Maped is committed to protecting your personal data so that you can enjoy peace of mind as your browse our www.maped.com website (hereinafter, the „Website“).

We protect your privacy by protecting the personal data you give us through any of our communications channels, guaranteeing its confidentiality and integrity, and keeping it available and secure.

 

Maped fully complies with the requirements of Regulation (EU) 2016/679 (the General Data Protection Regulation, GDPR), which has been in force since 25 May 2018, and the Data Protection Act subsequently adopted in France. This Personal Data Protection Policy (hereinafter, the „Policy“) sets out how Maped collects and processes personal data.

Personal data means any information relating to an identified or identifiable natural person in line with Article 4 of the GDPR (hereinafter, the „Data“).

 

 

DATA CONTROLLER

The Data Controller within the meaning of the GDPR is:

 

Maped

A simplified joint-stock company with share capital of 5,155,000 euros

Annecy Trade Register number 325 720 423

Registered office: 530 route de Pringy – 74370 Argonay – France

Email: contact@maped.fr

Telephone: +33 (0)4 50 27 26 85

 

 

DATA PROTECTION OFFICER

Data Protection Officer contact details:

 

Email: dpo@maped.fr

 

 

LEGAL BASIS AND PURPOSES OF DATA PROCESSING

When you use the Website or submit information via a form or an interaction with the Website, Maped may collect and process your personal data.

 

a. Visiting our Website

You can use the Website without providing any personal information.

 

If you browse the Website for information only, we will not process any Data except for that sent by your browser to allow you to view our Website and information sent by cookies for statistical analysis of Website use (see Cookie Policy).

We process your Data to provide you with technical access to our Website with the following legal basis:

 

• To pursue our legitimate interests so that we can ensure the Website technology operates correctly. Our legitimate interest consists of being able to provide an attractive Website that is technically functional and user-friendly, taking every measure we can to protect our Website from cybersecurity risks, and stopping third parties being exposed to such risks on our Website.

 

b. Contact form

If you contact us using our contact form, you must provide your title, first name, surname, country of residence, email and message subject, and send us your message. You may provide your telephone number if you wish.

The Data is saved by us so we can process your request and/or in case you have questions for us.

 

Your Data is kept for the period needed to manage our commercial relationship properly. It will not be retained for more than three years from the last request that goes unanswered by you, as long as you do not ask for it to be deleted and/or object to its use in the meantime.

We will not transfer your Data to a third party without your explicit consent, except for those mentioned in the Policy.

We process your Data to respond to your requests with the following legal basis:

 

To pursue our legitimate interest: providing appropriate responses to your requests.

 

c. Newsletter subscription

You can subscribe to our newsletter by entering your email in the relevant area.

We will then regularly send you our newsletter containing information about our products, the latest news, games, competitions and other benefits from Maped, Mapiwee and partners. You can unsubscribe and/or ask to stop receiving our newsletter at any time.

Your Data is kept for the period needed to send this newsletter. It will not be retained for more than three years from your subscription date or the last request that goes unanswered by you, as long as you do not ask for it to be deleted and/or object to its use in the meantime by emailing dpo@maped.fr or clicking the unsubscribe link at the bottom of every newsletter emailed out.

We will not transfer your Data to a third party without your explicit consent, except for those mentioned in the Policy.

We process your Data to send you our newsletter with the following legal basis:

 

• On the back of your consent, which you can withdraw at any time by emailing dpo@maped.fr, or clicking the unsubscribe link at the bottom of every newsletter.

 

d. Competition entry

You can enter our competitions by entering your email in the relevant area. The Data required is marked with an asterisk.

Your Data is kept for the period needed to manage the competition. It will not be retained for more than three years from your entry date or the last request that goes unanswered by you in the meantime, unless you email ….

We will not transfer your Data to a third party without your explicit consent, except for those mentioned in the Policy.

We process your Data to manage your competition entry with the following legal basis:

On the back of your consent, which you can withdraw at any time by emailing dpo@maped.fr.

 

 

COOKIE MANAGEMENT

For more information about how cookies are used on our Website and how to turn them off, please see our Cookie Policy. 

 

 

WHAT DATA RIGHTS DO YOU HAVE?

