Management of personal data.
The Customer is informed of the regulations concerning marketing communication, the French law of 21 June 2014 for trust in the Digital Economy, the Data Protection Act of 06 August 2004 and the General Data Protection Regulations (RGPD: n° 2016-679).
Persons responsible for the collection of personal data
For Personal Data collected in the context of creating the User’s personal account and browsing the Site, the person responsible for processing Personal Data is the DPO. Simforhealth is represented by Jérôme Leleu, its legal representative.
As the controller of the data it collects, Simforhealth undertakes to comply with the legal provisions in force. In particular, it is the Client’s responsibility to establish the purposes of its data processing, to provide its prospects and customers, from the collection of their consents, with full information on the processing of their personal data and to maintain a register of processing in accordance with reality. Whenever SimforHealth processes Personal Data, SimforHealth takes all reasonable steps to ensure that the Personal Data is accurate and relevant to the purposes for which SimforHealth processes it.
Purpose of the data collected
MedicActiv or any other SimforHealth services may process all or part of the data:
- to carry out the operations related to our business and provide you with access to our online services, platforms and applications
- to allow us to identify you and authenticate you on our services
- to personalize your experience and allow us to communicate with you (notifications, security, service information, etc.)
- to respond to requests from administrative or judicial authorities in accordance with applicable law
- to allow navigation on the Site and the management and traceability of the services and services ordered by the user: connection and use data of the Site, invoicing, order history, etc.
- to prevent and fight against computer fraud (spamming, hacking…): computer equipment used for browsing, IP address, password (hashed)
- to improve navigation on the Site: login and usage data
- to conduct optional satisfaction surveys (with explicit opt-in)
- to conduct communication campaigns (sms, email): phone number, email address (with explicit opt-in)
SimforHealth does not sell your personal data, which is only used for necessary or statistical and analytical internal purposes.
Right of access, rectification and opposition
In accordance with current European regulations, Users of SimforHealth services have the following rights:
- right of access (Article 15 DGPS) and rectification (Article 16 DGPS), updating, completeness of Users’ data right to block or delete Users’ personal data (Article 17 of the DGPS), when they are inaccurate, incomplete, ambiguous, outdated, or whose collection, use, communication or storage is prohibited
- right to withdraw consent at any time (Article 13(2)(c) DGPS)
- right to limit the processing of Users’ data (Article 18 DGPS)
- right to object to the processing of Users’ data (Article 21 DGPS)
- the right to the portability of the data provided by Users, when such data are processed automatically on the basis of their consent or a contract (Article 20 DGPS)
- the right to determine the fate of Users’ data after their death and to choose to whom SimforHealth should disclose (or not) its data to a third party previously designated by them
As soon as Simforhealth becomes aware of the death of a User and in the absence of instructions from him, SimforHealth undertakes to destroy his data, unless their storage is necessary for evidential purposes or to meet a legal obligation.
If the User wishes to know how SimforHealth uses his Personal Data, requests to rectify them or objects to their processing, the User may contact Simforhealth in writing at the following address:
SimforHealth
DPO
2 Place de la Bourse
33000 Bordeaux
FRANCE
or by email: dpo@simforhealth.com
In this case, the User must indicate the Personal Data that he or she would like SimforHealth to correct, update or delete, precisely by identifying himself or herself with a copy of an identity document (identity card or passport).
Requests to delete Personal Data will be subject to the obligations imposed on SimforHealth by law, including the retention or archiving of documents. Finally, Users of SimforHealth services can file a complaint with the supervisory authorities, and in particular with the CNIL (https://www.cnil.fr/fr/plaintes).
Non-communication of personal data
SimforHealth will not process, host or transfer Information collected about its Clients to a country outside the European Union or recognized as “not adequate” by the European Commission without first informing the Client. However, SimforHealth remains free to choose its technical and commercial subcontractors on condition that they provide sufficient guarantees with regard to the requirements of the General Data Protection Regulations (GDR 2016-679).
SimforHealth undertakes to take all necessary precautions to preserve the security of the Information and in particular that it will not be communicated to unauthorized persons. However, if an incident affecting the integrity or confidentiality of Customer Information is brought to SimforHealth’s attention, SimforHealth shall promptly inform the Customer and communicate the corrective measures taken. SimforHealth does not collect any “sensitive data”.
User Personal Data may be processed by SimforHealth subsidiaries and subcontractors (service providers) exclusively for the purposes of this policy.
Within the limits of their respective powers and for the purposes mentioned above, the main persons who may have access to SimforHealth Users’ data are mainly our customer service agents.
