In accordance with the European Regulation relating to Personal Data, which comes into force on 25th May 2018 (the “GDPR”), Fraikin seeks to ensure that you receive complete information with regards to the processing of your data.
HOW IS FRAIKIN COMMITTED TO PROTECTING MY DATA?
Fraikin is committed to ensuring a high level of data protection for its customers, prospects, users of its website and all other persons whose data it processes.
Fraikin is committed to respecting the regulations that apply to all the data it processes. More specifically, Fraikin commits in particular to the following principles:
Your personal data is processed lawfully, fairly and in a transparent manner (lawfulness, fairness and transparency).
Your personal data is collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes (purpose limitation).
Your personal details kept in a form which permits the identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed (storage limitation).
Your personal data is accurate, kept up to date, and every reasonable step is taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay (accuracy).
Fraikin is implementing appropriate technical and organizational measures in order to ensure a sufficiently high level of security in relation to the inherent risk involved in data processing, to meet regulatory demands and to protect the rights and the data of the people concerned from the moment the data is collected.
Moreover, Fraikin contractually requires that its subcontractors (service providers, suppliers, etc.) implement the same level of data protection.
Finally, Fraikin is committed to adhering to all other principles related to data protection, and more specifically, pertaining to users’ rights, the duration of time that data is stored, as well as obligations regarding the transfer of personal data.
HOW DOES FRAIKIN USE THE DATA IT COLLECTS?
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed which is classified as anonymous data. It is collected through interactions with Fraikin, including direct contact and interaction with the website.
These personal data include addresses, email addresses and telephone numbers when provided through an enquiry form, customer or supplier forms.
- Purpose for data processing and legal grounds
We process the details you have given to us in order to manage our business relationship and for the execution of our current agreements. This data is necessary to manage and execute our agreement, in the following areas:
- To provide vehicle solutions and maintenance services to you;
- To make contact with you through email or by telephone;
- Notification of any changes to our services;
- Accounts – i.e. sending order confirmations and invoices or any other account queries.
We may also use your contact to send you information relating to the services we offer or to give you updates concerning our activities in accordance with the opt in / opt out you choose.
FOR HOW LONG IS MY DATA STORED?
We keep your information for the duration of our relationship and for the time mandatory afterwards in order to be able to meet any statutory requirements (e.g. tax reporting etc).
We will not retain your data for longer than necessary for the purposes set out in this policy. When it is no longer necessary to retain your personal data, we will delete it.
WHO USES THE PERSONAL DATA COLLECTED BY FRAIKIN?
Personal data collected by Fraikin may be communicated to authorised Fraikin employees and to providers acting as data processors of other related services, in order to carry out the services as outlined above.
Please note that in these specific cases, Fraikin requires its subcontractors (repairers, transportation companies, suppliers, etc.) to implement strict confidentiality and data protection policies.
Fraikin has also implemented policies to ensure that its employees are aware of their obligations on confidentiality and data security and have put in place ongoing training programmes to ensure that this awareness is maintained and kept up to date.
In order to monitor the governance processes within our Group, we may transfer these details to our parent company, Fraikin SAS, in France.
- Data transfer outside the European Union
At the present time, no personal data is transferred outside of the EEA. However, should this position change in the future, Fraikin will ensure that all of its partners meet the same standards of data security and data management required under this policy and under the requirements of the EEA legislation.
HOW CAN I EXERCISE MY PRIVACY RIGHTS?
Under the General Data Protection Regulation, you have the following rights, which at any time you can exercise:
Right of access
You have the right to be provided with a copy of your personal data.
You have the right to require us to correct any mistakes in your personal data
You have the right to be forgotten – The right to require us to delete your personal data in certain situations
Restriction of processing
You have the right to require us to restrict processing of your personal data
You have the right to receive the personal data you provided to us, in a structured, commonly used and machine-readable format
The right to object
You have the right to object. However, in some situations this right can be rejected, so as to support legitimate business or lawful requirements.
Not to be subject to automated individual decision-making
The right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you.
For further information on each of the above rights, including the circumstances in which they apply, see the guidance from the UK Data Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation.
If you would like to exercise any of those rights, please contact us to let us know the data to which your request relates:
- Email us on firstname.lastname@example.org
- Call us on 01 49 03 68 00
- Or write to us at:
- Direction Juridique
- West Plaza
- 9-11 rue du Débarcadère
- 92700 COLOMBES.
IT SECURITY / SECURE TRANSACTIONS
Fraikin is committed to ensuring the security and privacy of the personal data that you provide us. We are implementing all necessary technical and organizational measures, with regards to the nature, impact and context of the personal data that you share with us and the risks involved in processing it, in order to protect your personal data and, more specifically, to prevent any corruption, damage, or unauthorized use by third parties, either through accident or criminal activity. Finally, Fraikin is implementing a procedure specifically designed to manage security breaches which allow us to intercept any data breaches, notify the relevant authorities and alert you to the fact that your personal data may have been affected.