Legal Notices

**LEGAL NOTICE**

The website www.le-chatelard-1802.com (hereinafter "Site") is published by the company **LE SECRET NATUREL SAS**, with a share capital of **€121,900**, whose registered office is located at **665 rue Théodore Aubanel, 84500 BOLLENE France**, registered with the AVIGNON Trade and Companies Register (RCS) under number **44106875600010** (hereinafter "LE CHATELARD 1802").

LE CHATELARD 1802 can be contacted as follows:

• **Tel:** +33 (0)4 75 28 69 50
• **Email:** web1802@le-chatelard-1802.com
• **Website:** www.le-chatelard-1802.com
• **RCS Registration:** 44106875600010

PUBLICATION DIRECTOR

The Publication Director of the Site is **Antoine Gros, Managing Director** of the company LC 1802.

HOSTING

The service provider ensuring the hosting of the site is the company **OVH**, a simplified joint stock company, whose registered office is located at 2 RUE KELLERMANN, 59100 ROUBAIX, and registered with the Lille Métropole RCS under number 424 761 419 00045.

https://www.ovhcloud.com/fr/contact/

HYPERTEXT LINK

The links available on the Site may refer to third-party sites not published by LE CHATELARD 1802.

If the user uses all or part of these links, they will leave the Site and will then agree to use the concerned third-party sites in accordance with the conditions governing them.

The user acknowledges that LE CHATELARD 1802 does not control and does not contribute in any way to the development of the terms of use and/or the content appearing within these third-party sites or applications.

INTELLECTUAL PROPERTY

The visual elements, representations of people, places, or any other content presented on the Site are the property of LE CHATELARD 1802 or displayed with the approval of their respective rights holders.

It is important to emphasize that all content you find on the Site is protected by **intellectual property rights**.

This content is made available to you for **personal and non-commercial viewing and use** during your browsing on the Site. Any other form of exploitation of this content, by yourself or a person you have authorized, is prohibited.

Any inappropriate use of this content may lead to a violation of intellectual property rights, particularly copyrights, trademark rights, or unauthorized use of personal data. Thus, you are not authorized to use the trademarks or any other distinctive sign present on the Site without our prior written authorization, or that of the rights holders.

APPLICABLE LAW

These terms and browsing on the Site are governed and interpreted in accordance with **French laws**.

You agree to submit to the exclusive jurisdiction of the French courts, subject to applicable law.

**PRIVACY POLICY – LE CHATELARD 1802**

This privacy policy applies to the website of the company **LE SECRET NATUREL SAS** (hereinafter "LE CHATELARD 1802") for its Le Chatelard 1802 brand which is accessible at the following address: www.le-chatelard-1802.com (hereinafter "Site").

The purpose of this privacy policy (hereinafter "Privacy Policy") is to set out to the Site users:

• How their **personal data** is collected and processed. All data likely to identify a user must be considered as personal data. This includes, in particular, the first and last name, age, postal address, email address, the user's location, or their IP address;
• What the rights of the users (hereinafter "**User(s)**" or "you") are regarding this data;
• Who is responsible for the processing of collected and processed personal data;
• To whom this data is transmitted;
• The Site's Policy regarding "**Cookies**" files.

You will find below information on the type of personal data we process, why we do it, what this data is used for, how we may share it, and what your rights are as a data subject.

Respect for your privacy and your personal data is a priority for **LE CHATELARD 1802**, which undertakes to process your data in accordance with the Data Protection Act no. 78-17 of January 6, 1978, as amended, the General Data Protection Regulation (EU) 2016/679 of April 27, 2016 (hereinafter "**GDPR**") and the related standards and recommendations issued by the French National Commission for Data Protection (Commission Nationale de l'Informatique et des Libertés - hereinafter "**CNIL**") or the European Data Protection Board or other competent authorities whose decisions, guidelines or standards are applicable on the French territory (hereinafter "**Applicable Regulation**").

