, or significantly affects him or her in a similar way.
e. Right to determine the fate of data after death
Users are reminded that they can organise what should happen to their collected and processed data if they die, in accordance with Law no. 2016-1321 of 7 October 2016.
f. Right to refer the matter to the competent supervisory authority
In the event that the data controller decides not to respond to the user's request, and the user wishes to challenge this decision, or, if they believe that one of the rights listed above has been infringed, they are entitled to refer the matter to the CNIL (Commission Nationale de l'Informatique et des Libertés, https://www.cnil.fr) or any competent judge.
In accordance with the provisions of Article 8 of European Regulation 2016/679 and the French Data Protection Act, only minors aged 15 or over may consent to the processing of their personal data.
If the user is a minor under the age of 15, the consent of a legal representative will be required in order for personal data to be collected and processed.
The site editor reserves the right to verify by any means that the user is over 15 years of age, or that he/she has obtained the agreement of a legal representative before browsing the site.
The site may use ‘cookie’ techniques.
A ‘cookie’ is a small file (less than 4 kb), stored by the site on the user's hard disk, containing information relating to the user's browsing habits.
These files enable the site to process statistics and traffic information, facilitate browsing and improve the service for the user's comfort.
For the use of ‘cookie’ files involving the storage and analysis of personal data, the user's consent must be obtained.
The user's consent is considered valid for a maximum period of 6 (six) months. At the end of this period, the site will again request the user's authorisation to save ‘cookie’ files on his/her hard disk.
a. Opposition by the user to the use of cookies by the site
Cookies that are not essential to the operation of the site are only placed on the user's terminal after obtaining the user's consent. This consent is obtained via the Axeptio cookie management platform, which allows users to choose the types of cookies they wish to activate or deactivate.
Withdrawal of consent to cookies:
Users can withdraw their consent or change their cookie preferences at any time by clicking on the dedicated icon (usually located at the bottom of the page) to reopen the Axeptio module. This action allows them to deactivate non-essential cookies previously accepted, or to review their choices in a simple and intuitive manner.
More generally, users are informed that they may refuse to accept cookies by configuring their browser software.
For information, users can find the steps to follow to configure their browser software to prevent cookies from being stored at the following addresses:
If the user decides to deactivate the ‘cookies’ files, they will be able to continue browsing the site. However, any malfunction of the site caused by this manipulation cannot be considered to be the fault of the site editor.
b. Description of the ‘cookie’ files used by the site
The user's attention is drawn to the fact that these sites have their own confidentiality policies and general conditions of use that may differ from the site. The site editor invites users to consult the confidentiality policies and general conditions of use of these sites.
Axeptio uses cookies to store the visitor's consent and not to ask for it again each time they visit your site. These are purely technical cookies that store only the visitor's anonymised consent data.
Here are the cookies we use:
Cookie name CMP for brands CMP for publishers
axeptio_cookies Contains all information about the visitor's consent, such as the date, their unique anonymous identifier, and whether they have already consented or not Contains all information about the visitor's consent (personalised cookies only, not IAB TCF), such as the date, their unique anonymous identifier, and whether they have already consented or not
axeptio_all_vendors Contains the list of all cookies declared in your Axeptio widget Contains the list of all personalised cookies (excluding IAB TCF) declared in your Axeptio widget
axeptio_authorized_vendors Contains the list of cookies accepted by the visitor Contains the list of personalized cookies accepted by the visitor
_ax_token not submitted for this CMP Anonymous visitor identifier, generated completely randomly and not based on any personal data.
In our CMP for publishers, we store the following elements in the browser's localstorage:
These cookies expire after 6 months by default, in accordance with the CNIL. Consent will therefore be requested from the visitor every 6 months.
This confidentiality policy may be consulted at any time at the following address: https: //www.poderm.com/politique-de-confidentialite/
The site editor reserves the right to modify it in order to ensure its compliance with current legislation.
Consequently, users are invited to consult this privacy policy regularly in order to keep abreast of the latest changes.
The user is hereby informed that this privacy policy was last updated on: 31/10/2024.
By browsing the site, the user certifies that he/she has read and understood this privacy policy and accepts its conditions, particularly with regard to the collection and processing of his/her personal data and the use of cookies.
