Details of how your data is collected and processed
This privacy notice is for this website sophiekazandjian.com, served by Sophie Kazandjian and governs the privacy of those who use it. Sophie Kazandjian is a company registered in France (SIREN 841019722) whose registered office is at 427 Chemin D'Uzes a la Bruguiere, 30700 Saint-Quentin-La-Poterie. The purpose of this policy is to explain to you how your personal information is controlled, processed, handled and protected while browsing or using this website, including your rights under current laws and regulations. If you do not agree to the following policy you may wish to cease viewing/using this website.
Policy key definitions:
"I" refers to the business, Sophie Kazandjian.
"you", "the user" refer to the person(s) using this website.
GDPR means General Data Protection Act.
ICO means Information Commissioner's Office.
Cookies mean small files stored on a users computer or device.
processing of your personal data
I am registered with the ICO under the Data Protection Register, registration number: ZA503426. Under the GDPR (General Data Protection Regulation) I control and/or process any personal information about you electronically using the following lawful bases. Personal data means any information capable of identifying an individual. It does not include anonymised data.
The following categories of personal data may be processed about you:
Communication Data that includes any communication that you send to me whether that be through the contact form on my website, through email, text, social media messaging, social media posting or any other communication that you send to me. This data is processed for the purposes of communicating with you, for record keeping and for the establishment, pursuance or defence of legal claims. My lawful ground for this processing is my legitimate interests which in this case are to reply to communications sent to me, to keep records and to establish, pursue or defend legal claims.
Client Data that includes data relating to any provision of services such as your name, title, billing address, delivery address, email address, phone number, contact details and purchase details. I process this data to supply the services you have purchased and to keep records of such transactions.
User Data that includes data about how you use my website and any online services. I process this data to operate my website and ensure relevant content is provided to you, to ensure the security of my website, to maintain back-ups of my website and/or databases and to enable publication and administration of my website, other online services and business. The lawful ground for this processing are my legitimate interests which in this case are to enable me to properly administer my website and my business.
Technical Data that includes data about your use of my website and online services such as your IP address, details about your browser, length of visit to pages on my website, page views and navigation paths, details about the number of times you use my website, time zone settings and other technology on the devices you use to access my website. The source of this data is from my analytics tracking system. I process this data to analyse your use of my website and other online services, to administer and protect my business and website, and to deliver relevant website content to you. My lawful ground for this processing is my legitimate interests which in this case are to enable me to properly administer my website and my business and to grow my business.
If, as determined by me, the lawful basis upon which I process your personal information changes, I will notify you about the change and any new lawful basis to be used if required. I shall stop processing your personal information if the lawful basis used is no longer relevant.
your individual rights
Under the GDPR your rights are as follows. You can read more about your rights in details here;
the right to be informed;
the right of access;
the right to rectification;
the right to erasure;
the right to restrict processing;
the right to data portability;
the right to object; and
the right not to be subject to automated decision-making including profiling.
Subject access requests are handled in accordance with the GDPR.
The security of any personal information I hold is ensured by using secure data storage technologies, including encryption, and precise procedures in how I store, access and manage that information. My methods meet the GDPR compliance requirement.