Personal data and cookies
Personal data and cookies charter
This charter (hereinafter the "Charter") is aimed at informing users (hereinafter the User") of the AELIADUTYFREE site and the Click & Collect service (hereinafter the "Service") about mechanisms in place for:
- Collecting and processing the personal data of Users using the Service,
This processing is carried out in accordance with Law no. 78-17 of 6 January 1978 concerning data protection, files and freedoms, or any legislation or regulation which may replace it, and Regulation no. 2016-679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and the free circulation of said data, starting from its entry into force (hereinafter "Data Protection and Freedoms Regulation").
The Service is provided by the company Lagardère Duty Free, a simplified joint-stock company with capital of 5,853,930 Euros, whose head office is located at 4-6 avenue d’Alsace, 92 400 Courbevoie, listed in the Trade and Companies Register of Nanterre, under no. B 380 253 518, (hereinafter the “Company”) belonging to the Lagardère Travel Retail Group.
The Company is the data controller of all data collected in the carrying out of the Service.
The Charter may be amended at any time by the Company, in particular so that it complies with any changes to regulations or case law, or editorial or technical changes.
The User must refer to the most recent version of the Charter before doing any browsing.
The Charter forms an integral part of the General Terms and Conditions of Use of the Service.
If need be, the Charter shall apply jointly with the specific terms and conditions of use of the Service.
The Company is responsible for processing the data collected at the retail outlet for the Service and on this Site.
I. DATA PROTECTION
A. Processing for which the Company is responsible
At the moment the User signs up for the Service, data is collected by the Company, and processed, with a view to granting access to the Service.
Purpose of this document, inter alia, is to inform the User about:
- The objectives of the collection of this data (end goals)
- Whether certain data needs to be entered in on a mandatory basis, or whether it is optional and, if applicable, the consequences of failing to enter mandatory data. If the User fails to enter Data that is mandatory, the User will not be able to have access to the Service.
- About his/her rights and how to exercise them in relation to the data controller
- The individuals who have knowledge of this Data (recipients)
1) Who collects your data?
Lagardère Duty Free, a simplified joint-stock company with capital of 5,853,930 Euros, whose head office is located at 4-6 avenue d’Alsace, 92 400 Courbevoie, listed in the Trade and Companies Register of Nanterre, under no. B 380 253 518, in its capacity as data controller processes your data and provides you the following information under article 13 of the EU Regulation 2016/679.
You can contact at any time the Data Protection Officer appointed under art. 37 of EU Regulation 2016/679 (hereinafter “GDPR”) by sending an email to firstname.lastname@example.org.
2) What data is collected?
The data collected is the User’s personal data. All of the data set out below is collectively referred to as the “ Data ”
When you register for the Service by placing your order on this Site, we collect the following Data:
- Surname, First name, Date of birth, Country of residence, Nationality,
- Email address,
- Telephone number,
Flight number, flight date, airlineThe collection of this data is necessary for the processing of all reservations. If you object to the collection and processing of your data, you will not be able to access the functions of the Service on the Site. Furthermore, should you object to the use of your personal data for marketing purposes, no consequence will affect the proper functioning of the Service.
In the framework of our policy on quality and of a constant improvement of our services, we will also collect the information you submit when you contact our customer service department.
3) Why and how does the Company collect the User’s Data?
The Data collected in the context of the Service is subject to processing, with the aim of achieving the following end goals:
- Handling the Service in the best possible conditions;
- Enabling you to take delivery of the products you have ordered at your departure or arrival terminal;
- Enabling us to contact you in the event that you cannot pick up your products at the agreed time and place;
- Enabling us to contact you to respond to any claims or requests and to give you any assistance that may be necessary;
- Should you give your consent, sending you by email our offers.
Your data will be processed mainly through electronic and telematic means in accordance with current regulation and legislation and, in any case, by ensuring their security and confidentiality, their non disclosure or unauthorized use.
4) The recipients of the Data collected
The Database compiled upon registration for the Service is strictly confidential. The Company undertakes to take all necessary precautions and appropriate organisational and technical measures to safeguard the security, integrity and confidentiality of the Data and, in particular, to prevent it from being distorted or damaged or subject to unauthorised access by third parties.
