• Partager :

Data protection policy

The data controller is the Anjou Departmental Tourism Agency (GIP Anjou Tourisme) located at 48B Boulevard Foch, 49000 Angers. With its head office in France, Anjou Tourisme is exclusively subject to French and European regulations on personal data. As such, GIP Anjou Tourisme is committed to ensuring that the processing of personal data carried out under its responsibility complies with Regulation (EU) 2016/679 on data protection (RGPD) and the Data Protection Act.

 

This policy demonstrates the organization's involvement in the protection of personal data, in particular in the context of its daily activities for the responsible use of the personal data entrusted to it. This data protection policy supplements the legal notices of our website, which you can consult at the following address: anjou-loire-valley.co.uk/legal-information

Appointment of a data protection officer

In order to preserve the privacy and protection of the personal data of citizens, its partners, and its employees, GIP Anjou Tourisme has appointed a Data Protection Officer (DPD) or "Data Protection Officer" (DPO ). He performs his duties in complete independence with all the agents of GIP Anjou Tourisme.

 

The DPD is an interlocutor specializing in the protection of personal data, responsible for ensuring the proper application of data protection rules, privileged interlocutor of the National Commission for Computing and Liberties (CNIL) and any person concerned by a collection or processing of personal data.

 

The DPO of GIP Anjou Tourisme can be contacted, electronically at the dedicated address dpo@anjou-tourisme.com or by post by sending a letter to:

Agence Départementale du Tourisme de l’Anjou

Data protection officer

48B Boulevard Foch

BP 32147

49021 Angers Cedex 02

Principles applicable to the protection of personal data

The GIP Anjou Tourisme processes personal data in compliance with the laws and regulations in force, and in particular the General Data Protection Regulation (RGPD), the Data Protection Act of 6 January 1978 as amended and the standards issued by the CNIL .

 

1. Determined, explicit and legitimate purpose of the processing

Personal data is collected for specific purposes (purposes) brought to the attention of the persons concerned. This data may not be used subsequently in a manner incompatible with these purposes in the absence of the free and informed consent of the persons concerned. These data are collected fairly, no data is collected without the knowledge of people and without them being informed.

 

2. Proportion and relevance of the data collected

The personal data collected is strictly necessary for the purpose of the collection. GIP Anjou Tourisme agents endeavor to minimize the data collected, to keep it accurate and up to date, by facilitating the rights of the persons concerned.

 

3. Limited retention period for personal data

Personal data is kept for a limited period, which does not exceed the period necessary for the purposes of collection. The data retention periods are brought to the attention of the persons concerned on request from the DPO, and vary according to the nature of the data, the purpose of the processing, or legal or regulatory requirements.

 

4. Confidentiality / Data security

Information systems protection policies are implemented by the Department of Maine-et-Loire, owner of the infrastructures hosting the GIP Anjou Tourisme, or by the IT service providers with whom the GIP Anjou Tourisme has contracted for the provision. specific tools. They are adapted to the nature of the data processed and to the activities concerned.

 

Appropriate physical, logical and organizational security measures are provided to guarantee the confidentiality of the data, and in particular to prevent any unauthorized access.

 

GIP Anjou Tourisme also requires all its subcontractors to present appropriate guarantees to ensure the security and confidentiality of personal data.

 

As an exception, personal data may be transferred to countries located in the European Union or outside the European Union. If this is the case, the persons concerned are precisely informed, and specific measures are taken to supervise these transfers.

 

5. Rights of individuals

All the necessary means to guarantee the effectiveness of the rights of individuals over their personal data are implemented:

  • Clear and complete information on the data processing implemented, easily accessible and understandable by all.
  • Easy access to data: everyone has rights over data concerning them, which they can exercise at any time and free of charge.

The people concerned have:

  • A right to information (articles 13 and 14 GDPR);
  • The right to access and copy their personal data (article 15 GDPR);
  • A right of rectification (article 16 GDPR);
  • A right to erasure or "right to be forgotten" (article 17 GDPR);
  • A right to limit processing (article 18 GDPR);
  • A right to data portability (article 20 GDPR);
  • A right of opposition (article 21 GDPR)

For any information or exercise of your data protection rights on the processing of personal data managed by the Anjou departmental tourism agency, you can contact the Data Protection Officer:

Agence Départementale du Tourisme de l’Anjou

Data protection officer

48B Boulevard Foch

BP 32147

49021 Angers Cedex 02

Monitoring of the personal data protection policy

This policy is made available to everyone on the website of the Anjou Departmental Tourism Agency. It is regularly updated to take into account legislative and regulatory developments, and any change in its organization or in its activities, either on its own or with its partners.

 

This general personal data protection policy is supplemented with specific information at the time of data collection, as well as a notice relating to the management of cookies accessible when connecting to the organization's website.

 

Version updated on 10/29/2021.