Privacy Policy

In the interest of full transparency, the company informs you about the processing of your personal data, in a concise, transparent, and understandable manner, through this Privacy Policy. All personal data is processed fairly, transparently, and lawfully by your service provider, who is the Data Controller for personal data on this website.

---

Article 1. Applicable Law – Legal Basis

This Privacy Policy is guaranteed to comply with the following legal requirements:¹

• Articles 12, 13, and 14 of the General Data Protection Regulation (GDPR) 2016/679 of the European Parliament and of the Coun²cil.
• The “Informatique et Libertés” Law No. 78-17 of January 6, 1978, relating to data processing, files, and freedoms, as amended by Law No. 2018-493 of June 20, 2018, relating to the protection of personal data, for matters of personal data processing.
• Law No. 2004-575 of June 21, 2004, on confidence in the digital economy: for the deletion of any contentious content.

The legal bases are as follows:

• Consent (for newsletter subscription)
• Performance of a Contract (for the execution of a service)
• Legal Obligation (for invoicing)

---

Article 2. Collection of Personal Data

Personal data is collected automatically, for commercial, statistical, and marketing purposes, when a contact form is filled out, an appointment is booked, an online quote is requested, or an invoice is issued, whenever necessary. The processing of personal data may not concern:

• Racial or ethnic origin,
• Political opinions,
• Religious or philosophical beliefs,
• Trade union membership,
• Genetic data,
• Biometric data for the purpose of uniquely identifying a natural person,
• Data concerning health or data concerning a natural person’s sex life
• Sexual orientation,
• Criminal convictions and offenses.

The data collected are:

• Last Name
• First Name
• Email Address

---

Article 3. Purpose of Personal Data Processing

The processing of personal data is deemed lawful when at least one of the following conditions is met:

• The user of this website has consented to the processing of their personal data to access the company’s free services.
• The processing is necessary for the performance of a contract with the service provider.
• The processing is necessary for the company’s compliance with a legal obligation, to protect the vital interests of the data subject or of another natural person, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Data Collected	Purpose
Last Name	Client identification – Invoices – Contracts
First Name	Client identification – Invoices – Contracts
Bank Details	Invoice payment
Postal Address	Client identification – Invoices – Contracts
Mobile Phone Number	Client identification – Invoices – Contracts
Email Address	Client identification – Invoices – Contracts – Newsletter sending

---

Article 4. Consent to the Collection of Personal Data

The User must give their consent to the collection of personal data to benefit from the service provider’s services.

It is possible to withdraw this consent at any time, using the simplest formalities, by written contact with the service provider. The User who withdraws their consent acknowledges that this does not affect the lawfulness of the prior processing of their personal data.

In accordance with Article 9 of the Civil Code, all clients have the right to the protection of their image, including their voice, and their private life. The use of photographs, audio, and videos concerning them must be the subject of an assignment of image rights consented to in writing, by accepting this legal document. The assignment of image rights consented to by the client is valid for 5 years from the date of their written authorization. This also includes the right to collect the client’s personal data in the context of a collective event (masterclasses, workshops, training). The assigned image right applies to all written, audio, and video materials necessary to promote the services performed by the company, create advertising or marketing content, on any medium whatsoever. The exploitation of the materials concerned by the image right is restricted to the European Union.

---

Article 5. Data Recipients

The recipient of the personal data is the company responsible for the processing of personal data on this website. No personal data is transmitted, sold, or rented to third parties. The company does not use any personal data subcontracting services.

---

Article 6. Record of Processing Activities

In principle, every controller must maintain a record of processing activities carried out under their responsibility, mentioning:

• The name and contact details of the controller.
• The purposes of the processing.
• A description of the categories of data subjects and the categories of personal data.
• The categories of recipients who have been given access to the personal data or the modalities for transfers of personal data to a third country or an international organization.
• The envisaged time limits for erasure of the different categories of data.
• A general description of the technical and organizational security measures.

This record takes the form of a written document, which may be electronic or hard copy.

The supervisory authority CNIL must have access to it upon simple request, particularly when the company exceeds 250 employees or if its activities involve a recurrent risk to the rights and freedoms of data subjects.

---

Article 7. Right of Access to Data

Any person concerned by the processing of their personal data has the right to obtain confirmation from the controller regarding the following information:

• The purposes of the processing;
• The categories of personal data concerned;
• The recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations;
• Where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
• The existence of the right to request from the controller rectification or erasure of personal data or restriction of processing concerning the data subject or to object to such processing;
• The right to lodge a complaint with a supervisory authority;
• Where the personal data are not collected from the data subject, any available information as to their source;
• The existence of automated decision-making, including profiling.

