IkaCode (“IkaCode”, “our”, “we” and “us”) and our partners respect your privacy.
Please read this privacy policy carefully to understand how your personal data is collected, processed and stored when you use this ikacode.com website.
The term “personal data” refers to any information relating to a natural person and enabling that person to be identified, directly or indirectly, on the basis of a single piece of data or a combination of data.
All personal data collected on the present website are processed under the responsibility of IkaCode, a sole proprietorship (EI) registered with the Toulouse Trade and Companies Register under number 854 059 896 and having its registered office at 229 rue Saint-Honoré, 75001, Paris, France and in compliance with the French Data Protection Act no. 78-17 of January 6, 1978, in its current version, as well as Regulation (EU) 2016/679 of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data.
Within the meaning of the regulations applicable to personal data, IkaCode is therefore a data controller.
This privacy policy describes:
- How IkaCode uses your personal data
- How IkaCode shares your personal data
- How IkaCode protects your personal data
- Where IkaCode hosts and transfers your personal data
- How you can exercise your rights regarding your personal data
- Updates to the privacy policy
- How to contact us
I. How IkaCode uses your personal data
- IkaCode may use your personal data for the following purposes:
- Create your customer account on this website
- Carry out actions necessary to manage contracts, invoices and customer relations
- Publish and manage reviews of services ordered on this website
- send you our newsletter, if you have subscribed to it
- Respond to your contact requests made via our website
- compile a file of users, prospects and customers
- Compile sales and visitor statistics
- Manage any unpaid invoices and disputes
- Comply with our legal obligations
Most of the processing operations listed above are necessary for the performance of the contract entered into with IkaCode when you use our website to order the products and/or services available for sale on the site.
When you voluntarily provide us with personal data, the collection of your personal data is based on the following legitimate interest: to better respond to your requests for information.
The processing of your personal data for the purpose of sending you our newsletter, on the other hand, is based solely on your consent to receive our newsletter, which you may withdraw at any time. If you do not consent to receive our newsletter, please note that this will not prevent you from creating your customer account and placing orders on our website.
Our Analytics tool
We use Matomo Analytics to track visits on our website. All the collected data is anonymized and only locally stored, to comply with GDPR regulation.
II. How IkaCode shares your personal data
Within IkaCode, and with regard to each processing purpose, personal data concerning you is collected, processed and stored by authorized IkaCode personnel, solely within the scope of their respective competences, and in particular by the customer service, marketing and IT departments.
We do not share personal data with other companies, organizations and individuals, unless one of the following circumstances applies:
(1) Sharing with prior consent: After obtaining your consent, IkaCode will share the information you have authorized with the specific third parties or categories of third parties indicated at the time your consent was obtained.
(2) Sharing with our service providers: IkaCode may also disclose your information to companies that perform services for us or on our behalf. Examples of these service providers include companies that provide IT services such as our web host or email service provider, delivery services for our products, or marketing activities on our behalf. These service providers may use your information solely for the purpose of providing services to you on behalf of IkaCode.
(3) In fulfillment of a legal obligation, sharing in accordance with laws and regulations: IkaCode, may share your information as required by laws and regulations, in order to resolve legal disputes, or as required by judicial or administrative authorities under the law.
IkaCode will ensure the legality of any sharing of personal data via data processing clauses with companies with whom your personal data is shared, obliging them to comply with this privacy policy and to take appropriate security and confidentiality measures when processing personal data.
III. How IkaCode protects your personal data
IkaCode attaches great importance to the security of your personal data and has adopted industry standard practices to protect your personal data from unauthorized access, disclosure, use, alteration, damage or loss.
We have also taken all reasonable precautions to ensure the security and confidentiality of your data, and in particular to prevent it from being distorted, damaged or communicated to unauthorized persons.
IkaCode also adopts the following organizational measures:
(1) We take reasonable and practicable steps to ensure that personal data collected is kept to a minimum and is only as relevant as necessary, having regard to the purposes for which it is processed.
(2) We keep your personal data for as long as is strictly necessary for the purposes for which it is to be processed, unless the retention of your data is required or permitted by law. By way of example, we retain data relating to the execution of your orders for the period required by law for the retention of accounting records, i.e. a maximum of 10 years from the financial year in question.
Data that may be used to establish, defend or exercise legal rights may be kept for a maximum of 5 years from the date of collection or the last contact from the prospect (in application of the ordinary law limitation period).
(3) We deploy access control mechanisms to ensure that only authorized personnel can access your personal data.
