Privacy Policy

This Privacy Policy defines and informs you of how PB DESIGNATION (hereinafter the "Website Editor") uses and protects the information you provide to us when you use this site from the following URL: pbdesign.com (hereinafter "the Site"). This privacy policy supplements the legal information that users can consult by clicking on the "Legal Notice" section.

This privacy policy may be amended or supplemented at any time by the Site Editor, in particular with a view to complying with any legislative, regulatory, judicial or technological developments. In such a case, the date of its update will be clearly identified at the top of this policy. These changes bind the User as soon as they are posted online. It is therefore appropriate for the User to consult this Privacy and Use of Cookies Policy regularly in order to take notice of any changes.

Access to the Site implies full and unqualified acceptance by the User of this Privacy Policy and the Cookie Policy.

The User acknowledges that he has read the information below and authorizes the Publisher of the Site to collect and process, as specified in the Privacy Policy, the personal data that he communicates on the Site as part of his contact request.

The Privacy Policy is valid for all pages hosted on the Site and for records of this Site. It is not valid for pages hosted by third parties to which the Site Editor may refer and whose privacy policies may differ. The website publisher cannot therefore be held responsible for any data processed on or by those sites.

Article 1: General principles for data collection and processing

In accordance with the provisions of Article 5 of the European Regulation 2016/679 of 27 April 2016 (hereinafter "the GDPR") and the amended Law No 78-17 of 6 January 1978 on computer science, files and freedoms (hereinafter "Informatique et Libertés"), the collection and processing of data by users of the website comply with the following principles:

Legality, loyalty and transparency: Data can only be collected and processed with the consent of the user who owns the data. Whenever personal data are collected, the user will be informed that his or her data is collected and why his or her data is collected;
Determined, explicit and legitimate objectives: Data collection and processing are carried out to meet one or more of the objectives set out in this Privacy Policy;
Minimization of data: only the data necessary for the proper implementation of the objectives pursued by the site are collected;
Retention of data reduced in time: data are kept for a limited period of time, of which the user is informed;
Accuracy of data: Data collected and processed are kept up to date. All reasonable measures shall be taken to ensure that inaccurate data are deleted and corrected as soon as possible;
Data integrity and confidentiality: The data controller undertakes to ensure appropriate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.

In accordance with Article 6 of the GDPR, the collection and processing of personal data may only take place if they comply with at least one of the following conditions:

The user has expressly consented to the processing;
Treatment is necessary for the performance of a contract to which the person concerned is a party;
Treatment meets a legal obligation of the controller;
Treatment is due to a need to safeguard the vital interests of the data subject or another natural person;
The treatment is due to a need related to the performance of a public interest mission or to the exercise of the public authority entrusted to the controller;
Treatment is necessary for the legitimate interests pursued by the controller or by a third party, unless the fundamental interests and rights of the data subject prevail.

Article 2: Personal data collected

Generally speaking, you can visit the Website of the Publisher of the site without communicating any personal information about you. You are in no way obliged to transmit this information to the Site Editor.

However, in case of refusal, you may not be able to benefit from certain information or services you have requested.

Article 2.1: Contact form

The Publisher of the site may in some cases ask you to inform: civility, surname, first name, email address, telephone number, message and any other information you choose to communicate (hereinafter your "Personal Information").

Fields marked with an asterisk (*) in the form are mandatory. Without this information, we will not be able to process your contact request.

Legal basis: User consent (DGPR section 6.1.a).
Purpose: respond to your contact requests and manage the relationship with prospects.
Shelf life: 3 years from the collection or last contact from the user, in accordance with the recommendations of the CNIL for commercial prospecting (discussion no. 2013-175 of 4 July 2013). Messages over 3 years old can be manually deleted by the Site Editor via the administration interface.
To: the data are transmitted by email to the Site Editor and stored in a database hosted by BDL SYSTEMS (see Article 6).

Article 2.2: Log Server Files

When the User accesses the Site, the servers consulted automatically record certain data, such as:

The type of domain with which the User connects to the Internet;
The IP address assigned to the User (when connected);
Date and time of access to the Site and other traffic data;
Page viewing time;
Approximate location data;
Pages consulted;
The type of browser used;
The platform and/or operating system used.

Legal basis: legitimate interest of the controller (Article 6.1.f GDPR).
Purpose: detect malfunctions, computer attacks and fraudulent attempts.
Shelf life: 13 months maximum.

Article 3: Purposes of treatment and shelf life

Prospect data

The data is used to respond to your contact requests and to build and maintain a prospect file for a period of 3 years from the collection or last contact from the prospect, in accordance with CNIL's recommendations for commercial prospecting.

Data generated by cookies (Matomo)

Data related to your visit to the website is used to optimize the operation of our website and to measure attendance.
Duration of cookies stored on your device: 13 months maximum.
Duration of storage of the collected navigation data: 25 months maximum.

Data generated by server log files

This website-related data is used to detect malfunctions, computer attacks and fraudulent attempts and is kept for a maximum of 13 months.