Incident notification
Regardless of the efforts made, no method of transmission over the Internet and no method of electronic storage is completely secure. Therefore, we cannot guarantee absolute security. If we become aware of a security breach, we will notify the users concerned so that they can take appropriate action. Our incident notification procedures take into account our legal obligations, whether at national or European level. We are committed to fully informing our customers of all matters relating to the security of their account and to providing them with all the information necessary to help them comply with their own regulatory reporting obligations.
No personal information of the user of SimforHealth services is published without the user’s knowledge, exchanged, transferred, assigned or sold on any medium to third parties. Only the assumption of the acquisition of SimforHealth and its rights would allow the transmission of this information to the potential purchaser, who would in turn be bound by the same obligation to retain and modify the data with regard to the user of SimforHealth’s services.
Safety and security
To ensure the security and confidentiality of Personal Data, SimforHealth uses networks protected by standard devices such as firewalls, pseudonymization, encryption and passwords (encrypted).
When processing Personal Data, SimforHealth takes all reasonable measures to protect it from loss, misuse, unauthorized access, disclosure, alteration or destruction.
Hypertext links “cookies” and internet tags
The https://www.medicactiv.com or other Simforhealth websites contain a number of hypertext links to other sites, set up with the permission of SimforHealth. However, SimforHealth has no possibility of verifying the content of the sites thus visited, and will therefore not assume any responsibility for this fact.
Unless you decide to disable cookies, you agree that the site may use them. You can deactivate these cookies at any time and free of charge from the deactivation options offered to you and recalled below, knowing that this may reduce or prevent accessibility to all or part of the Services offered by the site.
“COOKIES”
A “cookie” is a small information file sent to the User’s browser and stored on the User’s terminal (e.g. computer, smartphone), (hereinafter “Cookies”). This file includes information such as the User’s domain name, the User’s Internet service provider, the User’s operating system, and the date and time of access. Cookies do not risk damaging the User’s terminal in any way.
SimforHealth may process information about the User’s visit to the Site, such as the pages visited and the searches carried out. This information allows SimforHealth to improve the content of the User’s services (sites) and navigation.
Cookies facilitate the navigation and/or provision of the services offered by the Site, the User may configure his browser so that he can decide whether or not to accept them so that Cookies are stored in the terminal or, on the contrary, that they are rejected, either systematically or according to their issuer. The User may also configure his browser software in such a way that the acceptance or rejection of Cookies is offered to him from time to time, before a Cookie is likely to be saved in his terminal. SimforHealth informs the User that, in this case, not all the features of its navigation software may be available.
If the User refuses to accept cookies in his or her device or browser, or if the User deletes cookies registered there, the User is informed that his or her browsing and experience on the Site may be limited. This could also be the case when SimforHealth or one of its service providers cannot recognize, for technical compatibility purposes, the type of browser used by the device, the language and display settings or the country from which the device appears to be connected to the Internet.
If applicable, SimforHealth declines all responsibility for the consequences related to the degraded operation of the Site and any services offered by SimforHealth, resulting from (i) the User’s refusal to accept Cookies (ii) SimforHealth’s inability to record or consult the Cookies necessary for their operation because of the User’s choice. For the management of Cookies and User choices, the configuration of each browser is different. It is described in the browser’s help menu, which will allow you to find out how the User can change his or her cookie preferences.
At any time, the User may choose to express and modify his or her wishes regarding Cookies. SimforHealth may also use the services of external service providers to help it collect and process the information described in this section.
Finally, by clicking on the icons dedicated to Twitter, Facebook, Linkedin and Google Plus social networks on SimforHealth sites or in its applications and if the User has accepted the deposit of cookies by continuing to browse the Website or the SimforHealth application, Twitter, Facebook, Linkedin and Google Plus can also deposit cookies on your devices (computer, tablet, mobile phone).
These types of cookies are only placed on your devices with your consent by continuing to browse the SimforHealth Website or applications.
However, at any time, the User may withdraw his or her consent for SimforHealth to place this type of cookie.
INTERNET TAGS
SimforHealth may occasionally use Internet tags (also known as “tags”, action tags, one-pixel GIF, transparent GIF, invisible GIF, and one-to-one GIF) and deploy them through a Web analytics partner who may be located (and therefore store the corresponding information, including the User’s IP address) in a foreign country.
These tags are placed both in online ads that allow users to access SimforHealth sites, and on the various pages of these sites.
This technology allows SimforHealth to evaluate visitors’ responses to the sites and the effectiveness of its actions (for example, the number of times a page is opened and information viewed), as well as the User’s use of this Site.
The external service provider may collect information about visitors to the Site and other websites through these tags, compile reports on site activity for SimforHealth and provide other services related to the use of the Site and the Internet.
Applicable law and jurisdiction.
Any dispute relating to the use of the SimforHealth website and services is subject to French law. Except in cases where the law does not allow it, exclusive jurisdiction is attributed to the competent court of Bordeaux.