Tel : 01 84 79 05 05

PERSONAL DATA PROTECTION POLICY – CUSTOMERS-PROSPECTS

Connectcredit simplified joint-stock company whose head office is located at 20 rue d’Isly-Immeuble 3 Soleil- 35000 Rennes, registered in the Rennes Trade and Companies Register under number 851 729 400, Broker in banking operations and services and insurance broker, Intermediate Agent in banking transactions, payment services and insurance, registered with ORIAS under number 190008631, as data controller, attaches great importance to the protection and respect for your personal data.


This Personal Data Protection Policy (hereinafter “the Policy”) describes the conditions under which Connectcredit collects and processes the data of its customers and prospects.

Its purpose is to inform you about the personal data concerning you that we collect, the reasons for which we use it, with whom we share it, for how long we keep it, how we protect it, what are your rights and how exercise them.

Connectcredit’s mission is to negotiate the best home loan for you. In this context, you will be required to provide us with detailed information on your financial situation and your project. This information allows us to identify the most suitable bank(s) for your project and to present a complete and quality file in order to obtain a preferential rate.

We do not ask you for information that is not directly and strictly useful for this mission.

Connectcredit undertakes in particular to:

use your data only for explicit, legitimate and necessary purposes;

not keep your data beyond the time necessary for the operations for which they were collected or those provided for by the standards and authorizations of the CNIL or by the legal and regulatory provisions.

do not transmit any information to banks without your consent

not sell or transmit your information to any business partner without your consent

Allow you to access your data and request its deletion at any time.

ARTICLE 1. DEFINITIONS

For the interpretation and execution of this Policy, the terms used below are defined as follows:

“Personal Data” or “Data”: means any data that directly or indirectly identifies a natural person, such as surname, first name, email, postal address, telephone;

· “Data Protection Officer” or “DPO”: person in charge of advising and monitoring the Data Controller with regard to the protection of Personal Data. In this case, the Connectcredit DPO is:

The Data Management Office Company

Audrey Elkoubi

58, Rue des Belles Feuilles – 75116 Paris, France,

appointed to the CNIL on May 25, 2018

Designation No. DPO-

“Processing Manager”: means the person, department or organization that determines the purposes and means of processing Personal Data, namely in this case Connectcredit;

“Processing”: means any operation on Personal Data, and in particular the recording, collection, organization, storage, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of provision, reconciliation or interconnection, as well as blocking, erasure or destruction;

Capitalized terms used in this General Data Protection Policy (hereinafter the “Policy”) are defined in the “Definitions” Appendix.


ARTICLE 2. WHAT PERSONAL DATA ABOUT YOU DO WE COLLECT?

We collect and use the personal data that we need in the context of our activity to offer you personalized and quality products and services. More details on the use of this data are provided in the following section.

We may collect different categories of personal data from you, including:


Data provided directly by you
Some data is entered directly by you, either via an online form (form or filing of documents), or during your telephone appointments with our advisers:

The data necessary to identify you and contact you:

identification and contact information (surname, first name, e-mail address, telephone number)

The data necessary to present you with the results of our online simulations (borrowing capacity, estimated real estate rate):

family situation (marital status, matrimonial regime, number of children)

information relating to the f

training and employment (type of contract, remuneration)

financial situation

The data necessary for the constitution of a file presentable to the banks when applying for financial loans:

Supporting documents relating to your professional, family and financial situation (photocopy of identity card, passport, proof of address, bank statement, tax notice)

More detailed information on your family, professional and financial situation (employment, name of employer, place and date of birth, postal address, etc.)

Information concerning your health in the event that insurance guaranteeing the repayment of the loan must be taken out and subject to compliance by the persons concerned with the provisions of Articles 226-13 and 14 of the Criminal Code.

The collection of personal data relating to your health is necessary for the constitution and study of your file by the insurer, who alone remains authorized to do so and we never access this information. Connectcredit does not collect health data. We are likely to ask you a few questions to advise you and help you take better account of your personal situation. In any case, your answers to these questions are not recorded or stored.