The company must therefore provide them with a copy upon simple written request.

---

Article 8. Right to Rectification of Personal Data

Any data subject can request the company to rectify the personal data concerning them if it is inaccurate. They can also request, in writing, to complete the personal data collected by the service provider.

---

Article 9. Right to Erasure of Personal Data

Every user or client has the right to be forgotten. Data subjects can demand the deletion of their data if one of the following cases applies:

• The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
• The data subject withdraws consent on which the processing is based;
• The data subject objects to the processing;
• The personal data have been unlawfully processed;
• The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
• The personal data have been collected in relation to the offer of information society services.

The collected personal data are automatically deleted after 3 years of collection by the service provider.

---

Article 10. Right to Object and Restriction

Any person concerned by the processing of personal data can refuse to consent to it, or freely limit its scope, when one of the following elements applies:

• The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data;
• The processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;
• The controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise, or defense of legal claims;
• The data subject has objected to processing pending the verification whether the legitimate grounds of the controller override those of the data subject.

---

Article 11. Right to Data Portability

Data portability is the right of any data subject who wishes to transmit their data to another controller, without opposition from the service provider, when technically possible and when it does not adversely affect the rights of third parties.

Any request in this regard must be made in writing to the service provider.

---

Article 12. Security of Processing

To maintain a low risk of personal data breaches, the company may strengthen its data retention measures: implementing pseudonyms, encryption, a crisis protocol, or re-evaluating the degrees of the existing protocol.

The risks to be assessed in the context of processing are of several natures, such as the destruction, loss, alteration, unauthorized disclosure of, or unauthorized access to, personal data transmitted, stored, or otherwise processed, whether accidental or unlawful.

In the event of a proven risk of a personal data breach, the Data Controller must communicate to the data subject, in clear and simple terms, all information and measures concerning the resolution of the problem.

---

Article 13. Personal Data Controller

The personal data controller is: Christophe Faure Fontenille, whom you can contact at the following email address: domaine-de-gourdol@orange.fr.

The Data Controller implements technical, organizational, and professional measures to effectively review and update the collection and processing of your personal data. To do this, they take into account the nature, scope, context, and purposes of the processing, as well as the risks, which vary in likelihood and severity, for the rights and freedoms of natural persons.

They undertake to cooperate and work, in good faith, with the supervisory authority upon simple request from the latter, in the context of the execution of its missions.

---

Article 14. Comment Moderation

Any comment or review left on this website may be subject to moderation, and any abusive comment will be deleted by reporting or directly by the service provider.

Comments may be subject to moderation by the service provider, upon reporting or in the event of non-compliance with the respect of others, in accordance with Law No. 2004-575 of June 21, 2004, on confidence in the digital economy regarding the deletion of any contentious content.

---

Article 15. Cookies

By browsing this site, you agree that the website may place cookies in your browser to benefit from the service provider’s services.

The User has a right to access, rectification, portability, and erasure of their data, or to restriction of processing, in accordance with the “Informatique et Libertés” law of January 6, 1978, as amended, and European Regulation No. 2016/679/EU of April 27, 2016.

Any complaint about this must be submitted to the service provider.

You can therefore freely refuse the use of cookies via your browser’s settings menu.

In the event that you do not wish us to collect your personal data, you will not be able to use all the site’s services, such as requesting contact or service, or the collection of information to receive newsletters. Indeed, some information about you is necessary for the use of our site, and may collect data on your IP address, browser, access times, and automatic pre-filling.

This information collected by this website is used exclusively for internal statistical purposes, in order to improve the quality of the services offered to you.3

Databases are protected by the provisions of the law of July 1, 1998, transposing Directive 96/9 of March 141, 1996, relating to the legal protection of databases.

Cookies are used to:

• Offer you an optimal experience.
• Identify you once registered as a user.
• Monitor and analyze the performance, operation, and effectiveness of the website.
• Ensure the security of our platform and the safety of its use.

---

Article 16. Complaints – CNIL

In accordance with Article 55 of the General Data Protection Regulation, if you believe that the company has violated your rights regarding the processing of personal data, you can file a complaint with the CNIL as soon as possible, ideally no later than 72 hours after becoming aware of it. The breach notification must:

• Describe the nature of the personal data breach including, where possible, the categories and approximate number of data subjects concerned by the breach and the categories and approximate number of personal data records conce⁵rned;
• Identify the name and contact details of the data protection officer or other contact point where more information can be obtained;
• Describe the likely consequences of the personal data breach;
• Describe the measures taken or proposed to be taken by the controller to address the personal data breach, including, where appropriate, measures to mitigate its possible adverse effects.

Date of last update: 26/09/2025