Data confidentiality
Data controller
1.1 The data controller is MII SAS, whose registered office is located at 27 Rue d' Aiguillon 29200 BREST – France (hereinafter “MII”). As such, MII – and/or its service providers acting in its name and on its behalf – determines the purposes, technical and legal means of processing personal data and undertakes to take all necessary organizational measures to ensure secure processing in accordance with the Data Protection Act of 6 January 1978, as amended by the Act of 6 August 2004 (hereinafter, “the Act”) and the European Regulation of 26 April 2016 on the protection of personal data with regard to the processing of personal data and on the free movement of such data (hereinafter the “GDPR Regulation”).
1.2. MII is free to choose any natural or legal person who processes the personal data of Users at its request and on its behalf (hereinafter “the subcontractor”). Where applicable, MII undertakes to select a subcontractor offering sufficient guarantees as to the technical and organizational security measures for the processing of personal data.
Processing of personal data
2.1. Use of the Site, access to certain sections thereof and/or any request for information or services from Users of the Site may result in the disclosure of personal data. The processing of this data by MII, in its capacity as Data Controller, and/or by service providers acting in the name and on behalf of MII, will comply with the Law and the GDPR Regulation.
2.2. This Privacy Policy is intended to allow Users to know, even before accessing the different sections of the Site and communicating their personal data, how MII processes the personal data of Users of the Site. The User must necessarily read it before communicating their personal data by filling out the forms provided for this purpose in the different sections of the Site.
2.3 Personal data will be processed mainly in an automated manner, with procedures strictly related to the purposes mentioned in point 3. MII is keen that Users' personal data are processed securely and confidentially and takes adequate measures to prevent the loss, misuse, alteration and deletion of such personal data.
2.4. MII also collects certain personal data from Users in order to recognize them and offer them an optimal, quality and personalized user experience. This collection also makes it possible to correct any errors on the Site. The information collected relates to the User's connection (IP address, geographic area, day and time of consultation, services consulted and/or used, etc.) as well as the device from which the connection takes place.
2.5 The Site, in order to better meet the User's needs and personalize them, uses cookies. The purpose of the cookie is to signal your visit to the Site.
2.5. Any failure, partial or inaccurate information on personal data, indicated by an asterisk, and therefore necessary for the execution of the requested service, makes it impossible. On the other hand, any failure, partial or inaccurate information on optional personal data is without consequence.
Purposes of processing personal data
Users' personal data is processed to enable the processing and delivery of orders placed on the Site.
The ordering process on the Website www.miicollection.com requires the creation of a Customer account in which their information is stored and protected by a password that the Customer will choose.
Personal data likely to be processed
The information Users provide by filling out forms or creating their customer account is collected and processed. This information may include the Users' name, address, email address and telephone number.
Consent
The User has the right to withdraw his consent at any time. The withdrawal of consent does not affect the lawfulness of the processing already carried out, based on the consent given before this withdrawal. The exercise of this right can be done electronically at the following address client@miicollection.com ou by ordinary post to the following address: SAS MII – 1 rue Louis Pidoux– 29200 Brest / FRANCE.
Duration of storage of personal data
In accordance with the legal requirements imposed by the Law and the GDPR Regulation, MII only retains Users' personal data for the time reasonably necessary to enable the accomplishment of the purposes for which they are processed.
Communication of Users' personal data for internal purposes
7.1. Personal data may be transmitted to employees or collaborators of MII who, operating under the direct authority of MII, are appointed as data controllers or processors of such data and receive adequate operational instructions. Personal data may also be brought to the attention of employees or collaborators of data controllers if the latter, appointed by MII, so decide and provided that such data is processed in accordance with the purposes pursued.
7.2. MII ensures that subcontractors, employees or collaborators guarantee the same level of protection as itself and ensures that these subcontractors, employees or collaborators process personal data only for the purposes authorized by the purposes pursued, with the discretion and security required.
7.3. Personal data directly communicated by Users by filling out online forms may be communicated and processed by external service providers acting in the name and on behalf of MII.
Rights granted to Users
8.1. MII guarantees fair and lawful processing of Users’ personal data.
8.2. MII guarantees the User a right of access to his personal data.
In accordance with Article 15 of the GDPR Regulation, the User has the right to obtain from MII the following information (but not exhaustive) concerning his personal data: :
- the purposes of the processing ;
- the categories of personal data concerned ;
- the recipients or categories of recipients to whom the personal data have been or will be communicated, in particular recipients established in third countries or international organisations;
the existence of automated decision-making, including profiling, referred to in paragraphs 1 and 4 of Article 22 of the GDPR Regulation and, where applicable, at least meaningful information about the logic involved, as well as the significance and envisaged consequences of such processing for the data subject.
8.4. MII guarantees the right to restriction of processing.
The User has the right to obtain the limitation of the processing of his personal data in the cases listed in article 18 of the GDPR Regulation.
8.5. MII guarantees the right to data portability.
In accordance with Article 20 of the GDPR Regulation, Users have the right to receive from MII the personal data concerning them in a structured, commonly used and machine-readable format. They also have the right to transmit this data to another controller, without MII hindering this in the cases provided for by the GDPR Regulation.
8.6. MII guarantees the right to object to the processing of data.
The User has the right at any time to object to the processing of his/her personal data, when there are compelling legitimate grounds relating to his/her particular situation. In this case, MII will no longer process the personal data, unless there are compelling legitimate grounds for the processing that override the interests, rights and freedoms of the User, or for the establishment, exercise or defense of legal claims.
8.7. MII guarantees the right to make a claim.
The User has the right to make a complaint regarding the processing of his personal data by MII to the National Commission for Information Technology and Civil Liberties, the competent body for French territory.
8.8. The User may, at any time, exercise the rights cited above by sending a message electronically to the following address: client@miicollection.com ou by ordinary post to the following address: SAS MII – 1 rue Louis Pidoux – 29200 BREST / FRANCE.
Limitation of liability of the data controller
The Site may contain hyperlinks to websites controlled and operated by third parties not related to MII. In such cases, MII cannot be held responsible for the content of these sites, nor for the personal data protection practices of these third parties.
MII cannot be held responsible for the loss, corruption of data or identity theft, which may be caused in particular but not limited to, the presence of viruses or computer attacks.
Terms of modification of User data
The User may, at any time, modify the data provided by sending an electronic message to the following address: client@miicollection.com ou by ordinary post to the following address: SAS MII – 1 rue Louis Pidoux – 29200 BREST / FRANCE.
Cookies
Cookies are used on the site to improve the User experience.
The cookie identifies the User's computer and allows the site to remember its personal settings. Cookies are also used for statistical purposes.
The User can program his browser to know when a cookie is going to be activated. This allows the User to reject the use of the cookie or to ask the browser to delete the cookie at the end of his visit to the site. The online store cannot be used if cookies are refused.
Once logged in, a user ID will be assigned to the User, which allows anonymized internet tracking on multiple devices (tablet, desktop, phone, etc.).
No personal data is collected or connected to the user ID and the User can object to the use of such cookies or by sending an email to the following address : client@miicollection.com
MII reserves the right to modify this Privacy Policy in order to comply with the obligations provided for by privacy protection legislation or in order to adapt it to its practices. Consequently, the User is invited to consult it regularly in order to be aware of any possible modifications.
