This privacy policy sets out the conditions under which Comexposium One to One collects and processes your Personal Data.

The Comexposium Group pays meticulous attention to protecting personal data.

This is an essential condition to the relationship of trust the Group wishes to establish with all those who entrust it with their personal data. This Data Protection policy (hereinafter the "Policy") indicates the practices and conditions in Comexposium One to One (hereinafter "the Company") whose registered office is located at 5 Rue de l'Amiral Courbet, 94160 Saint-Mandé.

Personal data (hereinafter the "Data") consist of all information relating to an identified or identifiable natural person. An "identifiable natural person" is an individual who can be identified directly or indirectly, notably by reference to an identifier such as a name, an identification number, location data, an online login, or one or more specific elements relating to his or her physical, physiological, genetic, psychic, economic, cultural or social identity, as this term is defined by current regulations.

 

Article 1 – WHICH DATA ARE COLLECTED ?

Depending on how you interact with the Company and the purpose of this interaction, the Company may collect the following Data:

  • Data linked with your identity: these Data mainly designate your name, full name, electronic address, postal address, telephone number, and profile (applicant, visitor, exhibitor, etc.).
  • Data linked with connection to and use of the Customer Account when you have one: these Data designate all the information you need to access your personal space and all information concerning use of the Customer Account, particularly your login and password, your choices and preferences and the history of the events in which you have participated. In any event, the Customer Account is subject to the general terms and conditions for specific use.
  • Data concerning your requests for information in the contact section: We process your personal data to respond to the requests stated via the contact form on our Website. This data includes your full name, your company, your e-mail address or your telephone number and your profile (applicant, visitor, exhibitor, supplier, their job title, etc.) ;
  • Data linked with browsing (for more information, click on Cookies privacy policy link): these Data concern the way in which Users browse on the Site. These Data may include the IP address, the screen resolution, the browser used, the time spent browsing, the search history, the operating system used, the language and the pages viewed. These Data are collected through cookies and other trackers, under the conditions set out in the cookie policy available on the Website. Cookies that are strictly necessary for the functioning of the Website are stored on the basis of the Company's legitimate interest. Non-essential cookies (including analytics cookies, etc.) are only stored after obtaining the User's consent, in accordance with applicable regulations.
  • Data linked with your participation in events: date of participation, stands visited and purchases made.
  • Data linked with the use of social media: when you interact with the social media functions, these communications are governed by the personal data protection policies of the social media platforms to which we invite you to refer to.
  • Data linked to the use of our chatbot to help you navigate the website.

 

Article 2 – HOW ARE YOUR DATA COLLECTED?

2.1. Depending on how you interact with the Company, the latter may collect your Data as described below.

2.2. The Company collects your Data directly from you, including when you fill in a contact or registration form, when you place an order or when you contact the Company (for example, by emailing it).

2.3. The Company collect your Data indirectly when you browse on the Sites by means of cookies and web beacons in the conditions defined above. The Company also collects your Data via third parties including the social media, when you use the account, you hold with these third parties to log on or sign up for an event.

2.4. When you communicate Data to the Company, it is your responsibility to ensure that they are accurate and complete. If necessary, you should update them.

 

Article 3 – WHY ARE YOUR DATA COLLECTED?

Your Data are automatically processed by the Company for various purposes described below, in the context of your use of the Sites and your participation in events organised by the Company on its own behalf or that of a third party. To facilitate understanding of the processing carried out, the table below summarises the purposes pursued, the categories of Data concerned, and the associated legal bases.

 

Purpose

Personal data category

Legal base

Managing your request

Data relating to your identity (surname, first name, email address, telephone number), content of the request.

The Company's legitimate interest in responding to your request or for pre-contractual purposes.

Managing your participation in events (customers, guests, exhibitors/partners) and creating your account. 

Data relating to your identity (surname, first name, email address, telephone number, position, company).

The performance of pre-contractual and/or contractual measures related to the data subject's participation in and registration for the event organized by the Company.

Improving the quality and organisation of events

Data relating to your identity (position, company, email address, telephone number), Data relating to the connection and use of the Account (type of event attended, date of attendance, method of attendance)

The Company's legitimate interest in improving the quality of the events it organises.

Sending information and commercial communications –professional prospects

Identity data (surname, first name), professional data (position, company), contact details (email, telephone number).

The Company's legitimate interest in promoting the events it organises to a professional audience.

Sending communications concerning other entities of the Group or partners

Data relating to your identity (surname, first name, position, company, email address, telephone number).

Your consent and/or legitimate interest

Customising and optimising your experience and performing statistical analyses

Browsing data, Account connection and usage data (your preferences).

Your consent and/or legitimate interest

 

Article 4 – WHO ARE THE RECIPIENTS OF YOUR DATA?