Data transferred to the authorities and/or public bodies:
In accordance with regulations in force, the Data may be forwarded to the competent authorities on request, and in particular to public bodies, solely in order to satisfy legal obligations, and to court officers, ministerial officers and bodies responsible for the recovery of debts, and also in the context of the search for the authors of violations committed on the Internet.
Data transferred to third parties:
The authorized staff of the Company and other companies of the Lagardère Travel Retail Group shall have access to the Data collected, solely in the context of the use of the Service. The Data may be transferred to the Company’s subcontractors providing services in relation to the Service.
The User’s personal data will not be transferred outside the territory of the EU.
5) The rights of the User
In accordance with the Data Protection and Freedoms Regulation, the User has the right of access, correction, limitation and portability of the Data concerning him or her.
When the processing of his/her Data is performed on the basis of his/her consent (marketing purposes), the User may withdraw said consent at any time. The User has the right to register on the ‘bloctel’ list to object to the use of cold calling http://www.bloctel.gouv.fr/.
You may, if you so wish, make a claim with the CNIL, following the process set out on its site (https://www.cnil.fr) or with the data protection authority of the Country in which you habitually live, work, or where the alleged violation of your personal data took place.
Finally, the User has the option to give instructions pertaining to the fate of his/her Data after his/her death.
These rights may be exercised at any time by contacting the customer service.
The personal data that is communicated in the context of the exercising of the User’s right of access shall be communicated in a personal and confidential manner. To this end, so that the User’s request for access is taken into account, the User shall submit the elements necessary for him/her to be identified, namely a written oath by means of which he/she certifies that he/she is the rights-holder to said personal data, along with a photocopy of his/her ID document.
6) Length of time for which Data is preserved and stored
Users’ Data will not be kept for any longer than the period of time strictly necessary for the purposes set out herein, in accordance with Data Protection and Freedoms Regulations and the applicable laws.
Data will not be kept for any longer than the period of time strictly necessary for the provision of the Service, i.e. throughout the entire duration of the contractual relationship between the User and the Company and for a period of three years as of the date of the last contact between the User and the Company.
The User’s Data is deleted when the preservation periods expire. Nevertheless, Data may be stored for longer than the periods stipulated for the purposes of searching for, identifying, and pursuing criminal violations, with the sole aim of making it possible, as far as it is necessary, for this Data to be made available to the judicial authorities.
As far as the data of deceased persons is concerned, as long as we are notified that the Data subject has died, this Data will no longer be processed other than in the context of the organisation and settlement of the estate of the deceased and for the purpose of acknowledging, exercising and defending legal rights, barring any specific instructions made known to the Company.
The User may, indeed, define specific instructions related to the preservation, deletion and communication of his/her personal Data after his/her death and appoint, in said specific instructions, a person responsible for their implementation. The User’s personal instructions should be sent by ordinary letter or in an email addressed to email@example.com, specifying the purpose of your request.
The Company has put suitable organisational, technical and administrative measures in place to protect Data from any destruction, loss, alteration or unauthorised disclosure.
The Company takes every effort to protect the Data, taking account of the sensitivity of the information in question and the potential risks associated with a data leak. The Company takes every appropriate measure to guarantee the confidentiality, integrity, availability and resilience of Data, stores Data in information systems that offer a suitable level of security, to which access is protected, restricted and recorded, and the Company concludes strict confidentiality agreements with all persons involved in the processing of Data on its behalf.
(i) What is a Cookie?
A cookie, and all similar tracking files (hereinafter "Cookie(s)”) are tracking files which can be saved on your device (computer, tablet device, smartphone) when you use the Service using browser software, via the Site.
Cookies enable the party that issues them, throughout their validity period, to recognise the device in question each time it accesses digital content that incorporates cookies from the same issuer, and, depending on the Cookie, to collect additional anonymous information about the User’s behaviour while using the Service.
Cookies may be put in place by the Company, by its technical service providers or by its partners.
