InFamilyJoy

GDPR Compliance

How we comply with the General Data Protection Regulation

Last updated: April 15, 2023

Our GDPR Commitment

At InFamilyJoy, we take the protection of your personal data very seriously. We are committed to fully complying with the European Union's General Data Protection Regulation (GDPR) as well as all applicable local data protection laws.

This page explains how we implement the principles of the GDPR and what your rights are as a user of our services. For more detailed information about our processing of personal data, please see our Privacy Policy.

The GDPR Principles We Uphold

We adhere to the core principles of the GDPR in all our data processing operations:

Lawfulness, Fairness and Transparency

We process your data lawfully, fairly and transparently. We clearly explain what data we collect and how we use it.

Purpose Limitation

We collect your data only for specified, explicit and legitimate purposes, and do not further process it in a way incompatible with those purposes.

Data Minimization

We limit data collection to what is necessary for the purposes for which it is processed.

Accuracy

We take all reasonable steps to ensure that inaccurate data is rectified or deleted.

Storage Limitation

We retain your data in a form that permits identification only for as long as necessary for the purposes for which it is processed.

Integrity and Confidentiality

We process your data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage.

Accountability

We are able to demonstrate our compliance with these principles and have implemented appropriate procedures and documentation.

Legal Bases for Processing

In accordance with the GDPR, we process your personal data only when we have a legal basis to do so:

Consent

When you have given us your explicit consent for the processing of your data for specific purposes, such as receiving marketing communications.

Contract Performance

When processing is necessary for the performance of a contract to which you are a party, such as our Terms of Use.

Legal Obligation

When processing is necessary to comply with a legal obligation to which we are subject.

Legitimate Interests

When processing is necessary for the purposes of the legitimate interests we pursue, provided that these interests do not override your interests or fundamental rights and freedoms.

Your Rights Under the GDPR

The GDPR gives you several rights regarding your personal data. We are committed to fully respecting these rights and providing you with the tools to exercise them:

Right of Access

You have the right to obtain confirmation as to whether or not data concerning you is being processed and, if so, to access that data and certain information about its processing.

Right to Rectification

You have the right to obtain the rectification of inaccurate data concerning you and to have incomplete data completed.

Right to Erasure (Right to Be Forgotten)

You have the right to obtain the erasure of your personal data in certain circumstances, in particular when the data is no longer necessary for the purposes for which it was collected.

Right to Restriction of Processing

You have the right to obtain the restriction of processing of your data in certain circumstances, for example when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive data concerning you in a structured, commonly used and machine-readable format, and to transmit it to another controller.

Right to Object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your data based on our legitimate interest.

Right to Withdraw Consent

Where processing is based on your consent, you have the right to withdraw that consent at any time.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place where the alleged infringement occurred.

To exercise these rights, please contact us at privacy@infamilyjoy.com. We will respond to your request within one month, except in exceptional circumstances.

Security Measures

We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data
  • The ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services
  • The ability to restore the availability of and access to personal data in a timely manner in the event of a physical or technical incident
  • A process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of processing

We also ensure that persons authorized to process personal data are committed to confidentiality or are subject to an appropriate legal obligation of confidentiality.

Contact our Data Protection Officer

If you have any questions regarding the processing of your personal data or if you wish to exercise any of your rights, please do not hesitate to contact our Data Protection Officer.

Thomas Dubois

Data Protection Officer

privacy@infamilyjoy.com

InFamilyJoy SAS
123 Avenue des Champs-Élysées
75008 Paris, France