NFALAW takes the confidentiality and security of the personal data we receive from our Clients very seriously.
This information notice transparently states what type of personal data we collect and process, the methods and purposes of this collection, the data retention period, and what rights you have.
Who is responsible for the processing of the personal data that you send us?
The personal data that you send to us within the framework of the services that we offer you is collected and processed by SCP NFALAW (“NFA”) located at 155, boulevard Haussmann – 75008- Paris (RCS Paris 352 810 287) in its capacity as data controller within the meaning of the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council (“GDPR”) and of the French Data Protection Act of 6 January 1978, as amended by Act No. 2018-493 of 20 June 2018.
What are the purposes of this data processing?
Your data is collected for specific, explicit, and legitimate purposes.
Depending on the case, your personal data may be used:
- to provide you with the services for which you have mandated us;
- to exercise and defend our rights or to comply with a court decision;
- for the security of the website;
- collating statistics to analyze performance and website activity and improve the services offered on the website (including audience measurements such as the number of pages viewed, the number of visits, and your activity on the website);
- to detect and store the language preference of your browser to present the site in your language.
NFA may also use your Personal Information for administrative or other purposes required by applicable law.
What personal data are we likely to process?
Your data is collected, as the case may be, either automatically as a result of your visits to the website, or directly from you through the Contact form available on the site.
NFA takes into account the principles of data minimization, data protection at the design stage, and default data protection. Consequently, only personal data that is relevant, adequate, and limited to what is necessary for the purposes for which it is processed is collected.
The data processed is thus limited to your first and last name, e-mail address, and telephone number.
Personal data that must be provided to respond to your request are marked with an asterisk. If you do not fill in the required fields, we will not be able to respond to your requests.
Apart from these cases, you are free to refuse to provide all or part of your data indicated as optional.
On what legal basis do we process this data?
These processing operations are based on Article 6(f) of the GDPR, namely the legitimate interest of the controller. This legitimate interest consists of the provision of the services for which you have contacted us and/or mandated us.
By way of exception, certain processing operations relating to our external communications may be based on the provisions of Article 6(a), namely the consent of the data subject. If necessary, we will obtain the required consent at the time of collecting the data concerned.
To whom do we transmit this data?
The personal data collected is intended for NFA, which is responsible for its processing.
This information may be transmitted:
- to our technical subcontractors, namely our IT engineering service providers, archiving service providers, all of whom are bound by an obligation of non-disclosure;
- to different authorities and administrations when the case justifies it (CNIL, DGCCRF, etc…).
This data will not be transmitted to third parties for advertising and prospecting purposes.
How long will this data be kept?
The processed data will be kept for the duration of our contractual relationship and then archived for ten (10) years unless we are obliged by law to maintain the files for a more extended period.
This duration may also change according to the evolution of the guidelines of the CNIL and the Paris Bar Association in terms of archiving.
However, there are special cases where the retention period of your data is shorter. As such, the maximum retention period for cookies in your computer or device is 13 months from the time they are placed.
How is the security of your data maintained?
Your data is protected by technical and organizational measures that comply with French and European legal and regulatory requirements, ensuring its security and confidentiality.
We have also put in place regular updates of all the software on our servers, antivirus systems, and daily backup procedures.
NFA ensures, under the terms of written commitments and signed contracts, that its service providers or subcontractors present the necessary guarantees and implement sufficient security measures to guarantee the protection of the personal data entrusted to them for processing, following the requirements outlined in current regulations on the protection of personal data.
Although NFA takes reasonable steps to protect your Personal Information, no transmission or storage technology is entirely foolproof.
Under applicable law, in the event of a proven violation of your Personal Data that may pose a high risk to your rights and freedoms, NFA will report such breach to the relevant regulatory authority and, where required by such law, to the data subjects (either individually or in general, as appropriate).
Without prejudice to the preceding, it is your responsibility to exercise caution to prevent any unauthorized access to your data and your devices (computer, smartphone, tablet…).
What are your rights regarding your data?
You have the right to access, rectify, move, erase, limit and oppose the processing of personal data, and to determine the fate of your data after your death, for all data concerning you. These rights can be exercised at any time through the following addresses:
By email: firstname.lastname@example.org
By post: NFALAW, 155 boulevard Haussmann 75008 Paris, France.
You also have the right to file a complaint with the CNIL (https://www.cnil.fr/fr)
Is your data transferred outside the European Union? Under what guarantees?
None of your data is transferred outside the European Union.
- What’s a cookie?
A cookie is a text file of limited size deposited by the browser and stored on your device (computer, tablet, smartphone …) when you visit a website.
When you visit our website, we may, subject to your choices, which you can change at any time, install cookies on your device.
Only the sender of a cookie can read it.
A cookie does not identify you directly, but it does recognize your browser or device.
- Cookies that can be saved
Some cookies are indispensable for the use of the website, and others allow the proper functioning of certain services to optimize and personalize content or to enable the production of statistics.
These cookies are deposited either by NFA or by third parties (Google Analytics).
In cases where third parties deposit these cookies, their issue and use are subject to the cookie policies of the third parties who are the only ones who can access the information they contain. We want to inform you that we do not pass on any of your data when third parties access your cookies.
As such, when you connect to our website, two types of cookies may be installed in your device:
- technical cookies, including cookies strictly necessary for browsing the site, as well as function cookies that enable us to recognize you, to indicate your passage on a given page, and thus to improve your browsing comfort. You may oppose the use of this type of cookie and delete them using your browser settings; however, you may not be able to access the website and/or certain of its services.
- audience measurement cookies allowing NFA to measure the audience of the different contents and sections of the Website to evaluate them and to organize them better, and in particular to :
- to establish statistics and volumes of frequentation and use of the various elements of the website (content visited, browsing…) allowing us to improve the interest and ergonomics of our services,
- adapt the presentation of the Web site to the display preferences of your device (display resolution, operating system used, etc.) when you visit the Web site, depending on the hardware and viewing or reading software that your device has.
Cookies for audience measurement are issued by NFA or its service providers (Google Analytics).
The traffic analysis services used by the website produce and send to our provider only aggregate statistics and traffic volumes, excluding any individual information.
You can oppose the use of this type of cookie by using the options offered when you first visit the site (‘Settings’ button in the cookie warning banner at the bottom of your page), or by accessing the cookie settings via this link and delete them using your browser settings; however, you may no longer be able to access certain services on the website.
- How long do cookies last?
Cookies are stored in your device for a maximum of 13 months from the time they are placed.
- How do I set the cookie preferences?
Your choices are never final. At any time, you can deactivate, free of charge, all or part of the cookies according to the procedure described below, or by accessing the cookie parameters of our site via this link.
If your browser is set to refuse all cookies, you will not be able to take advantage of the essential functions of the website.
For the management of cookies and your choices, the configuration of each browser is different.
It is described in the help menu of your device’s browser, which will tell you how to change your cookie preferences. You can disable cookies or delete them using your browser options.
- How do you exercise your choices, depending on the browser you are using?
For Internet Explorer: http://windows.microsoft.com/fr-FR/windows-vista/Block-or-allow-cookies ,
For Firefox™: http://support.mozilla.org/fr/kb/Activer%20et%20d%C3%A9sactiver%20les%20cookies , For other browsers, please refer to the help menu of the browser.
- If you share the use of your device with others
If your device is used by more than one person or has more than one browser, we cannot assure you with certainty that the services for your device are intended for your use of your device and not for the use of another user of your device.
Accordingly, sharing the use of your device with others and configuring your browser settings with respect to cookies is your choice and responsibility.