Article 4: Transmission of data to third parties

Article 4.1: Sharing your personal data with third parties

Only the Editor of the site is the recipient of your Personal Information. These are never transmitted to a third party, notwithstanding the subcontractors that the Site Editor uses:

BDL SYSTEMS : hosting of the website and database (France, see Article 6);
Brevo : routing of transactional emails (France, see Article 4.3);

Neither the Publisher of the site nor any of its subcontractors are marketing the personal data of visitors and Users of its Site.

Article 4.2: Sharing with authorities

We may be required to disclose your personal data to the administrative or judicial authorities when their disclosure is necessary for the identification, inquiry or prosecution of any individual who may prejudice our rights, any other user or a third party.

Article 4.3: Subcontractor for sending emails (Brevo)

To ensure the delivability of contact emails sent via the Site form, the Site Editor uses the services of Brevo (formerly Sendinblue), a French platform for sending transactional emails.

Data transmitted to Brevo: sender email address, recipient email address, message object and content.
Shelf life at Brevo : 60 days then automatic deletion.
Server Location: France and European Union.
Non-EU transfers: no data transfer outside the European Union.

Brevo acts as a subcontractor and is committed to the GDPR. For more information, see Brevo's Privacy Policy: https://www.brevo.com/en/legal/privacypolicy/

Article 5: Security

The Editor has taken appropriate organisational and technical measures to ensure a level of security appropriate to the risk and to ensure that servers hosting processed personal data prevent, to the maximum extent possible:

Unauthorised access or modification to such data;
Inadequate use or disclosure of such data;
Illegal destruction or accidental loss of such data.

Organizational and technical measures

Publisher employees who have access to this data are subject to a strict obligation of confidentiality. The Editor cannot, however, be held liable in the event of the misuse of such data by a third party despite the security measures adopted.
The site has an SSL certificate (Secure Socket Layer) to ensure that information and the transfer of data through the site is secure. An SSL certificate is intended to secure data exchanged between the user and the site.
The web server on which the data are collected and hosted is secure in accordance with recognized and constantly revised IT standards.
Data processors have up-to-date antivirus, complex password access and firewalls.

Users undertake not to commit acts that may be contrary to this Privacy Policy, or, in general, to the law.

Article 6: Data hosting

The Site is hosted by

BDL SYSTEMS, a single-member simplified share company with a share capital of 45000 €, whose registered office is located at BAT CANOPEE 6 RUE ADRIENNE BOLLAND 33600 PESSAC, registered in the Register of Commerce and Companies of Bordeaux under number 349 386 342, represented by inherent acting and having the necessary powers as president.

Article 7: The data controller

The controller of personal data is: Sylvain GRUELLES

He can be contacted by telephone at 05 53 40 81 Monday to Friday 8H-12H / 2H 17H or by email via the contact form of the site.

The data controller shall be responsible for determining the purposes and means of processing personal data.

Registry of processing activities

In accordance with Article 30 of the GDPR, the Site Editor maintains a register of personal data processing activities. This register is available on request from the controller.

Article 8: Obligations of the data controller

The controller undertakes to protect the personal data collected, not to transmit them to third parties without the user being informed thereof and to respect the purposes for which the data were collected. It shall be required to implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk involved.

In addition, the data controller undertakes to notify the user in the event of data rectification or deletion, unless this entails disproportionate formalities, costs and steps for the user.

In the event of a violation of the user's personal data likely to create a high risk for the user's rights and freedoms, the controller undertakes to communicate this violation to the User as soon as possible in accordance with the provisions of Article 34 of the GDPR.

Article 9: User rights

In accordance with the rules on the processing of personal data, the user has the following rights:

In order for the data controller to comply with his request, the user is required to communicate to him: first name, last name, email address, accompanied by a copy of his identity card or passport.

The data controller shall reply to the user within one month of receipt of the request. This period may be extended by two months if necessary, taking into account the complexity and number of applications. In this case, the user will be informed of this extension within one month.

Article 9.1: Right of access, rectification and erasure

The user may take notice of, update, modify or request the deletion of the data concerning him, by sending an email to the controller of the personal data or by using the contact form of the Site.

The right to erasure may be limited if the retention of data is necessary for the fulfilment of a legal obligation, the establishment, exercise or defence of rights in court, or for any other legitimate reason provided for in Article 17 GDPR.

Article 9.2: Right to data portability

The user has the right to request the portability of his personal data, held by the site, to another site, by making a request to the data controller.

Article 9.3: Right to limitation and opposition of data processing

The user has the right to request limitation or to object to the processing of his data when any of the elements referred to in Article 18 of the GDPR applies.

Article 9.4: Right not to be the subject of a decision based exclusively on an automated process

In accordance with the provisions of Article 22 of Regulation 2016/679, the user has the right not to be the subject of a decision based exclusively on an automated process if the decision produces legal effects concerning him or her, or significantly affects him or her in a similar way.

Article 9.5: Right to determine the fate of data after death

The user is reminded that he/she can organize the fate of his/her data collected and processed if he/she dies, in accordance with the provisions of Article 40-1 of the Data Protection Act.