If you have any questions about our data processing practices summarized in this Policy, if you encounter a privacy or data use issue, or if you wish to exercise any of your rights, contact us by specifying your identity and the precise subject of your request via one of the following means:

• By email to the address: web1802@le-chatelard-1802.com
• By postal mail: Le Chatelard 1802 – Service E-commerce, 77 Chemin de la Galane, Quartier Le Serre - 26170 SAINT AUBAN SUR L'OUVEZE

Definition of the terms of the Privacy Policy:

• "**Personal Data**": Personal data is all information that is directly or indirectly related to a natural person ("Data Subject"), i.e., any type of information that can be associated with a particular living individual. This may include, for example, names, email addresses, or telephone numbers if they can be associated with a specific living individual, but also, for example, a photograph on which the person can be recognized. No person under the age of 18 is concerned by purchases on the Site. We therefore delete all information from such minors.
• "**Processing**": Processing includes all types of actions that can be undertaken with Personal Data. The definition is very broad and includes all forms of data processing, from collection, recording, retention/storage, and adaptation to the use, sharing, and even deletion of personal data.
• "**Data Controller**": The data controller is the legal entity (company, municipality, etc.) or natural person who determines the purposes and means of processing, i.e., the objective and how to achieve it. In practice and generally, this is the legal entity embodied by its legal representative.

Legal basis for processing

We process your data on different legal bases, depending on their purpose:

• **Order and delivery management:** the processing is necessary for the performance of the contract you enter into with us.
• **Customer service:** we process your data based on our legitimate interest in providing you with effective assistance.
• **Sending email marketing:** we ask for your consent before sending any promotional communication.
• **Analysis of site performance (analytical cookies):** this processing is carried out with your consent, collected via our cookie banner.
• **Site security and fraud prevention:** the processing is based on our legitimate interest in ensuring the security of our site and your data.
• **Invoice retention:** we have a legal obligation to retain this data for **ten (10) years** (article L.123-22 of the Commercial Code).

GENERAL PRINCIPLES FOR DATA COLLECTION AND PROCESSING

In accordance with the provisions of article 5 of European Regulation 2016/679, the collection and processing of the Site Users' data comply with the following principles:

• **Lawfulness, fairness, and transparency:** Personal Data can only be collected and processed with the consent of the User who owns it. Each time Personal Data is collected, the User will be informed that their Personal Data is being collected, and for what reasons their Personal Data is being collected;
• **Limited purposes:** the collection and processing of data are carried out to meet one or more determined objectives;
• **Minimization of the collection and processing of Personal Data:** only the Personal Data necessary for the proper execution of the objectives pursued by the Site are collected;
• **Limited retention of Personal Data over time:** Personal Data is retained for a limited period, of which the user is informed. When this information cannot be communicated, the user is informed of the criteria used to determine the retention period;
• **Integrity and confidentiality of collected and processed Personal Data:** the controller of the Personal Data undertakes to guarantee the integrity and confidentiality of the collected Personal Data.

In order to be lawful, and in accordance with the requirements of article 6 of European Regulation 2016/679, the collection and processing of Personal Data can only take place if they respect at least one of the conditions listed below:

• The user has expressly consented to the processing;
• The processing is necessary for the proper performance of a contract;
• The processing meets a legal obligation;
• The processing and collection of Personal Data are necessary for the purposes of the legitimate and private interests pursued by the controller or by a third party.

WHAT PERSONAL DATA DO WE PROCESS, FOR WHAT PURPOSES, AND ON WHAT LEGAL BASES?

We process the personal data described below for the purposes described below and in order to perform our contract:

• **Use of the Site.**

Based on a contract that binds us or possibly in application of a legitimate interest, you may transmit Personal Data to us when you connect to the Site or when you create an account on the Site.

The relevant personal data that you must indicate are the IP address, your first and last name, your identifiers, your postal address, your telephone number or your email address, your product order basket and information about you relating to the products (size), your delivery and billing address, or any information you have voluntarily transmitted.

During the use of the Site, you may also proceed with product purchases and thus be led to transmit your bank details to us.

We will process personal data on the basis of our legitimate interests:

• **Customer service.** If you request customer service from us via our support channels, we will process your personal data in order to assist you with the subject concerned (i.e., your name, email address and other contact details, our correspondence with you, technical information on the devices and operating systems used).
• **Questions and complaints.** If you have contacted us with questions or complaints regarding our services (not based on an agreement with you), you may have provided us with personal data such as your name, address, email address, and phone number. We use this data to respond to your questions and investigate issues related to our Services.
• **You contact us on your own initiative.** If you choose to contact us following our general invitation or on your own initiative via one of our general email addresses, you provide us with Personal Data that we use to respond and evaluate the content of your email or if you apply for a job with us.
• **If we receive an application,** we may process, in particular, your data such as your last name, first name, age, gender, professional experience, postal address, telephone number, email address, or your CV.
• **If it is necessary to protect our rights or the rights of third parties,** as we have a legitimate interest in establishing, exercising, and defending legal claims. This may be the case in particular in order to promote the security, integrity, and safety of our Services in order (i) to verify accounts and activity, (ii) locate breaches of our General Terms of Service or applicable local regulations, (iii) investigate suspicious activities, (iv) detect illegal behavior, or (v) maintain the integrity of our services.
• **Collection of your reviews:** If you agree to leave a review on one of our products, you agree that we use your first name, last name, the comment, and the associated product in order to highlight it on the Site.
• **Newsletters.** Once you wish to follow one of our newsletters, you consent to provide us with your email address.
• **If we sell or otherwise transfer shares of our company and/or our assets.**