In the event of a personal data breach, IkaCode will comply with the legal and regulatory requirements applicable to the notification of personal data breaches to the competent supervisory authorities and/or the persons concerned.
IV. Where IkaCode hosts and transfers your personal data
Your personal data will be hosted by our hosting provider, located in Germany.
V. How you can manage your rights regarding your personal data
You have the right to access, rectify, delete, limit and object to the processing of your personal data, as well as the right to define instructions concerning the fate of your data after your death and the right to the portability of your personal data.
You also have the right to appeal to the Commission Nationale Informatique et Libertés in France and to a competent supervisory authority in any other Member State, depending on your usual place of residence, your place of work or the place where the violation of your rights occurred, if you consider that the processing of your data does not comply with the applicable laws. This recourse may be exercised without prejudice to any other recourse before an administrative or judicial court, which also constitutes a right available to you.
You may contact us at any time at the addresses indicated in the “How to contact us” section below in order to exercise your rights with regard to personal data under the conditions laid down by the applicable regulations. You must indicate which right you wish to exercise and provide all the details necessary for us to respond to your request.
These rights are exercised in accordance with applicable regulations.
- The right of access means that you can ask us at any time to tell you whether we are processing personal data about you and, if so, to tell you what personal data is involved and the nature of the processing carried out.
- The right of rectification means that you can ask us to rectify any inaccuracies in your personal data. You may also request that your personal data, if incomplete, be completed insofar as this is relevant to the purpose of the processing in question.
- The right to erasure means that you can ask for your personal data to be erased, in particular when :
- Their retention is no longer necessary for the purposes for which they were collected;
- Your personal data is processed on the basis of your consent, you wish to withdraw this consent, and there is no other legal basis to justify the processing;
- You have objected to the processing of your personal data and therefore wish to have them deleted;
- Your personal data has been processed unlawfully;
- Your personal data must be deleted in order to comply with a legal obligation laid down either by European Union law or by French law.
- The right to restriction means that you can ask us to restrict the processing of your personal data:
- When you dispute the accuracy of your personal data for a period of time that allows us to verify its accuracy;
- When, following a processing operation established as non-compliant, you prefer the limitation of processing to the complete erasure of your personal data;
- When we no longer need your personal data for the purposes of processing, but it is still necessary for the establishment, exercise or defense of legal claims;
- If you have objected to the processing of your personal data and would like us to restrict processing for a period that allows us to check whether the legitimate reason you are invoking is justified.
Restriction of processing means that the processing of your personal data is limited to the storage of your personal data. We will not carry out any further operations on the personal data in question.
- The right to object means that you may object to the processing of your personal data, where such processing is based on the pursuit of IkaCode’s legitimate interests. The right to object is exercised subject to justification of a legitimate reason relating to your particular situation. We will then cease the processing in question unless there are compelling legitimate grounds for continuing it in accordance with the applicable regulations.
- The right to define directives concerning the fate of your data after your death allows you to make known your instructions concerning the conservation, deletion and communication of your personal data after your death.
- The right to portability means that you can ask us, under the conditions laid down by the applicable regulations, to receive your personal data in a structured, commonly used and machine-readable format, and to transmit it to you, or to ask us to transmit it directly to a third party of your choice where this is legally and technically possible.
Where we process your personal data on the basis of your consent, you may withdraw your consent at any time by contacting us at the addresses given in the “How to contact us” section, or by clicking on the unsubscribe link included in each of our communications.
However, withdrawal of your consent does not affect the validity of the processing carried out prior to such withdrawal.
VI. Updates to this privacy policy
IkaCode reserves the right at any time to modify or update, in whole or in part, this privacy policy, due to changes in applicable regulations on the protection of personal data or data processing.
Any substantial changes to the Privacy Policy will be notified to you by e-mail when you have provided us with a valid e-mail address and will be published on the website. We recommend that you regularly read this Policy so that you are fully aware of our commitments in terms of security and protection of your personal data.
VII. How to contact us
If you have any questions, comments or suggestions, please contact us by visiting the contact us page.
Or by post to Ikacode, 229 rue Saint-Honoré, 75001, Paris, France.
If you are not satisfied with IkaCode’s response to a request to exercise your rights in accordance with Article V above, or if you wish to report a breach of applicable data protection regulations, you have the right to lodge a complaint with the CNIL by post (CNIL – 3 Place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07) or on its website (www.cnil.fr), or with the data protection authority of the country in which you usually live or work.