We would like to point out that unless otherwise indicated, all the data requested by our paper or online forms or by our telephone advisers are mandatory and their absence may make it impossible to provide our services.

In the event that the form specifies that certain data is not mandatory, users are free not to communicate it without having any consequences on the availability or operation of the service.

If you have any doubts about the mandatory personal data, do not hesitate to contact the data controller.

Please note that you are responsible for any personal data of third parties obtained, published or communicated to Connectcredit. Any user who provides us with personal data concerning a third party confirms that they have the consent of the third party to provide us with this data.


Data Collected Automatically
In addition to the information provided directly by you, we may collect a certain amount of data relating to your connection, your browsing on our Site www.connectcredit.fr and your interaction with our services.

Connection and browsing data on our Site: we collect, through cookies (refer to the Cookies article below), information on how you interact with our content / features that help us to optimize the user experience and the offer we offer to our visitors.

Customer Service interaction data: when you contact us by telephone, post, email, we may keep the date, the reason for your request and the content of your exchanges with Customer Service to ensure effective monitoring of your needs. If you contact us by telephone, please note that your call may be recorded for training purposes and to improve our services. In such a case you will be notified and can simply oppose it.

Data collected indirectly
In the event of indirect collection of your data, in particular public Data on the Internet, Connectcredit will make sure to inform you from the first communication, and in any case within the month following the collection of the Data, of the intended use and of your possibility to object to the Processing of your Data for commercial purposes as well as any other mandatory information provided for in Article 14 of the GDPR.


ARTICLE 3. WHY DO WE COLLECT YOUR DATA?

The Personal Data collected and processed by Connectcredit are collected for specific, explicit and legitimate purposes and may vary depending on the context of the collection, namely for the following purposes:

the constitution and study of your credit file,

Allow us to simulate the different credit offers that our partner banks can offer you.

Allow us to check whether your profile does not allow you to access these offers,

– Present our partner banks and insurance companies with a complete loan application file in order to maximize your chances of obtaining a mortgage

– putting you in touch with a bank adviser from one of our partners;

carrying out prospecting, communication and awareness-raising operations relating to our activities

Managing our relationships with our prospects and customers

– Allow us to easily keep track of your project and thus improve our customer service

– Improve the quality of the user experience delivered by our advisers, optimize the training of our advisers

llers

the fight against money laundering and the financing of terrorism, with the establishment of contract monitoring that may lead to measures provided for by the Monetary and Financial Code;

the development of statistics and actuarial studies;

Ensuring the security of our websites and your data

We also inform you that we make anonymous statistics on the use of the Connectcredit site, which do not allow us to identify you.

For all of this Processing, Connectcredit is the entity that determines the means and purposes and thus acts as Data Controller within the meaning of the regulations applicable to Personal Data and in particular EU Regulation 2016/679 relating to the protection of natural persons with regard to the Processing of Personal Data and the free movement of such Data (hereinafter “GDPR”).

In this Policy, “Connectcredit”, “we”, “us” and “our” refer to:

Connectcredit, a simplified joint-stock company whose head office is located at 20 rue d’Isly-Immeuble 3 Soleil- 35000 Rennes, registered in the Rennes Trade and Companies Register under number 851 729 400, Broker in banking and payment services and insurance broker, Intermediate Agent in banking operations, payment services and insurance (MIOBSP and MIA), registered with ORIAS under number 190008631 and represented by Mr. Régis ANSEL in his capacity as Chairman of Connectcredit.


ARTICLE 5. WHAT ARE THE LEGAL BASES FOR THE COLLECTION AND THE PROCESSING PERFORMED?

With regard to the above objectives, the Processing carried out by Connectcredit is based on:

▪ Your Consent

to respond to your requests and provide you with information relating to our services:

Connectcredit is required to collect identification and contact data relating to prospects when they wish to contact the company and complete the forms on the Site for a callback or appointment request,

Following their explicit consent, Connectcredit may also use this personal data to send communications and information by email relating to Connectcredit, its services and its offers.

