Introduction
DIFAGRI ASIA is committed to respecting your privacy and protecting your personal data. In accordance with applicable data protection legislation, this privacy notice explains how DIFAGRI ASIA collects, processes, protects and may share your personal data. This privacy notice also informs you of your rights and how exercise them;
Definitions
Controller: refers to the person or entity that determines the purposes and means of the processing of personal data.
Applicable Personal Data Protection Legislation: refers to Directive 2002/58/EC and the General Data Protection Regulation (EU) 2016/679, (hereinafter “GDPR”) as well as all delegated and implementing acts adopted pursuant to the GDPR and the laws of the Member States specifying the provisions of said Regulation applicable to the processing of Personal Data.
Subprocessor: means the person or entity that processes Personal Data on behalf of, on the instructions of and under the authority of a Data Controller.
DIFAGRI ASIA: means the company DIFAGRI ASIA and all its affiliated companies.
Personal data: means any data directly or indirectly enabling the identification of a natural person.
Site: refer to www.difagriasia.com website and all its sub-domains.
Data controller
Personal data obtained via this site is processed by DIFAGRI ASIA, acting as data controller.
Categories of personal data collected
Each time you connect to the site, the data controller or third parties acting on its behalf automatically collect and store information relating to your system and your activities on the site. This information may include:
The unique identification number of your computer or other electronic device; your IP adress; technical information about your device such as the type of device, Internet browser or operating system used; your preferences and settings such as time zone or language; statistical data relating to your browsing activities and habits.
When you take part in online surveys or polls on the site, request further information on the data controller’s marketing or advertising activities, log on to its online services or subscribe to its newsletters, forms or other similar requests, the data controller may collect personal data that you have either voluntarily communicated or that is necessary for the provision or improvement of its services, namely: identity information (first name, last name, e-mail address, gender, postal address, telephone number) used to identify you and to provide you with the requested services; location information used to tailor information to your geographical location; or any other information you have voluntarily provided.
Purposes of personal data collection
The data controller undertakes to collect and process your personal data solely in order to provide you with its services or to comply with a legal obligation.
The data controller will only use your personal data for the purposes for which you have provided it, in accordance with the information provided to you on our website at the time you provided your personal data: personal data collected when you register for the controller’s newsletters, or through any forms or similar requests, will only be used in compliance with the purpose for which this information was communicated and collected; personal data collected at each connection will be used to trace your visit to the site, to enable the data controller to compile statistics on the most frequently visited pages and, more generally, to monitor and improve the operation of the site; the data controller may also use your personal data for direct marketing purposes, in order to provide you with a better quality of service, only if you have given your consent.
Legal basis for processing personal data
We process your personal data on the following legal bases:
Your consent: when you provide your personal data to the data controller, you consent to its use of your personal data in accordance with the identified purpose.
Performance of a contract: the data controller may process your personal data to fulfill its contractual obligations and provide its services to you.
Legal obligation: the data controller may process your personal data to fulfill a legal obligation.
Legitimate interest: the data controller may process your personal data to improve its services and ensure that you have the best experience on its site.
Sharing your personal data
As indicated above, the data controller is DIFAGRI ASIA. As such, your personal data may be shared with all of DIFAGRI ASIA’s affiliated companies, whether or not located in one of the territories of the European Union, in order to provide you with the best quality of services.
You authorize the data controller to share your personal data with service providers, subcontractors and agents to perform certain functions on its behalf and in accordance with its instructions, such as payment providers, IT service providers, accountants, auditors or lawyers.
In certain circumstances, the data controller may be required to share your personal data with governmental authorities and/or law enforcement agencies in order to comply with applicable laws such as anti-bribery laws, to protect the rights, property or safety of a third party or to comply with its terms and conditions.
The data controller may also share your personal data in connection with a proposed merger, sale of assets, consolidation or restructuring, financing or acquisition of all or part of its business by another company.
Hyperliens
The site of the data controller may contain links to other sites that may be of interest to you. When you use these links to leave the site of the controller, the controller has no control over these other sites.
Consequently, the data controller cannot be held responsible for the protection and confidentiality of any information you may voluntarily or involuntarily provide while visiting such sites, and such sites are not governed by this privacy notice. We therefore invite you to exercise caution and to read the privacy policy of the sites in question.
Your rights
In accordance with current legislation, you have the following rights with regard to your personal data:
Right of access: you have the right to request access to your personal data.
Right of rectification: you have the right to request rectification of your personal data if it is incorrect or incomplete.
Right to erasure (“Right to be forgotten”): you have the right to request the erasure of your personal data and only if one of the conditions laid down by the RGPD is met. Nevertheless, the data controller is authorized to refuse your request or to retain some of your personal data in order to comply with certain legal obligations.
Right to limitation of processing: you have the right to ask the data controller to limit the way in which your personal data is processed.
Right to data portability: you have the right to request to receive the personal data you have provided to the data controller, in a structured, commonly used and machine-readable format, in order to transmit this data to another data controller. However, this right is subject to the following two conditions: (i) the processing is based on your consent or the performance of a contract and (ii) is carried out using automated processes.You can exercise these rights by sending your request by e-mail to contact@difagri.fr and the data controller will make every effort to respond to your request as quickly as possible.
Right to lodge a complaint with a supervisory authority: you have the right to lodge a complaint with the supervisory authority competent according to the Member State in which you are located.
Any subscription to a newsletter may be cancelled at any time by sending an e-mail to contact@difagri.fr
RETENTION PERIOD
The data controller will keep your personal data only for as long as is necessary for the purpose for which it was provided or to comply with certain legal obligations.
TRANSFER OF DATA OUTSIDE THE EUROPEAN ECONOMIC AREA
The data controller may transfer your personal data to countries outside the European Economic Area (EEA) whose legislation offers a different level of protection for personal data. Should your personal data be transferred outside the EEA, the transfer will be carried out under the cover of standard contractual clauses adopted by the European Commission. These clauses are intended to provide guarantees concerning the transfer of personal data, and are used by the data controller both to secure the transfer and to comply with data protection legislation.
Security
The data controller has implemented reasonable technical, organizational and structural measures to ensure an adequate level of protection of your personal data against unauthorized or unlawful processing, as well as to prevent accidental loss, destruction or occurrence of any damage.
In the event that your personal data is transferred to third parties, the data controller will ensure that your personal data is processed only in accordance with its instructions.
Where the data controller has provided you with a password, or where you yourself have chosen a password enabling you to access certain parts of its site, it is your responsibility to keep this password confidential.