This website https://50montaigne.fr/ (the “Website”) is operated by Chelsfield France Limited, Registered in France under company number 803 070 523 RCS Paris, 17-19 avenue Montaigne – 75008 Paris (“Chelsfield France”).
- Chelsfield France jointly with SCI 50 AVENUE MONTAIGNE (“SCI”) (together with Chelsfield, “we”, “our” or “us”), are the data controllers in respect of your personal data. This means that Chelsfield France and the relevant SCIs jointly determine the purposes and means of the processing of your personal data.
Our contact details: email@example.com or by post Chelsfield France 17-19 avenue Montaigne – 75008 Paris
This Privacy Notice explains how we use the personal information that we collect through the Website or when you provide personal information as part of our relationship or potential relationship with you (or your organisation) as a customer, client or prospective customer or prospective customer (tenant or purchaser) (hereafter “Customer”), vendor (hereafter “Vendor”), supplier, or consultants, professional adviser legal auditors, bankers, counsels or other business partner (hereafter “Business Partner”), it being noted that the defined words Customer, Vendor and Business Partner include individuals acting on their behalf in relation with the properties located at 50 AVENUE MONTAIGNE (hereafter the “Properties”) or with the Management services provided by Chelsfield (hereafter the “Services”).
- If you would like further information on the collection, use, disclosure, transfer or processing of your personal data or the exercise of any of the rights listed herein, please address questions, comments and requests to the contact details set out in section 15 below.
What information do we collect?
- We collect the following information directly from you:
- Information you provide voluntarily
This includes information about you that you give to us if you email us about a question, complaint or to report a problem with the Website, or that we may ask you to provide to us. This information may include your name, e-mail address, organisation, country, zip code/postal code, job title, telephone number(s) and details of your comment or query.
If you provide us with information about another person, you confirm that they have appointed you to act for them, that you have informed them of our identity and the purposes (as set out in this Privacy Notice) for which their information will be processed and that you have obtained any necessary consents to the processing of their personal information. When we first contact them, we may tell them where we got the information from.
- Information we collect when you do business with us
We collect, directly from you or from third parties, and process information relating to you as an individual (whether as a Website user or otherwise) when you conduct business with Chelsfield in respect of the Properties or Services as Customer, Vendor and/or Business Partner (“Customer, Vendor or Business Partner Data” shall mean personal data related to Customers, Vendors or Business Partners).
Customer, Vendor or Business Partner Data include:
- General information : identity (notably of the tenant, of the candidate for rental and, if applicable, of his guarantor): surname, marital name, first names, date and place of birth, nationality, address, e-mail address, telephone number, Manager internal code allowing identification, position in the company, company name, company email address, business phone number, business address, city, postcode, country.
- Identity of the purchaser (of the candidate purchaser, the co-owner or owner, the partner, the spouse of the co-owner or owner, partner who has signed a civil solidarity pact (subject to the express agreement of the interested parties) provided that he or she has rights in the co-ownership, each of the co-owners in the case of joint ownership, the holder or holders of the rights referred to in Article 6 of the Decree of 17 March 1967): surname, marital name, first names, date and place of birth, nationality, family situation, matrimonial regime, address, e-mail address, telephone number, internal code allowing identification, position in the company, company name, company email address, business phone number, business address, city, postcode, country.
- Contact details of the agent: of common agent in the case of joint ownership or of the manager who manages the lots, bank identity or postal identity.
- Personal Data related to the accommodation: characteristics of the accommodation or property, rental or home ownership conditions, date of entry and departure, amount of security deposit, amount of rent, nature and amount of charges, maintenance and improvement work and nature of loans granted and terms of repayment, insurance company, Customer’s policy number, identification number, identity and contact details of the bearer of the electronic identification medium for access to the buildings.
- Specific information for Customers: family situation, composition of the household, conclusion of a civil solidarity pact (subject to the express agreement of the interested parties), registration number of the beneficiary’s family allowance fund exclusively to enable the payment of accommodation benefit, professional situation, contact details of the employer, resources.
- Information specific to Customer, Vendor or Business Partner’s guarantors: financial resources.
- Specific information for Customers: financial assets.
- Information from publicly available sources (including third party agencies such as fraud prevention agencies; law enforcement agencies; public databases, registers and records such as the Registre du Commerce et des Sociétés and other publicly accessible sources).
- Information that we collect automatically
The Website uses small files (“Cookies”).
A cookie is a small file of letters and numbers that we store on your browser or device. Cookies contain information that is transferred to and from your device.
We use only strictly necessary cookies. These are cookies that are required for the operation of the Website. They include, for example, cookies that enable you to submit a request using the “Contact Us” form.
For which purposes do we use your personal data?
- Your personal data is stored and processed by us in the following ways and for the following purposes (as relevant):
- to provide the Services and to communicate with Customer, Vendor or Business Partner in order to provide information about the Property and Services, to organise occasional promotional events and to monitor and analyse traffic on the website(s), if any, dedicated to the Properties;
- to effectively manage and strengthen Customer, Vendor or Business Partner relationships and understand their needs and interests in order to develop, improve and manage the Property and services;
- for the management and administration of the Property and the Manager’s business including but not limited to rental management, accounting, reporting, assessment of the solvency of Customer, Vendor or Business Partner and prospective clients, debt collection operations, management and transaction by telematic and electronic means, allocation of individual access devices to buildings;
- for statistical monitoring and analysis of current attacks on devices and systems and for the on-going adaptation of the solutions provided to secure devices and systems against current attacks;
- to administer or maintain IT systems in order to uphold standards of service;
- for the administration and maintenance of databases storing Property Personal Data; or
- in order to comply with and in order to assess compliance with applicable laws, rules and regulations, and internal policies and procedures.