Only the operator of the Cookie, i.e. the person on whose behalf it is issued, irrespective of whether he is the issuer or not, is responsible for its use and for the Data that he/she collects with its help.
(iii) Why are Cookies left on the Company's Site
Cookies enable the Site to operate effectively, and to remember the preferences of the User, and provide the Company and its partners with information for statistical or advertising purposes.
- BROWSER COOKIES:
These Cookies are necessary for you to be able to navigate properly around the Site and for the proper functioning of the Applications; they are useful, in particular, to:
- Adapt the presentation of the Site to the display preferences of the User’s device (language used, image resolution, operating system used, etc…);
- Memorise information related to the User’s login details;
- Offer the User access to his/her account or to any other reserved space through his/her login details;
- Put security measures in place, for example when the User is asked to reconnect to a piece of Content or a Service after a certain period of time has elapsed.
- STATISTICAL AUDIENCE-MEASURING COOKIES:
Audience-measuring cookies help to draw up statistics and figures on the visiting and use of the various constituent parts of the Site (sections and content visited, path followed), enabling the Company, in particular, to make the Services more interesting and user-friendly.
- FRAUD-DETECTION COOKIES
Third parties may deposit Cookies which make it possible to counteract advertising fraud.
(iv) How can these be checked?
By browsing the Site and the Application, the User accepts that cookies will be deposited on their device.
The Users may, however, express their choices to the Company's partners and, at any time, configure their browser software in such a way that Cookies are saved on the device or, on the contrary, rejected, either automatically, or depending on who issues them. Users may also configure their browser software in such a way that they may promptly accept or reject Cookies , before a Cookie can be saved on their device.
- THE AGREEMENT ON COOKIES
Users are presumed to have given their consent:
- By clicking on the icon "X" in the information banner visible the first time they connect to the Site and the Applications;
- By proceeding to browse the Site, i.e. When the user has clicked on an element of the Site (image, link, “search” button, etc.) or has visited a different page of the Site or the Applications;
If Users agree, via their browser software, to the saving of Cookies on their device, the Cookies included on the pages and content they have consulted may be temporarily stored in a dedicated place on their device. They may only be read there by their issuer.
The consent given by the User is only valid for a period of 3 years counted from the first time cookies deposited in the User's device, after the User has expressed his/her consent.
- MAKING CHOICES
Some Cookies are deposited on our Site by the Company or its technical service providers and operated by the Company; others are issued and operated by third-party partners.
Users are reminded that only the issuer of a Cookie is able to read or edit the information contained on it. Moreover, only the operator of the Cookie, regardless of whether or not he is the issuer thereof, is responsible for its use and for the Data that he collects with its help.
- Making choices regarding Cookies deposited by third parties:
- ON NAVIGATION COOKIES
- Insofar as the User’s device is able to visualise the content developed with the Flash script, the User can access its tools for managing Flash Cookies, directly from the website http://www.adobe.com/fr/
- ON STATISTICAL AUDIENCE-MEASURING COOKIES
Google Analytics: https://tools.google.com/dlpage/gaoptout?hl=fr
- ON FRAUD-DETECTION COOKIES
- Making choices regarding Cookies issued by the Publisher or on its behalf:
- Other ways of making your choices:
VIA YOUR ONLINE CHOICES:
Users may connect to the site Youronlinechoices, offered by professionals in digital advertising, grouped together in the European association EDAA (the European Digital Advertising Alliance) and managed in France by the Interactive Advertising Bureau France. Users may thus familiarise themselves with the companies registered on this platform which offer the option of refusing or accepting the Cookies used by these companies to adapt the advertisements which may be displayed on their devices to Users’ browsing information: http://www.youronlinechoices.com/fr/controler-ses-cookies/
This site, create in English, also enables Users to express their online choices via the following link: http://www.aboutads.info/choices/.
VIA THE BROWSER SETTINGS
When it comes to managing Cookies, each browser has different settings. The settings are described in the browser's help menu, which will enable Users to find out how to edit their preferences as regards cookies:
For Internet Explorer™ :
For Opera™ :