Laboratoires BOIRON data protection policy
1. Introduction
The Boiron company (hereinafter 'Laboratoires BOIRON') processes users' personal data as data controller in connection with the use of its website (hereinafter 'the Site') accessible at the following url address: https://www.boiron.com/.
2. Data controller
Laboratoires BOIRON carries out processing of personal data, as data controller.
Address: 2, avenue de l'Ouest lyonnais - 69510 MESSIMY - France
E-mail: dpo@boiron.fr
Telephone : 04 78 45 61 00
3. Object
This Personal Data Protection Policy is intended for users of the Site (hereinafter the 'User(s)').
Its purpose is to inform the persons concerned about the collection and processing of their personal data with regard to the RGPD and Law 78-17 of January 6, 1978 on information technology, files and freedoms, as amended, specifying:
- Details of the data collected,
- The purposes of the processing,
- Recipients of personal data,
- How long the data will be kept,
- All rights exercisable by the persons concerned,
- The site's cookie policy,
- The contact details of the person in charge of personal data protection.
4. When do we collect personal data?
Personal data is collected, by Laboratoires BOIRON through the https://www.boiron.com Site / for the determined, explicit and legitimate purpose, on the occasion : the use of the Site in order to measure the audience;
- Details of the data collected,
- The purposes of the processing,
- Recipients of personal data,
- How long the data will be kept,
5. What categories of data do we collect and for what purposes are they collected?
Categories of data collected | Purposes |
---|---|
Web identification data: (cookies, IP address, mobile terminal identifiers, web geolocation data) | Audience measurement and analysis of Site usage. |
6. On what legal grounds is your personal data collected?
In order to be lawful, and in accordance with the requirements of Article 6 of Regulation (EU) 2016/679, the collection and processing of personal data may only take place if they meet at least one of the conditions listed below:
- The User has expressly consented to the processing;
- Processing is necessary for the proper performance of a contract;
- The processing meets a legal obligation applicable to Laboratoires BOIRON.
- The processing is necessary for the purposes of the legitimate and private interests pursued by Laboratoires BOIRON or by third parties.
7. Who are the data recipients?
The information communicated by the User is intended for authorized Laboratoires BOIRON personnel, who are bound by an obligation of confidentiality. Some of the data collected may be communicated to commercial and contractual partners for survey, analysis and commercial prospecting purposes. Laboratoires BOIRON's partners, identified in the context of use of the https://www.boiron.com/sont site:
(i) Site publisher
BOIRON
SA with capital of €17,545,408
Head office: 2 avenue de l'Ouest Lyonnais - 69 510 Messimy (France)
Registered with the RCS Lyon under no. 967 504 697
Webmaster: relationsconsommateurs@boiron.fr
Telephone number: +33 (0)4 37 41 84 00
Name and position of company director: Thierry BOIRON, General Manager
(ii) Site host
MICROSOFT AZURE
The Site is hosted by Microsoft AZURE EU Region: https://azure.microsoft.com/fr-fr/ Microsoft France SAS, 39 quai du Président Roosevelt, 92130 Issy les Moulineaux (France).
In accordance with its commitments, Laboratoires BOIRON carefully selects its subcontractors and service providers and requires them to: provide a level of personal data protection equivalent to its own; implement all appropriate measures to ensure the protection of personal data they may be required to process. Laboratoires BOIRON undertakes to enter into contracts with its subcontractors defining the terms and conditions of personal data processing.
8. Is data transferred outside the EU?
Data may be transferred outside the European Union. In this case, Laboratoires BOIRON will do its utmost to ensure that this international transfer has adequate security guarantees such as those prescribed by the applicable legislation on the protection of personal data.
9. How long is the data kept?
Laboratoires BOIRON keeps data for a period strictly necessary for the purpose for which it is collected.
10. What are your rights?
In accordance with the applicable legal provisions, you have the following rights:
Right of access | You can obtain information about the processing of your data, as well as a copy of this data. |
Right of rectification | You can ask us to modify all or part of your data if it is inaccurate or out of date. |
Right to portability | You can request that your data be exported to a third party in a usable format. |
Right to erasure | You may request the deletion of your data to the extent permitted by law. |
Right to restrict processing | You may request that your data be processed on a limited basis in certain cases provided for by law. |
Right to object | You have the right to object to the processing of your data for legitimate reasons, as well as the right to object to this data being used for commercial prospecting purposes.<br />You can exercise these rights by contacting :<br/>Our Data Protection Officer (DPO)<br/>At the contact address mentioned in paragraph 3 of this policy. <br/>Before responding to your request, we may verify your identity and/or ask you to provide further information in order to respond to your request.<br/>The national supervisory authority in charge of data protection<br/>The User may refer to the CNIL (Commission Nationale de l'Informatique et des Libertés, https://www.cnil.fr) or to any competent court. |
11. Cookies and other tracers
The User is informed that, when visiting the site, a cookie may be installed on his/her browser. The User can configure cookies by going to the 'Cookie management policy'
12. Security of personal data
Laboratoires BOIRON has implemented technical and organizational measures adapted to the degree of sensitivity of personal data, with a view to ensuring the integrity and confidentiality of data and protecting it against any malicious intrusion, loss, alteration or disclosure to unauthorized third parties.