4.1. Your Data are processed by the Company’s internal teams. In addition, only the service providers and a restricted number of their authorised staff are permitted to access your Data with regard to the specific services entrusted to them, which they must carry out exclusively for the Company in strict compliance with obligations, particularly concerning security and confidentiality.

4.2. As part of the performance of the contract concluded with the Company, your Personal Data are shared exclusively with exhibitors or attendees for the purposes of appointment scheduling, both before and during the event.

4.3. When current regulations required so, the Company may transmit your Data to organisations and authorities legally authorised to access them (including the judicial and administrative authorities).

 

Article 5 – HOW ARE YOUR DATA PROTECTED?

The Company takes every necessary precaution to maintain the security and confidentiality of your Data, mainly to prevent them from being distorted, damaged or disclosed, or accessed by non-authorised third parties.

The Company also implements internal procedures to guarantee the security of your Personal Data when it is used, transferred or stored. We also maintain the procedures in place to ensure compliance with Applicable Regulation.

These security procedures include:

  • The commitment on the part of our service providers and subcontractors, when we use their services, in particular to make the Site and its content available to you, or to carry out your orders, to respect their contractual obligations in order to ensure adequate protection of the Personal Data to which they have access.
  • Limiting access to your Personal Data to employees subject to an obligation of confidentiality.
  • Storage of your Personal Data on servers offering every guarantee of security.

 

Article 6 – WHAT ARE YOUR RIGHTS?

6.1. Pursuant to applicable regulations and under the conditions defined in them, you can, at any time, exercise your:

  • Right of access: you can ask the Company for information on the processing of Data concerning you and a copy of these Data.
  • Right to rectification: you can demand the correction of inaccurate Data concerning you when those held by the Company are erroneous or incomplete.
  • Right to erasure: you have the right to obtain the deletion of your Data by the Company if one of the reasons stipulated by the regulations exists (unnecessary Data, withdrawal of your consent for processing based on the latter, etc.).
  • Right of opposition: at any time, for reasons concerning your particular situation, you have the right to oppose the processing of your Data, including for commercial prospecting purposes.
  • Right to Data portability: you have the right to receive Data in an exploitable form. This right only concerns cases where Data are provided to the Company by yourself or result from the use you make of its services. These Data are processed on the basis of your consent or during the execution of a contract.
  • Right to restriction of processing: you can ask the Company to suspend the processing of your Data when one of the reasons stipulated by the regulations exists (contestation of the accuracy of Data, etc.).

According to conditions defined by the regulations, you also have a right to give general or specific directives regarding what happens to your Data after your death. However, please note that only specific directives relating to the processing of Data by the Company for reasons defined in this Policy will be registered by the Company, subject to its specific consent.

6.2.  When your Data are processed with your consent, you can revoke this at any time. However, please note that processing carried out before this revocation remains valid.

6.3.  You can exercise your rights by contacting the Company:

Please note that in certain cases, functions of the Sites enable you to view and modify Data you have communicated to the Company.

You are informed that the Company has a period of one month from receipt of your request to answer it.

The Company takes the greatest possible care of your Data; however, if you consider that their processing infringes your rights, you can make a claim to the CNIL (French data protection agency) - 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07.

 

Article 7 – HOW LONG DO WE STORE YOUR DATA?

7.1. Company stores your Data for a period that does not exceed the time required for the purposes indicated in this Policy. Beyond that date, your Data maybe archived to comply with legal obligations incumbent on the Company or deleted.

7.2.  Data providing proof of a right or a contract or stored in respect of a legal obligation by the Company are archived in compliance with current provisions.

7.3. The Company takes into account the seasonality of the events it organizes, as well as the relationship it maintains with you (guest, prospects, exhibitors…). Therefore, you will find below the retention periods defined according to the type of event. factors in the seasonal nature of the events it organises. In this respect, you will find below the storage periods defined according to the type of event in question.

Type of Event

Data retention period

Data subjects concerned

Quarterly, half-yearly or annual events

Three years from the last expression of interest by the contact (prospect) and five years from the last expression of interest by the contact (customer).

All types of event participants (prospects, exhibitors, visitors, partner guests, speakers, etc.)

 

Article 8 – DATA TRANSFERS

To host and process your Data, the Company prefers means situated in the territory of the European Union. However, if the transfer of Data to a country outside of the European Union becomes necessary, a specific information will be provided by the Company. If a transfer of Data to a country outside the European Union were nevertheless to be envisaged, the Company undertakes to ensure that appropriate technical and organizational measures are put in place.

 

Article 9 – MODIFICATION OF THE DATA PROTECTION POLICY

9.1. Any modification of this Policy by the Company will be updated on the Website.

9.2. Users are recommended to regularly review this Policy to be aware of all updates and changes.

9.3. If any clause in this Policy is declared null or contrary to the regulations, it will be deemed unwritten but will not imply the nullity of other clauses in the Policy.