This privacy policy (hereinafter referred to as the "Privacy Policy") sets out the legal framework for the collection, use and processing by Auze Avocat (hereinafter referred to as the "Company") of the personal data of users (hereinafter referred to as the "Users") browsing and/or making use of the services offered via the website. www.auzeavocat.fr.

The personal data collected within the framework of the present Privacy Policy is mandatory. This information is necessary for the processing and provision of the services offered by the Company via its website (hereinafter referred to as the "Services"). Failure to provide this information will prevent the proper functioning of the Services offered online.

The Company undertakes to comply with the applicable regulations on the protection of personal data, and in particular the obligations arising from European Regulation No. 2016/679 on the protection of personal data (RGPD). The Company collects personal data only in compliance with the terms of this Privacy Policy and any legal and reasonable instructions given by the User at any time. Where the Company becomes aware of a breach of rights in relation to the processing of personal data, this breach will be notified to the CNIL within a period of no more than seventy-two (72) hours of becoming aware of it. Any violation relating to the processing of the User's personal data will be notified to the User concerned by e-mail, within one (1) month. 

ARTICLE 1: INFORMATION COLLECTED

Throughout the use of the Website and Services, the Company may collect any information, directly or indirectly identifying the User, necessary to contact a lawyer and for the proper functioning of the Website (hereinafter referred to as "Personal Data").

By using the contact form, the User expressly consents to the processing of his/her Personal Data within the limits of processing strictly necessary for the proper operation of the Website. All personal information collected is mandatory. This information is necessary for the processing and provision of the Services. Failure to provide this information will prevent the proper functioning of the online Services.

These include

• Personal Data relating to the User's identity and in particular his/her title, surname, first name, e-mail address, telephone number, address and postcode;

• Personal Data relating to the User's activity and accounting ;

• Personal Data relating to browsing, collected automatically by the Company and in particular the anonymised IP address, the browser used, the browsing time, the operating system used, the language and the pages viewed;

• Data relating to statistics on visits to the Website by Users, in particular traffic data and other data or communication resources used by the User when accessing the Website.

Personal Data may be collected directly when Users communicate them to the Company using the forms for creating a User account, requesting contact, subscribing to the newsletter available on the Website and reporting illicit content. The Company grants itself the right to review, scan or analyse communications exchanged between the Company and Users via the Website for the purposes of fraud prevention, risk assessment, regulatory compliance, investigation, product development, research and User support. The Personal Data collected for these purposes must be provided and is strictly necessary for the proper operation of the Website. Otherwise, the Services cannot be provided.

ARTICLE 2: USE OF PERSONAL DATA COLLECTED

The Company uses, stores and processes Personal Data in order to supply, understand, improve and develop the Website, to create and maintain an environment of trust with Users and to comply with its legal obligations, in particular in order to :

Developing the website:

• To enable Users to access/use the Website; 

• To enable Users to communicate with Company staff;

• To manage, protect, improve and optimise the Website through statistics, analyses and studies;

• Provide a customer service tailored to Users' needs;

• To send Users support messages or messages relating to the Services, updates, security alerts and notifications;

• As part of fraud detection and prevention activities ;

Create and maintain an environment of trust for Users:

• Detect and prevent fraud, abuse, security incidents and other damaging activities;

• Conducting safety surveys and risk assessments;

• Verify or authenticate information or identifications transmitted by Users;

• Comply with the Company's legal obligations;

• Resolve any disputes with Users;

To provide, personalise, evaluate and improve Advertising and the Marketing of Services:

• Send promotional messages and commercial and advertising information;

• To personalise, evaluate and improve advertising on the Services;

Transfer, assign and/or market the data collected:

• Marketing personal data to any company complying with the RGPD ; 

• To personalise, evaluate and improve advertising by transferees of personal data.

ARTICLE 3: SHARING AND DISCLOSURE OF PERSONAL DATA

The Company may disclose Users' Personal Data to courts, governmental or law enforcement authorities or authorized third parties, if required or permitted by law, or if such disclosure is reasonably deemed necessary: (i) to comply with the Company's legal obligations, (ii) to comply with legal process and to pursue claims against the Company, (iii) to respond to verified requests in connection with a legal investigation or alleged or suspected illegal activity or any other activity that may expose the Company, the User to legal liability.

The Company may subcontract all or part of the performance of the Services in compliance with the legal provisions in force. The Company may also subcontract Personal Data hosting services on condition that the Personal Data is processed by a hosting platform located within the territory of the European Union. The subcontractor will be authorised́ to process the Personal Data necessary to provide the Services on behalf of the Company. 

Personal Data may be transmitted to technical service providers, for the sole purpose of the proper execution of the Services, or to its various suppliers such as payment solution providers. 

