PERSONAL DATA PROTECTION POLICY

https://www.sisley-paris.com/en-IN/

Updated:  August 2024

SISLEY pays particular attention to protecting the personal data that you provide or that it collects.

SISLEY undertakes every effort to ensure the highest degree of protection of your personal data in accordance with current regulations, particularly the Regulation (EU) 2016/679 of 27 April 2016 and the Digital Personal Data Protection Act 2023. SISLEY reserves the right to modify this Personal Data Protection Policy at any time without notice.

This document gives you a better understanding of how SISLEY protects your personal data.

We invite you to read this document before submitting your personal data.

1. THE DATA FIDUCIARY’S IDENTITY

The data fiduciary is the company c.f.e.b. SISLEY, a simplified joint stock company with capital of €1,000,000, whose registered office is located at 3 avenue de Friedland, 75008 Paris, France, registered in the Paris Trade and Companies Register under number 722 003 464 (hereinafter “SISLEY”).

2. WHAT PERSONAL DATA IS COLLECTED AND WHEN?

All information enabling you to be directly or indirectly identified is "personal data".

More specifically, SISLEY may collect, save, process, transfer, and use personal data relating to:

- Your identity (title, first and last name, address, telephone and/or mobile number, email address,.

- Technical information (language, IP address) or browsing information linked to the device.

SISLEY may collect your personal data especially when:

- You visit the website www.sisley-paris.com/ (hereinafter the "Site").

- You subscribe to SISLEY newsletters.

- You share content on social networks such as Instagram, Facebook, Pinterest or Twitter using the hashtag #sisley or other hashtags that SISLEY offers.

How is the content you share on social networks handled using the hashtags we offer?

You can choose to use the hashtags we offer to tag your content on social networks such as Instagram, Facebook, Pinterest or Twitter. By using these hashtags, you acknowledge and consent that your content may appear on our Website and be used to link to our products or services. We remind you that the information you make public on social networks can be viewed, used and saved by other people around the world, and in particular in countries that do not have legislation guaranteeing adequate protection of your personal information, as defined in your country of residence. We also draw your attention to the fact that when you submit content using one of our hashtags, your use of social networks is exclusively governed by the terms and conditions of those social networks. We invite you to read them and refer to them regularly.

If you no longer want any of your content to appear on our Website, please remove them from the social network or stop using one of our hashtags or exercise your right to erasure in accordance to article 9 8 of this policy in cases where SISLEY is able to remove it.

When collecting personal data, the mandatory or optional nature of the data is indicated by an asterisk or other means. 

3. WHAT ARE THE PURPOSES?

In general, your personal data helps SISLEY customize and continually improve your experience on the Site. It is particularly intended for:

- Managing SISLEY SMS or Newsletter subscriptions (lawful basis: consent).

4. HOW LONG IS THE DATA KEPT?

In general, SISLEY keeps your personal data for a period of time that enables it to comply with all legal obligations in accordance with the provisions in force or however long the purposes defined by SISLEY require.

So:

- Data that is kept under a legal obligation is stored in accordance with the applicable provisions.

- The data relating to your identity documents is kept as long as the specified purpose is being served or until you withdraw your consent, whichever is earlier.

SISLEY is an international group headquartered in France. In addition, for operational and technical reasons, we draw your attention to the fact that, while the specified purpose is still being served, your data is only stored for a period of three years from the last contact/purchase unless you object or request it be deleted.

At the end of this three-year period and subject to the specified purpose still being served, we may contact you again to find out if you wish to continue receiving commercial offers. If you do not give an explicit, affirmative answer, your data will either be deleted, rendered anonymous, or archived in accordance with the applicable provisions.

5. WHO ARE THE RECIPIENTS OF THE DATA?

Your data may be sent to the agreed distributor located in India and the service providers that are selected for their expertise and on behalf of SISLEY to achieve the purposes it defines such as marketing or IT service providers.

It may sometimes be passed on to SISLEY's partners for purposes for example in the context of its use of social networks. 

Under no circumstances does SISLEY sell your personal data to anyone.

If requested by the authorities, SISLEY may be required to transmit your personal data in accordance with applicable regulations.

6. WHAT IS THE LEVEL OF CONFIDENTIALITY AND DATA SECURITY?

In accordance with best practices on the date hereof, SISLEY implements all the appropriate technical and organisational measures with regard to the nature of the data and the risks that its processing entails in order to preserve the highest security and the strictest confidentiality of your personal data and, in particular, to prevent it from being distorted, damaged, or accessed by unauthorised third parties.

These measures may include but are not limited to: limited access to data, contractual terms when using service providers, security measures such as secure access, antivirus software, authentication process, firewalls.

Despite all of the confidentiality and security measures implemented by SISLEY, we draw your attention to the fact that communications via the internet are never totally secure. SISLEY therefore assumes no liability in case of a communication failure or any other case of unforeseen circumstances.

7. WHAT PROTECTION IS THERE WHEN TRANSFERRING DATA OUTSIDE INDIA?

Your data may be transmitted to countries outside India, particularly in Europe.

Before your data is transmitted to these countries, SISLEY will take all possible steps to obtain the necessary guarantees so your data is protected.

8. WHAT IS THE COOKIE POLICY?

To find out more about our cookie policy, please visit our cookie section: https://www.sisley-paris.com/en-IN/use-of-cookies/

9. WHAT ARE YOUR RIGHTS?

In accordance with the regulation on personal data protection (particularly the Regulation (EU) 2016/679 of 27th April 2016 and the Digital Personal Data Protection Act 2023), you have a right to access, to correction, to erasure, , to to nominate, to grievance redressal or to object to the processing of your personal data, and inform us of your instructions regarding the fate of your data after your death, by sending:

- An email to the data Protection Officer: dpo@sisley.fr

Where the processing is based on your consent, you also have the right to withdraw this consent at any time without prejudicing the lawfulness of the processing based on this consent made before its withdrawal.

You also have the right to a complaint with the competent supervisory authority.