You can at any time and without justification, ask to no longer receive our newsletter and, more generally, our communications relating to our services, news and events by using the hypertext link provided for this purpose in each email that we send you. .

In the context of these activities, we collect and process your data on the basis of your Consent which you manifest by accepting by submitting the contact request.

in the event that insurance guaranteeing the repayment of the loan must be taken out

The collection of personal data relating to your health is necessary for the constitution and study of your file by the insurer, who alone remains authorized to do so and we never access this information. Connectcredit does not collect health data. We are likely to ask you a few questions to advise you and help you take better account of your personal situation. In any case, your answers to these questions are not recorded or stored. The pursuit of the legitimate interests of Connectcredit in order to promote its services and manage your relations with us (for our legitimate economic and commercial interest or to improve our product and our services)


Connectcredit collects and uses data:

the identification and contact data that you have sent to it directly or indirectly (indirect collection) for:

the promotion of its services and to carry out commercial prospecting operations by telephone in compliance with the legislation in force.

More generally, to contact you when necessary, to keep you informed of the progress of your project, for example to announce an offer obtained, to collect your opinion / your satisfaction on our services, to inform you of ‘a new feature or application available to you etc…


interaction data with its services (date and type of contact)

This Processing is based on the legitimate interest in keeping track of your project and thus improving its customer service.


Voice calls to our services:

They can also be recorded to improve the quality of the user experience delivered by our advisers, to optimize the training of our advisers. In this case you are notified and you can easily oppose the recording of the communication.

▪ Compliance with a legal obligation of advice and vigilance to which Connectcredit is subject

and

as part of measures.

pre-contractual at the conclusion of a fundraising mandate.

When you make a request for information for our services, via the online form on the Site or directly by telephone from the Connectcredit sales department collects Information on your family, financial and professional situation (family situation, income, jobs and /or training, etc.).

This information allows us:

to simulate the different mortgage offers that our partner banks can offer you.

To study your situation and tell you whether or not your profile allows you to access these offers

If necessary to build your credit file

more detailed information on your family, professional and financial situation (employment, name of employer, place and date of birth, postal address, etc.)

proof of identity and financial and professional situation (photocopy of identity card, passport, proof of address, bank statement, tax notice).

Information relating to your health if you explicitly consent to answering our questions.

We do not ask you to complete any form which will remain imperative with the bank or insurance.

Your refusal to answer these questions limits us in the quality of the advice we could give you.

This allows us :

verify the accuracy and consistency of your declarations

and if applicable, if you authorize us to do so by signing a fundraising mandate,

to present our partner banks and insurers with a complete loan application file in order to maximize your chances of obtaining the requested loan at the best rate.


ARTICLE 6. HOW LONG DO WE KEEP YOUR PERSONAL DATA?

Personal data is processed and stored for as long as required for the purpose for which it was collected. We may be permitted to retain personal data for longer where we have your consent to a certain processing, as long as that consent is not withdrawn.

We remind you that your consent can be withdrawn at any time.

You can in particular at any time and without justification, ask to no longer receive our communications relating to our services, news and events by using the hypertext link provided for this purpose in each email that we send you.

The list below specifies, for each category of data that we collect and process, the data retention periods that apply except in the case of signature of a fundraising mandate.

1. Identification and contact information

The duration of the conversation

3 years from your last activity (request for contact, incoming call, click in an email) except withdrawal of consent for solicitations by email sms automated calls or opposition for those by telephone or post.

2. Information on your family, financial and professional situation (family situation, income, jobs and/or training, etc.)

The duration of the conversation

3 years from your last activity (contact request, incoming call, click in an email) unless consent is withdrawn.

3. Proof of identity and financial and professional situation (photocopy of identity card, passport, proof of address, bank statement, tax notice)

The duration of the conversation

At the latest until the refusal to sign a fundraising mandate or until the finding of the inadmissibility of your file.

