CVE Privacy Policy
1. Introduction
- What is personal data? ?
Personal data (hereinafter referred to as “Personal Data” or “Data”) is any information relating to a natural person who is identified or can be identified, directly or indirectly, by one or more factors specific to him or her. The identification of a natural person may be based on a single piece of data, or on a combination of data (e.g.: a woman living at such address, born on such day, and a member of such association).
- Why define a privacy policy?
The CVE Group (hereinafter the “Group” or “CVE”) attaches great importance to the protection of Personal Data and privacy.
During your browsing as a user (hereinafter the “User”) of the cvegroup.com site and/or associated sites (hereinafter jointly, the “Site”), CVE may collect and use Personal Data concerning you in its capacity as data controller.
The Group wishes to ensure that your use of our Site or our services is transparent and honest.
Considering the provisions of Regulation 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, hereinafter “GDPR”) and those of Law No. 78-17 of January 6, 1978 relating to information technology, files and freedoms (“Loi Informatique et Libertés”), the Group implements this policy (hereinafter the “Policy”) to inform you of how your Data is protected and processed.
The associated sites are as follows:
- https://www.cvenorthamerica.com/
- https://www.cvesouthafrica.com/
- https://ecovalim.fr/
- https://equimeth.cvegroup.com/
- https://cvedebreuilh.cvegroup.com/
- https://montbrison.cvegroup.com/
- https://cveaoste.cvegroup.com/
- https://regniowez.cvegroup.com/
- https://lespennesmirabeau.cvegroup.com/
- What is the scope of this Policy? ?
The principles of this Policy apply to Users of the Site.
The Policy must be complied with prior to the execution of any Data processing (hereinafter the “Processing(s)”) and must be taken into account during the Data processing process.
2. Who is responsible for processing your Data?
CVE, which determines the purposes and means of the Processing, is the Data controller (hereinafter the “Data Controller”) within the meaning of article 4.7 of the GDPR.
3. What types of Data are collected?
CVE collects the following Personal Data solely for the purposes of Processing:
Type of data processed
Contact and identification data
Information given in the contact form
Various Internet browsing data
Examples (non-exhaustive list)
Surname, first name, address, telephone number, e-mails, etc. provided by the User via the contact form
Subject and content of the message sent by the User
For further information, please consult the cookies policy in article 9
4. For what purposes is Data collected?
The Group processes User Data to:
- Know its Users ;
- Manage relations with Users, particularly in the context of communications (sending information by e-mail, suggesting content to be consulted) or commercial exchanges.
- Optimize content and navigation on the Site.
5. What is the legal basis for this Processing?
These Processings are :
- Partly necessary for the performance of a contract to which Users are involved;
- Partly necessary for the pursuit of CVE’s legitimate interests in knowing and communicating with Users;
- Partly based on consent obtained from Users.
6. Who can access your Personal Data and for how long?
This Data is used exclusively by CVE and its authorized subcontractors.
Your Data will not be sold or exchanged with third parties for commercial prospecting purposes.
It may however be communicated in certain cases, and to the extent strictly necessary to achieve the purposes indicated above, with :
- service providers acting as subcontractors within the meaning of applicable regulations to perform services in connection with CVE services and the Group’s business. These service suppliers provide services such as hosting, storage, analysis, marketing, communication, data processing, database management and IT maintenance. They only act on instructions from CVE and will only have access to User Data in order to use these services and will be bound by the same security and confidentiality obligations as CVE;
- service providers or partners providing services for CVE (developers, business introducers, lawyers, auditors, etc.).
As soon as Data is collected, you consent to its Processing.
In applicable cases, you may withdraw or modify this consent at any time by sending an e-mail to the following address: rgpd@cvegroup.com. In this case, Data Processing will be suspended immediately. However, we remind you that the withdrawal of consent does not have retroactive effect (which does not render previous Processing operations unlawful).
Data collected on the Site is kept for a maximum of two years.
7. Where can your Data be transferred to?
In certain cases, CVE may transfer your Data outside the European Union, in particular to its foreign business units whose location is indicated on www.cvegroup.com and to its service providers mentioned in the previous section.
Before transferring data, CVE undertakes to check the level of data protection applicable in the country concerned.
If this country does not offer an adequate level of protection in accordance with the GDPR, CVE will put in place the necessary guarantees to transfer the Data in compliance with the GDPR, including by signing standard contractual clauses, with the company to which the Data is transferred, in accordance with articles 46 and 47 of the GDPR.
8. What are your rights as a User?
- Right to be informed
You may at any time ask the Data Controller what type of Data is collected and why it is collected and may be stored.
- Right if access and rectification
You may access your Data by requesting a copy from the Data Controller. You also have the right to know the origin of the information concerning you and request that this data be rectified, completed, updated or deleted.
You can put your request in writing or ask onsite. The Data Controller has a period of one month to provide a reply from the date of the request.
The Data Controller may refuse a request for access for good reason, or in the event of a manifestly abusive request (e.g. repetitive nature).
The right of access must be exercised with due respect for the rights of third parties.
- The right to data portability
You may receive Data from the Data Controller in a suitable format, in particular for transmission to a third party. Where technically possible, Data may be transmitted directly to another Data Controller.
- The right to object
You may object to the reuse of your Data by the Data Controller for solicitation purposes, in particular for commercial purposes.
Any objection to the Processing of your Data must be based on a legitimate reason, except where this meets a legal obligation.
9. Cookies policy
- What is a cookie?
When you visit the Site, you may receive a text file called a cookie.
A cookie is a small file of letters and numbers downloaded to your device when you access certain websites or applications. It enables us to collect information about your browsing habits.
- What types of cookies are used on the Site?
CVE uses necessary, analytical and marketing cookies on its website.
Necessary cookies are essential for the proper functioning of the Site.
Analytical cookies are used to establish statistics of attendance and use of the Site, in order to improve our services and content according to Users’ preferences.
Marketing cookies allow to analyze our marketing campaigns and tailor our content and advertising to your interests. These cookies may also be placed by third-party advertising networks.
| Nom | Type | Vendeur | Expire | Description |
| GRECAPTCHA | Analytical | 13 months | This cookie is used for audience measurement and to collect data for statistical purposes. | |
| GA4 | Analytical | 26 months | This cookie is used for audience measurement purposes. | |
| Axeptio_cookies | Analytical and Marketing | Axeptio | 11 months | This cookie is used for audience measurement purposes. |
| Youtube | Marketing | Youtube | Variable | This cookie is used to play embedded videos from YouTube. |
| _gcl_au | Marketing | Google ad sense | 3 months | This cookie is used to store and track conversions. |
- How do you manage the installation of cookies on your browser?
When you first visit the Site, you can accept or refuse all or some of the cookies requiring your prior consent, in particular via the banner at the bottom of the page displayed when the Site is launched.
The User therefore has the option of accepting all cookies, or refusing them in full or in part, by indicating his or her choices via the “Cookie preferences” link.
It is also possible to modify your preferences at any time while using the Site in the cookie management bar on your browser.
10. Contact and Policy information
- Contact details
You may ask any questions you may have regarding the Processing of your Data or exercise any rights by contacting the following e-mail address: rgpd@cvegroup.com.
- Links to other websites
The Site may contain links to other web pages of interest.
The Group declares that it is not responsible for the protection and confidentiality of Data that Users may provide when visiting sites not governed by the Privacy Policy and invites you to refer to the policies of such sites.
- Changes to this Privacy Policy
The Group keep its Privacy Policy under regular review to make sure it is up to date and accurate.