ARTICLE 1: PREAMBLE
In accordance with Article 5 of European Regulation 2016/679, personal data shall be:
Processed lawfully, fairly, and transparently in relation to the data subject;
Collected for specified, explicit, and legitimate purposes (see Article 3.1 herein) and not further processed in a manner incompatible with those purposes;
Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed;
Accurate and, where necessary, kept up to date. All reasonable steps must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed;
Processed in a manner that ensures appropriate security of the data collected, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures.
Processing is lawful only if, and to the extent that, at least one of the following conditions is met:
The data subject has consented to the processing of his or her personal data for one or more specific purposes;
Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
Processing is necessary for compliance with a legal obligation to which the controller is subject;
Processing is necessary in order to protect the vital interests of the data subject or of another natural person;
Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
Processed lawfully, fairly, and transparently in relation to the data subject;
Collected for specified, explicit, and legitimate purposes (see Article 3.1 herein) and not further processed in a manner incompatible with those purposes;
Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed;
Accurate and, where necessary, kept up to date. All reasonable steps must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed;
Processed in a manner that ensures appropriate security of the data collected, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures.
Processing is lawful only if, and to the extent that, at least one of the following conditions is met:
The data subject has consented to the processing of his or her personal data for one or more specific purposes;
Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
Processing is necessary for compliance with a legal obligation to which the controller is subject;
Processing is necessary in order to protect the vital interests of the data subject or of another natural person;
Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
The purpose of this privacy policy is to inform users of the site:
About how their personal data is collected. Personal data is defined as any information that can be used to identify a user. This may include: their first and last names, age, postal or email address, location, or IP address (non-exhaustive list);
Their rights regarding this data;
The person responsible for processing the personal data collected and processed;
The recipients of this personal data;
The site’s policy on cookies.
This policy supplements the legal notices and Terms and Conditions of Use, which users can consult at the following address.
About how their personal data is collected. Personal data is defined as any information that can be used to identify a user. This may include: their first and last names, age, postal or email address, location, or IP address (non-exhaustive list);
Their rights regarding this data;
The person responsible for processing the personal data collected and processed;
The recipients of this personal data;
The site’s policy on cookies.
This policy supplements the legal notices and Terms and Conditions of Use, which users can consult at the following address.
ARTICLE 2: PRINCIPLES RELATING TO THE COLLECTION AND PROCESSING OF PERSONAL DATA
ARTICLE 3: PERSONAL DATA COLLECTED AND PROCESSED WHEN BROWSING THE WEBSITE
Article 3.1: Data collected
The personal data collected in the course of our business are as follows:
– Cookies.
The collection and processing of this data serves the following purpose(s):
– To ensure the proper use and functioning of the website.
Article 3.2: Data collection method
When you use our site, the following data is automatically collected:
– Cookies and usage preferences.
Other personal data is collected when you perform the following operations on the platform:
– Information transmitted via the contact form.
This data is stored by the data controller under reasonable security conditions for a period of 5 years.
The company may retain certain personal data beyond the periods specified above in order to fulfill its legal or regulatory obligations.
Article 3.3: Data hosting
The website www.thaink2.com is hosted by:
WIX.COM FRANCE SAS, whose registered office is located at 19 BOULEVARD MALESHERBES 75008 PARIS in PARIS.
The personal data collected in the course of our business are as follows:
– Cookies.
The collection and processing of this data serves the following purpose(s):
– To ensure the proper use and functioning of the website.
Article 3.2: Data collection method
When you use our site, the following data is automatically collected:
– Cookies and usage preferences.
Other personal data is collected when you perform the following operations on the platform:
– Information transmitted via the contact form.
This data is stored by the data controller under reasonable security conditions for a period of 5 years.
The company may retain certain personal data beyond the periods specified above in order to fulfill its legal or regulatory obligations.
Article 3.3: Data hosting
The website www.thaink2.com is hosted by:
WIX.COM FRANCE SAS, whose registered office is located at 19 BOULEVARD MALESHERBES 75008 PARIS in PARIS.
ARTICLE 4: DATA CONTROLLER AND DATA PROTECTION OFFICER
Article 4.1: Data controller
Personal data is collected by THAINK2, a simplified joint stock company with capital of €238,800.00, registered under number 953540242 in the Metz Trade and Companies Register.
The personal data controller can be contacted as follows:
By post at: 26 AVENUE FOCH 57000 METZ;
By email: info@thaink2.com.
Article 4.2: The data protection officer
The data protection officer for the company or controller is:
Anis MEZIANI, 26 AVENUE FOCH 57000 METZ, or by email at info@thaink2.com.Si If, after contacting us, you feel that your “Data Protection” rights have not been respected, you can send a report to the CNIL.
Personal data is collected by THAINK2, a simplified joint stock company with capital of €238,800.00, registered under number 953540242 in the Metz Trade and Companies Register.
The personal data controller can be contacted as follows:
By post at: 26 AVENUE FOCH 57000 METZ;
By email: info@thaink2.com.
Article 4.2: The data protection officer
The data protection officer for the company or controller is:
Anis MEZIANI, 26 AVENUE FOCH 57000 METZ, or by email at info@thaink2.com.Si If, after contacting us, you feel that your “Data Protection” rights have not been respected, you can send a report to the CNIL.
ARTICLE 5: USER RIGHTS REGARDING DATA COLLECTION AND PROCESSING
Any user concerned by the processing of their personal data may exercise the following rights, in accordance with European Regulation 2016/679 and the French Data Protection Act (Law 78-17 of January 6, 1978):
Right of access, rectification, and erasure of data (set out in Articles 15, 16, and 17 of the GDPR, respectively);
Right to data portability (Article 20 of the GDPR);
Right to restriction (Article 18 of the GDPR) and to object to data processing (Article 21 of the GDPR);
Right not to be subject to a decision based solely on automated processing;
Right to determine the fate of data after death;
Right to refer the matter to the competent supervisory authority (Article 77 of the GDPR).
To exercise your rights, please send your letter to THAINK2, 26 AVENUE FOCH 57000 METZ or by email to info@thaink2.com.
In order for the data controller to comply with the request, the user may be required to provide certain information such as: their first and last names, email address, and account, personal space, or subscriber number.
Visit cnil.fr for more information about your rights.
Right of access, rectification, and erasure of data (set out in Articles 15, 16, and 17 of the GDPR, respectively);
Right to data portability (Article 20 of the GDPR);
Right to restriction (Article 18 of the GDPR) and to object to data processing (Article 21 of the GDPR);
Right not to be subject to a decision based solely on automated processing;
Right to determine the fate of data after death;
Right to refer the matter to the competent supervisory authority (Article 77 of the GDPR).
To exercise your rights, please send your letter to THAINK2, 26 AVENUE FOCH 57000 METZ or by email to info@thaink2.com.
In order for the data controller to comply with the request, the user may be required to provide certain information such as: their first and last names, email address, and account, personal space, or subscriber number.
Visit cnil.fr for more information about your rights.