4. information concerning health insurance guaranteeing the repayment of the loan must be taken out. We do not make you fill out any form but we are likely to ask you some questions to be able to advise you usefully. Your answers to these questions are neither recorded nor stored.

5. Data on interactions with our advisers (date and type of contact)

The duration of the conversation

3 years from your last activity (contact request, incoming call, click in an email) unless opposed.

5. Voice recordings of calls if applicable

The duration of the conversation

6 months from the collection unless opposed.

6. To manage your possible requests to exercise your rights regarding the protection of personal data:

We keep your data for a period of (5) years, with the exception of a copy of your identity document if applicable, which is kept for one (1) year if your request is to exercise a right of access or of rectification, and for 3 years in the event of exercise of your right of opposition or deletion.

You can at any time request the deletion of your personal data, in which case we will delete all your personal data except in special cases: we may be obliged to keep

r personal data longer whenever required for the performance of a legal obligation or on the order of an authority.

This particular case may arise if you sign a financing search mandate with Connectcredit.

In this case, for legal and legal reasons, we will keep your personal data for the duration of the mandate and then for a period of 5 years after signing the mandate.

For requests that have resulted in funding, the retention period of your personal data will extend to the life of the contract.

The deadlines may also be longer in the event of legal action. In this case, the data is kept until the end of the legal proceedings and then archived according to the applicable legal limitation periods.
When personal data is collected for several purposes, it is kept until the longest storage or archiving period has expired.

ARTICLE 7. WITH WHOM DO WE SHARE YOUR PERSONAL DATA?

Your personal data is exclusively intended for Connectcredit.

For each Processing, internal Recipients may be required to access and process the Data concerned, only authorized and authorized persons (depending on the different purposes specified above) have access to some of your personal data.

The Data may possibly be transmitted to external service providers chosen for their expertise and their reliability who act on our behalf and according to our instructions (Subcontractor including in particular IT, host of our servers, CRM tool, messaging services, visualization, etc). As data controller, we ensure that all our subcontractors comply with the rules of the GDPR.

We only allow these service providers to use your Personal Data as necessary to perform services on our behalf or to comply with legal requirements and we strive to ensure that your Personal Data is protected at all times. .

Connectcredit may also be required to communicate your Data to Third Parties when such communication is required by law, a regulatory provision or a judicial decision, or if this communication is necessary to ensure the protection and defense of our rights.

We do not share your information with any business partner without your consent. Your data may only be transmitted to Connectcredit’s business partners with your prior consent. Your Consent can be withdrawn at any time.

You can ask us for the updated list of our business partners at any time.

Finally, we will only be likely to send your file to some of our banking partners once your agreement has been obtained by signing a funding search mandate.

ARTICLE 8. WHAT ARE THE SECURITY AND CONFIDENTIALITY MEASURES TAKEN TO PROTECT YOUR DATA?

The security of your personal data being one of our priorities, we take appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of data. To this end, we have put in place physical, technical and organizational measures to guarantee the protection of your personal data, including in particular:

Internally:

· Implementation of firewalls and data encryption

· Access control: only authorized persons (due to their function) can have access to some of the personal data.

The appointment of a data protection officer, or Data Protection Officer (DPO), in charge of protecting your personal data.

· Raising awareness and training of our staff in the obligations incumbent upon them in terms of the protection of personal data.

Externally:

· During each contract that we establish with a subcontractor, we ensure that the subcontractor complies with the GDPR. As responsible for the processing of your personal data, we define upstream and clearly the type of processing they are authorized to do as well as the retention period of your data.

Place of storage of your data

The data is processed and stored at the headquarters of Connectcredit and some of it is hosted on external servers located in France, with our service provider whose contact details you can find below:

Scaleway: 8 rue de la ville l’évêque 75008 https://www.scaleway.com/fr/mentions-legales/

Sharing your data with third parties and transferring your data outside the European Union

Data Recipients may be from countries that are or are not part of the European Union (“EU”). In such a case and to the extent required by applicable laws, we will ensure that

r personal data longer whenever required for the performance of a legal obligation or on the order of an authority.

