Privacy Policy

This document governs the conditions for the protection of Users’ personal data that may be collected in the course of their browsing on the Website.
This policy complements the legal notice and the General Terms of Use.

DATA COLLECTED

The personal data collected as part of the Agency’s activity is as follows:

  • Identification data (last name, first name, email address, phone number, company, position, where applicable a copy of an identity card, notably in the context of exercising a right of access, rectification or objection, or to comply with a legal obligation);

  • Connection data and Cookies (IP addresses, connection logs), as detailed on the page https://www.creditdugenevois.fr/en/cookies-en/

The collection and processing of this data serve the following purposes:

  • The proper functioning and continuous improvement of the Website, its services, and its features;

  • The management of contact requests, whatever their cause and notably, for commercial purposes, in the context of recruitment, as well as the management of requests relating to rights of access, rectification and objection, erasure, restriction, and portability of personal data;

  • The preparation of commercial statistics;

  • The sending of newsletters.

In any event, and for each defined purpose, the Agency will use all means at its disposal to ensure the security and confidentiality of the personal data entrusted to it, in compliance with the laws and regulations in force.

Accordingly, except for the cases mentioned above, no processing of the personal data entrusted to the Agency is carried out. The Agency undertakes not to sell the collected data to third parties, subject to the provisions below regarding the transmission of data to third parties via plugins.

DATA COLLECTION METHOD

As indicated in the GTU, the Agency collects data notably through the following means:

By choosing one of these contact methods, the User agrees that their data will be collected in accordance with this Privacy Policy – Data Protection.

ACCESS TO COLLECTED DATA

Access to personal data is strictly limited to the Agency’s staff and, where applicable, to its subcontractors or partners.

The data is stored on a hosting server located in France.

In any event, the Agency undertakes to implement all technical and organizational measures to ensure the security of the processing of personal data and the confidentiality of such data, in particular in accordance with the French Data Protection Act and the European General Data Protection Regulation (GDPR).

The Website may use social plugins provided and operated by third-party agencies, such as the Facebook, LinkedIn, and WhatsApp buttons. Consequently, the User may transmit to third parties the information they view in a section of the Website.

If the User is not logged into their account with the third party, the latter will not be able to identify them. If the User is logged into their account with the third party, then the latter may link information or actions relating to the User’s interactions with the Website to the account the User holds with that third party. The third party then records the data collected about the User in order to create personal user profiles, for purposes of targeted advertising, market research, or to inform other third parties about the User’s activities on the Website.

It is the User’s responsibility to consult the privacy policies of the relevant third parties to learn more about their data practices, VALTO (CREDIT DU GENEVOIS) having no control in this respect and therefore, in view of the above, being released from any liability in this regard.

DATA RETENTION PERIOD

Personal data is retained only for the period strictly necessary for the purposes for which it was collected, in compliance with the regulations in force.

Unless otherwise specified herein, such data is retained for THREE (3) years from the date of collection for Website Users, and from the end of the business relationship for clients.

The data is then, as applicable, archived or deleted.

Personal data whose retention is mandatory (such as data appearing on accounting documents, etc.) will be retained in archived form for the mandatory period required under the applicable legal or regulatory framework.

During the retention period, VALTO (CREDIT DU GENEVOIS) implements all state-of-the-art measures to ensure the confidentiality, integrity, and security of personal data, in order to prevent damage, deletion, or access by unauthorized third parties.

DATA CONTROLLER

The controller of the processing of personal data is:

VALTO (CREDIT DU GENEVOIS) Agency
44 Rue des Tournelles, 74100 Annemasse – 74100 ANNEMASSE
Registered with the Trade and Companies Register of THONON-LES-BAINS under number 991 432 501

For any information, the User may contact the data protection officer:

USER RIGHTS

The User has the following rights with regard to the processing of their personal data:

  • Right of access, rectification, and updating;

  • Right to block or erase data when it is inaccurate, incomplete, ambiguous, outdated, or when its collection, use, disclosure, or retention is prohibited;

  • Right to withdraw consent at any time;

  • Right to restriction of the processing of their data;

  • Right to object to the processing of their data;

  • Right to data portability;

  • Right to lodge a complaint with the CNIL;

  • Right to determine the fate of their data after death.

However, these rights may not prevent the retention of certain data that may have been collected to comply with a legal obligation or if such data is necessary for the performance of a contract to which the User is a party.

To exercise their rights, the User may send a letter to VALTO (CREDIT DU GENEVOIS) or an email to contact@creditdugenevois.com.

In order for the data controller to process the request, the User may be required to provide certain information such as their last name and first name, email address, and, where applicable, their account number, personal space, or subscriber number.

For any complaint regarding the collection, processing, and use of their personal data, the User is also entitled to contact the CNIL (French Data Protection Authority).

CHANGES AND UPDATES

The Company’s data protection policy applicable and enforceable against the User is the one published on the Website during browsing.

This policy may be subject to change at any time; therefore, the User is invited to refer to it during each visit in order to be informed of any changes made.