In accordance with the amended French Data Protection Act of 6 January 1978, and the General Data Protection Regulation of 27 April 2016 (GDPR), you have the following rights:

• Right of access meaning users can ask for confirmation that their Data is or is not being processed. If it is being processed, you can be given information about this Data and certain other information (including processing purposes, Data categories, recipient categories, expected retention period, Data origin, use of automated decision-making and, if Data is transferred to a non-member state, the appropriate guarantees), as well as a copy of your Data.
• Right to rectification meaning users can ask for incorrect Data to be rectified.
• Right to object meaning users can object to their personal information being used for certain purposes mentioned when it is collected.
• Right to withdraw meaning, in certain situations, users can ask for their personal information to no longer appear in a mailing list, for example. Right to erasure, which does not apply where Data processing is required to: i) exercise the right to freedom of opinion and information, ii) carry out a legal obligation of ours (storage obligations, for example), or iii) assert, exercise or defend rights in court.
• Right to restriction of processing meaning, in certain situations, users can ask to restrict the processing of their Data.
• Right to data portability meaning users can receive the personal Data about them provided to us in a structured, standard and machine-readable format.
• Right to object meaning, in certain situations and depending on their personal circumstances, users can object to their Data being processed. In this case, we stop processing the Data unless processing must continue for legal reasons or to exercise or defend our rights in the event of a legal/court case.
• Right to withdraw consent meaning users can withdraw their consent to Data processing. This does not affect the lawfulness of processing previously carried out based on this consent.

 

To exercise these rights, please contact the website owner by
email: dpo@maped.fr

 

Please note that if you have exercised any rights, we are required to inform all the recipients with whom your personal Data has been shared, with your prior consent, unless this is impossible or involves a disproportionate amount of work. You have the right to obtain information about these recipients.

 

 

HOW IS YOUR INFORMATION PROTECTED?

The personal information we collect is stored in a secure environment.
Those working for us are required to keep your information confidential.
We use the following measures to keep your personal details safe:

• Authorised person access management
• Data subject access management
• Network monitoring software
• Computer backup
• Digital certificate development
• Username/password
• Firewall

We are committed to maintaining high levels of confidentiality by integrating the latest technological innovations to keep your activity private. However, no solution is 100% secure: there is always some level of risk when you use the internet to transfer personal information.

 

 

FOR HOW LONG IS YOUR DATA STORED?

Your Data will always be kept for the period necessary for the purpose for which it has been collected.

We will process your Data within three years of your last contact with us, or until you unsubscribe from the newsletter.

Independent of your Data’s processing during the period necessary to fulfil the corresponding purpose as above, it will then be stored, properly safeguarded and protected, with access restricted for as long as we may be liable for processing, in line with current regulations. Data will be deleted once any actions have been specified in each case.

 

 

DO WE SHARE YOUR DATA?

We only share your Data with our internal services, providers and partners authorised to process it (hosting service, marketing email provider and advertising companies).

Our staff are required to keep Data secret and regularly trained in protecting and securing Data.

We require our service providers to only use your Data to manage the services we ask them to provide. We also ask these providers to always comply with applicable Data protection laws and pay particular attention to Data confidentiality, integrity and security. Every Data transfer is subject to contractual provisions.

Recipient categories who could receive your Data:

• Communication: we may also share information you provide on our Website with third parties who provide services linked to the Website.
• Legal: we may also share information you provide if this is necessary to comply with current regulations, to respond to a summons or to exercise or defend a right in court.

In any event, your Data will never be sold, shared, communicated or transferred in any form to an unidentified third party for its own use, including for sales or marketing, without your explicit consent.

 

 

DATA TRANSFER

Data collected will never be transferred outside the European Union.

 

 

RIGHT TO COMPLAIN TO A SUPERVISORY AUTHORITY

Without prejudice to any other administrative or judicial remedy, you can make a complaint to the French data protection authority, the CNIL.

The CNIL will keep the complainant informed about their complaint’s progress and outcome, including the possibility of a judicial remedy in line with Article 78 of the GDPR.

 

However, we recommend that you first send any complaint to dpo@maped.fr. We will respond within two months.

 

 

PRIVACY POLICY CHANGES

We reserve the right to amend or adapt the Policy at any time in line with current Data protection provisions.