Article 9.6: Right of access to the competent supervisory authority

If you consider that the Controller does not comply with his obligations with regard to your Personal Information, you can make a complaint or request to the competent authority. In France, the competent authority is the CNIL to which you can submit an application electronically by clicking on the following link: https://www.cnil.fr/en/complaints or by post:

National Commission for Information Technology and Freedom
Complaints Service
3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07

Article 10: Personal data of minors

In accordance with the provisions of Article 8 of the GDPR and the Data Protection and Freedoms Act, only minors aged 15 or over can consent to the processing of their personal data alone.

Where the child is under the age of 15, consent must be given jointly by the minor and the holder(s) of parental authority.

If the user is a minor under the age of 15, the agreement of a legal representative will be required so that personal data can be collected and processed.

The publisher of the site reserves the right to verify by any means that the user is over the age of 15, or has obtained the consent of a legal representative before browsing the site.

Article 11: Cookie Policy

When you first log in to the Editor's website, you are warned by a banner that information about your browsing may be stored in files called "cookies". Our cookie usage policy allows you to better understand the provisions that we implement when browsing our website. In particular, it informs you about all the cookies on our website, their purpose and gives you the procedure to follow to set them.

Article 11.1: General information on cookies on the Publisher's website

The publisher of this website will be able to implement cookies on the hard drive of your terminal (computer, tablet, mobile etc.) in order to guarantee you smooth and optimal navigation on our website.

"Cookies" (or cookies) are small text files of limited size that allow us to recognize your computer, tablet or mobile for the purpose of customizing the services we offer.

The information collected through cookies does not in any way identify you by name. They are used exclusively for our own needs to improve the interactivity and performance of our website and to send you content tailored to your interests. None of this information is disclosed to third parties except where the Editor has obtained your prior consent or where the disclosure of this information is required by law, by order of a court or any administrative or judicial authority empowered to hear it.

Article 11.2: Setting your preferences on cookies

You can accept or refuse the deposit of cookies at any time by clicking on the "cookie" icon at the bottom left of each page of the site.

When you first log into the Editor's website, a banner briefly presenting information about the storage of cookies and similar technologies appears at the bottom of the page. This banner allows you to accept or refuse the deposit of non-essential cookies.

Article 11.3: Cookies exempt from consent

In accordance with the recommendations of the National Commission for Information Technology and Freedoms (CNIL), certain cookies are exempt from the prior collection of your consent to the extent that they are strictly necessary for the operation of the website or are intended solely to enable or facilitate communication by electronic means. These include session ID cookies, authentication cookies, load balancing sessions and personalization cookies for your interface. These cookies are fully subject to this policy to the extent that they are issued and managed by the Site Editor.

Article 11.4: Audience measurement cookies (Matomo)

The site uses Matomo, a French open source audience measurement solution, self-hosted and configured in consent-free mode in accordance with CNIL's recommendations.

CNIL Consent Exemption Configuration:

Anonymization of the IP address of the visitors from the collection (deletion of the last 2 bytes);
No data sharing with third parties;
No crossing of data with other treatments;
Life of cookies stored on your device: 13 months maximum;
Duration of storage of the collected navigation data: 25 months maximum.

This solution is installed and maintained by librens, the creator of the site. The technical configuration guaranteeing the exemption from consent is managed centrally and cannot be modified by the Site Editor. The data collected remain the exclusive property of the Site Editor and are never shared with freemen or third parties.

Matomo cookies provide statistics on the use and use of various elements of the site (such as the content and pages you have visited). These data contribute to improving the ergonomics of the Publisher's website.

For more information about Matomo and respect for your privacy, see: https://matomo.org/privacy/

Article 11.5: You have various cookie settings tools

Most Internet browsers are configured by default to allow the storage of cookies. Your browser offers you the opportunity to modify these standard settings so that all cookies are systematically rejected or only part of the cookies are accepted or refused according to their transmitter.

CAUTION: We draw your attention to the fact that the refusal to store cookies on your device is nevertheless likely to affect your user experience and your access to certain services or features of this website. If applicable, the Site Editor will not be responsible for the consequences of the deterioration of your browsing conditions due to your choice to refuse, delete or block the cookies necessary for the operation of the site. These consequences cannot constitute damage and you will not be entitled to any compensation as a result.

Your browser also allows you to delete existing cookies on your device or to report when new cookies are likely to be stored on your device. These settings do not affect your browsing but make you lose all the benefit of the cookie.

The cookie management tool provided by the website:

Cookie management can be done at any time during your browsing by clicking on the "cookie" icon at the bottom left of each page of the site. This tool allows you to view and manage all cookies active on the site.

Setting your Internet browser:

Each Internet browser offers its own cookie management settings. To find out how to change your cookie preferences, you will find below the links to the help needed to access the menu of your browser for this purpose:

For more information on cookies control tools, please visit the CNIL website: https://www.cnil.fr/en/cookies-et-autres-traceurs