ARTICLE 4: PROTECTION OF PERSONAL DATA - USERS' RIGHTS

The Personal Data communicated by the User will be destroyed no later than six (6) months after the end of the User's use of the Services. The Company reserves the right to retain certain data in order to justify, where applicable, the full performance of its contractual or legal obligations. Data kept in this way will be limited to what is strictly necessary.

In all cases, Users have the right to access, rectify, modify, oppose, port and delete their Personal Data by writing to the following address: cabinet@auzeavocat.fr indicating the User's surname, first name, e-mail address and address. In accordance with current regulations, all requests must be signed and accompanied by a photocopy of an identity document bearing the User's signature. In accordance with Article 48 of European Regulation No. 2016/679 on data protection, the Company has not appointed a Personal Data Protection Officer (DPO). Users will be able to retrieve their Personal Data in an open and readable format. The right to portability is limited to the data provided by the User concerned. It applies on the basis of the User's prior consent. The Company undertakes to transfer, on request, within a period of one (1) month, any document used to collect Personal Data to the User in order to implement the right to portability. The cost of recovering the data shall be borne by the User making the request. 

ARTICLE 5: OUTSOURCING OF PERSONAL DATA

The Company may subcontract all or part of the performance of the Services in compliance with the legal provisions in force. The Company may also subcontract the hosting of Personal Data on condition that the Personal Data is processed by a hosting platform located in the European Union, which the Customer expressly acknowledges and accepts. 

The subcontractor will be authorised́ to process on behalf of the Company the Personal Data necessary to provide the Services which are the subject hereof. The purposes of the processing, the Personal Data processed and the categories of persons concerned are similar to those of the Company. 

The Company declares : 

• Have given written instructions concerning the processing of Personal Data by the sub-contractor;

• To ensure, beforehand and throughout the processing operation, that the processor complies with the obligations set out in the European Data Protection Regulation;

• Supervising processing, including carrying out audits and inspections of the sub-contractor. 

The Company undertakes to ensure that the subcontractor : 

• Processes Personal Data solely for the sole purpose(s)́ which is/are the subject of the subcontracting ;

• Processes Personal Data in accordance with the Company's instructions;

• Guarantees the confidentialitý of the Personal Data processed ;

• Has undergone the necessary training in the protection of personal data;

• Take into account, with regard to its tools, products, applications or services, the principles of protection of Personal Data by design and protection of Personal Data by default;

• Informs the Company immediately if it considers that an instruction constitutes a breach of the European regulation on the protection of Personal Data or of any other provision of Union law or of the law of the Member States relating to the protection of Personal Data. 

The processor will assist the Company in fulfilling its obligation to comply with requests to exercise the rights of data subjects: right of access, rectification, erasure and objection, right to limit processing, right to portabilitý of Personal Data, right not to be the subject of an automated individual decision.

The Company undertakes to ensure that the subcontractor implements :

• Pseudonymisation and encryption of Personal Data;

• Means to guarantee the confidentialitý, integritý, availabilitý constant resilience of processing systems and services ;

• Means to restore availabilitý of and access to Personal Data within appropriate timescales in the event of a physical or technical incident ;

• A procedure to regularly test, analyse and evaluate the effectivenesś of the technical and organisational measures to ensure the securitý of the processing. 

The Company declares that it will receive from the subcontractor all the documentation necessary to demonstrate compliance with the obligations and to enable audits, including inspections, to be carried out by the Company or another auditor appointed by it, and to contribute to such audits. The Company remains solely responsible to the Clients for the performance of the Services entrusted to a subcontractor.

ARTICLE 6: USE OF COOKIES

In accordance with CNIL deliberation no. 2013-378 of 5 December 2013, the Company also informs that cookies record certain information that is stored in the memory of the User's hard disk. This information is used to generate audience statistics. LinkedIn Insight Tag > Allows editorial content on LinkedIn to be personalised according to the pages viewed on the site > LinkedIn Insight Tag. https://www.linkedin.com/psettings/guest-controls. A warning message, in the form of a banner, asks Users whether they wish to accept cookies beforehand. 

Users visiting the home page or another page of the Website directly from a search engine will be informed:

• The specific purposes of the cookies used;

• The possibility of objecting to these cookies and changing the settings by clicking on a link in the banner;

• and that continued browsing implies consent to the deposit of cookies on the user's terminal.

In order to guarantee the free, informed and unequivocal consent of Users on the Website, the banner will not disappear until Users continue browsing. Cookies will not be deposited or read without prior consent. 

ARTICLE 7: NEWSLETTER

Depending on the choices made by the User, they may receive the newsletter. By ticking the box provided for this purpose or by expressly agreeing to this, Users accept that the Company may send them a newsletter which may contain information about new activities offered by the Company's Partners. Users will be able to unsubscribe from the newsletter by clicking on the link provided for this purpose in each newsletter.