Introduction
This Privacy Policy aims to:
Inform individuals navigating and accessing the services offered on the website(s) of chaire-naiade.fr (hereinafter referred to as the “Clients”) and/or who have subscribed to a contract resulting in a Service, of how chaire-naiade.fr collects, uses, and shares their personal data, as well as the information we collect through “cookies.”
Data Controller
The data controller(s) are:
L’Ecole navale
SIRET 15000096600013
VAT Number FR0G150000966
Represented by the Admiral
To contact the data controller, you may:
Send us an email at the following address: contact.chaire-naiade@ecole-navale.fr
Call us at the following number: 02 98 85 98 05
Write to us at the following postal address:
Chaire NAIADE – ECOLE NAVALE
BCRM Brest, rue du Poulmic 29160 Lanvéoc
Collection of Personal Data
chaire-naiade.fr collects personal data to ensure the proper execution of its services, contracts, and missions.
Nature of the Personal Data Collected
chaire-naiade.fr commits to collecting only adequate, relevant, and limited personal data that is necessary for the purposes for which it is processed. No personal data considered “sensitive,” such as racial or ethnic origin, political, philosophical, or religious opinions, shall be requested or collected by chaire-naiade.fr.
chaire-naiade.fr does not collect data from minors under the age of 18.
The Client is informed that the personal data indicated as mandatory on the forms and collected in the context of the service described herein are necessary for the completion of the Service.
Purpose of Personal Data Processing
Personal data may be collected and used by chaire-naiade.fr for the following purposes:
The provision of Services, and may be transmitted to companies responsible for managing, executing, and processing payment operations.
The data collected may also be used in the management of commercial relationships to compile statistics, conduct market and behavior studies, and enable chaire-naiade.fr to improve and personalize its Services.
Sharing of Personal Data
WITH THE INTERNAL TEAMS OF chaire-naiade.fr
The duly authorized teams and/or employees of chaire-naiade.fr have access to and process personal data. This includes individuals from departments such as civil status, urban planning, housing, schools and equipment, cultural activities, health, and social aid.
WITH chaire-naiade.fr’s SUBCONTRACTORS
In the course of its activities and the provision of its services, chaire-naiade.fr employs subcontractors who process personal data. Our subcontractors act on our instructions and under our authority, in strict compliance with the GDPR. chaire-naiade.fr has ensured that these providers offer sufficient guarantees regarding the implementation of appropriate technical and organizational measures to ensure the security and confidentiality of personal data.
Retention of Personal Data
The collected personal data is processed and stored under conditions that aim to ensure their security and are kept only for the period strictly necessary for client relationship management and follow-up.
The following information is collected:
Email address when submitting an electronic message from a user. In this case, the collected email address will only be used to deliver the response.
When completing a form, the data will be used for the purpose indicated in the form, with the terms specified on the form’s publication page.
When participating in an online survey, published with the consent of the Data Protection Officer. The data collected during this process will only be used for the survey and will never be processed nominally. This data will be destroyed at the end of the survey.
This data may also be retained for security and archival purposes, to comply with the legal and regulatory obligations applicable to the Client and/or Service Provider.
Security of Personal Data
chaire-naiade.fr commits to implementing technical and organizational security measures to guarantee the safety, integrity, and confidentiality of all personal data, in order to prevent them from being altered, damaged, or accessed by unauthorized third parties.
However, it is noted that no security measure is infallible, and chaire-naiade.fr cannot guarantee absolute security of the Client’s personal data.
In case of a confirmed personal data breach affecting its clients or users, chaire-naiade.fr will notify the CNIL as soon as possible and, if feasible, no later than 72 hours after becoming aware of the breach, unless the breach is unlikely to result in a risk to the rights and freedoms of the Users.
In accordance with Article 34 of the GDPR and the exceptions provided therein, chaire-naiade.fr will inform the User as soon as possible when a data breach is likely to result in a high risk to the rights and freedoms of the User.
Passwords used on the Site must remain completely confidential and must never be shared with one or more persons. If, however, you believe that your password has been misused, please immediately inform chaire-naiade.fr’s technical team.
Transfer of Personal Data
Personal data may be transferred to countries outside the European Union to ensure service and commercial relations between the Client and chaire-naiade.fr.
chaire-naiade.fr works with Service Providers who offer an adequate level of protection and are located in countries subject to GDPR provisions or in accordance with Article 45 of the GDPR, as they benefit from an adequacy decision by the European Commission (they are recognized as offering sufficient guarantees by the European Union). This is, for example, the case of subcontractors located in the United States who are governed by the E.U.–U.S. PRIVACY SHIELD (EU–U.S. Data Protection Shield): click here for more information.
In the event that chaire-naiade.fr uses subcontractors that do not provide protection equivalent to that required by the European Union, chaire-naiade.fr commits to regulating the transfer by signing specific contractual clauses established by the European Commission.
The subcontractor may be required to disclose the Client’s personal data to administrative or judicial authorities when such disclosure is necessary to identify, arrest, or prosecute any individual likely to harm the rights of chaire-naiade.fr, any other client, or a third party. chaire-naiade.fr may also be legally required to disclose the Client’s personal data and cannot oppose such disclosure.
Client Rights
In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation – GDPR) OJ L127 2 of 23/05/2018, every Client has the right to access, rectify, and delete their personal data, which they can exercise directly with chaire-naiade.fr’s customer service by contacting them at the following email address: contact.chaire-naiade@ecole-navale.fr or by post at:
Chaire NAIADE – ECOLE NAVALE
BCRM Brest, rue du Poulmic 29160 Lanvéoc
Attach a copy of a valid identity document with your request.
If you believe that the processing of your personal information by chaire-naiade.fr violates data protection laws, you have the right to file a complaint with a supervisory authority responsible for data protection. You may do so in the EU Member State of your habitual residence, workplace, or the place of the alleged infringement.
You may also request that the processing of your personal data be restricted under the conditions set out in Article 18 of the GDPR.
Additionally, within the limits imposed by law, the Client also has the right to object to the processing, limit it, decide the post-mortem fate of their data, withdraw consent at any time, and request the portability of personal data provided.
chaire-naiade.fr will provide the individual exercising one of these rights with information on the actions taken, as soon as possible, and in any event, within one (1) month from the receipt of the request. chaire-naiade.fr reserves the right to extend this period by two (2) months, considering the complexity and/or number of requests.
Updates
This Privacy Policy may be updated at any time. If we make changes, we will change the “last updated” date at the beginning of the policy. If significant changes are made to this policy, we will notify you through another channel (email, SMS, phone call, etc.). We encourage you to regularly review this privacy policy.