Privacy policy

Date of last update : 20/10/2023

Introduction

The purpose of this Privacy Policy is to:

to inform people browsing and accessing the services offered on the Site(s) of MYAFTERME (hereinafter referred to as the "Customers") and/or having subscribed to a contract giving rise to a Service; in the manner in which MYAFTERME collects, uses and shares their personal data as well as information that we collect through "cookies".

Person responsible for processing personal data

The person(s) responsible for processing personal data are :

The company MYAFTER,
SAS registered with the RCS of SAINT-LEU under number St-Pierre de la Reunion B 921 740 791 and located at 161 B RUE DU GENERAL LAMBERT, 97436 SAINT-LEU.

Represented by Fanch LANDRON and Sophie BERNIER

To contact the data controller, you can :

send us an e-mail to the following address : direction@myatferme.com
write to us at the following postal address MYAFTER, 161 B RUE DU GENERAL LAMBERT, 97436 SAINT-LEU

Collection of personal data

MYAFTERME collects personal data for the proper performance of its services, contracts and assignments.

Nature of the personal data collected

MYAFTERME undertakes only to collect personal data that is adequate, relevant and limited to what is necessary for the purposes for which it is processed. No personal data considered to be "sensitive", such as racial or ethnic origin, political, philosophical or religious opinions, may be requested or collected by MYAFTERME.

MYAFTERME does not collect data from minors under the age of 18.

The Customer is hereby informed that the personal data indicated as mandatory on the forms and collected as part of the service described herein are necessary for the provision of the Service.

Purpose of processing personal data

Personal data may be collected and used by MYAFTERME for the following purposes:
The provision of Services, and may be transmitted to companies responsible for the management, execution and processing of payment transactions.

The data collected may also be used as part of the management of commercial relations in order to compile statistics, carry out market and behavioural research and enable MYAFTERME to improve and personalise its Services.

Sharing personal information

WITH MYAFTERME'S IN-HOUSE TEAMS MYAFTERME

Duly authorised teams and/or employees of MYAFTERME are required to access and process personal data. Persons from the communications, marketing and accounting departments are concerned by such access.

TO THE SUBCONTRACTORS OF MYAFTERME

In the course of carrying out its business and providing its services, MYAFTERME uses sub-contractors who process personal data. Nos sous-traitants le font sur notre instruction et sous notre autorité conformément et dans le respect le plus strict du RGPD. MYAFTERME has ensured that the service provider presents sufficient guarantees regarding the implementation of appropriate technical and organisational measures to ensure the security and confidentiality of personal data.

Storage of personal data

The personal data collected is processed and stored in conditions designed to ensure its security, and is kept for the time strictly necessary for customer relations and follow-up.

The following informations are collected:
Email address used to send a newsletter.

This data may also be kept for security and conservation purposes, in order to comply with the legal and regulatory obligations to which the Customer and/or the Service Provider is subject.

Personal data security

MYAFTERME undertakes to implement technical and organisational security measures to guarantee the security, integrity and confidentiality of all personal data, in order to prevent it from being distorted, damaged or accessed by unauthorised third parties.

However, it should be noted that no security measure is infallible and MYAFTERME cannot therefore guarantee absolute security of the Customer's personal data.

In the event of a proven breach of its customers' or Users' personal data, MYAFTERME shall notify the CNIL of the breach as soon as possible and, if possible, no later than 72 hours after becoming aware of it, unless the breach in question is not likely to give rise to a risk to Users' rights and freedoms.

In accordance with Article 34 of the GDPR and the exceptions provided for, MYAFTERME shall immediately inform the User as soon as possible when a personal data breach is likely to result in a high risk to the User's rights and freedoms.

The use of passwords on the Site must remain completely confidential and must never be shared with one or more people. If, however, you believe that your password has been misused, please notify MYAFTERME's technical team immediately.

Transfer of personal data

Personal data may be transferred to countries outside the European Union in order to ensure the service and commercial relationship between the Customer and MYAFTERME.

MYAFTERME works with Service Providers who offer a level of protection and are located in countries subject to the provisions of the RGPD or in accordance with Article 45 of the RGPD because they have received an adequacy decision from the European Commission (they have therefore been recognised as offering sufficient guarantees by the European Union). This is the case, for example, with subcontractors located in the United States who are governed by the E.U. - U.S. PRIVACY SHIELD (European Union-United States Data Protection Shield): click here for more information.

In the event that MYAFTERME uses sub-contractors that do not offer protection equivalent to that required by the European Union, MYAFTERME undertakes to control the transfer by signing specific contractual clauses as established by the European Commission.

The sub-contractor may be required to disclose the Customer's personal data to administrative or judicial authorities where such disclosure is necessary for the identification, apprehension or prosecution of any individual who may be detrimental to the rights of MYAFTERME, any other customer or any third party. MYAFTERME may be required by law to disclose the Customer's personal information and in such event MYAFTERME shall have no objection to such disclosure.

The rights of MYAFTERME Customers.

In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation - GDPR) OJEU L127 2 of 23/05/2018, any Customer has a right of access, rectification and deletion of personal data concerning them, which they may exercise directly with MYAFTERME's customer service department by contacting them at the email address: direction@myafterme.com
or at the following postal address:
DPO MYAFTER, 161 B RUE DU GENERAL LAMBERT, 97436 SAINT-LEU, FRANCE
A copy of a valid identity document must be attached to the request.

If you estimate that the treatment of your personal information realised by MYAFTERME enfreint les lois sur la protection des données, you have the right to complaint with an authority control data protection. You can do this in the EU Member State of your habitual residence, your place of work or the place of the alleged infringement.

You may also request that the processing of your personal data be restricted in accordance with Article 18 of the GDPR.

In addition, within the limits laid down by law, the Customer also has the right to object to the processing, to limit it, to decide on the post-mortem fate of his or her data, to withdraw consent at any time and the right to portability of the personal data provided.

MYAFTERME will provide the person exercising any of these rights with information about the measures taken as soon as possible and in any event within one (1) month of receipt of the request. MYAFTERME reserves the right to extend this period by two (2) months, depending on the complexity and/or number of requests.

Update

This Privacy Policy may be updated at any time. If we make changes to it, we will change the "last updated" date available before the introduction. If so-called significant changes are made to this policy, we will inform you by another means (e-mail, text message, telephone call, etc.). We encourage you to consult this privacy policy regularly.