Legal requirements and claims and public interest:

We may be required to process your Personal Data in order to meet legal requirements (for example, record-keeping requirements or as part of our response to a request from you to exercise your individual rights) and by order of courts or public authorities (for example, for tax reasons).

We may also be required by law or compelled by public interest to process Personal Data relating to product issues. We may also process your Personal Data, such as information on your bank account or your identity, in order to determine, enforce, or defend legal claims.

In addition, we may process your Personal Data based on your consent:

In this case, we will obtain your consent in advance for a specific purpose and will ensure that it is provided voluntarily, specifically, knowingly, expressly, and unambiguously. You have the right to withdraw your given consent at any time; you can contact our service at the contact address or refer to the contact details below.

Note that the withdrawal of consent will not apply retroactively to processing that has already been implemented.

• **Cookies and similar technologies.** If you visit the Site and accept our cookies, we may collect Personal Data, for example:
  • In the form of IP address information, user-generated data from cookies (e.g., clicks, page viewed, page visits, time spent on the page, products displayed and clicked, orders, how you access and leave the Site, etc.), geographical location (country only), technical data (e.g., device type, browser settings, time zone, operating system, platform).

However, with regard to strictly necessary cookies, our processing is necessary for our legitimate interest in being able to provide you with a functional Site when you visit and use the services provided on the Site.

WHO ARE THE RECIPIENTS OF THE PERSONAL DATA?

Only the parties who need to process the Personal Data for the purposes mentioned above will have access to your Personal Data.

We may also work with partners in many countries, both inside and outside the EEA, and may therefore also need to share Personal Data, for example with service providers and legal advisors who are not based in the EEA.

This means that your Personal Data may be transferred outside the EEA. Where possible, these transfers will be based on European Commission decisions regarding adequate levels of security and, otherwise, mainly on the performance of an agreement concluded between us. In other cases, any transfer of your Personal Data to third countries will depend on adequate safeguards such as standard contractual clauses. In exceptional cases, we may also carry out such transfers on the basis of your explicit consent, important reasons of public interest, the handling of legal claims, or in order to protect your vital interests or those of another person.

**LE CHATELARD 1802** concludes data processing agreements with third parties who access or process Personal Data on our behalf, whether through their services or our collaboration. We therefore ensure that the third parties we work with process the data in the same lawful and secure manner as we do.

More specifically, Personal Data is shared with the following categories of service providers:

• Authorized personnel from the marketing, administrative, legal, compliance, financial, and IT departments of the Data Controller;
• Persons in charge of internal and external control missions;
• Persons in charge of logistics;
• External providers, particularly for the provision of cloud services.

We also share your Personal Data with other data controllers.

These Data Controllers may be authorities (Police, tax authorities, or other authorities) with whom we are required to share data in accordance with the law or following presumed criminal activity, payment providers and banks to facilitate transactions, external advisors (lawyers and auditors) and courts to protect our rights, companies that purchase all or part of our operations/assets, and transport companies to manage and deliver your order.

When your Personal Data is shared with other Data Controllers, they will be responsible for your Personal Data, and we refer to them for more information on how they process your Personal Data.

In no case does **LE CHATELARD 1802** sell or rent your Personal Data to third parties for their own activities.

Data Recipients

We share some of your personal data with trusted third parties, only when this is necessary for the proper performance of our services or for legal purposes:

• **Our technical providers:** hosts, cloud service providers, and companies ensuring the security and maintenance of our site (e.g., OVH).
• **Our payment providers:** to process your payments securely (e.g., PayPal, Stripe).
• **Our carriers:** to ensure the delivery of your orders (e.g., La Poste, DHL).
• **Our marketing and advertising partners:** if you have given your consent, we use tools such as Google Ads, Meta (Facebook, Instagram), and Microsoft Ads to personalize our campaigns.
• **Our analysis tools:** we use services such as Google Analytics and Hotjar to understand and improve the user experience.
• **Legal authorities:** in case of a legal obligation, we may be required to share your data with control or judicial bodies.