What is our legal basis for processing your personal data?
- The legal basis for processing your personal data: we are entitled to process your personal data in these ways because either:
- we have obtained your consent, where this has been given unambiguously;
- we have legal and regulatory obligations that we have to discharge;
- processing is necessary for the performance of a contractual obligation;
- the use of your personal data as described is necessary for the purposes of the legitimate interests pursued by us such as:
- allowing us to effectively and efficiently manage and administer the operation of our business;
- marketing our products and services;
- ensuring the security of information systems;
- establish, exercise or defend our legal rights or for the purpose of legal proceedings; and
- ensuring compliance with: (i) internal policies and procedures; and (ii) all legal and regulatory obligations and industry standards and preventing fraud.
Who do we share your data with?
- The recipients or categories of recipients of your personal data may include:
- third party suppliers, Vendors, Business Partners., SCI and consultants who help Chelsfield to perform the services (e.g. marketing agencies for the organisation of occasional events; IT support teams);
- Customers to the extent strictly required for the Manager to provide its services, to the extent allowed under applicable law;
- professional advisors (e.g. accountants, counsels), bailiffs, for example to recover unpaid rents or to initiate action against a wrongdoer;
- other companies within the Chelsfield group providing general services to Chelsfield France;
- law enforcement and fraud prevention agencies; or
- public authorities or other public bodies to comply with any legal requirement under Applicable Law.
International transfers of personal data
- We are an international business and, as a result, we may transfer your personal data to locations outside of your country.
Where we transfer your personal data to any of the recipients mentioned above, we will not transfer personal data outside the European Economic Area (“EEA”).
Notwithstanding the hereabove provisions, Chelsfield France might as from January 1st 2021, transfer Data to Chelsfield group, located in United Kingdom for the purposes herein mentioned. In this case, we will ensure when applicable, that it is protected and transferred in a manner consistent with legal requirements. In relation to data being transferred outside the EEA, for example, this may be done in one of the following ways:
- the country that we send the data to might be approved by the European Commission as offering an adequate level of protection for personal data;
- the recipient might have signed up to a contract based on “model contractual clauses” approved by the European Commission, obliging them to protect your personal data;
- the recipient may have adhered to binding corporate rules (only for intragroup transfers);
- in other circumstances the law may permit us to otherwise transfer your personal data outside Europe.
After January 1st 2021, You can obtain more details of the protection given to your personal data when it is transferred outside the EEA (including a copy of the standard data protection clauses which we have entered into with recipients of your personal data) by contacting us as described in Section 15 below.
- We are committed to protecting the information we receive from you. We follow adequate technical and management practices to help protect the confidentiality, security and integrity of data stored on our system. While no computer system is completely secure, we believe the measures we have implemented reduce the likelihood of security problems to a level appropriate to the type of data involved.
Third party websites
- The Website may, from time to time, contain links to and from third party websites. If you follow a link to any of these websites, these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
- We retain your personal data for: (i) as long as we need it to carry out the processing detailed in this Privacy Notice; and (ii) where applicable, any minimum period required by law. Specific information about our record retention policies is available on request. Please contact us at firstname.lastname@example.org. Note that we may retain some limited information about you even when we know that you have left the organisation that you represent, so that we can maintain a continuous relationship with you if and when we are in contact with you again, representing a different organisation.
Your data protection rights
- Under data protection law you may have a right:
- of access to the personal information that we hold about you, and to some related information;
- to request any inaccurate personal information to be corrected or completed;
- in some circumstances, to request the erasure of your personal information;
- in some circumstances to request restriction of the processing of your personal information;
- to object to our use of your personal information for direct marketing purposes at any time and you may have the right to object to our processing of some or all of your personal information (and require them to be deleted) in some other circumstances;
- in some circumstances, to request the transfer of your personal information to another party in a machine-readable commonly used and structured format; and
- to provide instructions regarding the storage, deletion or disclosure of your personal information after your death.
- If we are relying on your consent to process data, you may withdraw your consent at any time by notice to us.
- If you wish to exercise any of these rights, please contact us as at email@example.com simply informing us of the reason of your request and the right that you wish to exercise. We will respond to your request within one month of receipt of your request. In some cases we may not be able to fulfil your request to exercise the right before this date, and may need to request more time. Where we cannot provide a full response to you for any reason, we will let you know about this in our initial reply to your request. You can also lodge a complaint about our processing of your personal information with the French Data Protection Authority (CNIL – www.cnil.fr/) .
- We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
- If you choose not to supply your personal data to us you may not be able to access certain areas of the Website or use certain services. Refusal to provide your personal data may prevent Chelsfield from providing its services to you.
- We may change this page from time to time, to reflect how we are processing your data. If we make significant changes, we will make that clear on the Website or by some other means of contact such as email, so that you are able to review the changes before you continue to use the Website.