This particular case may arise if you sign a financing search mandate with Connectcredit.

In this case, for legal and legal reasons, we will keep your personal data for the duration of the mandate and then for a period of 5 years after signing the mandate.

For requests that have resulted in funding, the retention period of your personal data will extend to the life of the contract.

The deadlines may also be longer in the event of legal action. In this case, the data is kept until the end of the legal proceedings and then archived according to the applicable legal limitation periods.
When personal data is collected for several purposes, it is kept until the longest storage or archiving period has expired.

ARTICLE 7. WITH WHOM DO WE SHARE YOUR PERSONAL DATA?

Your personal data is exclusively intended for Connectcredit.

For each Processing, internal Recipients may be required to access and process the Data concerned, only authorized and authorized persons (depending on the different purposes specified above) have access to some of your personal data.

The Data may possibly be transmitted to external service providers chosen for their expertise and their reliability who act on our behalf and according to our instructions (Subcontractor including in particular IT, host of our servers, CRM tool, messaging services, visualization, etc). As data controller, we ensure that all our subcontractors comply with the rules of the GDPR.

We only allow these service providers to use your Personal Data as necessary to perform services on our behalf or to comply with legal requirements and we strive to ensure that your Personal Data is protected at all times. .

Connectcredit may also be required to communicate your Data to Third Parties when such communication is required by law, a regulatory provision or a judicial decision, or if this communication is necessary to ensure the protection and defense of our rights.

We do not share your information with any business partner without your consent. Your data may only be transmitted to Connectcredit’s business partners with your prior consent. Your Consent can be withdrawn at any time.

You can ask us for the updated list of our business partners at any time.

Finally, we will only be likely to send your file to some of our banking partners once your agreement has been obtained by signing a funding search mandate.

ARTICLE 8. WHAT ARE THE SECURITY AND CONFIDENTIALITY MEASURES TAKEN TO PROTECT YOUR DATA?

The security of your personal data being one of our priorities, we take appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of data. To this end, we have put in place physical, technical and organizational measures to guarantee the protection of your personal data, including in particular:

Internally:

· Implementation of firewalls and data encryption

· Access control: only authorized persons (due to their function) can have access to some of the personal data.

The appointment of a data protection officer, or Data Protection Officer (DPO), in charge of protecting your personal data.

· Raising awareness and training of our staff in the obligations incumbent upon them in terms of the protection of personal data.

Externally:

· During each contract that we establish with a subcontractor, we ensure that the subcontractor complies with the GDPR. As responsible for the processing of your personal data, we define upstream and clearly the type of processing they are authorized to do as well as the retention period of your data.

Place of storage of your data

The data is processed and stored at the headquarters of Connectcredit and some of it is hosted on external servers located in France, with our service provider whose contact details you can find below:

Scaleway: 8 rue de la ville l’évêque 75008 https://www.scaleway.com/fr/mentions-legales/

Sharing your data with third parties and transferring your data outside the European Union

Data Recipients may be from countries that are or are not part of the European Union (“EU”). In such a case and to the extent required by applicable laws, we will ensure that.

in justice

in the event of exercise of your right of opposition during the verification period on the point of knowing whether the legitimate reasons that we pursue prevail over yours

when the processing of your personal data is subject to a limitation, the Data Controller may, with the exception of their retention, process the personal data concerning you only with your consent, or for the purposes of establishing , the exercise or defense of legal rights, or the protection of the rights of another natural or legal person, or for important reasons of public interest of the Union or of a Member State

The right to object to processing

You have the right to object, for legitimate reasons, relating to your particular situation, to the processing of your personal data, unless we demonstrate that this processing is justified by compelling legitimate reasons, which prevail over yours.

In particular, you have the right to oppose, free of charge, that the data concerning you are used for prospecting purposes, in particular commercial by us or by a third party.

