TIGMAT ("TIGMAT", "we", "us" and "our") and our partners respect your privacy.
All personal data collected on this website are processed under the responsibility of the company TIGMAT, registered in the Trade and Companies Register of Paris under the number 893970582, and having its registered office at 118 Avenue Jean Jaurès, 75019 Paris, France.
In the sense of the regulations applicable to personal data, TIGMAT is therefore responsible for processing.
- How we use your personal data
- How we share your personal data
- How we protect your personal information
- Where we host and transfer your Personal Information
- How you can exercise your rights with respect to your personal data
- How to contact us
How we use your personal data
TIGMAT may use your personal data for the following purposes:
- Create your customer account on this website
- To process orders for services
- Publish and manage your opinions and/or comments left on the website
- To send you our newsletter, if you have subscribed to it
- Respond to your contact request made from our website
The data collected is necessary for the execution of the contract with TIGMAT when you use our website to order the services available for sale on the site.
The processing of your personal data in order to send you our newsletter is, however, based solely on your consent to receive our newsletter, which you may withdraw at any time. If you do not consent to receive the newsletter, please note that this will not prevent you from creating your customer account and placing orders on our website.
How TIGMAT shares your personal data
Within TIGMAT, and with respect to each processing purpose, your personal data is collected, processed and stored by authorized TIGMAT personnel only within the scope of their respective competencies, including the customer service, marketing and IT departments. We do not share personal data with other companies, organizations and individuals unless one of the following circumstances applies:
- Sharing with prior consent: after obtaining your consent, TIGMAT will share the information you have authorized with the specific third parties or categories of third parties identified at the time your consent was obtained.
- Sharing with our providers: TIGMAT may also disclose your information to companies that perform services for us or on our behalf. These service providers include companies that provide information technology services such as our web host or email service provider, delivery services for our products, or that perform marketing activities on our behalf. These service providers may use your information only for the purpose of providing services to you on behalf of TIGMAT.
- In fulfillment of a legal obligation, sharing in accordance with laws and regulations: TIGMAT, may share your information as required by law and regulation, to resolve legal disputes, or as required by judicial or administrative authorities under the law.
How we protect your personal data
TIGMAT takes the security of your personal information very seriously and has adopted industry standard practices to protect your personal information from unauthorized access, disclosure, use, modification, damage or loss.
We have also taken reasonable precautions to ensure the security and confidentiality of your data, including preventing it from being altered, damaged or disclosed to unauthorized persons.
TIGMAT also adopts the following organizational measures:
- We take reasonable and practicable steps to ensure that the personal data collected is as minimal and relevant as necessary for the purposes for which it is processed.
- We keep your personal data for the period of time that is strictly necessary for the purpose of the processing, unless the retention of your data is required or permitted by law. For example, we keep data related to the execution of your orders for the period of time required by law for the retention of accounting records, i.e. a maximum of 10 years from the date of the exercise concerned.
- We deploy access control mechanisms to ensure that only authorized personnel can access your personal data.
In the event of a personal data breach, TIGMAT will comply with the legal and regulatory requirements applicable to the notification of personal data breaches to the relevant supervisory authorities and/or data subjects.
Where TIGMAT hosts and transfers your personal data
Your personal data will be hosted within the hosting infrastructures of our AWS host, located in France. Some of the third parties to whom we communicate your personal data are located in countries outside the European Union, and in particular internationally.
When products available for sale on the website are delivered by resources located in countries outside the European Union, we may transfer your personal data to these countries. It may also happen that service providers access your data on our behalf in order to provide a specific service and are located in countries outside the European Union.
Where such transfers exist, we ensure that such transfers of personal data are regulated in accordance with applicable law to ensure an adequate level of data protection, either through an adequacy decision of the European Commission or through legal instruments such as data transfer agreements incorporating the European Commission's Standard Contractual Clauses.
If you have any questions about the recipients and transfers of data we make outside the European Union, please contact us at the addresses listed in the "How to contact us" section below.
How you can manage your rights regarding your personal data
You have the right to access, rectify, delete, limit and object to the processing of your personal data, as well as the right to define directives concerning the fate of your data after your death and the right to portability of your personal data.
You may contact us at any time at the addresses indicated in the "How to contact us" section below in order to exercise your rights with respect to personal data in accordance with the applicable regulations. You must indicate which right you intend to exercise as well as all the details necessary for us to respond to your request.
These rights are exercised under the conditions laid down by the applicable regulations.
- The right of access means that you can ask us at any time to tell you whether we are processing personal data about you and, if so, to tell you what personal data is involved and the characteristics of the processing operation(s).
- The right of rectification means that you can ask us to rectify your personal data if they are inaccurate. You may also request that your personal data, if incomplete, be completed insofar as this is relevant to the purpose of the processing in question.
- The right to erasure means that you can ask for your personal data to
be erased when:
- Their conservation is no longer necessary for the purposes for which they were
Your personal data is processed on the basis of your consent, you wish to withdraw that consent, and there is no other legal basis for processing.
- You have objected to the processing of your personal data and therefore wish to have them deleted.
- Your personal data has been unlawfully processed.
- Your personal data must be deleted in order to comply with a legal obligation that is provided for either by European Union law or by French law.
- Their conservation is no longer necessary for the purposes for which they were collected.
- The right to restriction means that you can ask us to restrict the
processing of your personal data:
- When you challenge the accuracy of your personal data for a period of time that allows us to verify its accuracy.
- When, following a processing operation established as non-compliant, you prefer the limitation of the processing to the complete erasure of your personal data.
- When we no longer need your personal data for the purposes of processing but it is still necessary for the establishment, exercise or defence of legal claims.
- When you have objected to the processing of your personal data and you wish to limit the processing for a period of time that allows us to verify whether the legitimate reason you invoke is justified.
The limitation of the processing means that the processing of your personal data will be limited to the storage of your personal data. We will not carry out any further processing of the personal data concerned.
- The right to object means that you may object to the processing of your personal data, where such processing is based on the pursuit of TIGMAT's legitimate interests. The right to object can be exercised provided that you can prove a legitimate reason relating to your particular situation. We will then cease the processing in question unless there are legitimate and compelling reasons for continuing it in accordance with the applicable regulations.
- The right to set out instructions about what to do with your data after your death allows you to make known your instructions about the retention, deletion and disclosure of your personal data after your death.
- The right to portability means that you can ask us, under the conditions laid down by the applicable regulations, to receive your personal data in a structured, commonly used and machine-readable format and to transmit them to you, or to ask us to transmit them directly to a third party of your choice where this is legally and technically possible.
When we process your personal data on the basis of your consent, you have the right to withdraw your consent at any time by contacting us at the addresses indicated in the "How to contact us" section or by clicking on the unsubscribe link in each of our communications.
However, the withdrawal of your consent does not call into question the validity of the treatment carried out before this withdrawal.
How to contact us
If you have any questions, comments or suggestions, please contact us by visiting the contact us page or by submitting them to firstname.lastname@example.org.
Or write us at 118 Avenue Jean Jaurès, 75019 Paris, France.
If you are not satisfied with TIGMAT's response to a request to exercise your rights under Article V above or if you wish to report a breach of applicable data protection regulations, you have the right to lodge a complaint with the CNIL by mail (CNIL - 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07) or on its website (www.cnil.fr), or with the data protection authority of the country in which you usually reside or work.