Privacy Policy
At Matcha Wine, protecting your personal data is a priority.
When you use the https://www.matcha.wine/ website (hereinafter the “Site”) and/or the Matcha Advisor application (hereinafter the “Application”), we collect personal data about you.
The purpose of this policy is to inform you about how we process this data in compliance with Regulation (EU) 2016/679 of April 27, 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data (hereinafter the “GDPR”).
Who is the data controller?
The data controller is MATCHA WINE, a simplified joint-stock company registered with the Nanterre Trade and Companies Register under no. 818 375 776, with its registered office at 4 Résidence Beausoleil 92210 Saint-Cloud (hereinafter “We”).
What data do we collect?
Personal data is data that can identify an individual directly or by cross-referencing with other data.
We collect data that falls into the following categories:
-
Identification data (such as your name, first name, email address);
-
Professional data (such as your position, your company);
-
Any information you wish to provide to us as part of your contact request;
-
Internet data (such as IP address, logs, user ID, pages viewed, date and time of connection, browser used, operating system);
Mandatory data is indicated when you provide your data. They are marked with an asterisk and are necessary to provide our services.
Who are the recipients of your data?
Your personal data will be accessible to:
-
Our company staff;
-
Our subcontractors: hosting provider, newsletter service provider, CRM tool;
-
If applicable: public and private bodies, exclusively to meet our legal obligations.
Are your data likely to be transferred outside the European Union?
Your data is retained and stored for the duration of processing on the servers of Microsoft Azure, located in the European Union.
In the context of the tools we use (see the section on recipients regarding our subcontractors), your data may be transferred outside the European Union. The transfer of your data in this context is secured using the following tools:
-
Either the data is transferred to a country that has been the subject of an adequacy decision by the European Commission, in accordance with Article 45 of the GDPR: in this case, this country ensures a level of protection deemed sufficient and adequate to the provisions of the GDPR;
-
Or the data is transferred to a country whose level of data protection has not been recognized as adequate by the GDPR: in this case, these transfers are based on appropriate safeguards as specified in Article 46 of the GDPR, adapted to each service provider, including, but not limited to, the conclusion of standard contractual clauses approved by the European Commission, the application of binding corporate rules, or under an approved certification mechanism;
-
Or the data is transferred based on one of the appropriate safeguards described in Chapter V of the GDPR.
What are your rights regarding your data?
You have the following rights concerning your personal data:
-
Right to information: This is precisely why we have drafted this policy. This right is provided for by Articles 13 and 14 of the GDPR.
-
Right of access: You have the right to access all your personal data at any time, pursuant to Article 15 of the GDPR.
-
Right to rectification: You have the right to rectify your inaccurate, incomplete, or outdated personal data at any time in accordance with Article 16 of the GDPR.
-
Right to restriction: You have the right to obtain the restriction of the processing of your personal data in certain cases defined by Article 18 of the GDPR.
-
Right to erasure: You have the right to request that your personal data be erased, and to prohibit any future collection for the reasons set out in Article 17 of the GDPR.
-
Right to lodge a complaint with a competent supervisory authority (in France, the CNIL), if you believe that the processing of your personal data constitutes a violation of applicable laws. (Article 77 of the GDPR)
-
Right to define guidelines regarding the retention, erasure, and communication of your personal data after your death.
-
Right to withdraw your consent at any time: For purposes based on consent, Article 7 of the GDPR provides that you can withdraw your consent at any time. This withdrawal will not affect the lawfulness of processing carried out before the withdrawal.
-
Right to data portability: Under certain conditions specified in Article 20 of the GDPR, you have the right to receive the personal data you have provided to us in a machine-readable standard format and to request its transfer to a recipient of your choice.
-
Right to object: Under Article 21 of the GDPR, you have the right to object to the processing of your personal data. However, note that we may continue to process it despite this objection, for legitimate reasons or the defense of legal claims.
You can exercise these rights by writing to us at the contact details below. We may request additional information or documents to verify your identity.
What cookies do we use?
Cookies are text files, often encrypted, stored in your browser. They are created when a user's browser loads a given website: the site sends information to the browser, which then creates a text file. Each time the user returns to the same site, the browser retrieves this file and sends it to the website's server. There are different types of cookies, each with a different purpose:
- Technical cookies are used throughout your browsing experience to facilitate navigation and perform certain functions. For example, a technical cookie may be used to remember the answers entered in a form or the user's preferences regarding the language or presentation of a website, when such options are available.
We use technical cookies.
- We use Google Analytics, which is a statistical audience analysis tool that generates a cookie to measure the number of visits to the Site, the number of pages viewed and visitor activity. Your IP address is also collected to determine the city from which you are connecting. This cookie is only placed if you give your consent. You can accept or refuse it.
We would like to remind you that you can refuse to accept cookies by configuring your browser. However, such a refusal could prevent the Site from functioning properly.
Personal data contact point
Contact email: bonjour@matcha.wine
Contact address: Matcha Wine, 4 Résidence Beausoleil 92210 Saint-Cloud
Modifications
We may amend this policy at any time, particularly to comply with any regulatory, jurisprudential, editorial, or technical developments. These modifications will apply on the effective date of the revised version. You are therefore invited to regularly review the latest version of this policy. However, we will inform you of any significant changes to this privacy policy.
Effective date: 07/03/2022