Where Personal Data is processed for the public interest, in the exercise of an official authority vested in the Owner, or for the purposes of the legitimate interests pursued by the Owner, Users may object to such processing by providing a related ground. to their particular situation to justify this opposition.

Users should however be aware that if their Personal Data is processed for direct marketing purposes, they may object to this processing at any time without any justification. To find out if the Owner processes Personal Data for direct marketing purposes (promotion of its services by telephone or mail), Users can refer to the relevant sections of this document.

The right to data portability

You have the right to obtain the personal data you have provided to us in a structured, commonly used and machine-readable format, so that you can reuse it for your own purposes or by asking us to transmit it for you to another data controller. treatment.

The right to withdraw consent

When the processing is based on your consent, you have the right to withdraw it at any time, without affecting the lawfulness of the processing based on the consent given before its withdrawal. To do this, simply contact us at the address given below.

You can also, at any time and without justification, ask to no longer receive our newsletter by using the hypertext link provided for this purpose in each email that we send you.

The right to oppose telephone canvassing

We are likely to contact you again by telephone to finalize the subscription of a contract that you would have initiated with us, by telephone or directly on our website, or to offer you a service similar to that or those to which you would have already subscribed with us (provided that you have given us your telephone number).

You have the right to object to your personal data being the subject of telephone solicitation.

Since June 1, 2016, the government has set up a list of opposition to cold calling, free for consumers and accessible via the address www.bloctel.gouv.fr

The right to determine instructions regarding the processing of your data after your death

You have the right to determine instructions relating to the storage, erasure and communication of your personal data after your death. In order to define these guidelines, we invite you to contact our Data Protection Officer at the above address.

The right to lodge a complaint with the competent supervisory authority

You also have the right to contact the Commission Nationale de l’Informatique et des Libertés (CNIL), 3 Place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07, for any complaint relating to the way Connectcredit collects and processes your data.

Rights processing and notification times

We undertake to respond to any request as soon as possible, and in any event within one month of receipt of the complete request. However, this period may be extended by two months given the complexity and the number of requests.

How to exercise these rights?
You can exercise your rights

by e-mail to the address dpo@connectcredit.fr

or by post, indicating to the attention of the DPO, at the following address:

Connectcredit

C/O DPO

63 STREET OF THE BOETIE

75008 Paris

In case of difficulties, you can contact the Data Controller by e-mail: or by post to the address mentioned above

.

Your requests are processed free of charge and will be studied as soon as possible.


ARTICLE 11. WHAT IS OUR POLICY ON THE USE OF COOKIES?
What is a cookie ?

Cookies are small text files that are automatically placed on your computer, smartphone or tablet when you visit websites. They are stored by your browser. The vast majority of sites use these cookies to collect basic information relating to your browsing, to recognize you from one browsing to another, and thus to optimize and personalize their operation, their ergonomics and in this way to offer you the best browsing experience. as successful as possible.

Why do we use cookies?

Like the vast majority of sites, we use cookies to offer you a faster, more ergonomic and personalized experience on our site and our application.

What data may be collected?

Connection and browsing data on our Site: we collect, through cookies (refer to the Cookies article below), information on how you interact with our content / features that help us to optimize the user experience and the offer we offer to our visitors.

To find out more, you can consult our policy on the use of cookies which is accessible on our website www.connectcredit.fr

and attached hereto.

SECTION 10. CHANGES TO THIS POLICY

We may make changes to this privacy policy at any time, as necessary.

We will ensure that you are informed of these modifications by a special notice on our site and it is strongly recommended that you consult this page frequently, referring to the date of the last modification indicated at the bottom.

We may also, when this change is more significant, report it with a personalized warning, in particular insofar as this is technically and legally possible – by sending you a notification via the contact details available.

If the changes influence the processing activities carried out on the basis of your consent, we are obliged to obtain a new consent from you when necessary.

This Privacy Policy was last updated on October 14, 2020

APPENDIX 1: DEFINITIONS

Consent :

Any free, specific, informed and unequivocal manifestation of will by which the Data Subject accepts, by a declaration or by a clear positive act, that Personal Data concerning him or her be the subject of Processing.