Data transfer outside the European Union

In certain cases, we may be required to transfer your personal data to providers located outside the European Economic Area (EEA), particularly to the United States.

These transfers mainly concern:

• Google (Google Ads, Google Analytics), Meta (Facebook, Instagram), and Microsoft Ads, for advertising and analytical campaigns.
• Our cloud providers and hosting solutions, which may have servers outside the EU.
• Our customer service, if certain requests are processed by teams outside Europe.

These transfers are secured by:

• The application of **Standard Contractual Clauses (SCCs)** of the European Commission, which guarantee a level of protection compliant with GDPR requirements.
• Strict confidentiality agreements with our subcontractors.
• Regular evaluation of our providers' practices to ensure the protection of your data.

For more information on these safeguards, you can consult our partners and their data protection policies:

• Google Ads and Google Analytics
• Meta (Facebook, Instagram)
• Microsoft Ads

HOW LONG IS PERSONAL DATA RETAINED?

We retain your Personal Data for the duration of the contract and delete it when the contract ends. However, the following exceptions apply:

• As soon as you delete certain Personal Data on your account, we may retain it for an additional period subject to our retention rights due to our legal obligations.
• If we are required by law to retain or disclose some of your Personal Data after the end of the contract, we will retain the data for as long and to the extent required by law (for example, up to **five years** from the end of the contractual relationship under the general statutory limitation period) or as instructed by a court or public authority.
• If it is necessary for the establishment, exercise, or defense of legal claims, we will retain the relevant Personal Data until it is no longer necessary for this purpose.

For the use of the Site, we will process your Personal Data for the contractual duration of our agreement (until your account is deleted by you or until it is deleted according to our inactive account management policy) and then during the general statutory limitation period. We will then delete your Personal Data, provided that no other exception described above applies.

• **Newsletter:** We will retain your Personal Data for as long as you express interest in our newsletters. You can stop receiving our news updates at any time by unsubscribing or choosing to no longer receive our subscriptions on your account or by clicking at the bottom of our emails. We will cease processing your data after **three (3) years** following our last contact.
• **Questions and complaints regarding services:** We will process Personal Data for **three (3) years** after receiving it, in order to perform statistical analysis of questions and complaints, investigate, monitor, control, and improve our customer service, pay compensation, and prevent fraudulent behavior (e.g., unfounded claims).
• **Collection of your reviews:** We retain your reviews for a period of **five (5) years** from their publication.
• **Site Visitors:** We will process your Personal Data for a maximum duration of **thirteen (13) months** after the collection of cookies on the Site, subject to your prior express consent.
• **Unsolicited job application:** If you have spontaneously applied for a job with us, we will retain your Personal Data for **six (6) months** from the date of application in order to contact you if a suitable position arises. If you applied for a particular position with us but did not get the job, we will delete your application documents as soon as we inform you that you did not get the position, unless otherwise agreed.

When we process Personal Data based on your consent, we will do so until the withdrawal of consent or for the duration necessary for the purpose of the processing of the Personal Data, whichever occurs first, within a limit of **three (3) years** after our last contact or the end of our contractual relationship if it occurs earlier.

Note that the retention periods above do not apply to the extent that **LE CHATELARD 1802** is required to retain your Personal Data (partially or totally) in accordance with applicable mandatory law (e.g., accounting legislation) or during the statutory limitation period related to any requirement from or applicable to you.

PERSONAL DATA CONTROLLER

The Data Controller undertakes to protect the collected Personal Data, not to transmit it to third parties without the user having been informed, and to respect the purposes for which this Personal Data was collected.

Furthermore, the Personal Data Controller undertakes to notify the user in case of rectification or deletion of Personal Data, unless this entails disproportionate formalities, costs, and steps for them.

In the event that the integrity, confidentiality, or security of the user's Personal Data is compromised, the data controller undertakes to inform the user by any means.