Data Protection Officer (or “DPO”):

The person designated by Connectcredit in charge of the protection of Personal Data within Connectcredit and of Connectcredit’s compliance with the Applicable Legislation.

Recipient :

Natural or legal person, public authority, service or any other body that receives communication of Personal Data, whether or not it is a Third Party.

Personal data/Personal data/Data:

Any information relating to a Data Subject, in particular by reference to an identifier such as a name, an identification number, an identity card number, a salary, health records, bank account information, habits driving or consumption data, Location Data, an online identifier, etc. The term “Personal Data” includes Sensitive Personal Data.

Sensitive Personal Data/Sensitive Personal Data: means Personal Data revealing or based on:

racial or ethnic origin, political, religious or philosophical opinions

membership of a trade union

physical or mental health

sexual orientation or sex life

genetic and biometric data

· Data relating to criminal convictions, offenses or related security measures.

Applicable legislation:

Set of regulations relating to the protection of personal data and applicable to the processing of personal data carried out by Connectcredit, namely European Regulation No. 2016/679 relating to the protection of personal data (RGPD), the amended Data Protection Act , and any other related regulations applicable to Connectcredit.

Person concerned/Person:

Natural person to whom the Personal Data relates and who can be identified or identifiable, directly or indirectly, through such Personal Data. This includes former and current customers, prospects, and collaborators.


Data controller:

Natural or legal person who, indiv

individually or jointly decide what Personal Data is collected, why and how it is collected and processed.

GDPR:

Abbreviation of European Regulation No. 2016/679 of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data.

Subcontracting :

Any natural or legal person, public authority, service or other body which processes Personal Data on behalf of the Data Controller and according to his instructions (for example service providers or suppliers).

Third :

Any natural or legal person, public authority, agency or any other body other than the Data Subject, the Controller, the Processor and the persons who, under the direct Authority of the Controller or the Processor, are authorized or authorized to process the Data.

Treatment :

Any operation or set of operations whether or not carried out using automated processes and applied to Personal Data such as collection, access, recording, copying, Transfer, preservation, storage, crossing , modification, structuring, provision, communication, recording, destruction, whether automatically, semi-automatically or otherwise. This list is not exhaustive.

Data transfer :

Any communication, any copy or movement of Data via a network, or any communication, any copy or movement of this Data from one medium to another, whatever this medium, of Personal Data to a Third country to the European Union or an international organization which are or are intended to be the subject of Processing after such Transfer.

APPENDIX 2: COOKIES POLICY


1. STATEMENT REGARDING THE USE OF COOKIES

When consulting our site: https://privacyperformance.com/ (hereinafter the “Site”) cookies are placed on your computer, tablet or any terminal used by you (hereinafter the “User”) . This allows us (hereinafter the “Publisher”) to analyze page traffic and improve our Site. Cookies are used according to their nature and for the purposes indicated below.

The User has the option of accepting or refusing cookies by using the mechanism integrated into the banner or the tools described below.

2. WHAT IS A COOKIE?

A cookie (hereinafter the “Cookie(s)”) is a text file placed on a terminal when visiting the Site or viewing an advertisement. The purpose of a Cookie is in particular to collect information relating to the User’s browsing on the Site and to send the User personalized services and content.

3. IDENTIFICATION OF COOKIES

There are different types of Cookies:

Third-party cookies and first-party cookies

A Cookie is said to be “proprietary” or “third party” depending on the domain from which it originates. Proprietary Cookies are those installed by the website that the User is consulting. Third-party Cookies are Cookies installed by a domain other than that of the website that the User is consulting. When a User visits a site and another entity installs a Cookie through this site, this Cookie is a third-party Cookie.

Session cookies

These Cookies allow website operators to track the actions of a User during a browsing session. The browsing session begins as soon as the User opens the browser window and ends when he closes this window. Session cookies are temporary. Once the browser is closed, all session cookies are deleted.

Persistent cookies

These Cookies remain on the User’s device after the browser session is closed, for the duration provided for by each of these Cookies. They are activated each time the User consults the website that generated them.


4. WHAT TYPES OF COOKIES CAN THE PUBLISHER USE AND FOR WHAT PURPOSES?

Different types of Cookies are used on the Site, they have different purposes. Some are required to use the Site.

4.1 Strictly Necessary Technical Cookies

These Cookies are necessary for the operation of the Site. They allow the User to use the main features of the Site. Without these Cookies, the User cannot use the Site normally. These Cookies only require information from the User to be placed on the User’s terminal and do not allow any behavioral or identification tracking.

4.2. Audience measurement cookies

Audience measurement Cookies help to establish statistics of attendance and use of the various elements making up the Site (sections and content visited, routes). They allow to

the Publisher to improve the interest and ergonomics of the Site.

4.3 Preference cookies

These cookies are used to provide services or to remember your settings to improve your visit.

We do not use these cookies on the Connectcredit site.

4.4. Advertising Cookies

Advertising Cookies make it possible to determine which advertising to display according to the User’s navigation on the Site in order in particular to limit the number of displays, to measure the effectiveness of an advertising campaign, or to adapt the advertisements in according to the preferences of the User, if the User has previously accepted the possibility.

We do not use these cookies on the Connectcredit site. We do not use cookies for commercial purposes such as retargeting.

4.5. Social network sharing cookies

The Publisher offers Users features allowing them to share editorial or other content published on the Site through social networks. These Cookies also allow social networks to target their advertising offers. Social network cookies are managed by the publisher of the social network. The User is invited to read the Cookies management policy of the social networks on the sites concerned.

5. HOW CAN THE USER MANAGE COOKIES?

When connecting for the first time, the User is informed that the Publisher’s partners and any other identified third party may deposit Cookies via the Site. Only the issuer of a Cookie is likely to read the information contained therein and the Publisher has no access to the Cookies that third parties may use. The issuance and use of Cookies by third parties are subject to the privacy policies of these third parties in addition to the provisions of this Policy. Consequently, the User is invited to visit the websites of these third parties for more information on the Cookies they store and how the User can manage them.

Management by the User of the deposit of Cookies

The User can manage the deposit of Cookies as follows:

The deposit of strictly necessary technical Cookies is activated by default and cannot be deactivated by the User, these Cookies being essential for the operation of the Site;

The User can activate or deactivate the installation of Cookies subject to the collection of his consent (Cookies for audience measurement, advertising cookies, etc.) via the information banner available on first connection, but with the possibility of make changes when he wishes via the clickable symbol available on each page of the Site. Any subsequent deactivation entails the refusal by the User of the deposit of the Cookies in question;

If the User activates the recording of Cookies in his terminal, the Cookies integrated into the pages and content he has consulted may be temporarily stored in a dedicated space on his terminal. They will be readable there only by their issuer.

The consent given by the User is only valid for a period of thirteen (13) months from the first deposit in the equipment of the User’s terminal, following the expression of the latter’s consent.

If the User deactivates the registration of Cookies in his terminal or his browser, or if he deletes those registered there, the User is informed that his navigation and his experience on the Site could be different from other Users who have activated Cookies (non-personalized content).

This could also be the case when the Publisher or one of our service providers could not recognize, for technical compatibility purposes, the type of browser used by the terminal, the language and display settings or the country from which the terminal appears to be connected to the Internet.

If necessary, the Publisher declines all responsibility for the consequences linked to the degraded functioning of the Site resulting from the refusal of Cookies by the User.

To know more

The User can go to the CNIL website to collect information about cookies via the following page in particular: https://www.cnil.fr/fr/site-web-cookies-et-autres-traceurs .

.


CONTACT US

Connectcredit

C/O DPO

63 RUE DE LA BOÉTIE – 75008 Paris

dpo@connectcredit.fr

 

Contrôler vos préférences publicitaires