USER RIGHTS

Subject to the conditions of the Applicable Regulation, you have the following legal rights:

• **Right of access:** At any time, you can request access to your personal data. Upon request, we will provide you with a copy of your personal data in a commonly used electronic format.
• **Right to rectification:** You have the right to have incorrect personal data corrected and incomplete personal data completed.
• **Right to erasure:** In certain circumstances (including processing based on your consent), you can ask us to erase your personal data. Please note that this is not an unconditional right. Therefore, an attempt to exercise this right may not result in action on our part.
• **Right to object:** At any time, subject to the conditions provided by the GDPR, you can object to any processing of your personal data by us. We will then only process your personal data if it can be demonstrated that there are definitive legitimate reasons why the data must be processed, which override your interests, rights, and freedoms or if the processing takes place to establish, exercise, or defend legal claims. You always have the right to object to your personal data being used for direct marketing purposes, including profiling. This objection can be made at any time.
• **Right to withdraw your consent** to the processing of your data (when the processing of your data is based on your consent).
• **Right to restriction of processing:** In certain circumstances, you can request that we limit the processing of your personal data. Please note that this is not an unconditional right. Therefore, an attempt to exercise this right may not result in action on our part.
• **Right to data portability:** You have the right to obtain the Personal Data you have provided to us (or to have this Personal Data transferred directly to another controller, if technically possible) in a structured, commonly used, and machine-readable format, in cases where the processing of your Personal Data is based on consent or in order to perform an agreement with you.
• **Right to define the fate of your data after your death** and to designate the people to whom **LE CHATELARD 1802** will communicate your data, if you wish (article 85 of law no. 78-17 of January 6, 1978, as amended, relating to information technology, files, and freedoms).

If you have any questions or wish to exercise any of your rights, please contact **LE CHATELARD 1802** at the contact address specifying your identity and the precise subject of your request (proof of identity may be requested).

For the management of cookies and other tracking tools, **LE CHATELARD 1802** invites you to consult the article below "**USE OF COOKIES**".

**LE CHATELARD 1802** undertakes to respond to you as quickly as possible, and in any event within a period of one (1) month from receipt of your request. If necessary, this period may be extended by two (2) months, taking into account the complexity and number of requests addressed to **LE CHATELARD 1802**. In this case, you will be informed of this extension and the reasons for this delay.

If your request is submitted electronically, the information will also be provided electronically as far as possible, unless you expressly request otherwise.

If **LE CHATELARD 1802** is unable to respond to your request, you will be informed of the reasons for this inability.

You will always have the possibility of lodging a complaint with a supervisory authority and/or seeking legal remedy. In particular, if after contacting **LE CHATELARD 1802** and despite the efforts of **LE CHATELARD 1802**, you consider that your rights have not been respected, you can lodge a complaint with the competent supervisory authority. In France, this is the Commission Nationale Informatique et Libertés (hereinafter "**CNIL**"): https://www.cnil.fr/fr/plaintes.

CONDITIONS FOR AMENDING THE PRIVACY POLICY

This Privacy Policy can be consulted at any time at the address on the Site.

The Site publisher reserves the right to modify it in order to ensure its compliance with current law.

Consequently, the user is invited to regularly consult this Privacy Policy in order to be kept informed of the latest changes made to it.

USE OF COOKIES

What is a cookie?

A **cookie** is a small text file stored on your device (computer, tablet, smartphone) when you visit a website. It allows the collection of information about your browsing in order to improve your user experience and optimize the services offered.

**LE CHATELARD 1802** is fully aware of the importance of respecting your privacy and seriously implements personal data protection rules.

The main objective is to allow you to have a pleasant, safe online experience when using our Services and Site as defined in the General Terms of Use, Sale, and Services.

**LE CHATELARD 1802** is convinced that its success must be based on transparency and trust towards its Users.

1) How does LE CHATELARD 1802 use Cookies?

**LE CHATELARD 1802** uses cookies and other tracking tools for the purpose of offering a practical Service with numerous features.

Some are **essential** for the operation of our services.

Cookies, pixels, and tags (collectively "**Cookies**") save you the inconvenience of repeatedly entering Personal Data, facilitate the transfer of specific content and navigation on our web pages, help us identify particularly popular sections of our Services, and record preferences such as language settings.

Among other things, they allow us to adapt the content of the Services to your needs.

Cookies are text files that store a visitor's information so that it can be reused each time they visit our Services.

Cookies are stored on the hard drive of your computer and/or on your mobile device.

2) What Cookies are used on the Site?

By using the Site, you consent to the use of Cookies placed by our Site.

The Site uses Cookies for the following purposes:

• **Site Usage:** to help us recognize your browser as that of a previous visitor and to record the preferences you set during your previous visit to the Site. For example, we can store your login information so that you do not have to log in each time you visit the Site;
• **Social Networks:** The purpose of these Cookies is to make the Site more user-friendly and interactive, by allowing you to interact with social networks. They are useful for checking if you are connected to third-party services (Facebook, Twitter, Google, etc.);
• **Targeting:** to allow us to target (emailing, database enrichment) the internet user browsing our Site afterwards or in real-time;
• **Audience Measurement:** to monitor statistical Personal Data of Site traffic (i.e., the use made of the Site by Users and to improve the Site's services) and to help us measure and study the effectiveness of our online interactive content, its features, advertisements, and other communications.

What types of cookies do we use?

Cookie Type	Purpose	Legal Basis	Retention Period
Necessary Cookies	Ensure the proper functioning of the site (e.g., shopping cart management, secure login)	Legitimate Interest	6 months
Analytical Cookies	Measure site audience and performance (e.g., Google Analytics, Hotjar)	Consent	13 months
Personalization Cookies	Improve your experience by displaying content adapted to your preferences	Consent	6 months
Advertising Cookies	Offer targeted advertisements based on your browsing (e.g., Google Ads, Facebook Pixel)	Consent	13 months

Note: Cookies strictly necessary for the operation of the site do not require your consent. All other cookies are subject to your prior agreement via our consent banner.

3) How is my consent collected?

During your first visit to our Site, you are offered the possibility of accepting the use of certain Cookies, thanks to the display of a dedicated informational banner. In case of express acceptance or continued browsing on our Site, you consent to the use of Cookies on your device.

We inform you that, in accordance with the regulations, Cookies whose purpose is to enable or facilitate communication or necessary for the provision of a service you have requested are not subject to your consent.

4) How to manage the use of Cookies?

If you do not wish for Cookies to be used and/or placed on your device through this Site, you have the option to manage the placement of Cookies through your browser.

Browser settings:

While most browsers are set by default to accept the installation of Cookies, you have the option, if you wish, to choose to accept all Cookies, systematically reject them, or even choose which ones you accept based on their issuer.

You can also regularly delete Cookies from your device via your browser.

Remember, however, to configure all the browsers on your different devices (tablets, smartphones, computers, etc.).

For the management of Cookies and your choices, the configuration of each browser is different. It is described in your browser's help menu, which will tell you how to modify your wishes regarding Cookies.

For example:

• for Internet Explorer™: http://windows.microsoft.com/fr-FR/windows-vista/Block-or-allow-cookies;
• for Safari™: https://support.apple.com/fr-fr/safari;
• for Firefox™: http://support.mozilla.org/fr/kb/Activer et désactiver les cookies;
• for Opera™: http://help.opera.com/Windows/10.20/fr/cookies.html
• for Chrome™: http://support.google.com/chrome/bin/answer.py?hl=fr&hlrm=en&answer=95647

For more information on the use, management, and deletion of "Cookies", for all types of browsers, we invite you to consult the following link: https://www.cnil.fr/fr/cookies-les-outils-pour-les-maitriser.

Third-party Cookies and data transfers outside the EU

Some cookies used on our site are placed by **third parties** (e.g., Google, Meta, Microsoft). These companies may transfer your data outside the European Union. We ensure that these transfers comply with legal safeguards, particularly through the application of **Standard Contractual Clauses (SCCs)** approved by the European Commission.

For more information on their policies, you can consult:

• Google Ads and Google Analytics
• Meta (Facebook, Instagram)
• Microsoft Ads

10. DATA SECURITY

We take appropriate **technical and organizational measures**, including security and integrity measures, to protect your Personal Data against loss and to prevent unauthorized individuals from accessing it. The appropriate security measures we have taken include the implementation of secure private connections, traceability, restoration of lost Personal Data, and access restrictions.

DISPUTE

This Privacy Policy is governed by **French law**, subject to the provisions of the law of any other country in which you may reside.

In case of dispute and if an amicable agreement cannot be found, the competent court will be determined according to the applicable procedural rules.

We wish to have the opportunity to resolve any complaints you may have, but you also have the right to lodge a complaint with the supervisory body responsible for the protection of Personal Data at any time, as indicated above.

To do this, you can contact the French Privacy Protection Authority. You will find more information on its website: https://www.cnil.fr/fr/plaintes